$ rpki-client -vvf rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft File: SC1I47aWHxIIwGcVJOCOkDOV9lk.mft (raw, json) Hash identifier: RkP8pc9WdgB2i+F1B8n/DT+ZcWxOq0FjhBACs41lKxw= Subject key identifier: 0B:A7:F2:7B:0D:F5:5D:1D:45:A5:83:CF:31:80:FA:37:86:32:DA:BE Authority key identifier: 48:2D:48:E3:B6:96:1F:12:08:C0:67:15:24:E0:8E:90:33:95:F6:59 Certificate issuer: /CN=A915BCE2/serialNumber=482D48E3B6961F1208C0671524E08E903395F659 Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC1I47aWHxIIwGcVJOCOkDOV9lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft Manifest number: 0159 Signing time: Sun 19 Oct 2025 06:47:34 +0000 Manifest this update: Sun 19 Oct 2025 06:47:34 +0000 Manifest next update: Sun 26 Oct 2025 06:47:34 +0000 Files and hashes: 1: SC1I47aWHxIIwGcVJOCOkDOV9lk.crl (hash: qyXUb8s0tWJdKx300d4audN8Xl91yDrCMWG+ci3IFss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.crl rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC1I47aWHxIIwGcVJOCOkDOV9lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:47:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BCE2, serialNumber=482D48E3B6961F1208C0671524E08E903395F659 Validity Not Before: Oct 19 06:47:34 2025 GMT Not After : Oct 26 06:47:34 2025 GMT Subject: CN=68f48986-4bcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c9:01:5f:4e:42:d8:bf:ff:27:94:be:bb:59: 0e:1c:4c:db:1a:b3:8f:37:47:1d:7c:e4:be:6d:74: 5a:dc:33:e6:fe:d5:57:a1:4d:5d:a4:b2:bd:d9:37: 19:cc:d7:ff:70:16:cd:3f:7b:27:36:25:b3:71:9f: d4:16:fe:3b:ab:38:96:27:a6:98:6b:ef:81:a1:0c: b2:b2:87:da:47:67:17:b9:fc:24:fd:86:d8:50:c6: 4a:8d:dd:e5:e3:84:61:d5:85:90:64:6a:6d:33:36: af:50:92:58:74:95:46:a1:73:64:a3:49:5f:38:c9: f5:39:61:98:47:1c:ea:e5:ba:85:55:10:8f:b6:53: 1a:cd:40:28:c9:de:51:3f:96:b3:8f:aa:f2:32:7b: e4:95:89:78:b5:c9:1b:fd:15:4f:33:39:5d:0f:88: b0:b1:87:5c:aa:10:1d:98:86:94:79:63:f5:0c:c0: 72:a3:5f:c5:ce:c8:b1:a3:f6:14:c7:11:97:0f:56: fe:ca:56:16:fe:e2:9e:b3:4d:5e:40:11:80:ea:50: 20:77:ef:b1:f4:d0:66:53:07:d3:a7:4e:cd:48:45: b6:f5:aa:b0:5b:bf:19:99:63:66:87:32:a9:18:97: 51:fc:54:c7:09:47:a9:08:37:77:dd:07:0b:d3:6a: ad:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:A7:F2:7B:0D:F5:5D:1D:45:A5:83:CF:31:80:FA:37:86:32:DA:BE X509v3 Authority Key Identifier: keyid:48:2D:48:E3:B6:96:1F:12:08:C0:67:15:24:E0:8E:90:33:95:F6:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC1I47aWHxIIwGcVJOCOkDOV9lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:ac:47:f3:07:02:a4:76:ad:99:f9:f0:23:22:fa:dc:9d:29: b9:a7:c1:25:47:31:1a:3f:e8:a3:fd:2c:b9:bd:f2:c5:2f:cc: 13:e5:06:66:7c:67:94:fe:7b:63:29:12:f9:e4:a6:d9:07:23: 2d:f0:28:9d:d0:1b:83:0f:cb:dd:a4:45:a3:46:95:bb:eb:4b: 85:3c:48:e8:b1:ff:db:2f:a6:0c:28:2a:ef:e4:52:35:18:b1: 14:2c:df:e1:a8:4f:0f:3a:1d:00:55:67:19:20:cf:26:3c:7f: 8d:51:f3:a3:69:ed:51:41:61:4d:57:40:6f:c7:d1:4a:62:5c: ed:81:74:d1:89:87:e9:be:e0:29:06:51:5d:28:e6:43:1b:e5: 78:7f:54:f8:d8:4e:91:b4:0d:6a:97:1d:1f:84:3e:f5:72:f9: 34:10:7d:2a:b7:7d:e1:5b:df:6a:7b:f1:22:04:62:65:7d:ca: 99:b7:19:39:e5:f0:9d:c9:2f:87:24:d6:bc:53:0a:68:dc:e1: 4f:7c:c2:1d:d2:5e:41:2c:e8:d7:ef:5d:7c:f0:07:29:a8:de: a6:86:c0:10:66:47:89:9b:eb:75:d7:f5:1c:b2:83:77:f9:1e: 9b:6f:c3:e1:9f:7e:a8:0c:63:f8:7b:05:ad:94:08:12:a6:d7: 68:2c:9e:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJDRTIxMTAvBgNVBAUTKDQ4MkQ0OEUzQjY5NjFGMTIwOEMwNjcxNTI0RTA4RTkw MzM5NUY2NTkwHhcNMjUxMDE5MDY0NzM0WhcNMjUxMDI2MDY0NzM0WjAYMRYwFAYD VQQDEw02OGY0ODk4Ni00YmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvckBX05C2L//J5S+u1kOHEzbGrOPN0cdfOS+bXRa3DPm/tVXoU1dpLK92TcZ zNf/cBbNP3snNiWzcZ/UFv47qziWJ6aYa++BoQyysofaR2cXufwk/YbYUMZKjd3l 44Rh1YWQZGptMzavUJJYdJVGoXNko0lfOMn1OWGYRxzq5bqFVRCPtlMazUAoyd5R P5azj6ryMnvklYl4tckb/RVPMzldD4iwsYdcqhAdmIaUeWP1DMByo1/Fzsixo/YU xxGXD1b+ylYW/uKes01eQBGA6lAgd++x9NBmUwfTp07NSEW29aqwW78ZmWNmhzKp GJdR/FTHCUepCDd33QcL02qthQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAun8nsN 9V0dRaWDzzGA+jeGMtq+MB8GA1UdIwQYMBaAFEgtSOO2lh8SCMBnFSTgjpAzlfZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkNFMi8yNEY3RTI3RTk3 QzgxMUVFOTEwMjg4MEFDNEY5QUUwMi9TQzFJNDdhV0h4SUl3R2NWSk9DT2tET1Y5 bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDMUk0N2FXSHhJSXdHY1ZKT0NPa0RPVjlsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QkNFMi8yNEY3RTI3RTk3QzgxMUVFOTEwMjg4MEFDNEY5QUUwMi9TQzFJNDdhV0h4 SUl3R2NWSk9DT2tET1Y5bGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNrEfzBwKkdq2Z+fAjIvrcnSm5p8ElRzEaP+ij/Sy5vfLFL8wT5QZm fGeU/ntjKRL55KbZByMt8Cid0BuDD8vdpEWjRpW760uFPEjosf/bL6YMKCrv5FI1 GLEULN/hqE8POh0AVWcZIM8mPH+NUfOjae1RQWFNV0Bvx9FKYlztgXTRiYfpvuAp BlFdKOZDG+V4f1T42E6RtA1qlx0fhD71cvk0EH0qt33hW99qe/EiBGJlfcqZtxk5 5fCdyS+HJNa8Uwpo3OFPfMId0l5BLOjX71188AcpqN6mhsAQZkeJm+t11/UcsoN3 +R6bb8Phn36oDGP4ewWtlAgSptdoLJ6l -----END CERTIFICATE-----Generated at Mon Oct 20 06:54:37 2025 by rpki-client