$ rpki-client -vvf rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft File: D96C0nlIVMmvzdhe-37-ScR9Lu4.mft (raw, json) Hash identifier: cNTPqSsrHbnpkO/fXS1kKhN1hN4jYBByT0rfVMnLv74= Subject key identifier: 09:BB:2E:C4:B6:12:30:76:06:F5:CB:C3:65:0E:24:19:9C:85:2B:31 Authority key identifier: 0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE Certificate issuer: /CN=A914C33A/serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Certificate serial: 0D2F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft Manifest number: 0D23 Signing time: Sat 18 Oct 2025 15:46:21 +0000 Manifest this update: Sat 18 Oct 2025 15:46:20 +0000 Manifest next update: Sat 25 Oct 2025 15:46:20 +0000 Files and hashes: 1: D96C0nlIVMmvzdhe-37-ScR9Lu4.crl (hash: zi4lMXkdA6QgPbUri3J6En9Wm7fQBL1Vs6QhKOrYj3c=) 2: 0DF331C28F9411EAA5E7B573C4F9AE02.roa (hash: 9uu0uxHIlYAtI54QHWC2LYrc4wDsOXjbCKyh/vuM2qk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:46:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3375 (0xd2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C33A, serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Validity Not Before: Oct 18 15:46:20 2025 GMT Not After : Oct 25 15:46:20 2025 GMT Subject: CN=68f3b64d-7a54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:12:b3:a6:eb:d4:34:91:e8:59:1b:bf:6b:f4: 8a:e6:13:b7:0c:1e:d7:7e:33:0c:ea:ad:7b:4d:a0: 85:c0:d3:99:58:97:c8:dd:b1:23:2c:f5:2b:79:03: 24:5d:f8:22:89:7a:30:ed:a4:88:64:db:92:ed:0b: 19:fa:31:be:33:e7:f5:5b:67:af:4e:57:ef:6e:c9: 6b:00:e9:65:c4:31:d2:90:73:56:ae:72:95:df:fc: 04:79:b7:b7:f8:e6:de:f3:22:a7:69:cf:92:9e:64: 9a:f4:84:62:40:95:1a:be:e7:3c:6d:55:48:09:c4: ee:7d:28:31:c3:18:2d:a9:4a:8c:c4:21:da:a0:bd: 7e:5a:b7:8b:79:6c:1d:8a:1c:40:d0:2b:01:db:ba: 28:80:74:3f:26:7d:b2:be:d3:3f:1d:42:57:a2:87: ac:83:22:b9:33:0d:f5:4c:7c:a5:32:d1:e2:5f:de: ac:fa:83:d8:d3:d6:0b:7b:6a:e4:a1:57:ca:ee:b2: 62:24:8f:74:b9:7e:df:0b:52:82:bd:2f:b9:4d:fb: 18:77:71:06:72:b9:fc:83:61:81:fe:3e:89:26:92: 9c:73:48:2c:b2:1c:f0:76:41:1e:71:92:68:00:ab: 9c:0e:23:d4:cc:b4:34:c7:a2:37:59:5c:eb:ab:c2: a1:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:BB:2E:C4:B6:12:30:76:06:F5:CB:C3:65:0E:24:19:9C:85:2B:31 X509v3 Authority Key Identifier: keyid:0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:da:9a:47:82:82:a0:58:06:16:40:70:9b:c6:e6:34:67:14: c1:9d:19:9a:0c:d2:ad:81:2e:cb:ff:e0:ff:93:3f:59:5e:07: 0d:95:cd:18:94:95:17:fc:71:d3:98:ad:5a:ea:cb:f6:dd:c8: b4:2a:1a:02:74:a2:24:4c:dc:9b:fc:9d:b4:56:a8:bc:f1:50: c6:aa:ce:05:6a:f5:63:a3:65:b5:3e:9a:f6:43:1c:d2:f4:99: 32:d6:46:4b:bd:9b:3e:35:55:5d:9e:36:a6:b3:10:0e:01:20: b6:f9:4a:d8:69:36:3f:84:9e:ef:36:7d:39:6c:f0:e9:64:e7: 8a:b5:ec:85:0a:c0:46:60:26:63:ad:9e:18:dd:27:fd:99:d3: 11:8d:84:27:f3:73:e0:b5:57:69:88:4e:46:97:63:b0:9b:72: db:44:b4:9b:73:90:76:3e:0c:ac:9f:7e:4c:33:37:17:bd:0e: 79:45:21:19:e7:47:d3:ec:54:79:19:60:e4:52:5f:17:e5:b0: be:d0:89:d2:4f:1a:60:2b:ae:ec:2d:4e:00:23:ce:9c:b0:52: 0e:f2:b4:de:de:77:a4:57:5e:ad:b2:5b:95:fd:3c:03:c9:3a: 69:9c:02:2c:0f:e0:ae:06:56:65:d6:2f:d1:8b:ef:d0:ed:ba: 60:cc:99:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMzM0ExMTAvBgNVBAUTKDBGREU4MkQyNzk0ODU0QzlBRkNERDg1RUZCN0VGRTQ5 QzQ3RDJFRUUwHhcNMjUxMDE4MTU0NjIwWhcNMjUxMDI1MTU0NjIwWjAYMRYwFAYD VQQDEw02OGYzYjY0ZC03YTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxKzpuvUNJHoWRu/a/SK5hO3DB7XfjMM6q17TaCFwNOZWJfI3bEjLPUreQMk XfgiiXow7aSIZNuS7QsZ+jG+M+f1W2evTlfvbslrAOllxDHSkHNWrnKV3/wEebe3 +Obe8yKnac+SnmSa9IRiQJUavuc8bVVICcTufSgxwxgtqUqMxCHaoL1+WreLeWwd ihxA0CsB27oogHQ/Jn2yvtM/HUJXooesgyK5Mw31THylMtHiX96s+oPY09YLe2rk oVfK7rJiJI90uX7fC1KCvS+5TfsYd3EGcrn8g2GB/j6JJpKcc0gsshzwdkEecZJo AKucDiPUzLQ0x6I3WVzrq8KhPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAm7LsS2 EjB2BvXLw2UOJBmchSsxMB8GA1UdIwQYMBaAFA/egtJ5SFTJr83YXvt+/knEfS7u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzMzQS84RjQ3QTlGQUU5 N0QxMUU5QTlEQjVFNTJDNEY5QUUwMi9EOTZDMG5sSVZNbXZ6ZGhlLTM3LVNjUjlM dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0Q5NkMwbmxJVk1tdnpkaGUtMzctU2NSOUx1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzMzQS84RjQ3QTlGQUU5N0QxMUU5QTlEQjVFNTJDNEY5QUUwMi9EOTZDMG5sSVZN bXZ6ZGhlLTM3LVNjUjlMdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH2ppHgoKgWAYWQHCbxuY0ZxTBnRmaDNKtgS7L/+D/kz9ZXgcNlc0Y lJUX/HHTmK1a6sv23ci0KhoCdKIkTNyb/J20Vqi88VDGqs4FavVjo2W1Ppr2QxzS 9Jky1kZLvZs+NVVdnjamsxAOASC2+UrYaTY/hJ7vNn05bPDpZOeKteyFCsBGYCZj rZ4Y3Sf9mdMRjYQn83PgtVdpiE5Gl2Owm3LbRLSbc5B2Pgysn35MMzcXvQ55RSEZ 50fT7FR5GWDkUl8X5bC+0InSTxpgK67sLU4AI86csFIO8rTe3nekV16tsluV/TwD yTppnAIsD+CuBlZl1i/Ri+/Q7bpgzJmM -----END CERTIFICATE-----Generated at Mon Oct 20 17:01:22 2025 by rpki-client