$ rpki-client -vvf rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft File: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft (raw, json) Hash identifier: uvw1FW9RHcIWSFdnPyRgPF5Dr297rH1Vpp4XIhwIquY= Subject key identifier: 7C:AA:EA:CC:87:5B:A8:DC:E0:B7:71:8C:77:8B:95:D0:74:73:2F:2D Authority key identifier: 69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 Certificate issuer: /CN=A914FED3/serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Certificate serial: 0E49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft Manifest number: 0E31 Signing time: Sat 18 Oct 2025 18:28:10 +0000 Manifest this update: Sat 18 Oct 2025 18:28:09 +0000 Manifest next update: Sat 25 Oct 2025 18:28:09 +0000 Files and hashes: 1: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl (hash: JIZHQgr3p7+UX/PvJfrRtdROlaAoI79A1KAsZBct700=) 2: F9BDC484F7B011EB84345029C4F9AE02.roa (hash: TISln3OWwFMxrFHBXjhzJmsuAj7ldgpqpKcI/7qFxoU=) 3: 6E8576BC0F1911F0A007DF16C4F9AE02.roa (hash: cRBzFvwtKhO498akQMxVv4jrQ/Ofn1ctENdiE3NLHgk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:28:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3657 (0xe49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FED3, serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Validity Not Before: Oct 18 18:28:09 2025 GMT Not After : Oct 25 18:28:09 2025 GMT Subject: CN=68f3dc3a-be06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:63:09:dc:41:bb:d4:3a:fc:14:f5:2e:fd:22: 33:e3:d6:28:82:f1:eb:4d:f1:3c:bb:ad:43:98:f4: ce:85:08:24:ef:db:8a:1c:5e:8b:59:1e:82:c4:c6: ad:04:0c:82:b5:0c:a1:f6:a3:92:e2:09:ed:ed:34: 26:3e:73:18:ec:e4:a3:75:be:7d:03:2a:94:17:1d: b1:d7:2e:8c:c8:46:46:09:1c:e8:96:d0:86:1b:04: 21:5f:61:fb:cb:0a:4d:fc:c2:c2:b6:3c:a9:fb:10: 81:d1:6b:0d:90:5b:39:5f:fa:37:18:b8:b4:be:c6: f6:99:ac:eb:65:b8:57:92:39:9f:dc:f4:06:f4:48: b9:dd:dc:f2:ea:87:08:42:2d:59:30:34:f7:fc:df: 0b:16:a6:b7:18:cf:5d:e4:b6:b1:84:3a:09:37:10: 58:4c:ff:0f:b5:0c:6d:52:54:52:b8:a2:2a:06:bd: 92:f0:27:c0:58:81:81:28:69:e1:dd:9a:7a:4a:be: 3a:55:25:89:e3:76:f4:eb:d5:17:97:29:6c:4c:aa: 80:96:5a:21:51:1a:90:15:31:aa:80:5b:fd:a4:9b: 83:40:9c:b1:a4:41:77:26:f9:bf:9e:b0:02:fe:59: e8:a0:6d:a7:f3:d7:f9:87:70:e0:d3:54:e7:a9:07: aa:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:AA:EA:CC:87:5B:A8:DC:E0:B7:71:8C:77:8B:95:D0:74:73:2F:2D X509v3 Authority Key Identifier: keyid:69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e9:68:e3:40:b3:76:70:d5:03:93:c3:34:cd:6f:4e:0a:e1:73: aa:8d:c3:bf:47:95:8f:de:a0:10:64:28:6e:ae:7d:fa:6b:fe: 3f:07:43:a7:65:58:b6:1f:02:f7:dc:70:e6:5d:93:82:ee:f1: 48:8f:42:b0:00:7f:74:e2:ec:bc:b5:06:55:87:fb:b3:dc:d1: 95:78:98:31:63:37:49:11:eb:a3:d6:c0:a6:27:47:6d:00:a4: c6:76:f3:eb:70:87:cf:7d:c0:de:2d:70:5a:b3:fc:9e:6d:00: 57:de:81:41:74:fa:db:76:47:61:d1:36:e3:2e:ce:be:53:be: 5e:36:d0:e9:55:f8:fb:44:5a:e4:2b:41:aa:3c:66:d4:ab:d6: 42:2e:fa:74:26:95:cf:ae:9e:12:77:f8:c0:3b:65:a9:de:36: 86:d2:b0:74:5a:aa:02:44:d7:8e:ec:12:7e:7c:bd:a9:da:50: 13:5a:1f:05:14:b3:90:2e:a5:25:6e:92:5d:21:3b:37:aa:5c: d6:15:e0:38:2a:a8:f7:fe:8e:20:17:e6:ff:1e:2e:ea:ed:54: a6:fc:d5:13:77:7e:49:cf:d6:b8:ba:dc:dc:ac:2c:de:a0:77: 1a:80:a1:89:9d:6f:96:e9:3f:84:74:48:bb:44:7c:71:23:76: 7b:0d:0d:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZFRDMxMTAvBgNVBAUTKDY5OUY1MUE5RDlFMTQ1NkQxNjAxQkU4M0Q4Qjk0QUQ1 OUE0MzgyMzMwHhcNMjUxMDE4MTgyODA5WhcNMjUxMDI1MTgyODA5WjAYMRYwFAYD VQQDEw02OGYzZGMzYS1iZTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2MJ3EG71Dr8FPUu/SIz49YogvHrTfE8u61DmPTOhQgk79uKHF6LWR6CxMat BAyCtQyh9qOS4gnt7TQmPnMY7OSjdb59AyqUFx2x1y6MyEZGCRzoltCGGwQhX2H7 ywpN/MLCtjyp+xCB0WsNkFs5X/o3GLi0vsb2mazrZbhXkjmf3PQG9Ei53dzy6ocI Qi1ZMDT3/N8LFqa3GM9d5LaxhDoJNxBYTP8PtQxtUlRSuKIqBr2S8CfAWIGBKGnh 3Zp6Sr46VSWJ43b069UXlylsTKqAllohURqQFTGqgFv9pJuDQJyxpEF3Jvm/nrAC /lnooG2n89f5h3Dg01TnqQeqCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHyq6syH W6jc4LdxjHeLldB0cy8tMB8GA1UdIwQYMBaAFGmfUanZ4UVtFgG+g9i5StWaQ4Iz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkVEMy9GODU4NEY3Q0Iz OEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJXMFdBYjZEMkxsSzFacERn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaOVJxZG5oUlcwV0FiNkQyTGxLMVpwRGdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RkVEMy9GODU4NEY3Q0IzOEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJX MFdBYjZEMkxsSzFacERnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDpaONAs3Zw1QOTwzTNb04K4XOqjcO/R5WP3qAQZChurn36a/4/B0On ZVi2HwL33HDmXZOC7vFIj0KwAH904uy8tQZVh/uz3NGVeJgxYzdJEeuj1sCmJ0dt AKTGdvPrcIfPfcDeLXBas/yebQBX3oFBdPrbdkdh0TbjLs6+U75eNtDpVfj7RFrk K0GqPGbUq9ZCLvp0JpXPrp4Sd/jAO2Wp3jaG0rB0WqoCRNeO7BJ+fL2p2lATWh8F FLOQLqUlbpJdITs3qlzWFeA4Kqj3/o4gF+b/Hi7q7VSm/NUTd35Jz9a4utzcrCze oHcagKGJnW+W6T+EdEi7RHxxI3Z7DQ3N -----END CERTIFICATE-----Generated at Mon Oct 20 16:04:51 2025 by rpki-client