$ rpki-client -vvf rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.mft File: Sd3R5MWp_HZmJtL6O2Y32oDqL9I.mft (raw, json) Hash identifier: Hn2/cUV60QvVz0iyizNMtcEfL3DFf+DhxOPZZ5cM6+o= Subject key identifier: E1:98:50:88:91:3C:A5:23:FB:80:33:7D:02:B2:82:62:C3:D1:7F:20 Authority key identifier: 49:DD:D1:E4:C5:A9:FC:76:66:26:D2:FA:3B:66:37:DA:80:EA:2F:D2 Certificate issuer: /CN=A916156D/serialNumber=49DDD1E4C5A9FC766626D2FA3B6637DA80EA2FD2 Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.mft Manifest number: 42 Signing time: Sun 19 Oct 2025 10:54:56 +0000 Manifest this update: Sun 19 Oct 2025 10:54:56 +0000 Manifest next update: Sun 26 Oct 2025 10:54:56 +0000 Files and hashes: 1: Sd3R5MWp_HZmJtL6O2Y32oDqL9I.crl (hash: rmc2dapHlh+T2v2S4zm/CV94p7aHK81TbumAk8JzkDc=) 2: 850105504F3D11F0A0960F7CC4F9AE02.roa (hash: ycoxpKT+DpgcLoAUSWd+EWSk4JnPGKou98k0R1luHMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.crl rsync://rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916156D, serialNumber=49DDD1E4C5A9FC766626D2FA3B6637DA80EA2FD2 Validity Not Before: Oct 19 10:54:56 2025 GMT Not After : Oct 26 10:54:56 2025 GMT Subject: CN=68f4c380-787a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:52:d3:b8:f3:b8:41:d2:fc:45:d7:e9:4f:49: 05:04:f5:c5:49:20:a9:8d:a7:49:d9:46:54:ba:e9: e0:84:ba:9c:43:1a:d7:e6:85:6f:bf:7f:06:15:29: dd:a5:43:5d:ca:46:a8:55:cc:04:b4:ea:7d:55:2e: 4d:0f:bc:85:70:3c:28:6e:b3:8d:07:13:ba:89:bd: d7:5f:e1:9b:cb:9b:86:9d:01:d6:43:ad:5c:d7:ed: f7:5f:8a:7e:61:8c:ec:a7:db:f9:b1:d1:c9:5b:03: 4c:19:90:a7:64:79:b6:2b:f1:de:79:f8:b0:cf:90: c6:ca:de:33:7a:dd:30:25:12:74:8a:96:a6:6b:4e: d6:d5:e8:2f:57:0f:5f:3f:69:ae:6d:3e:ec:f0:5e: 86:7d:49:2d:f9:15:4c:39:a8:ac:60:97:23:9c:7a: ec:4c:0b:9c:21:4c:14:9d:6c:d0:1b:2f:2c:ed:ff: b4:33:e2:bc:81:b9:6d:9c:78:a3:a7:16:a4:f8:9c: 68:33:e1:e1:85:08:7b:ae:46:96:c9:14:28:57:98: bd:04:54:da:99:c1:29:60:26:b0:82:72:02:b2:0c: 73:e0:a2:9c:bf:f3:48:af:f9:e1:71:16:bb:27:6c: 99:fc:98:34:9e:d6:9b:b4:e5:58:47:bf:61:20:c6: 1f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:98:50:88:91:3C:A5:23:FB:80:33:7D:02:B2:82:62:C3:D1:7F:20 X509v3 Authority Key Identifier: keyid:49:DD:D1:E4:C5:A9:FC:76:66:26:D2:FA:3B:66:37:DA:80:EA:2F:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:d4:89:7f:42:73:15:7e:67:3a:85:9d:49:9a:41:58:f4:0a: 