$ rpki-client -vvf rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft File: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft (raw, json) Hash identifier: qkJ8SBT9m3imdXvfFj6MqxE1LPUBbRgDYAlZQBML8oI= Subject key identifier: 7A:36:A0:9D:EA:17:B9:54:63:80:64:61:76:9B:CD:FB:BF:7D:C9:64 Authority key identifier: 0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 Certificate issuer: /CN=A9132AEB/serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Certificate serial: 34F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft Manifest number: 34E0 Signing time: Sat 18 Oct 2025 15:14:23 +0000 Manifest this update: Sat 18 Oct 2025 15:14:22 +0000 Manifest next update: Sat 25 Oct 2025 15:14:22 +0000 Files and hashes: 1: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl (hash: 62/Ph3idk+MW1dbVtD7QBN/fskzw13Y+iX93FHyxzcw=) 2: 514DBDFC98C711EAA0CFE582C4F9AE02.roa (hash: i+oLVOiTvF13PBUoOa9UfIxFEQhcYfTJRD1Exsj8GIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:14:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13552 (0x34f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132AEB, serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Validity Not Before: Oct 18 15:14:22 2025 GMT Not After : Oct 25 15:14:22 2025 GMT Subject: CN=68f3aecf-0d36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:df:11:12:5a:38:53:4b:dd:84:5e:54:1b:39: 5d:8b:d8:22:9d:ab:dd:cb:f9:dc:e5:26:09:71:e8: dc:85:f8:e4:05:ae:d8:71:97:cd:4e:4f:70:89:d8: 90:1c:44:fe:1c:50:8a:fd:e5:ed:86:08:f5:ae:5b: 88:fe:15:23:87:d8:f8:b4:53:af:a6:57:18:c1:c9: 7f:2e:1d:da:42:f2:9b:3c:06:8d:b9:de:f1:11:77: cb:ca:38:b2:91:68:55:c1:5f:b4:e8:84:ec:61:f0: 2d:41:00:2b:8e:2a:e4:d5:10:fd:c4:07:ea:c4:2c: aa:c5:42:ac:f8:d6:90:30:26:8e:60:53:cf:fc:55: c0:32:43:ac:8a:3f:2a:11:7b:02:af:67:f7:d1:af: f6:7f:86:81:66:78:48:b8:a3:7e:e7:ea:a2:93:93: 4f:cf:b2:88:1f:8e:f9:48:60:f1:a6:54:4d:27:3c: 7d:4c:bf:a2:7e:69:8f:d9:9d:e6:0a:a0:31:8f:32: dd:63:dd:93:76:75:20:7b:24:bf:ca:cd:d6:b0:db: ca:6c:8a:25:16:54:52:d9:35:f0:79:c4:3f:36:43: 6f:01:a7:df:0e:df:69:bd:3d:93:dd:3a:1a:20:a1: 5d:e7:ef:88:b0:38:6e:44:26:64:c1:d9:6c:eb:75: 61:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:36:A0:9D:EA:17:B9:54:63:80:64:61:76:9B:CD:FB:BF:7D:C9:64 X509v3 Authority Key Identifier: keyid:0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:16:5c:6c:8c:b4:31:f3:79:c8:2d:be:2a:a8:4d:8d:96:34: 3f:17:5b:2e:e2:37:1c:04:70:53:5a:ef:ce:1b:89:36:ca:c1: 33:49:b7:ed:23:c7:f2:a7:ea:b1:0c:5c:61:1e:1d:d4:1c:9e: 9e:9d:99:a4:6f:2b:7f:6d:da:f4:2a:70:54:bd:66:87:11:33: ae:87:88:5d:01:12:9b:44:5d:49:ea:bc:69:0f:4e:7b:86:57: 38:58:f5:67:8b:8b:d5:54:d3:04:b0:03:ed:fc:38:79:75:16: 86:cd:42:fe:01:c1:72:55:8b:a4:ab:1a:fb:2f:25:98:0a:1e: 66:93:97:d4:72:bf:c9:bb:e4:3f:bb:48:29:3a:34:69:18:19: 67:69:c9:19:59:db:6b:21:fe:c1:3a:66:d8:78:9c:2d:bd:ed: fa:bd:f0:b5:16:09:79:b5:f3:de:08:b8:af:b2:94:f2:6b:f0: 77:91:c5:e6:74:0f:02:9d:c5:4a:cd:c2:13:b6:04:9c:86:30: 73:e9:f3:c8:6f:13:90:c4:25:cd:28:9c:14:8d:41:c3:d5:cf: 58:78:9b:4f:96:74:4d:51:8e:66:92:15:6e:67:23:9d:87:72: 1e:a0:71:e3:43:06:fc:2a:2d:2a:f5:5f:5e:94:7c:0c:6b:27: 53:0d:aa:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJBRUIxMTAvBgNVBAUTKDBGOTUyQTI3RUYzRUYyN0NFQTA4QzU3RDIwMkEzODA2 OUVDQjU4NDAwHhcNMjUxMDE4MTUxNDIyWhcNMjUxMDI1MTUxNDIyWjAYMRYwFAYD VQQDEw02OGYzYWVjZi0wZDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqd8RElo4U0vdhF5UGzldi9ginavdy/nc5SYJcejchfjkBa7YcZfNTk9widiQ HET+HFCK/eXthgj1rluI/hUjh9j4tFOvplcYwcl/Lh3aQvKbPAaNud7xEXfLyjiy kWhVwV+06ITsYfAtQQArjirk1RD9xAfqxCyqxUKs+NaQMCaOYFPP/FXAMkOsij8q EXsCr2f30a/2f4aBZnhIuKN+5+qik5NPz7KIH475SGDxplRNJzx9TL+ifmmP2Z3m CqAxjzLdY92TdnUgeyS/ys3WsNvKbIolFlRS2TXwecQ/NkNvAaffDt9pvT2T3Toa IKFd5++IsDhuRCZkwdls63VhewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHo2oJ3q F7lUY4BkYXabzfu/fclkMB8GA1UdIwQYMBaAFA+VKifvPvJ86gjFfSAqOAaey1hA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkFFQi9FRjI5QkEyQTFE QTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThuenFDTVY5SUNvNEJwN0xX RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q1VXFKLTgtOG56cUNNVjlJQ280QnA3TFdFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkFFQi9FRjI5QkEyQTFEQTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThu enFDTVY5SUNvNEJwN0xXRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyFlxsjLQx83nILb4qqE2NljQ/F1su4jccBHBTWu/OG4k2ysEzSbft I8fyp+qxDFxhHh3UHJ6enZmkbyt/bdr0KnBUvWaHETOuh4hdARKbRF1J6rxpD057 hlc4WPVni4vVVNMEsAPt/Dh5dRaGzUL+AcFyVYukqxr7LyWYCh5mk5fUcr/Ju+Q/ u0gpOjRpGBlnackZWdtrIf7BOmbYeJwtve36vfC1Fgl5tfPeCLivspTya/B3kcXm dA8CncVKzcITtgSchjBz6fPIbxOQxCXNKJwUjUHD1c9YeJtPlnRNUY5mkhVuZyOd h3IeoHHjQwb8Ki0q9V9elHwMaydTDarn -----END CERTIFICATE-----Generated at Mon Oct 20 10:46:51 2025 by rpki-client