$ rpki-client -vvf rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft File: pBhnIpZRYlTNTMrUSSUeGdG26V0.mft (raw, json) Hash identifier: CEFqj0blemztETt5BCwDee6AckeJRxnLylQBUd9Af90= Subject key identifier: 9E:0E:E9:73:BB:7A:4A:2E:9E:ED:B0:61:E3:72:38:DB:70:4E:6C:B9 Authority key identifier: A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D Certificate issuer: /CN=A913FE3D/serialNumber=A418672296516254CD4CCAD449251E19D1B6E95D Certificate serial: 05B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft Manifest number: 05AD Signing time: Sun 19 Oct 2025 00:48:47 +0000 Manifest this update: Sun 19 Oct 2025 00:48:47 +0000 Manifest next update: Sun 26 Oct 2025 00:48:47 +0000 Files and hashes: 1: pBhnIpZRYlTNTMrUSSUeGdG26V0.crl (hash: z/cDeEsPdw9YV9qiCe5jSvX815F6hh6ONlHzsGDGTos=) 2: 679A6FA4E53A11EB8197AD70C4F9AE02.roa (hash: cpEsjV03pQHsVjR1FwtppeHQdTtgrIUVyZ08K7ajurs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.crl rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:48:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1458 (0x5b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FE3D, serialNumber=A418672296516254CD4CCAD449251E19D1B6E95D Validity Not Before: Oct 19 00:48:47 2025 GMT Not After : Oct 26 00:48:47 2025 GMT Subject: CN=68f4356f-e35b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:88:35:e9:c2:f8:f5:a0:02:5d:c0:4d:b0:22: a8:58:ed:69:5e:61:5f:6d:1e:02:ec:cf:10:32:80: 93:28:3d:de:75:4e:3e:a8:38:e3:7d:0f:07:60:ed: 99:6c:d5:56:6a:7a:c5:31:21:1c:7f:b3:d5:2b:68: f7:60:0b:7c:a3:07:c3:9d:e7:44:2f:98:10:bb:45: 01:32:80:0e:6c:05:d1:45:8b:67:a3:d2:5e:1f:5c: d9:90:08:3a:4e:f8:21:41:90:4d:b8:53:b8:c9:a6: 86:5f:c5:d4:c0:79:0f:87:33:f7:0a:0a:16:ff:61: 52:1d:6a:59:ef:35:2a:ea:ea:cb:23:e9:49:0d:8f: da:4b:71:a8:f7:7d:13:64:85:85:e9:74:76:7f:25: 95:79:9b:1a:5c:01:0b:df:c3:88:26:ee:18:71:2f: 16:c0:4d:a6:19:44:de:eb:7a:c4:bb:ec:19:ac:36: 5f:ea:cc:cf:1f:93:6a:da:74:5a:fa:ee:11:92:80: d7:c6:95:31:7a:74:c0:f8:85:c0:02:2b:e9:fe:8e: 4b:a8:1c:1a:dd:f9:d0:40:fd:1e:d4:ea:07:ff:f4: fe:f4:98:65:fa:bc:8c:29:f9:c7:70:e8:5d:cb:b3: f6:f6:22:31:5f:6b:a9:2a:b9:ed:71:e2:93:9e:0b: 43:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:0E:E9:73:BB:7A:4A:2E:9E:ED:B0:61:E3:72:38:DB:70:4E:6C:B9 X509v3 Authority Key Identifier: keyid:A4:18:67:22:96:51:62:54:CD:4C:CA:D4:49:25:1E:19:D1:B6:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pBhnIpZRYlTNTMrUSSUeGdG26V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FE3D/81E654BCE53611EBB980326AC4F9AE02/pBhnIpZRYlTNTMrUSSUeGdG26V0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:69:41:bf:6e:6f:09:75:ff:36:ac:bd:23:aa:3c:9c:4e:14: