$ rpki-client -vvf rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/aIDTI6o_LVFGBQZA8yGmEpAA3wM.mft File: aIDTI6o_LVFGBQZA8yGmEpAA3wM.mft (raw, json) Hash identifier: tY/BZcvt7LKjcoqL6E5cdGbn1iHwCeumRu2u23KctCs= Subject key identifier: B0:5B:48:56:EA:05:47:9C:A8:32:B4:FA:2B:59:EB:3A:4F:B5:1B:9A Authority key identifier: 68:80:D3:23:AA:3F:2D:51:46:05:06:40:F3:21:A6:12:90:00:DF:03 Certificate issuer: /CN=A915AF7A/serialNumber=6880D323AA3F2D5146050640F321A6129000DF03 Certificate serial: 0656 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIDTI6o_LVFGBQZA8yGmEpAA3wM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/aIDTI6o_LVFGBQZA8yGmEpAA3wM.mft Manifest number: 07C1 Signing time: Sun 19 Oct 2025 00:24:19 +0000 Manifest this update: Sun 19 Oct 2025 00:24:18 +0000 Manifest next update: Sun 26 Oct 2025 00:24:18 +0000 Files and hashes: 1: aIDTI6o_LVFGBQZA8yGmEpAA3wM.crl (hash: Ue+sN30XudkGlveX+mBs8E8WaZBaz+BMhIJKf0zkWeQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/aIDTI6o_LVFGBQZA8yGmEpAA3wM.crl rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/aIDTI6o_LVFGBQZA8yGmEpAA3wM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIDTI6o_LVFGBQZA8yGmEpAA3wM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:24:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1622 (0x656) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915AF7A, serialNumber=6880D323AA3F2D5146050640F321A6129000DF03 Validity Not Before: Oct 19 00:24:18 2025 GMT Not After : Oct 26 00:24:18 2025 GMT Subject: CN=68f42fb3-25f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a6:bc:4d:f6:7d:fb:e1:eb:27:df:06:b2:03: b2:93:a3:eb:2a:2f:55:c0:fb:0c:0e:49:38:8f:91: 73:bb:97:f8:f6:7e:25:ad:ca:ff:7f:49:af:fe:9f: d0:03:72:ba:1f:bb:fb:16:26:c6:de:35:72:06:fa: e4:20:02:9a:4d:1d:05:38:41:3e:df:3c:20:24:28: 0e:98:81:42:31:93:72:9d:6d:40:23:6d:33:6e:28: 73:28:75:fb:43:98:46:fb:73:91:c7:05:59:1e:8f: ff:f2:a3:b3:cd:f5:f6:b7:54:05:07:f0:51:cc:b0: 13:0c:24:bc:35:75:fd:10:c3:eb:83:e3:0b:da:e0: 7b:74:51:71:e3:d8:42:3a:a9:c1:05:99:fc:f0:2f: 98:56:0c:ee:7a:49:36:39:7b:0b:88:b0:ae:48:7c: ae:a1:75:cb:b4:5b:96:7d:f8:06:c5:26:ed:d2:66: fa:27:3e:a9:ce:c4:45:43:a6:ab:50:a1:64:a6:6d: 6a:a9:64:ec:6c:21:49:38:e2:a4:74:02:d9:ad:43: 00:5d:3c:d3:06:dd:4a:58:33:03:f6:51:b3:ca:f1: fe:f1:07:9b:61:dc:95:23:ea:2b:31:55:6a:3c:61: 90:86:0f:9f:a8:2b:78:e9:87:f2:c8:54:94:f8:ac: c0:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:5B:48:56:EA:05:47:9C:A8:32:B4:FA:2B:59:EB:3A:4F:B5:1B:9A X509v3 Authority Key Identifier: