$ rpki-client -vvf rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.mft File: t0SkTltlPmx6kM9gNOANz9iUfWA.mft (raw, json) Hash identifier: 0+CCW+px/YLOJV0oGHoJcps818Cn0PizZpHBWoEHAq8= Subject key identifier: 64:5E:BB:13:52:FA:21:B0:81:C8:80:D0:B0:DC:8A:D0:99:A6:18:BB Authority key identifier: B7:44:A4:4E:5B:65:3E:6C:7A:90:CF:60:34:E0:0D:CF:D8:94:7D:60 Certificate issuer: /CN=A914EBE5/serialNumber=B744A44E5B653E6C7A90CF6034E00DCFD8947D60 Certificate serial: 18A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0SkTltlPmx6kM9gNOANz9iUfWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.mft Manifest number: 1898 Signing time: Sat 18 Oct 2025 16:51:50 +0000 Manifest this update: Sat 18 Oct 2025 16:51:49 +0000 Manifest next update: Sat 25 Oct 2025 16:51:49 +0000 Files and hashes: 1: t0SkTltlPmx6kM9gNOANz9iUfWA.crl (hash: KkpP8SrGrcCpvyB/3SvPGPXn63CUxjGutBEh7IQ1coo=) 2: 253B1382106C11F08D824C19C4F9AE02.roa (hash: k9TDuPE5aOqFzmvoIPDe+G9DbuyOrQuREAeCHC4kW88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.crl rsync://rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0SkTltlPmx6kM9gNOANz9iUfWA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:51:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6313 (0x18a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EBE5, serialNumber=B744A44E5B653E6C7A90CF6034E00DCFD8947D60 Validity Not Before: Oct 18 16:51:49 2025 GMT Not After : Oct 25 16:51:49 2025 GMT Subject: CN=68f3c5a5-775c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:24:a6:e4:52:78:0a:f7:28:4a:9b:53:8f:98: 50:c7:d0:99:92:5b:f0:81:80:5f:a0:d0:e7:fa:83: c2:ef:e2:59:08:a6:32:40:6d:6c:63:40:c0:0f:c0: b5:ba:e0:89:c4:e4:87:30:dd:b1:61:ac:a7:ba:48: b0:57:a5:5a:bf:e6:11:3f:41:28:94:ca:18:52:47: 09:cb:85:2b:f7:55:d2:c4:55:8a:21:cb:b9:06:03: 68:c6:c7:01:a3:7f:94:65:26:24:71:ba:0f:30:6c: b2:cd:9e:18:88:c8:1d:a1:c3:4c:56:4a:93:1f:75: 4f:67:78:25:42:f4:da:c1:8f:47:f8:8d:52:05:ac: b2:40:c0:71:3d:35:6d:ea:9e:6d:27:82:38:cf:fa: b4:a6:7a:4f:69:5b:78:41:97:a0:e1:f2:1a:92:1e: f6:29:9d:b9:94:15:83:1f:9a:9c:30:56:d0:71:4e: 99:79:bd:ce:a1:8f:60:a7:a5:a3:14:d8:d3:a9:4a: 0c:34:5d:10:c9:7c:bf:4e:c3:f1:b4:33:71:d5:46: 3b:11:44:c8:2c:2b:66:7b:73:ad:01:44:c4:c6:f2: 9d:ba:c2:58:97:a5:fa:14:42:5d:ca:e9:e8:01:b4: ea:45:0a:ee:0a:88:11:c9:96:ce:35:f4:60:37:19: 66:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:5E:BB:13:52:FA:21:B0:81:C8:80:D0:B0:DC:8A:D0:99:A6:18:BB X509v3 Authority Key Identifier: