$ rpki-client -vvf rpki.apnic.net/member_repository/A915D1F2/AF321D3CFE7C11E88689C655C4F9AE02/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.mft File: B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.mft (raw, json) Hash identifier: Gp26b46P78UvgjOdgzcqUWgULJUmDm9/abOu0088Wl0= Subject key identifier: A0:27:68:A4:3F:48:DB:FD:94:F2:F3:46:FC:86:C3:A5:9B:1A:8D:5E Authority key identifier: 07:53:2C:F6:D2:BC:4C:A9:D9:27:F3:07:D0:E6:B8:28:77:D8:EE:4D Certificate issuer: /CN=A915D1F2/serialNumber=07532CF6D2BC4CA9D927F307D0E6B82877D8EE4D Certificate serial: 11CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D1F2/AF321D3CFE7C11E88689C655C4F9AE02/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.mft Manifest number: 11C5 Signing time: Sat 18 Oct 2025 17:43:16 +0000 Manifest this update: Sat 18 Oct 2025 17:43:15 +0000 Manifest next update: Sat 25 Oct 2025 17:43:15 +0000 Files and hashes: 1: B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.crl (hash: CBGDIESEVrRwoVuHlkDVAncz4Qnsc9EdxmpsI55HX0Y=) 2: 9467361CFEAA11E89E73E75BC4F9AE02.roa (hash: a/gC4lAR8I+9GlaLEIrNcMq2t/2/TV0+WCxlGU4GibY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D1F2/AF321D3CFE7C11E88689C655C4F9AE02/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.crl rsync://rpki.apnic.net/member_repository/A915D1F2/AF321D3CFE7C11E88689C655C4F9AE02/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:43:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4559 (0x11cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D1F2, serialNumber=07532CF6D2BC4CA9D927F307D0E6B82877D8EE4D Validity Not Before: Oct 18 17:43:15 2025 GMT Not After : Oct 25 17:43:15 2025 GMT Subject: CN=68f3d1b3-9f2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7f:29:84:af:64:56:1d:42:7d:3d:f0:cf:e8: 03:91:19:11:2f:3e:20:16:83:fe:97:0f:75:84:f3: 7f:a8:70:e4:f8:f1:5e:d1:cf:13:4b:46:e2:5f:85: a1:cd:13:e8:9e:b9:72:cb:b3:c1:b2:66:23:dc:e5: b2:bd:20:12:6c:b2:7d:6c:df:60:91:cc:dd:a3:50: f7:98:44:54:a3:85:2d:32:1f:31:56:43:ee:15:c4: 28:d6:8b:62:2c:8b:1a:a7:8a:a4:c8:d6:2f:00:a3: 51:e1:5a:c9:da:92:a8:e2:e2:7d:2a:a9:ad:62:b9: 10:30:85:3a:88:22:15:c6:f1:d8:73:0d:ec:47:1f: a9:7c:b8:27:0e:72:f2:e8:b2:3e:30:4d:92:28:1a: 4f:17:80:67:ab:0a:37:3b:1d:2d:e1:62:54:8e:30: 60:02:15:de:a4:b7:65:e0:e1:8e:75:21:06:fd:01: 65:f8:0b:4c:9c:74:94:cf:bb:79:7f:d7:69:54:3c: 8d:11:03:3a:49:15:97:3c:4e:3e:64:0e:94:65:f9: a7:29:3a:c1:82:32:f3:03:9e:ee:d3:9e:42:0a:d2: 8b:d0:4e:75:30:f0:52:7f:aa:36:ce:c4:5c:cb:7b: d8:f3:28:7f:0d:c0:6b:58:2c:ca:a3:52:4c:56:df: b7:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:27:68:A4:3F:48:DB:FD:94:F2:F3:46:FC:86:C3:A5:9B:1A:8D:5E X509v3 Authority Key Identifier: keyid:07:53:2C:F6:D2:BC:4C:A9:D9:27:F3:07:D0:E6:B8:28:77:D8:EE:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D1F2/AF321D3CFE7C11E88689C655C4F9AE02/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D1F2/AF321D3CFE7C11E88689C655C4F9AE02/B1Ms9tK8TKnZJ_MH0Oa4KHfY7k0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:9c:51:bb:3f:78:ef:88:73:20:be:48:54:69:8a:c5:79:aa: c8:c7:d8:17:84:e5:84:d7:7d:23:25:51:66:fb:16:65:f5:5b: e4:56:53:d0:11:0f:3b:6b:26:44:5f:12:96:22:24:a8:6c:24: 62:d9:78:9a:0e:33:b0:b9:8c:87:7e:7a:3d:a1:7e:4d:c8:7b: f8:db:c1:38:67:8c:30:29:64:43:92:4e:54:f4:4a:d4:70:c2: 7f:a9:79:86:dc:95:7e:8d:19:f7:37:34:1a:98:c1:27:41:b3: ac:b5:3e:8f:ad:74:c4:f5:91:ca:f6:ec:6c:c9:93:41:e6:cb: 8d:a8:6b:5f:18:6d:37:2e:ce:9b:05:39:8a:09:bd:58:cd:c2: b2:db:4a:36:83:ba:d3:01:0d:16:31:71:4e:bf:60:2b:b5:3c: 22:48:31:b3:bc:fb:de:a2:d7:68:68:e1:f0:0a:a7:7d:f6:11: a7:b3:aa:3d:38:05:50:2b:e1:74:26:9b:7d:8b:11:6c:99:f9: 0c:27:dd:f0:16:fc:bb:fc:c6:11:1f:93:a1:83:c4:50:27:e3: 6d:bd:77:de:87:86:02:b3:68:2b:a7:34:d7:62:e7:2a:68:62: a7:03:44:53:6f:bb:24:48:87:46:c8:cf:7e:9e:ed:dd:83:99: 8d:6f:17:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQxRjIxMTAvBgNVBAUTKDA3NTMyQ0Y2RDJCQzRDQTlEOTI3RjMwN0QwRTZCODI4 NzdEOEVFNEQwHhcNMjUxMDE4MTc0MzE1WhcNMjUxMDI1MTc0MzE1WjAYMRYwFAYD VQQDEw02OGYzZDFiMy05ZjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA038phK9kVh1CfT3wz+gDkRkRLz4gFoP+lw91hPN/qHDk+PFe0c8TS0biX4Wh zRPonrlyy7PBsmYj3OWyvSASbLJ9bN9gkczdo1D3mERUo4UtMh8xVkPuFcQo1oti LIsap4qkyNYvAKNR4VrJ2pKo4uJ9KqmtYrkQMIU6iCIVxvHYcw3sRx+pfLgnDnLy 6LI+ME2SKBpPF4Bnqwo3Ox0t4WJUjjBgAhXepLdl4OGOdSEG/QFl+AtMnHSUz7t5 f9dpVDyNEQM6SRWXPE4+ZA6UZfmnKTrBgjLzA57u055CCtKL0E51MPBSf6o2zsRc y3vY8yh/DcBrWCzKo1JMVt+3nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKAnaKQ/ SNv9lPLzRvyGw6WbGo1eMB8GA1UdIwQYMBaAFAdTLPbSvEyp2SfzB9DmuCh32O5N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDFGMi9BRjMyMUQzQ0ZF N0MxMUU4ODY4OUM2NTVDNEY5QUUwMi9CMU1zOXRLOFRLblpKX01IME9hNEtIZlk3 azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0IxTXM5dEs4VEtuWkpfTUgwT2E0S0hmWTdrMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDFGMi9BRjMyMUQzQ0ZFN0MxMUU4ODY4OUM2NTVDNEY5QUUwMi9CMU1zOXRLOFRL blpKX01IME9hNEtIZlk3azAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAanFG7P3jviHMgvkhUaYrFearIx9gXhOWE130jJVFm+xZl9VvkVlPQ EQ87ayZEXxKWIiSobCRi2XiaDjOwuYyHfno9oX5NyHv428E4Z4wwKWRDkk5U9ErU cMJ/qXmG3JV+jRn3NzQamMEnQbOstT6PrXTE9ZHK9uxsyZNB5suNqGtfGG03Ls6b BTmKCb1YzcKy20o2g7rTAQ0WMXFOv2ArtTwiSDGzvPveotdoaOHwCqd99hGns6o9 OAVQK+F0Jpt9ixFsmfkMJ93wFvy7/MYRH5Ohg8RQJ+NtvXfeh4YCs2grpzTXYucq aGKnA0RTb7skSIdGyM9+nu3dg5mNbxc/ -----END CERTIFICATE-----Generated at Mon Oct 20 01:48:23 2025 by rpki-client