keyid:68:80:D3:23:AA:3F:2D:51:46:05:06:40:F3:21:A6:12:90:00:DF:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/aIDTI6o_LVFGBQZA8yGmEpAA3wM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIDTI6o_LVFGBQZA8yGmEpAA3wM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/aIDTI6o_LVFGBQZA8yGmEpAA3wM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:37:11:48:97:a9:df:19:c6:44:e0:7d:3c:c2:bd:57:f6:29: 34:bd:5b:af:8a:ed:60:95:9e:43:8d:e5:71:29:1e:ed:6f:cc: d4:c4:b0:81:96:b3:ed:22:40:5e:f9:78:b6:7d:00:36:ea:9c: e1:60:49:c7:31:76:99:e9:be:6b:f2:08:7f:67:80:ee:de:34: d9:61:8b:71:d4:1d:43:6f:e9:93:0e:66:ff:de:8d:78:aa:2d: f4:bd:6a:d5:2a:67:90:2e:9c:4e:12:c2:46:7a:74:e7:36:41: cf:cf:ed:34:43:dc:fe:61:fd:21:a2:86:43:98:eb:07:40:99: 8a:ba:ce:84:11:12:f8:96:ff:be:63:10:36:76:9b:a2:ce:3a: c5:d7:58:df:3d:4c:3a:aa:27:6a:c2:f7:b3:8b:bb:5e:d1:e7: 77:a9:08:82:04:6f:2a:ff:17:88:2c:c4:e1:63:b4:a1:64:4e: 6f:3b:39:73:94:de:5d:c6:67:35:94:95:ad:35:83:93:09:48: a9:65:cc:ef:5f:b2:e2:e8:33:7c:88:ce:43:c8:5d:e6:e3:fa: 10:bc:02:7b:b9:cc:e5:78:41:4c:52:cd:95:37:f0:e9:db:1d: 90:48:58:fb:21:db:28:5b:dc:b4:1a:6a:90:2a:ae:d9:1e:91: 91:8f:57:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUFGN0ExMTAvBgNVBAUTKDY4ODBEMzIzQUEzRjJENTE0NjA1MDY0MEYzMjFBNjEy OTAwMERGMDMwHhcNMjUxMDE5MDAyNDE4WhcNMjUxMDI2MDAyNDE4WjAYMRYwFAYD VQQDEw02OGY0MmZiMy0yNWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Ka8TfZ9++HrJ98GsgOyk6PrKi9VwPsMDkk4j5Fzu5f49n4lrcr/f0mv/p/Q A3K6H7v7FibG3jVyBvrkIAKaTR0FOEE+3zwgJCgOmIFCMZNynW1AI20zbihzKHX7 Q5hG+3ORxwVZHo//8qOzzfX2t1QFB/BRzLATDCS8NXX9EMPrg+ML2uB7dFFx49hC OqnBBZn88C+YVgzuekk2OXsLiLCuSHyuoXXLtFuWffgGxSbt0mb6Jz6pzsRFQ6ar UKFkpm1qqWTsbCFJOOKkdALZrUMAXTzTBt1KWDMD9lGzyvH+8QebYdyVI+orMVVq PGGQhg+fqCt46YfyyFSU+KzALQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLBbSFbq BUecqDK0+itZ6zpPtRuaMB8GA1UdIwQYMBaAFGiA0yOqPy1RRgUGQPMhphKQAN8D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QUY3QS9FMDUzMzMzNkJB QzkxMUVCQjgwN0Q1MUNDNEY5QUUwMi9hSURUSTZvX0xWRkdCUVpBOHlHbUVwQUEz d00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJRFRJNm9fTFZGR0JRWkE4eUdtRXBBQTN3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QUY3QS9FMDUzMzMzNkJBQzkxMUVCQjgwN0Q1MUNDNEY5QUUwMi9hSURUSTZvX0xW RkdCUVpBOHlHbUVwQUEzd00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnNxFIl6nfGcZE4H08wr1X9ik0vVuviu1glZ5DjeVxKR7tb8zUxLCB lrPtIkBe+Xi2fQA26pzhYEnHMXaZ6b5r8gh/Z4Du3jTZYYtx1B1Db+mTDmb/3o14 qi30vWrVKmeQLpxOEsJGenTnNkHPz+00Q9z+Yf0hooZDmOsHQJmKus6EERL4lv++ YxA2dpuizjrF11jfPUw6qidqwvezi7te0ed3qQiCBG8q/xeILMThY7ShZE5vOzlz lN5dxmc1lJWtNYOTCUipZczvX7Li6DN8iM5DyF3m4/oQvAJ7uczleEFMUs2VN/Dp 2x2QSFj7IdsoW9y0GmqQKq7ZHpGRj1d3 -----END CERTIFICATE-----Generated at Tue Oct 21 05:01:32 2025 by rpki-client