$ rpki-client -vvf rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.mft File: _ksuVPGAyAmvHsmemnx-JzLZ3aY.mft (raw, json) Hash identifier: tgOmV8BgwYuTEWKr5qAoUcAaRgpWPSFjc73CtLs95pQ= Subject key identifier: EB:78:22:BF:6D:35:14:1B:B3:45:27:89:60:25:06:85:7C:3F:93:C5 Authority key identifier: FE:4B:2E:54:F1:80:C8:09:AF:1E:C9:9E:9A:7C:7E:27:32:D9:DD:A6 Certificate issuer: /CN=A914BE96/serialNumber=FE4B2E54F180C809AF1EC99E9A7C7E2732D9DDA6 Certificate serial: 1020 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ksuVPGAyAmvHsmemnx-JzLZ3aY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.mft Manifest number: 1011 Signing time: Sat 18 Oct 2025 18:02:18 +0000 Manifest this update: Sat 18 Oct 2025 18:02:17 +0000 Manifest next update: Sat 25 Oct 2025 18:02:17 +0000 Files and hashes: 1: _ksuVPGAyAmvHsmemnx-JzLZ3aY.crl (hash: 5o4a+mjyaBiP19lIyMIGcFPOYf2Gm2vcIMjss3juqzQ=) 2: 8F75257455E911E9AE112D6CC4F9AE02.roa (hash: thEUPRHmxogbvRJ6Y3FkP32LyqLTW2o8NNUuKxB2tbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.crl rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ksuVPGAyAmvHsmemnx-JzLZ3aY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4128 (0x1020) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BE96, serialNumber=FE4B2E54F180C809AF1EC99E9A7C7E2732D9DDA6 Validity Not Before: Oct 18 18:02:17 2025 GMT Not After : Oct 25 18:02:17 2025 GMT Subject: CN=68f3d62a-3913 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ae:03:3d:bd:a3:00:7a:92:06:06:fa:b8:fd: 0d:e6:fb:ac:19:7d:5f:3f:51:6a:09:4b:ae:63:6d: 47:a5:b1:75:ff:b6:c9:db:80:bd:4b:f9:e1:68:da: 85:f3:7e:5c:23:ec:29:b4:ea:66:df:e7:dc:ac:21: 4e:33:7b:0e:96:5d:4f:2a:6e:d9:0a:73:87:59:e9: 1a:68:38:e8:49:ef:88:e0:09:46:03:74:bc:3b:3d: 6f:bc:04:e1:50:e4:b4:64:8d:ec:77:14:cd:18:28: 0a:10:36:02:25:8f:5f:19:38:a7:59:97:4c:a8:18: 60:d3:66:80:e2:b9:00:88:9f:e5:c1:94:dd:6a:b1: ab:58:4c:0f:20:18:bb:5e:0d:c3:46:ce:0a:65:89: 75:62:e3:de:0c:14:d6:13:6d:ef:49:9c:83:df:f0: 7d:96:b6:8b:c0:f9:23:80:51:9a:91:93:ff:1e:db: c0:00:bf:4a:fc:92:7b:67:1e:eb:0d:30:16:7d:3d: 51:6b:f7:74:cc:60:50:13:79:98:9a:82:1d:0e:ae: 3d:5a:93:65:57:f5:6d:f3:11:b9:46:10:98:3a:f0: 84:f9:f5:28:a7:f0:72:6d:04:0b:79:de:04:08:77: 14:25:29:6c:c8:91:5d:91:75:03:fa:31:9f:7e:5e: 91:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:78:22:BF:6D:35:14:1B:B3:45:27:89:60:25:06:85:7C:3F:93:C5 X509v3 Authority Key Identifier: keyid:FE:4B:2E:54:F1:80:C8:09:AF:1E:C9:9E:9A:7C:7E:27:32:D9:DD:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ksuVPGAyAmvHsmemnx-JzLZ3aY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:99:fa:09:c5:e2:50:d2:48:0f:05:e6:9b:a6:7d:67:00:f9: f5:e6:4e:e8:b7:5e:3f:78:ff:b5:49:d5:55:cc:ad:d2:30:2a: 39:8f:be:35:d1:fb:da:8c:06:d6:fe:1d:79:8c:f4:42:4b:45: a6:48:f3:8c:a7:d8:e2:9e:ae:66:fc:fa:42:15:64:48:f0:34: e1:e6:7c:7e:c3:1c:76:c0:72:fd:7c:fc:d0:5e:53:e1:04:32: 88:af:9b:69:c2:c1:08:ee:93:15:7c:f2:00:ce:e5:0e:e8:be: 63:f5:12:aa:66:81:ef:29:51:05:7b:5e:e4:4b:09:46:54:7a: 14:e8:b7:15:82:df:11:23:61:2e:91:85:d7:ba:90:e8:62:5e: cc:38:9c:b0:ad:d1:3e:5d:7c:3c:83:11:be:4a:91:86:08:a6: 8d:04:38:ab:76:d2:83:d3:8f:97:5b:db:54:8f:99:63:22:bf: ce:7a:9a:50:7f:7e:ba:aa:7d:f6:9d:34:14:98:30:77:b0:9b: 20:07:b8:6d:77:62:ee:81:a6:28:0f:1a:7e:f0:b2:ea:c7:6f: ce:20:0e:27:fe:8b:79:95:7b:df:a0:59:bf:37:06:c2:9c:17: 87:50:3e:84:ca:48:74:bc:19:a3:20:d8:0b:ba:fc:db:37:ed: 5b:12:e0:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICECAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJFOTYxMTAvBgNVBAUTKEZFNEIyRTU0RjE4MEM4MDlBRjFFQzk5RTlBN0M3RTI3 MzJEOUREQTYwHhcNMjUxMDE4MTgwMjE3WhcNMjUxMDI1MTgwMjE3WjAYMRYwFAYD VQQDEw02OGYzZDYyYS0zOTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoa4DPb2jAHqSBgb6uP0N5vusGX1fP1FqCUuuY21HpbF1/7bJ24C9S/nhaNqF 835cI+wptOpm3+fcrCFOM3sOll1PKm7ZCnOHWekaaDjoSe+I4AlGA3S8Oz1vvATh UOS0ZI3sdxTNGCgKEDYCJY9fGTinWZdMqBhg02aA4rkAiJ/lwZTdarGrWEwPIBi7 Xg3DRs4KZYl1YuPeDBTWE23vSZyD3/B9lraLwPkjgFGakZP/HtvAAL9K/JJ7Zx7r DTAWfT1Ra/d0zGBQE3mYmoIdDq49WpNlV/Vt8xG5RhCYOvCE+fUop/BybQQLed4E CHcUJSlsyJFdkXUD+jGffl6RDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOt4Ir9t NRQbs0UniWAlBoV8P5PFMB8GA1UdIwQYMBaAFP5LLlTxgMgJrx7Jnpp8ficy2d2m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkU5Ni9FREE2NUFDNDU1 RTgxMUU5QjMwNTM3NkJDNEY5QUUwMi9fa3N1VlBHQXlBbXZIc21lbW54LUp6TFoz YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19rc3VWUEdBeUFtdkhzbWVtbngtSnpMWjNhWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkU5Ni9FREE2NUFDNDU1RTgxMUU5QjMwNTM3NkJDNEY5QUUwMi9fa3N1VlBHQXlB bXZIc21lbW54LUp6TFozYVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAemfoJxeJQ0kgPBeabpn1nAPn15k7ot14/eP+1SdVVzK3SMCo5j741 0fvajAbW/h15jPRCS0WmSPOMp9jinq5m/PpCFWRI8DTh5nx+wxx2wHL9fPzQXlPh BDKIr5tpwsEI7pMVfPIAzuUO6L5j9RKqZoHvKVEFe17kSwlGVHoU6LcVgt8RI2Eu kYXXupDoYl7MOJywrdE+XXw8gxG+SpGGCKaNBDirdtKD04+XW9tUj5ljIr/OeppQ f366qn32nTQUmDB3sJsgB7htd2LugaYoDxp+8LLqx2/OIA4n/ot5lXvfoFm/NwbC nBeHUD6Eykh0vBmjINgLuvzbN+1bEuDs -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:35 2025 by rpki-client