keyid:B7:44:A4:4E:5B:65:3E:6C:7A:90:CF:60:34:E0:0D:CF:D8:94:7D:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0SkTltlPmx6kM9gNOANz9iUfWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EBE5/64C52708A95F11E79AD4E734C4F9AE02/t0SkTltlPmx6kM9gNOANz9iUfWA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:59:74:c6:07:00:e6:49:4e:0a:37:c0:b0:fb:99:56:82:7f: 27:f8:6b:02:c7:ed:cd:da:98:c1:4a:b4:b2:7f:2a:94:2d:d7: 3f:ef:4e:ea:57:7f:09:44:39:c4:e0:24:9c:d7:51:0b:e0:14: 0b:89:97:98:09:67:03:1b:f8:c0:48:32:1c:75:e1:d2:2a:76: 4b:3a:d2:cc:0d:03:99:d3:8e:80:18:56:a8:6a:cb:fc:88:0e: 6f:be:87:0b:b1:e6:38:07:13:15:ed:b8:47:ad:93:70:43:b2: 44:bf:1d:8c:7c:3b:38:24:b5:db:bd:88:1e:8b:87:79:01:84: fe:14:f6:2e:97:d0:c0:e3:c1:f5:e3:29:55:f9:63:f2:a7:7a: d3:4a:21:95:84:e7:18:e3:eb:11:f1:98:91:a5:9b:e1:8f:65: a0:47:48:b1:4d:c5:87:9a:27:14:25:2f:1f:53:10:f8:a7:31: 7b:5a:e3:82:33:76:6a:4b:d2:3f:fb:ea:22:da:f6:0c:0c:b9: 4e:76:d0:2d:81:1f:48:c3:92:6b:2d:10:61:04:d8:3b:a5:9c: bd:2b:92:a2:22:1d:84:9b:69:7e:67:8e:73:05:8c:16:05:62: 64:40:b8:40:8f:fc:25:43:cb:21:51:63:ce:9f:f2:b0:84:4f: 5e:c6:39:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVCRTUxMTAvBgNVBAUTKEI3NDRBNDRFNUI2NTNFNkM3QTkwQ0Y2MDM0RTAwRENG RDg5NDdENjAwHhcNMjUxMDE4MTY1MTQ5WhcNMjUxMDI1MTY1MTQ5WjAYMRYwFAYD VQQDEw02OGYzYzVhNS03NzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSSm5FJ4CvcoSptTj5hQx9CZklvwgYBfoNDn+oPC7+JZCKYyQG1sY0DAD8C1 uuCJxOSHMN2xYaynukiwV6Vav+YRP0EolMoYUkcJy4Ur91XSxFWKIcu5BgNoxscB o3+UZSYkcboPMGyyzZ4YiMgdocNMVkqTH3VPZ3glQvTawY9H+I1SBayyQMBxPTVt 6p5tJ4I4z/q0pnpPaVt4QZeg4fIakh72KZ25lBWDH5qcMFbQcU6Zeb3OoY9gp6Wj FNjTqUoMNF0QyXy/TsPxtDNx1UY7EUTILCtme3OtAUTExvKdusJYl6X6FEJdyuno AbTqRQruCogRyZbONfRgNxlmOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGReuxNS +iGwgciA0LDcitCZphi7MB8GA1UdIwQYMBaAFLdEpE5bZT5sepDPYDTgDc/YlH1g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUJFNS82NEM1MjcwOEE5 NUYxMUU3OUFENEU3MzRDNEY5QUUwMi90MFNrVGx0bFBteDZrTTlnTk9BTno5aVVm V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3QwU2tUbHRsUG14NmtNOWdOT0FOejlpVWZXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUJFNS82NEM1MjcwOEE5NUYxMUU3OUFENEU3MzRDNEY5QUUwMi90MFNrVGx0bFBt eDZrTTlnTk9BTno5aVVmV0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFWXTGBwDmSU4KN8Cw+5lWgn8n+GsCx+3N2pjBSrSyfyqULdc/707q V38JRDnE4CSc11EL4BQLiZeYCWcDG/jASDIcdeHSKnZLOtLMDQOZ046AGFaoasv8 iA5vvocLseY4BxMV7bhHrZNwQ7JEvx2MfDs4JLXbvYgei4d5AYT+FPYul9DA48H1 4ylV+WPyp3rTSiGVhOcY4+sR8ZiRpZvhj2WgR0ixTcWHmicUJS8fUxD4pzF7WuOC M3ZqS9I/++oi2vYMDLlOdtAtgR9Iw5JrLRBhBNg7pZy9K5KiIh2Em2l+Z45zBYwW BWJkQLhAj/wlQ8shUWPOn/KwhE9exjl9 -----END CERTIFICATE-----Generated at Mon Oct 20 00:23:47 2025 by rpki-client