$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft File: 28byJW3eXCxGqA6yQy8lcu3FN9Y.mft (raw, json) Hash identifier: ZuE6ShtmSIjN0TtJwRvPtA6alMqdAmCs9q+Pu3OFH1c= Subject key identifier: DA:36:8B:26:C2:24:CF:57:47:CB:BD:2B:A4:47:CD:BF:EE:EA:AA:FC Authority key identifier: DB:C6:F2:25:6D:DE:5C:2C:46:A8:0E:B2:43:2F:25:72:ED:C5:37:D6 Certificate issuer: /CN=A914D0E3/serialNumber=DBC6F2256DDE5C2C46A80EB2432F2572EDC537D6 Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft Manifest number: BC Signing time: Sun 19 Oct 2025 09:04:11 +0000 Manifest this update: Sun 19 Oct 2025 09:04:10 +0000 Manifest next update: Sun 26 Oct 2025 09:04:10 +0000 Files and hashes: 1: 28byJW3eXCxGqA6yQy8lcu3FN9Y.crl (hash: 9jJE94p/3F93lMVuEXkR9X8LgwBNXeRbeOSVz6N4NmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.crl rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:04:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0E3, serialNumber=DBC6F2256DDE5C2C46A80EB2432F2572EDC537D6 Validity Not Before: Oct 19 09:04:10 2025 GMT Not After : Oct 26 09:04:10 2025 GMT Subject: CN=68f4a98b-70a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f5:8b:83:0c:da:da:d9:e2:c4:5e:12:72:7e: 3b:2e:b3:5c:47:9a:2b:63:44:bc:87:e5:a1:a0:f0: e5:e8:c3:f3:b0:a1:57:bb:ae:eb:c8:f8:d2:aa:94: 30:05:08:91:9c:6c:fa:ee:e9:c1:83:e4:02:b2:0d: ab:10:ea:c6:cd:0e:a4:ab:9f:fa:ed:af:9c:95:57: 09:e3:f5:6d:51:08:b7:a0:29:9b:ff:d0:02:d8:9b: 81:83:34:4b:0e:cb:1e:9c:bd:fb:d6:38:54:e2:3c: 15:8b:15:17:fe:19:4d:4b:83:f1:b1:bf:06:8c:37: c7:0a:87:ba:90:2a:17:00:07:90:cc:f5:9f:88:e1: c3:8d:6c:52:01:3b:f9:f5:e2:f7:c2:4c:ac:92:b2: 15:65:cd:22:74:d7:7a:9a:11:7c:30:22:83:4e:e7: c4:cd:5f:81:86:51:a4:d4:89:00:49:41:01:c5:4d: 8e:96:91:ce:8d:1d:c5:2f:bf:3c:7c:45:6a:7e:08: 32:65:be:eb:47:42:b4:05:42:82:82:3b:18:57:64: 87:1b:5b:28:f6:5f:2d:d9:80:39:ad:dd:ca:a9:c2: 33:46:8e:45:20:b8:cc:93:4a:9d:92:c6:28:42:85: 44:eb:51:92:aa:b3:ca:fd:88:57:fd:33:c2:83:37: 6c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:36:8B:26:C2:24:CF:57:47:CB:BD:2B:A4:47:CD:BF:EE:EA:AA:FC X509v3 Authority Key Identifier: keyid:DB:C6:F2:25:6D:DE:5C:2C:46:A8:0E:B2:43:2F:25:72:ED:C5:37:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:4c:b1:23:05:e0:59:03:c0:af:03:d6:1d:2c:0f:21:bd:d3: e4:9f:cf:fb:a9:74:e1:4e:3b:bb:eb:39:67:f7:92:9f:c8:ef: 