$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft File: ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft (raw, json) Hash identifier: rmsdGMjRaTQQ363q5wzjnmimQaak0xsXpg4yuqDh6Gg= Subject key identifier: 1B:3C:F9:F1:4D:9E:42:7D:F8:9D:25:31:3F:A9:3F:E9:12:8D:C5:F9 Authority key identifier: 72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 Certificate issuer: /CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Certificate serial: 10BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft Manifest number: 10B1 Signing time: Sat 18 Oct 2025 17:53:18 +0000 Manifest this update: Sat 18 Oct 2025 17:53:18 +0000 Manifest next update: Sat 25 Oct 2025 17:53:18 +0000 Files and hashes: 1: ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl (hash: NnVVD1SDDDcQfnMHJQjMgmSVnZFYoqSGmRWtcSpWbr8=) 2: 39C6EF3688BF11EABC04973FC4F9AE02.roa (hash: yd71n8eugD8WrOND6JHlcb+DlT4vihP97eJVROksTM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4283 (0x10bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C91D, serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Validity Not Before: Oct 18 17:53:18 2025 GMT Not After : Oct 25 17:53:18 2025 GMT Subject: CN=68f3d40e-14b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:95:2f:7f:a9:37:22:56:b0:c8:24:a1:9b:86: dc:d1:aa:b6:d6:cc:97:8e:13:e4:ed:ee:17:26:1c: 8e:ac:0a:0b:86:8c:2b:85:74:9a:26:5b:59:a3:b3: e6:26:5f:6c:d4:77:3a:8e:59:fc:ed:76:14:39:01: ef:45:7b:16:49:3f:7e:02:a8:da:a5:c1:bc:d6:c4: 55:05:59:1a:70:eb:ca:3e:76:aa:58:ee:f8:e1:1b: 6c:35:0f:d2:86:9d:2e:2f:80:b7:e3:f9:87:67:80: 69:1f:d1:91:d4:fe:28:63:44:db:b0:98:90:ce:05: 01:7f:e5:27:eb:e2:e3:5e:c4:7a:db:0e:72:ce:51: db:1d:e7:33:a1:01:98:c2:9c:3d:a9:41:da:69:81: 09:a9:74:d9:d0:48:22:75:13:ab:48:17:d7:e1:9b: 8c:8c:01:d1:c9:27:53:aa:87:2d:04:59:e2:c0:3b: e2:91:9e:13:90:79:56:45:fa:86:f7:1a:79:ac:b9: 85:70:58:ee:54:1a:97:0a:c1:41:ec:55:60:a7:3e: bd:bf:ee:7f:76:f6:7b:4e:1d:9b:28:65:ec:c5:da: da:f8:76:1b:41:90:36:50:18:42:57:09:3c:f6:ba: 2f:66:28:bc:c4:97:3d:95:94:c8:34:37:1f:fd:66: da:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:3C:F9:F1:4D:9E:42:7D:F8:9D:25:31:3F:A9:3F:E9:12:8D:C5:F9 X509v3 Authority Key Identifier: keyid:72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:1b:84:ae:61:a3:30:db:1f:b4:74:a0:54:18:35:31:bc:33: c9:de:95:62:4a:90:c0:69:81:6d:dc:6e:1f:80:2e:2a:13:ab: 72:c9:93:71:4a:35:db:97:75:7c:f9:39:0d:13:e2:42:ed:19: 1d:c9:0f:c0:4c:62:80:e6:dd:53:49:9f:4b:ae:d6:9b:5a:04: 70:c6:1e:32:63:5c:d8:7e:ed:0c:f6:ab:7d:1b:31:3f:df:70: 25:f3:22:44:3e:56:c5:5c:a9:eb:88:60:8a:18:88:f7:6b:5e: 7b:e0:80:c4:32:42:3f:e4:b6:ba:70:58:f2:91:34:f5:e8:ba: c5:68:6b:d2:6a:c9:12:4d:88:38:61:04:a2:19:d0:c5:0f:81: 7a:bb:c4:3d:39:d6:8f:00:75:33:2a:b2:59:c8:48:76:27:12: ad:fa:66:7a:27:2c:7f:6f:17:45:a2:fd:46:8a:89:c7:8c:8d: c9:f2:9f:97:d7:8b:44:d8:8b:2f:29:ac:6e:73:40:0c:97:16: 1d:79:54:9f:97:7f:b6:d6:9c:42:91:14:12:de:c1:80:72:8f: 8e:67:9b:fd:dd:4d:42:f0:f6:4e:4d:0e:fa:44:15:2c:35:41: ec:bd:91:dc:d5:15:88:99:a5:b5:a9:bd:79:91:cc:8b:a0:19: 61:18:14:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICELswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MUQxMTAvBgNVBAUTKDcyRDY1QkIzQ0FENEEwOThGMzZGNDEzNzU5NENDN0ZF QzJGQTI4QTMwHhcNMjUxMDE4MTc1MzE4WhcNMjUxMDI1MTc1MzE4WjAYMRYwFAYD VQQDEw02OGYzZDQwZS0xNGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5Uvf6k3IlawyCShm4bc0aq21syXjhPk7e4XJhyOrAoLhowrhXSaJltZo7Pm Jl9s1Hc6jln87XYUOQHvRXsWST9+AqjapcG81sRVBVkacOvKPnaqWO744RtsNQ/S hp0uL4C34/mHZ4BpH9GR1P4oY0TbsJiQzgUBf+Un6+LjXsR62w5yzlHbHeczoQGY wpw9qUHaaYEJqXTZ0EgidROrSBfX4ZuMjAHRySdTqoctBFniwDvikZ4TkHlWRfqG 9xp5rLmFcFjuVBqXCsFB7FVgpz69v+5/dvZ7Th2bKGXsxdra+HYbQZA2UBhCVwk8 9rovZii8xJc9lZTINDcf/WbahwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBs8+fFN nkJ9+J0lMT+pP+kSjcX5MB8GA1UdIwQYMBaAFHLWW7PK1KCY829BN1lMx/7C+iij MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxRC9EOTBDRDg3NDM1 ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9KanpiMEUzV1V6SF9zTDZL S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0WmJzOHJVb0pqemIwRTNXVXpIX3NMNktLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzkxRC9EOTBDRDg3NDM1ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9K anpiMEUzV1V6SF9zTDZLS00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCG4SuYaMw2x+0dKBUGDUxvDPJ3pViSpDAaYFt3G4fgC4qE6tyyZNx SjXbl3V8+TkNE+JC7RkdyQ/ATGKA5t1TSZ9LrtabWgRwxh4yY1zYfu0M9qt9GzE/ 33Al8yJEPlbFXKnriGCKGIj3a1574IDEMkI/5La6cFjykTT16LrFaGvSaskSTYg4 YQSiGdDFD4F6u8Q9OdaPAHUzKrJZyEh2JxKt+mZ6Jyx/bxdFov1GionHjI3J8p+X 14tE2IsvKaxuc0AMlxYdeVSfl3+21pxCkRQS3sGAco+OZ5v93U1C8PZOTQ76RBUs NUHsvZHc1RWImaW1qb15kcyLoBlhGBTq -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:04 2025 by rpki-client