$ rpki-client -vvf rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft File: PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft (raw, json) Hash identifier: cJxJZlCvgyMZT/5TNbNziHeBE3D3hsNVDDoQmKnaUfM= Subject key identifier: 36:14:DC:87:A1:16:5B:04:C8:32:CB:B4:4D:16:FB:88:4A:0E:E4:22 Authority key identifier: 3E:42:D3:33:4A:1C:E1:88:9D:FC:67:E4:2D:F6:28:58:21:85:25:19 Certificate issuer: /CN=A915A39E/serialNumber=3E42D3334A1CE1889DFC67E42DF6285821852519 Certificate serial: 04C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkLTM0oc4Yid_GfkLfYoWCGFJRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft Manifest number: 04C5 Signing time: Sun 19 Oct 2025 01:39:34 +0000 Manifest this update: Sun 19 Oct 2025 01:39:33 +0000 Manifest next update: Sun 26 Oct 2025 01:39:33 +0000 Files and hashes: 1: PkLTM0oc4Yid_GfkLfYoWCGFJRk.crl (hash: zGQAiVx1dQDzobkqkBTabTeeSwWZ07lntdIeg4k7lTI=) 2: 47A72A7441ED11EC9B02377AC4F9AE02.roa (hash: JRIJmi6CkdzwRl9tqXcDbUlpayemlqeCYja07bnQOys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.crl rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkLTM0oc4Yid_GfkLfYoWCGFJRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:39:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1225 (0x4c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A39E, serialNumber=3E42D3334A1CE1889DFC67E42DF6285821852519 Validity Not Before: Oct 19 01:39:33 2025 GMT Not After : Oct 26 01:39:33 2025 GMT Subject: CN=68f44155-7db9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:34:52:8f:ff:54:91:37:76:04:23:4c:65:52: b5:76:91:c9:7a:f6:c7:e2:a9:37:8f:92:cb:95:22: 12:8b:1a:fd:be:cb:b4:9f:1f:00:8d:4a:b4:7a:c4: 4f:92:62:97:d8:8f:2b:b5:e2:70:13:93:65:42:5d: e7:4a:25:61:f5:41:16:47:24:b0:07:72:09:77:e3: b0:d4:f2:f8:e5:c1:62:02:59:fc:45:69:e9:02:53: 3e:0c:7c:ad:fe:a5:91:6f:95:03:4c:1c:fe:7e:99: 39:80:8a:03:df:e9:64:45:39:5e:29:6f:ed:24:9d: 30:c6:b2:f1:38:cd:1a:04:11:eb:03:5a:96:9f:70: 4f:fc:ed:94:91:4e:39:39:56:92:89:0c:9d:f9:e6: 45:5f:e9:c2:8b:60:c2:dc:7a:4e:38:ed:8d:e1:0d: 9c:12:10:da:fc:42:47:54:3b:68:c3:7a:75:ae:22: e1:21:ef:33:42:29:5d:a1:49:ee:63:82:c8:93:3a: 99:f7:7c:84:41:c4:82:36:b3:7d:a8:11:35:1e:48: 09:27:a7:49:e0:a9:53:4f:4b:9b:e5:b2:ff:4f:3d: 9f:cd:bd:94:76:c1:b8:3c:89:11:4c:df:41:8f:01: 93:66:85:18:aa:2e:cc:7e:cd:c1:de:a0:f4:e4:1b: d4:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:14:DC:87:A1:16:5B:04:C8:32:CB:B4:4D:16:FB:88:4A:0E:E4:22 X509v3 Authority Key Identifier: keyid:3E:42:D3:33:4A:1C:E1:88:9D:FC:67:E4:2D:F6:28:58:21:85:25:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkLTM0oc4Yid_GfkLfYoWCGFJRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A39E/CA31689641E911ECB2589673C4F9AE02/PkLTM0oc4Yid_GfkLfYoWCGFJRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:ea:82:12:6f:83:89:c3:d8:79:f0:dc:44:c5:d9:73:13:29: c7:e1:37:cc:bc:97:dd:70:e1:c6:3c:9b:f7:26:80:09:c6:b2: 39:4d:03:bf:8b:38:12:64:09:f4:29:a2:ea:8a:9b:5e:51:61: c3:1f:b6:c8:1e:97:b8:c7:eb:22:68:4b:1a:29:32:0f:4b:40: 00:27:c1:ad:8b:5e:33:aa:86:11:ef:98:a7:2a:88:51:49:e9: 62:36:95:5a:ab:e4:07:e9:e4:35:f0:5b:6f:61:b4:18:ea:64: 39:70:0b:50:1b:fd:cc:55:38:93:10:de:4f:0c:b8:42:37:34: 85:dc:01:d7:90:ec:ce:c4:4f:0a:61:f0:6f:e3:81:cd:60:ef: b5:f0:04:0b:5c:c1:dc:85:4d:41:1b:e8:e8:c1:24:32:af:d6: 46:9d:84:5f:e3:17:ac:62:78:de:55:fd:94:06:6a:9b:c3:19: 16:4a:a4:cc:fa:3f:79:c9:c6:9e:db:39:39:9d:48:b3:70:77: 30:2e:45:42:dc:f1:e4:db:a6:eb:d4:f6:58:b5:0c:b5:d4:0f: f9:8a:32:57:32:0e:1f:5d:52:f4:7e:49:e7:36:77:83:30:77: e7:71:69:db:c0:99:a5:de:a5:71:44:67:45:07:7a:85:e7:61: 0f:4b:6f:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEzOUUxMTAvBgNVBAUTKDNFNDJEMzMzNEExQ0UxODg5REZDNjdFNDJERjYyODU4 MjE4NTI1MTkwHhcNMjUxMDE5MDEzOTMzWhcNMjUxMDI2MDEzOTMzWjAYMRYwFAYD VQQDEw02OGY0NDE1NS03ZGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DRSj/9UkTd2BCNMZVK1dpHJevbH4qk3j5LLlSISixr9vsu0nx8AjUq0esRP kmKX2I8rteJwE5NlQl3nSiVh9UEWRySwB3IJd+Ow1PL45cFiAln8RWnpAlM+DHyt /qWRb5UDTBz+fpk5gIoD3+lkRTleKW/tJJ0wxrLxOM0aBBHrA1qWn3BP/O2UkU45 OVaSiQyd+eZFX+nCi2DC3HpOOO2N4Q2cEhDa/EJHVDtow3p1riLhIe8zQildoUnu Y4LIkzqZ93yEQcSCNrN9qBE1HkgJJ6dJ4KlTT0ub5bL/Tz2fzb2UdsG4PIkRTN9B jwGTZoUYqi7Mfs3B3qD05BvUiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDYU3Ieh FlsEyDLLtE0W+4hKDuQiMB8GA1UdIwQYMBaAFD5C0zNKHOGInfxn5C32KFghhSUZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTM5RS9DQTMxNjg5NjQx RTkxMUVDQjI1ODk2NzNDNEY5QUUwMi9Qa0xUTTBvYzRZaWRfR2ZrTGZZb1dDR0ZK UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrTFRNMG9jNFlpZF9HZmtMZllvV0NHRkpSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTM5RS9DQTMxNjg5NjQxRTkxMUVDQjI1ODk2NzNDNEY5QUUwMi9Qa0xUTTBvYzRZ aWRfR2ZrTGZZb1dDR0ZKUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCU6oISb4OJw9h58NxExdlzEynH4TfMvJfdcOHGPJv3JoAJxrI5TQO/ izgSZAn0KaLqipteUWHDH7bIHpe4x+siaEsaKTIPS0AAJ8Gti14zqoYR75inKohR SeliNpVaq+QH6eQ18FtvYbQY6mQ5cAtQG/3MVTiTEN5PDLhCNzSF3AHXkOzOxE8K YfBv44HNYO+18AQLXMHchU1BG+jowSQyr9ZGnYRf4xesYnjeVf2UBmqbwxkWSqTM +j95ycae2zk5nUizcHcwLkVC3PHk26br1PZYtQy11A/5ijJXMg4fXVL0fknnNneD MHfncWnbwJml3qVxRGdFB3qF52EPS28R -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:09 2025 by rpki-client