$ rpki-client -vvf rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft File: Sp1OqbVF6hBQTTa2X6owSfmezUY.mft (raw, json) Hash identifier: vntj8coJMO8RWpngTct/CU8OUNbk4Wj3BYM+VLka5VE= Subject key identifier: 47:F4:11:0E:19:7B:00:B4:B8:6D:EF:9B:9E:14:CC:88:82:A6:7E:05 Authority key identifier: 4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 Certificate issuer: /CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Certificate serial: 1006 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft Manifest number: 0FFA Signing time: Sat 18 Oct 2025 18:03:22 +0000 Manifest this update: Sat 18 Oct 2025 18:03:21 +0000 Manifest next update: Sat 25 Oct 2025 18:03:21 +0000 Files and hashes: 1: Sp1OqbVF6hBQTTa2X6owSfmezUY.crl (hash: Xo9PDczL6bEpgckKGJHO1X3FzxFMmZ9pfCkgihk8L1o=) 2: D34588789F8A11ECB8E03812C4F9AE02.roa (hash: WPeDV8L3X0hykJxlwLabrBRbZ1a+b6BWMeh2+gJp+KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:03:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4102 (0x1006) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FAD2, serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Validity Not Before: Oct 18 18:03:21 2025 GMT Not After : Oct 25 18:03:21 2025 GMT Subject: CN=68f3d669-8ec4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f7:7b:ef:34:58:b5:51:35:1b:d0:05:17:7b: dd:3c:23:59:29:49:61:c4:fd:0e:59:83:61:32:9b: 02:75:70:a1:82:1e:f8:63:f9:dc:4f:53:d5:81:8d: 2c:80:3e:42:a0:42:04:3d:8b:47:aa:93:87:de:47: 0e:9b:e9:29:c6:5f:48:7d:25:c2:3a:41:fb:aa:7c: d0:4d:09:85:38:a3:aa:77:78:82:a3:78:e7:de:0b: 9a:26:55:8d:60:ec:e7:12:54:f8:c0:24:47:ad:0e: 61:9e:f7:f5:7c:23:a4:da:5c:ff:29:5e:16:23:42: 5b:69:de:b0:6b:5c:25:a1:bf:b2:66:4b:0e:72:f5: c2:54:83:57:0a:0c:1e:b6:09:3c:bf:d1:ba:4c:d8: 07:b0:28:c6:99:e8:57:0c:12:4f:04:b0:6c:29:8a: b4:fe:55:70:a3:51:76:8b:18:40:78:61:18:28:45: c8:69:7b:d3:b8:fd:c7:54:13:4c:4c:53:54:ef:b6: 25:68:8b:63:bf:f8:ee:44:40:13:87:38:2a:23:17: ec:42:e8:57:2b:22:6d:e8:80:50:a7:2a:1b:17:b3: cb:04:fc:0a:da:08:40:e7:ec:b9:4c:94:51:78:89: 90:ef:24:19:1b:e8:c4:74:02:6a:36:30:1c:b6:10: c3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:F4:11:0E:19:7B:00:B4:B8:6D:EF:9B:9E:14:CC:88:82:A6:7E:05 X509v3 Authority Key Identifier: keyid:4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:6a:55:d2:0a:c5:d9:b0:b5:df:c7:04:c5:4e:30:5b:e2:0e: 25:bd:8f:d7:d1:0a:6d:16:64:31:c6:88:70:b5:d6:fa:b8:fb: 7a:9c:0d:d3:58:d4:fc:8e:32:cc:4e:c3:4a:6a:4e:80:77:b4: 87:3a:fc:e8:37:9b:57:27:0e:01:af:10:5d:55:d1:a4:c7:b4: a1:35:ab:9a:20:34:66:1b:fd:95:ff:19:bf:97:9c:f9:38:7d: 44:c0:ac:fd:21:b8:c3:83:85:20:f2:ca:6f:05:71:1b:f7:67: 71:45:dd:88:63:79:74:40:88:ff:a0:67:a3:d8:7b:a1:fa:da: 62:96:a7:7f:c8:ef:69:bb:f2:45:0b:69:15:87:7b:60:70:6c: 12:1f:fa:b8:dc:84:20:6b:18:da:f9:1d:73:99:8f:ca:51:c1: 4a:ad:d8:24:0c:fe:b9:5a:83:29:70:73:9c:93:98:78:50:a7: 35:6b:e1:5e:c5:54:62:45:96:fe:a0:d2:b2:49:bb:ec:13:6f: 27:28:84:14:85:4a:1c:51:0c:9d:a9:91:ed:d4:20:de:05:ad: 43:f2:47:c2:5a:6f:45:17:9d:e5:4d:a6:d2:af:61:2a:7e:b1: f8:6b:0c:c3:6d:12:db:1a:fc:b4:0b:b8:70:0b:57:85:50:e5: d9:1b:7c:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBRDIxMTAvBgNVBAUTKDRBOUQ0RUE5QjU0NUVBMTA1MDREMzZCNjVGQUEzMDQ5 Rjk5RUNENDYwHhcNMjUxMDE4MTgwMzIxWhcNMjUxMDI1MTgwMzIxWjAYMRYwFAYD VQQDEw02OGYzZDY2OS04ZWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Pd77zRYtVE1G9AFF3vdPCNZKUlhxP0OWYNhMpsCdXChgh74Y/ncT1PVgY0s gD5CoEIEPYtHqpOH3kcOm+kpxl9IfSXCOkH7qnzQTQmFOKOqd3iCo3jn3guaJlWN YOznElT4wCRHrQ5hnvf1fCOk2lz/KV4WI0Jbad6wa1wlob+yZksOcvXCVINXCgwe tgk8v9G6TNgHsCjGmehXDBJPBLBsKYq0/lVwo1F2ixhAeGEYKEXIaXvTuP3HVBNM TFNU77YlaItjv/juREAThzgqIxfsQuhXKyJt6IBQpyobF7PLBPwK2ghA5+y5TJRR eImQ7yQZG+jEdAJqNjActhDDVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEf0EQ4Z ewC0uG3vm54UzIiCpn4FMB8GA1UdIwQYMBaAFEqdTqm1ReoQUE02tl+qMEn5ns1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkFEMi84MzRBQzQ3ODU5 QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZoQlFUVGEyWDZvd1NmbWV6 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NwMU9xYlZGNmhCUVRUYTJYNm93U2ZtZXpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkFEMi84MzRBQzQ3ODU5QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZo QlFUVGEyWDZvd1NmbWV6VVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkalXSCsXZsLXfxwTFTjBb4g4lvY/X0QptFmQxxohwtdb6uPt6nA3T WNT8jjLMTsNKak6Ad7SHOvzoN5tXJw4BrxBdVdGkx7ShNauaIDRmG/2V/xm/l5z5 OH1EwKz9IbjDg4Ug8spvBXEb92dxRd2IY3l0QIj/oGej2Huh+tpilqd/yO9pu/JF C2kVh3tgcGwSH/q43IQgaxja+R1zmY/KUcFKrdgkDP65WoMpcHOck5h4UKc1a+Fe xVRiRZb+oNKySbvsE28nKIQUhUocUQydqZHt1CDeBa1D8kfCWm9FF53lTabSr2Eq frH4awzDbRLbGvy0C7hwC1eFUOXZG3x+ -----END CERTIFICATE-----Generated at Mon Oct 20 04:48:38 2025 by rpki-client