$ rpki-client -vvf rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft File: xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft (raw, json) Hash identifier: S110EXczuqydTZLwJNDAxANiPGKHTN3NMIeJSEG6Bcw= Subject key identifier: CB:63:BA:BB:36:A1:ED:C7:40:90:E3:23:BD:5E:4E:0F:21:83:94:BC Authority key identifier: C6:93:99:B1:32:E1:AE:6B:2E:A3:11:6E:14:B1:00:1C:08:19:DD:A9 Certificate issuer: /CN=A914D05C/serialNumber=C69399B132E1AE6B2EA3116E14B1001C0819DDA9 Certificate serial: 06BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft Manifest number: 06B9 Signing time: Sat 18 Oct 2025 23:35:08 +0000 Manifest this update: Sat 18 Oct 2025 23:35:08 +0000 Manifest next update: Sat 25 Oct 2025 23:35:08 +0000 Files and hashes: 1: xpOZsTLhrmsuoxFuFLEAHAgZ3ak.crl (hash: 2jLtCTjS3S75xwKM+E4kZ7Xj0DMIMiOef2b0xyARNtY=) 2: 546C2E447BD711EB8DB97853C4F9AE02.roa (hash: LymCYpP9ODjDnMZgIvd8/QCM8E6rGc1JYF+pBCdV8o4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.crl rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1726 (0x6be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D05C, serialNumber=C69399B132E1AE6B2EA3116E14B1001C0819DDA9 Validity Not Before: Oct 18 23:35:08 2025 GMT Not After : Oct 25 23:35:08 2025 GMT Subject: CN=68f4242c-ae15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:09:72:ad:5f:f5:7e:cf:99:29:91:f2:2c:36: 53:1b:9e:6c:34:cb:c8:59:29:f5:15:b4:c3:65:5b: 29:8e:80:e9:9d:94:f9:54:bc:b4:02:a2:8d:84:e4: 4e:5f:81:56:67:8d:9f:9e:cc:0b:2d:60:2a:0d:1b: 72:ae:41:7a:21:61:e0:6f:8b:6b:39:e5:7e:95:fd: 9f:dd:88:c6:67:ba:57:15:56:ef:b8:c1:ea:ea:b6: be:8d:16:46:33:f0:41:ae:67:57:a3:d3:ae:60:31: 98:06:ad:79:b3:da:9e:d5:fb:71:07:90:89:d1:83: 31:08:9f:9f:cd:81:5d:29:22:a4:c7:ac:cf:13:42: 05:8c:ba:a8:14:7e:98:30:1d:b6:2f:31:d0:8c:28: e7:a4:ac:41:5e:cb:58:c6:c3:6c:bf:14:48:af:04: 8a:d5:ba:3a:92:c8:98:10:75:93:d0:1c:33:57:84: c3:9b:f2:cd:90:20:7c:34:bd:c0:c7:14:26:06:a6: a3:13:56:db:d9:03:b4:c1:37:2a:17:5f:d5:3e:4d: 55:12:82:97:51:0a:88:be:4d:46:9b:a4:62:55:9c: 85:ee:bf:88:21:7f:d2:ad:14:40:77:2f:04:58:6b: ba:59:80:42:5f:4c:b1:3f:60:39:8e:6b:dd:5a:66: c7:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:63:BA:BB:36:A1:ED:C7:40:90:E3:23:BD:5E:4E:0F:21:83:94:BC X509v3 Authority Key Identifier: keyid:C6:93:99:B1:32:E1:AE:6B:2E:A3:11:6E:14:B1:00:1C:08:19:DD:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:e6:fc:f9:b3:3b:48:51:00:29:c5:32:90:da:cb:9d:d8:5e: f9:31:16:a1:09:19:cd:fb:77:03:07:68:1a:55:66:ac:b6:30: 2a:ff:d0:41:7e:55:3e:b9:05:3c:7d:b2:a2:8e:3c:ff:09:15: f2:e7:29:10:b2:80:66:1f:59:8d:6e:4b:19:46:28:90:22:76: 1f:9b:bf:07:b1:92:b6:41:fa:96:54:1f:d0:ea:ab:8d:64:8b: ff:fe:87:1b:b6:aa:f1:9d:04:60:18:4c:6a:0e:9a:61:3d:ff: 2a:47:0b:9a:fe:8b:21:97:fc:b7:0a:54:17:9a:b7:c4:42:27: 27:8f:de:ef:bb:9c:19:68:7d:8c:83:6d:08:3d:d7:43:0a:5b: 2a:f1:ad:8a:25:ce:14:bc:d7:3a:e7:d1:37:c8:b0:9a:37:12: f5:76:44:5c:21:e1:d3:bb:ee:f9:c5:fa:41:99:84:f4:e4:90: 2d:43:35:ca:ed:f0:2c:7e:1b:8e:9b:f5:af:e6:a1:02:64:19: 09:2c:d3:c2:af:9e:7d:13:2e:e4:cc:e5:c2:7a:c3:d5:42:4f: f0:26:50:7a:74:fb:3f:a0:d8:2a:c0:f1:11:ba:6f:05:6a:f7: 3d:da:4e:40:76:64:2b:7f:f9:ef:43:d2:e5:b8:88:48:7e:2f: 0e:a3:2f:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwNUMxMTAvBgNVBAUTKEM2OTM5OUIxMzJFMUFFNkIyRUEzMTE2RTE0QjEwMDFD MDgxOUREQTkwHhcNMjUxMDE4MjMzNTA4WhcNMjUxMDI1MjMzNTA4WjAYMRYwFAYD VQQDEw02OGY0MjQyYy1hZTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAlyrV/1fs+ZKZHyLDZTG55sNMvIWSn1FbTDZVspjoDpnZT5VLy0AqKNhORO X4FWZ42fnswLLWAqDRtyrkF6IWHgb4trOeV+lf2f3YjGZ7pXFVbvuMHq6ra+jRZG M/BBrmdXo9OuYDGYBq15s9qe1ftxB5CJ0YMxCJ+fzYFdKSKkx6zPE0IFjLqoFH6Y MB22LzHQjCjnpKxBXstYxsNsvxRIrwSK1bo6ksiYEHWT0BwzV4TDm/LNkCB8NL3A xxQmBqajE1bb2QO0wTcqF1/VPk1VEoKXUQqIvk1Gm6RiVZyF7r+IIX/SrRRAdy8E WGu6WYBCX0yxP2A5jmvdWmbH+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtjurs2 oe3HQJDjI71eTg8hg5S8MB8GA1UdIwQYMBaAFMaTmbEy4a5rLqMRbhSxABwIGd2p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDA1Qy9ERUNFMEYwQTdC RDUxMUVCQjkxMjNENTJDNEY5QUUwMi94cE9ac1RMaHJtc3VveEZ1RkxFQUhBZ1oz YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hwT1pzVExocm1zdW94RnVGTEVBSEFnWjNhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDA1Qy9ERUNFMEYwQTdCRDUxMUVCQjkxMjNENTJDNEY5QUUwMi94cE9ac1RMaHJt c3VveEZ1RkxFQUhBZ1ozYWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDE5vz5sztIUQApxTKQ2sud2F75MRahCRnN+3cDB2gaVWastjAq/9BB flU+uQU8fbKijjz/CRXy5ykQsoBmH1mNbksZRiiQInYfm78HsZK2QfqWVB/Q6quN ZIv//ocbtqrxnQRgGExqDpphPf8qRwua/oshl/y3ClQXmrfEQicnj97vu5wZaH2M g20IPddDClsq8a2KJc4UvNc659E3yLCaNxL1dkRcIeHTu+75xfpBmYT05JAtQzXK 7fAsfhuOm/Wv5qECZBkJLNPCr559Ey7kzOXCesPVQk/wJlB6dPs/oNgqwPERum8F avc92k5AdmQrf/nvQ9LluIhIfi8Ooy9r -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:54 2025 by rpki-client