28:a4:15:28:24:3c:37:de:95:47:b2:77:37:5d:46:f5:ad:f8: 21:0d:c5:90:15:cd:9e:45:dc:07:f4:b5:2b:5e:7f:ab:54:c4: e7:30:b7:e0:1a:28:f8:71:fb:fb:71:ca:02:c7:4a:99:ba:64: 19:11:43:ec:3f:8a:f9:75:60:3c:35:f6:32:49:c6:c8:06:a2: dc:94:1f:99:97:b2:99:fa:70:f3:dd:f1:a8:f9:66:9e:9e:5f: 5b:63:87:ce:88:b0:5c:d1:ff:51:dd:f0:c4:03:83:e9:86:21: 48:e8:14:98:43:6f:7f:13:fd:73:65:24:18:ed:b5:16:17:aa: a8:aa:47:b7:54:67:1a:96:a0:20:33:ca:a8:07:ff:b1:9e:36: 3a:67:12:f7:30:68:78:05:c0:06:1c:4f:30:9e:85:2d:1f:73: 6d:02:b1:ea:d6:72:62:72:2d:d4:6a:c0:66:21:84:f7:86:1b: 09:4a:14:b1:30:c6:96:4d:c2:ca:d1:c3:d8:ff:16:cf:6f:51: 74:83:e5:7f:6f:a6:a5:4e:22:5d:98:d1:59:86:22:b0:87:8d: 29:37:a3:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwRTMxMTAvBgNVBAUTKERCQzZGMjI1NkRERTVDMkM0NkE4MEVCMjQzMkYyNTcy RURDNTM3RDYwHhcNMjUxMDE5MDkwNDEwWhcNMjUxMDI2MDkwNDEwWjAYMRYwFAYD VQQDEw02OGY0YTk4Yi03MGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fWLgwza2tnixF4Scn47LrNcR5orY0S8h+WhoPDl6MPzsKFXu67ryPjSqpQw BQiRnGz67unBg+QCsg2rEOrGzQ6kq5/67a+clVcJ4/VtUQi3oCmb/9AC2JuBgzRL DssenL371jhU4jwVixUX/hlNS4Pxsb8GjDfHCoe6kCoXAAeQzPWfiOHDjWxSATv5 9eL3wkyskrIVZc0idNd6mhF8MCKDTufEzV+BhlGk1IkASUEBxU2OlpHOjR3FL788 fEVqfggyZb7rR0K0BUKCgjsYV2SHG1so9l8t2YA5rd3KqcIzRo5FILjMk0qdksYo QoVE61GSqrPK/YhX/TPCgzdsBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNo2iybC JM9XR8u9K6RHzb/u6qr8MB8GA1UdIwQYMBaAFNvG8iVt3lwsRqgOskMvJXLtxTfW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDBFMy9CMzVBQjlGQThD N0UxMUVGOEU5MkU3MUJDNEY5QUUwMi8yOGJ5SlczZVhDeEdxQTZ5UXk4bGN1M0ZO OVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI4YnlKVzNlWEN4R3FBNnlReThsY3UzRk45WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDBFMy9CMzVBQjlGQThDN0UxMUVGOEU5MkU3MUJDNEY5QUUwMi8yOGJ5SlczZVhD eEdxQTZ5UXk4bGN1M0ZOOVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2TLEjBeBZA8CvA9YdLA8hvdPkn8/7qXThTju76zln95KfyO8opBUo JDw33pVHsnc3XUb1rfghDcWQFc2eRdwH9LUrXn+rVMTnMLfgGij4cfv7ccoCx0qZ umQZEUPsP4r5dWA8NfYyScbIBqLclB+Zl7KZ+nDz3fGo+Waenl9bY4fOiLBc0f9R 3fDEA4PphiFI6BSYQ29/E/1zZSQY7bUWF6qoqke3VGcalqAgM8qoB/+xnjY6ZxL3 MGh4BcAGHE8wnoUtH3NtArHq1nJici3UasBmIYT3hhsJShSxMMaWTcLK0cPY/xbP b1F0g+V/b6alTiJdmNFZhiKwh40pN6Nn -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:23 2025 by rpki-client