f8:26:6e:f8:cf:a5:15:ee:c3:e2:18:5d:dc:c6:60:f2:cc:1f: ac:0f:56:46:8d:f0:22:ce:3f:b0:de:46:d8:51:b7:1e:3b:58: 99:55:c6:36:b9:bf:46:c9:99:92:cd:76:34:41:9a:10:c2:44: 98:91:4c:08:fc:41:6d:3b:35:76:28:ba:86:8c:53:88:b4:d0: 28:ac:38:bf:bd:57:3b:55:1b:ee:c0:2a:63:a7:cd:66:9a:d6: e3:34:59:95:73:2f:fc:64:10:b9:42:27:31:ab:9c:13:e7:42: b5:f6:1f:31:95:08:d6:64:e3:49:9a:da:53:a0:79:48:d9:8f: d7:62:a5:48:e9:c4:d8:62:e6:5e:31:e6:e6:66:80:23:74:68: 74:9c:0c:7d:e2:05:ad:f7:80:58:e7:5d:65:9c:b7:cc:5c:85: e4:a9:f9:5d:68:25:aa:ce:34:49:3e:23:fa:39:32:b6:88:8a: 9d:23:44:d5:98:a8:c8:02:41:fe:a8:ee:d6:08:48:3e:b8:b1: 9d:25:89:6a:16:9d:5f:07:45:57:fa:ef:f0:54:0a:01:79:5a: 0a:eb:cf:b1:b7:19:64:4f:ce:55:03:c3:e4:79:2f:96:f7:0b: 9a:4f:b6:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZFM0QxMTAvBgNVBAUTKEE0MTg2NzIyOTY1MTYyNTRDRDRDQ0FENDQ5MjUxRTE5 RDFCNkU5NUQwHhcNMjUxMDE5MDA0ODQ3WhcNMjUxMDI2MDA0ODQ3WjAYMRYwFAYD VQQDEw02OGY0MzU2Zi1lMzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Ig16cL49aACXcBNsCKoWO1pXmFfbR4C7M8QMoCTKD3edU4+qDjjfQ8HYO2Z bNVWanrFMSEcf7PVK2j3YAt8owfDnedEL5gQu0UBMoAObAXRRYtno9JeH1zZkAg6 TvghQZBNuFO4yaaGX8XUwHkPhzP3CgoW/2FSHWpZ7zUq6urLI+lJDY/aS3Go930T ZIWF6XR2fyWVeZsaXAEL38OIJu4YcS8WwE2mGUTe63rEu+wZrDZf6szPH5Nq2nRa +u4RkoDXxpUxenTA+IXAAivp/o5LqBwa3fnQQP0e1OoH//T+9Jhl+ryMKfnHcOhd y7P29iIxX2upKrntceKTngtDlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4O6XO7 ekounu2wYeNyONtwTmy5MB8GA1UdIwQYMBaAFKQYZyKWUWJUzUzK1EklHhnRtuld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkUzRC84MUU2NTRCQ0U1 MzYxMUVCQjk4MDMyNkFDNEY5QUUwMi9wQmhuSXBaUllsVE5UTXJVU1NVZUdkRzI2 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BCaG5JcFpSWWxUTlRNclVTU1VlR2RHMjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RkUzRC84MUU2NTRCQ0U1MzYxMUVCQjk4MDMyNkFDNEY5QUUwMi9wQmhuSXBaUlls VE5UTXJVU1NVZUdkRzI2VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPaUG/bm8Jdf82rL0jqjycThT4Jm74z6UV7sPiGF3cxmDyzB+sD1ZG jfAizj+w3kbYUbceO1iZVcY2ub9GyZmSzXY0QZoQwkSYkUwI/EFtOzV2KLqGjFOI tNAorDi/vVc7VRvuwCpjp81mmtbjNFmVcy/8ZBC5Qicxq5wT50K19h8xlQjWZONJ mtpToHlI2Y/XYqVI6cTYYuZeMebmZoAjdGh0nAx94gWt94BY511lnLfMXIXkqfld aCWqzjRJPiP6OTK2iIqdI0TVmKjIAkH+qO7WCEg+uLGdJYlqFp1fB0VX+u/wVAoB eVoK68+xtxlkT85VA8PkeS+W9wuaT7Za -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:53 2025 by rpki-client