$ rpki-client -vvf rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.mft File: 0DLgYUkj9KWCM463Y2w5aErtUe0.mft (raw, json) Hash identifier: avHigTbqbKLXSvDyV0QF0MNkTN9oG38iKzKByWTilKE= Subject key identifier: 0D:0A:0A:B3:BF:7F:4B:C0:46:1F:0C:90:FC:A6:92:80:9D:F4:08:A5 Authority key identifier: D0:32:E0:61:49:23:F4:A5:82:33:8E:B7:63:6C:39:68:4A:ED:51:ED Certificate issuer: /CN=A913559B/serialNumber=D032E0614923F4A582338EB7636C39684AED51ED Certificate serial: 10B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DLgYUkj9KWCM463Y2w5aErtUe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.mft Manifest number: 10AA Signing time: Mon 20 Oct 2025 17:47:32 +0000 Manifest this update: Mon 20 Oct 2025 17:47:31 +0000 Manifest next update: Mon 27 Oct 2025 17:47:31 +0000 Files and hashes: 1: 0DLgYUkj9KWCM463Y2w5aErtUe0.crl (hash: EQy7Lk/cTdSg5qOyWE6ZQXMjDeSWUWFtqNKy4XhK334=) 2: DBC08AD4457911E9BA84DA51C4F9AE02.roa (hash: 2WzkstGBbGRj/Y7Ml4qowog4ksR3on7JJQYm4a6p25I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.crl rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DLgYUkj9KWCM463Y2w5aErtUe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:47:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4278 (0x10b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913559B, serialNumber=D032E0614923F4A582338EB7636C39684AED51ED Validity Not Before: Oct 20 17:47:31 2025 GMT Not After : Oct 27 17:47:31 2025 GMT Subject: CN=68f675b4-9822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f2:05:f2:8a:cd:d8:76:eb:d9:77:de:1b:93: 2d:95:d2:6b:55:51:31:ce:e7:d7:c7:d1:3e:44:8e: 50:6d:94:70:a3:58:ab:0e:b7:b8:c3:2e:49:a4:f0: 6b:9d:50:96:5b:d0:9c:02:c8:2d:fe:ea:5c:ea:9c: a8:7a:c9:c9:9d:46:ad:3c:07:ff:3c:b5:2a:40:14: ed:5f:86:17:c9:68:27:f4:e4:a4:ab:b3:6f:a9:23: 86:1f:46:5b:59:96:c0:11:c5:3e:4b:65:a1:c7:83: 47:dc:22:5c:3d:bf:52:e5:02:2e:46:40:53:2c:cc: 12:70:bd:53:91:cf:88:ed:00:6c:3c:f0:d6:d0:09: 88:3e:74:4c:90:7a:aa:2e:e2:12:55:89:a7:95:83: a4:5b:b0:81:ea:03:20:94:12:84:8d:16:84:0c:00: a6:0d:56:95:9c:62:ec:31:d2:f1:2f:b0:14:b9:52: 53:ba:f4:36:c3:9a:40:5b:28:08:ed:c9:9b:b4:26: 6e:5c:3e:a4:52:06:9b:d1:13:9f:7d:a6:e3:bf:3d: bb:82:31:76:99:ff:dd:d2:88:cc:88:bb:be:99:3c: d7:cb:c2:48:81:a4:6f:ea:7c:f2:18:16:df:b9:ae: bb:46:fc:ca:91:6e:76:95:9c:c7:37:1c:5e:4d:fc: 88:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:0A:0A:B3:BF:7F:4B:C0:46:1F:0C:90:FC:A6:92:80:9D:F4:08:A5 X509v3 Authority Key Identifier: keyid:D0:32:E0:61:49:23:F4:A5:82:33:8E:B7:63:6C:39:68:4A:ED:51:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DLgYUkj9KWCM463Y2w5aErtUe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:4b:fb:32:cc:dd:c8:66:5c:6b:85:12:20:ab:d3:9a:79:f7: 5c:47:fb:e6:2b:f0:b8:96:a5:b4:f4:77:08:07:9b:f0:0b:7b: 17:4d:95:69:94:2e:a6:f4:a1:e2:3d:d3:c3:60:d4:7b:2c:a8: 52:0a:49:67:8c:bb:fc:74:ef:7b:0c:76:58:f2:b7:af:cf:a8: 56:42:92:1e:d6:b6:71:60:95:ac:e3:66:13:e6:8c:79:54:bb: 41:98:3d:6f:5e:4b:44:5a:ec:2d:a0:c2:4d:da:7e:dd:24:ad: 36:6c:3a:5a:f6:cf:20:3e:40:06:b8:55:ec:8c:de:b4:c7:2b: ad:65:67:b3:e8:2c:a7:07:1f:fe:c0:ab:70:bb:f0:88:d1:a1: b2:e3:fc:ac:8e:05:97:85:31:d5:01:7d:a4:8e:50:05:1e:bc: cc:e0:98:8c:63:af:0c:66:27:1b:10:9c:69:b3:1d:9c:8c:ea: 7b:96:06:ee:9f:9d:7b:30:1d:18:b3:53:e2:83:d3:25:20:33: b5:0c:0e:19:f6:14:c7:eb:62:c0:3d:14:72:7e:6d:59:89:9e: 8e:18:86:df:41:f7:cc:07:8a:95:05:43:6b:e4:6d:1b:e4:8d: b3:d7:2c:b2:90:b3:55:86:d1:9f:11:22:14:ba:ee:aa:ac:54: f9:f5:ed:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICELYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU1OUIxMTAvBgNVBAUTKEQwMzJFMDYxNDkyM0Y0QTU4MjMzOEVCNzYzNkMzOTY4 NEFFRDUxRUQwHhcNMjUxMDIwMTc0NzMxWhcNMjUxMDI3MTc0NzMxWjAYMRYwFAYD VQQDEw02OGY2NzViNC05ODIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvIF8orN2Hbr2XfeG5MtldJrVVExzufXx9E+RI5QbZRwo1irDre4wy5JpPBr nVCWW9CcAsgt/upc6pyoesnJnUatPAf/PLUqQBTtX4YXyWgn9OSkq7NvqSOGH0Zb WZbAEcU+S2Whx4NH3CJcPb9S5QIuRkBTLMwScL1Tkc+I7QBsPPDW0AmIPnRMkHqq LuISVYmnlYOkW7CB6gMglBKEjRaEDACmDVaVnGLsMdLxL7AUuVJTuvQ2w5pAWygI 7cmbtCZuXD6kUgab0ROffabjvz27gjF2mf/d0ojMiLu+mTzXy8JIgaRv6nzyGBbf ua67RvzKkW52lZzHNxxeTfyI5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA0KCrO/ f0vARh8MkPymkoCd9AilMB8GA1UdIwQYMBaAFNAy4GFJI/SlgjOOt2NsOWhK7VHt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTU5Qi82QzFBMEVGQTM2 N0MxMUU5QjI3OEY5M0JDNEY5QUUwMi8wRExnWVVrajlLV0NNNDYzWTJ3NWFFcnRV ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBETGdZVWtqOUtXQ000NjNZMnc1YUVydFVlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTU5Qi82QzFBMEVGQTM2N0MxMUU5QjI3OEY5M0JDNEY5QUUwMi8wRExnWVVrajlL V0NNNDYzWTJ3NWFFcnRVZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLS/syzN3IZlxrhRIgq9OaefdcR/vmK/C4lqW09HcIB5vwC3sXTZVp lC6m9KHiPdPDYNR7LKhSCklnjLv8dO97DHZY8revz6hWQpIe1rZxYJWs42YT5ox5 VLtBmD1vXktEWuwtoMJN2n7dJK02bDpa9s8gPkAGuFXsjN60xyutZWez6CynBx/+ wKtwu/CI0aGy4/ysjgWXhTHVAX2kjlAFHrzM4JiMY68MZicbEJxpsx2cjOp7lgbu n517MB0Ys1Pig9MlIDO1DA4Z9hTH62LAPRRyfm1ZiZ6OGIbfQffMB4qVBUNr5G0b 5I2z1yyykLNVhtGfESIUuu6qrFT59e0r -----END CERTIFICATE-----Generated at Tue Oct 21 05:02:12 2025 by rpki-client