3e:f9:15:bd:c0:26:23:d7:0e:c5:22:7d:f7:eb:51:d8:48:02: b6:26:68:db:89:60:bb:57:bf:19:60:be:84:e7:2e:62:65:08: 71:06:ad:00:f5:79:86:f4:0c:cb:48:70:54:81:22:cd:f8:3d: ad:06:9f:89:b1:18:85:0f:fb:b0:f0:a8:c0:61:86:13:84:54: 6f:b9:28:dd:3f:e6:f5:7b:48:b8:bc:1d:2b:b2:13:6b:d4:55: 51:fe:c7:aa:26:f6:56:e3:53:2f:c7:8c:ae:e3:3a:83:59:08: cb:21:78:bc:31:6f:10:af:4e:f2:16:03:22:4c:67:ee:f8:2d: 85:88:55:f7:38:36:be:32:fb:be:8f:90:9b:47:4c:8d:c5:5e: 3f:b4:d8:75:d7:2e:40:83:92:ec:1f:fd:f0:f0:82:3d:a6:a7: 3e:7e:24:d5:71:17:47:6c:40:d7:3c:84:5b:78:25:a3:7c:fc: c0:47:07:5d:9f:53:08:56:36:86:33:85:e1:d4:3a:ac:f4:f9: 7d:69:dd:2b:33:94:8e:b2:42:de:19:71:7e:12:52:85:57:71: e3:d6:7e:50:3a:9c:6c:1f:d8:d7:4d:bb:3e:2e:6f:42:15:e7: 50:21:78:5e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTU2RDExMC8GA1UEBRMoNDlEREQxRTRDNUE5RkM3NjY2MjZEMkZBM0I2NjM3REE4 MEVBMkZEMjAeFw0yNTEwMTkxMDU0NTZaFw0yNTEwMjYxMDU0NTZaMBgxFjAUBgNV BAMTDTY4ZjRjMzgwLTc4N2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChUtO487hB0vxF1+lPSQUE9cVJIKmNp0nZRlS66eCEupxDGtfmhW+/fwYVKd2l Q13KRqhVzAS06n1VLk0PvIVwPChus40HE7qJvddf4ZvLm4adAdZDrVzX7fdfin5h jOyn2/mx0clbA0wZkKdkebYr8d55+LDPkMbK3jN63TAlEnSKlqZrTtbV6C9XD18/ aa5tPuzwXoZ9SS35FUw5qKxglyOceuxMC5whTBSdbNAbLyzt/7Qz4ryBuW2ceKOn FqT4nGgz4eGFCHuuRpbJFChXmL0EVNqZwSlgJrCCcgKyDHPgopy/80iv+eFxFrsn bJn8mDSe1pu05VhHv2Egxh8XAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4ZhQiJE8 pSP7gDN9ArKCYsPRfyAwHwYDVR0jBBgwFoAUSd3R5MWp/HZmJtL6O2Y32oDqL9Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxNTZELzdDRDNERUFDNEU4 OTExRjBBODFDNjcxNkM0RjlBRTAyL1NkM1I1TVdwX0habUp0TDZPMlkzMm9EcUw5 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU2QzUjVNV3BfSFptSnRMNk8yWTMyb0RxTDlJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYx NTZELzdDRDNERUFDNEU4OTExRjBBODFDNjcxNkM0RjlBRTAyL1NkM1I1TVdwX0ha bUp0TDZPMlkzMm9EcUw5SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALPUiX9CcxV+ZzqFnUmaQVj0Cj75Fb3AJiPXDsUifffrUdhIArYmaNuJ YLtXvxlgvoTnLmJlCHEGrQD1eYb0DMtIcFSBIs34Pa0Gn4mxGIUP+7DwqMBhhhOE VG+5KN0/5vV7SLi8HSuyE2vUVVH+x6om9lbjUy/HjK7jOoNZCMsheLwxbxCvTvIW AyJMZ+74LYWIVfc4Nr4y+76PkJtHTI3FXj+02HXXLkCDkuwf/fDwgj2mpz5+JNVx F0dsQNc8hFt4JaN8/MBHB12fUwhWNoYzheHUOqz0+X1p3SszlI6yQt4ZcX4SUoVX cePWflA6nGwf2NdNuz4ub0IV51AheF4= -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:15 2025 by rpki-client