$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft File: rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft (raw, json) Hash identifier: c2OPn9TIfLL9tsXDms8cA3qo0tdtkra7odEzKF8zUe4= Subject key identifier: AF:39:26:70:DB:34:EA:97:14:88:2E:BC:E9:0A:1E:FB:29:DE:DF:64 Authority key identifier: AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD Certificate issuer: /CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Certificate serial: 07FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft Manifest number: 07F1 Signing time: Sat 18 Oct 2025 22:16:16 +0000 Manifest this update: Sat 18 Oct 2025 22:16:16 +0000 Manifest next update: Sat 25 Oct 2025 22:16:16 +0000 Files and hashes: 1: rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl (hash: hB2L4L8+XO1rHzHkAkIzC4VlacwgdRcDhozDixo4XTE=) 2: 38502DA2029A11EB85BD7B84C4F9AE02.roa (hash: 3OsuoPomkN3KwD+aF1zCoEkkbIN7dOFAl/woMg+7fcw=) 3: CEA093C66CA311ED9DD6425CC4F9AE02.roa (hash: 3rvQwF7VOidxONOxWbJzlS69h1FDkR177X5kmaAbyhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:16:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2044 (0x7fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFBA, serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Validity Not Before: Oct 18 22:16:16 2025 GMT Not After : Oct 25 22:16:16 2025 GMT Subject: CN=68f411b0-1792 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ed:13:4f:43:9d:97:0d:39:55:b5:e4:78:9d: d0:c5:e9:78:1d:12:19:71:70:ce:fa:35:b8:58:94: b4:61:9a:c5:da:06:79:43:62:b1:ad:66:3e:3a:ec: 9a:0a:98:d7:9c:9d:ba:af:4a:0f:1b:92:f9:e7:a7: c9:be:0b:2a:32:d0:8c:7a:34:b1:4b:e9:b5:e8:6e: 11:2b:2e:ee:af:6d:de:05:fa:c9:e7:e9:42:bd:f4: 28:7c:3e:21:1b:ce:82:f5:7e:77:0e:db:1f:d5:24: f0:0e:db:f6:e8:84:fc:72:15:3b:48:b5:34:a8:d0: fc:50:a6:e1:b4:5c:eb:ec:66:b2:d9:5c:99:72:e8: 42:68:85:6a:47:ef:08:0d:f3:dd:f1:34:c5:d6:60: 10:23:d2:b1:4d:be:8e:f5:d9:4c:51:46:6b:2e:b2: f7:47:c7:4e:f3:75:87:73:a0:5c:f6:2e:28:8d:89: 61:92:c5:5d:f2:95:83:e4:f0:2d:df:59:ea:94:12: 1c:10:88:e7:ae:b9:a7:35:5e:d7:ff:b9:2f:f9:05: 9d:c7:b9:86:bf:bb:19:d4:35:db:31:f2:4e:e7:ec: 9f:8b:67:24:d0:f4:3d:51:33:c0:a0:08:99:0b:93: 0d:93:2a:01:84:c7:9b:ff:76:2f:f6:cf:5d:fb:05: bf:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:39:26:70:DB:34:EA:97:14:88:2E:BC:E9:0A:1E:FB:29:DE:DF:64 X509v3 Authority Key Identifier: keyid:AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:ad:27:c0:f8:1a:e3:f9:56:16:9f:48:f5:e9:6c:c6:1a:62: be:38:f4:ac:27:8f:c4:98:4c:1e:c7:28:13:de:00:40:5d:33: d2:dc:4c:5b:ec:05:03:5f:02:fa:e4:a2:7c:c3:ae:d4:e4:0c: 7e:f6:92:3b:f6:4c:3f:09:21:e0:7d:dc:61:82:ef:67:45:c2: 0b:63:9c:30:eb:66:73:42:b8:03:58:b3:2e:b8:ee:30:43:ac: 06:6c:27:63:64:49:1d:da:61:37:4f:b2:b8:5f:40:50:06:66: e5:3a:8a:7a:d8:24:c4:44:5b:20:57:d3:00:65:79:2f:68:d3: 88:45:ce:3b:0a:92:e3:2a:f8:ca:49:9c:01:2a:51:f9:61:36: 60:08:65:89:28:50:5e:76:67:76:94:ef:55:d7:39:95:a5:07: 3d:a2:04:32:49:d9:78:23:86:33:bf:1d:59:32:31:1a:9e:11: a8:7e:02:58:0e:2e:19:d3:69:64:45:6d:df:e2:a0:03:32:45: 07:0c:95:57:43:5d:4b:0c:3e:7e:1b:51:62:c2:1d:db:6e:90: 40:b3:6a:6c:ef:6a:f9:06:91:f7:38:48:cb:ed:c6:d0:f5:e0: 80:d4:60:96:18:ba:f6:71:f0:0c:98:b5:3c:ad:7e:57:69:a2: 24:02:59:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGQkExMTAvBgNVBAUTKEFFNEUzMENDMEQwNTAxQTVBRTY2NEFEQjE1OTA1M0FD RUNGMEFDRkQwHhcNMjUxMDE4MjIxNjE2WhcNMjUxMDI1MjIxNjE2WjAYMRYwFAYD VQQDEw02OGY0MTFiMC0xNzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvu0TT0Odlw05VbXkeJ3Qxel4HRIZcXDO+jW4WJS0YZrF2gZ5Q2KxrWY+Ouya CpjXnJ26r0oPG5L556fJvgsqMtCMejSxS+m16G4RKy7ur23eBfrJ5+lCvfQofD4h G86C9X53Dtsf1STwDtv26IT8chU7SLU0qND8UKbhtFzr7Gay2VyZcuhCaIVqR+8I DfPd8TTF1mAQI9KxTb6O9dlMUUZrLrL3R8dO83WHc6Bc9i4ojYlhksVd8pWD5PAt 31nqlBIcEIjnrrmnNV7X/7kv+QWdx7mGv7sZ1DXbMfJO5+yfi2ck0PQ9UTPAoAiZ C5MNkyoBhMeb/3Yv9s9d+wW/ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK85JnDb NOqXFIguvOkKHvsp3t9kMB8GA1UdIwQYMBaAFK5OMMwNBQGlrmZK2xWQU6zs8Kz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZCQS9EQjlDRTY3ODAy OTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFhV3Vaa3JiRlpCVHJPendy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JrNHd6QTBGQWFXdVprcmJGWkJUck96d3JQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REZCQS9EQjlDRTY3ODAyOTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFh V3Vaa3JiRlpCVHJPendyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDrSfA+Brj+VYWn0j16WzGGmK+OPSsJ4/EmEwexygT3gBAXTPS3Exb 7AUDXwL65KJ8w67U5Ax+9pI79kw/CSHgfdxhgu9nRcILY5ww62ZzQrgDWLMuuO4w Q6wGbCdjZEkd2mE3T7K4X0BQBmblOop62CTERFsgV9MAZXkvaNOIRc47CpLjKvjK SZwBKlH5YTZgCGWJKFBedmd2lO9V1zmVpQc9ogQySdl4I4Yzvx1ZMjEanhGofgJY Di4Z02lkRW3f4qADMkUHDJVXQ11LDD5+G1Fiwh3bbpBAs2ps72r5BpH3OEjL7cbQ 9eCA1GCWGLr2cfAMmLU8rX5XaaIkAlnG -----END CERTIFICATE-----Generated at Mon Oct 20 04:12:08 2025 by rpki-client