$ rpki-client -vvf rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.mft File: d31UDhYfpnH7JFijP_5L8z1qcBU.mft (raw, json) Hash identifier: yKNK6IGHk9r2FHdHLnxMwVrec7RMV8TQuQ/OqGsf/sE= Subject key identifier: 95:18:CA:7F:9B:DA:AC:13:2B:00:36:48:36:FF:F5:24:63:9F:F6:55 Authority key identifier: 77:7D:54:0E:16:1F:A6:71:FB:24:58:A3:3F:FE:4B:F3:3D:6A:70:15 Certificate issuer: /CN=A913BA27/serialNumber=777D540E161FA671FB2458A33FFE4BF33D6A7015 Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d31UDhYfpnH7JFijP_5L8z1qcBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.mft Manifest number: 48 Signing time: Sun 19 Oct 2025 10:49:58 +0000 Manifest this update: Sun 19 Oct 2025 10:49:57 +0000 Manifest next update: Sun 26 Oct 2025 10:49:57 +0000 Files and hashes: 1: d31UDhYfpnH7JFijP_5L8z1qcBU.crl (hash: KDqY3YSPxWvXlpqCZXiWBv0nJpLnWD0MXmMh5jFDY+8=) 2: 71B7688645AB11F0949A471EC4F9AE02.roa (hash: OOybTQy1tXbxj/OFzkMaOGN0e7LlqdktJQlDDwMZpUE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.crl rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d31UDhYfpnH7JFijP_5L8z1qcBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:49:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BA27, serialNumber=777D540E161FA671FB2458A33FFE4BF33D6A7015 Validity Not Before: Oct 19 10:49:57 2025 GMT Not After : Oct 26 10:49:57 2025 GMT Subject: CN=68f4c256-5ac9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:56:9f:23:30:75:6c:f6:8f:21:b0:c8:79:67: 28:1a:b1:92:ea:e8:da:40:db:8c:3b:36:9f:ea:18: 8d:fd:17:c2:bb:6a:46:da:4f:a9:66:7b:03:57:bd: f9:8a:af:54:d9:95:57:3a:3d:a5:2f:79:d2:b1:dd: eb:e0:e4:b0:3a:7e:f6:5a:cd:2c:c8:97:32:90:09: ba:27:d0:cf:b8:86:42:41:c4:c9:75:11:90:ee:29: 58:d3:36:65:67:87:9b:63:d6:2a:03:d5:c5:e2:34: 58:2e:b6:cf:4c:f6:2c:3a:4a:f9:d1:5e:47:32:a3: f7:40:54:27:73:bc:5a:60:b5:ff:fd:43:e8:33:28: c4:d7:df:ef:81:0d:38:5c:03:00:cb:d9:b5:76:64: 96:2d:bc:1d:74:43:0a:57:0a:96:ee:0a:d8:14:d3: 57:8a:d7:59:36:1c:37:c9:1b:7b:c2:e1:ec:49:e7: a7:08:95:b4:c4:51:52:a1:f4:10:8e:86:53:e8:96: 9c:41:0f:5c:92:65:5e:16:5c:f6:fe:94:db:51:bc: 3e:41:2a:df:8e:56:b2:55:68:1c:c9:cb:5a:90:2e: 2d:ce:d2:a8:72:c8:2c:66:cb:3f:05:d3:0c:51:72: 52:0b:47:0a:be:f1:69:2c:db:6c:f2:44:e5:ed:56: f4:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:18:CA:7F:9B:DA:AC:13:2B:00:36:48:36:FF:F5:24:63:9F:F6:55 X509v3 Authority Key Identifier: keyid:77:7D:54:0E:16:1F:A6:71:FB:24:58:A3:3F:FE:4B:F3:3D:6A:70:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d31UDhYfpnH7JFijP_5L8z1qcBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:07:38:1d:e7:be:91:44:55:77:43:98:a5:9f:be:02:81:6c: b0:56:20:6c:bb:e4:34:ca:ce:8a:49:3c:ae:06:59:7a:01:99: a4:0f:4a:59:e0:50:69:37:07:92:74:e7:a3:d6:16:5e:b4:b3: 27:2c:5b:92:6d:30:a4:92:67:5e:29:05:07:a6:7f:43:eb:51: f4:9c:77:25:a1:f1:39:54:5b:84:22:a1:3b:83:ad:cd:35:0c: e0:97:8a:c5:56:0a:11:63:5a:ef:a7:57:4a:2f:8d:23:63:da: e5:44:6a:c6:d6:ae:c9:c5:3d:1f:c6:bb:f9:d9:84:89:7b:14: ef:11:31:61:cd:31:78:ff:85:40:5f:7b:9d:df:e5:ef:a8:19: cb:54:2b:81:4a:f3:bc:96:a9:6a:76:b8:66:14:25:e1:05:23: 33:68:c0:5a:cd:86:60:8d:e3:d6:db:4b:44:a5:d6:75:0a:90: 99:12:38:a5:76:f6:fd:33:ab:d4:06:0d:05:f1:da:1d:e8:7d: a7:11:d8:7f:05:d1:f2:53:03:b8:d8:51:b4:b5:eb:a3:8a:46: 5b:12:d4:12:fc:19:13:d1:11:0d:9f:91:2b:83:67:cb:30:d7: 9c:ce:c0:46:f8:93:75:fa:7b:fc:c7:39:65:6d:ed:9c:61:10: 0b:e9:bf:50 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QkEyNzExMC8GA1UEBRMoNzc3RDU0MEUxNjFGQTY3MUZCMjQ1OEEzM0ZGRTRCRjMz RDZBNzAxNTAeFw0yNTEwMTkxMDQ5NTdaFw0yNTEwMjYxMDQ5NTdaMBgxFjAUBgNV BAMTDTY4ZjRjMjU2LTVhYzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZVp8jMHVs9o8hsMh5ZygasZLq6NpA24w7Np/qGI39F8K7akbaT6lmewNXvfmK r1TZlVc6PaUvedKx3evg5LA6fvZazSzIlzKQCbon0M+4hkJBxMl1EZDuKVjTNmVn h5tj1ioD1cXiNFguts9M9iw6SvnRXkcyo/dAVCdzvFpgtf/9Q+gzKMTX3++BDThc AwDL2bV2ZJYtvB10QwpXCpbuCtgU01eK11k2HDfJG3vC4exJ56cIlbTEUVKh9BCO hlPolpxBD1ySZV4WXPb+lNtRvD5BKt+OVrJVaBzJy1qQLi3O0qhyyCxmyz8F0wxR clILRwq+8Wks22zyROXtVvT1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlRjKf5va rBMrADZINv/1JGOf9lUwHwYDVR0jBBgwFoAUd31UDhYfpnH7JFijP/5L8z1qcBUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCQTI3L0VBNEU2NjlDNDU4 QzExRjBCMkJFQjY0REM0RjlBRTAyL2QzMVVEaFlmcG5IN0pGaWpQXzVMOHoxcWNC VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZDMxVURoWWZwbkg3SkZpalBfNUw4ejFxY0JVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNC QTI3L0VBNEU2NjlDNDU4QzExRjBCMkJFQjY0REM0RjlBRTAyL2QzMVVEaFlmcG5I N0pGaWpQXzVMOHoxcWNCVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHkHOB3nvpFEVXdDmKWfvgKBbLBWIGy75DTKzopJPK4GWXoBmaQPSlng UGk3B5J056PWFl60sycsW5JtMKSSZ14pBQemf0PrUfScdyWh8TlUW4QioTuDrc01 DOCXisVWChFjWu+nV0ovjSNj2uVEasbWrsnFPR/Gu/nZhIl7FO8RMWHNMXj/hUBf e53f5e+oGctUK4FK87yWqWp2uGYUJeEFIzNowFrNhmCN49bbS0Sl1nUKkJkSOKV2 9v0zq9QGDQXx2h3ofacR2H8F0fJTA7jYUbS166OKRlsS1BL8GRPREQ2fkSuDZ8sw 15zOwEb4k3X6e/zHOWVt7ZxhEAvpv1A= -----END CERTIFICATE-----Generated at Mon Oct 20 19:47:57 2025 by rpki-client