$ rpki-client -vvf rpki.apnic.net/member_repository/A916F338/D21117DC043F11ED939AE062C4F9AE02/cM1M0T4uN35eXDervHl-7ea2Yhs.mft File: cM1M0T4uN35eXDervHl-7ea2Yhs.mft (raw, json) Hash identifier: 89fkrJknxdfTXKC/vHUava+p01GT2+6r3YYcNYRkps8= Subject key identifier: 98:E4:D4:23:02:5D:B0:01:1D:DC:1A:E0:7A:0A:26:84:7A:73:0A:DD Authority key identifier: 70:CD:4C:D1:3E:2E:37:7E:5E:5C:37:AB:BC:79:7E:ED:E6:B6:62:1B Certificate issuer: /CN=A916F338/serialNumber=70CD4CD13E2E377E5E5C37ABBC797EEDE6B6621B Certificate serial: 02DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM1M0T4uN35eXDervHl-7ea2Yhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916F338/D21117DC043F11ED939AE062C4F9AE02/cM1M0T4uN35eXDervHl-7ea2Yhs.mft Manifest number: 02DA Signing time: Sun 19 Oct 2025 03:27:04 +0000 Manifest this update: Sun 19 Oct 2025 03:27:04 +0000 Manifest next update: Sun 26 Oct 2025 03:27:04 +0000 Files and hashes: 1: cM1M0T4uN35eXDervHl-7ea2Yhs.crl (hash: OiVHv0dI+d2MR/ieBiDL8GNQbvU0KPicYkHFjq80n7Q=) 2: BA5354A4044211EDBB686665C4F9AE02.roa (hash: 5D+EMadPUYOYtPY3WxKsOuXfJZW+RJaKdKnGQtm9R6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916F338/D21117DC043F11ED939AE062C4F9AE02/cM1M0T4uN35eXDervHl-7ea2Yhs.crl rsync://rpki.apnic.net/member_repository/A916F338/D21117DC043F11ED939AE062C4F9AE02/cM1M0T4uN35eXDervHl-7ea2Yhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM1M0T4uN35eXDervHl-7ea2Yhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 735 (0x2df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916F338, serialNumber=70CD4CD13E2E377E5E5C37ABBC797EEDE6B6621B Validity Not Before: Oct 19 03:27:04 2025 GMT Not After : Oct 26 03:27:04 2025 GMT Subject: CN=68f45a88-cb32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:10:4c:b6:ef:dc:74:28:d1:79:9a:88:58:62: b8:47:74:72:a4:87:8e:eb:44:f7:b9:b5:7e:05:3b: 3c:89:9c:8f:25:1f:52:b6:c6:12:ab:28:95:b9:a1: 10:63:fd:97:96:13:16:c0:60:49:37:c6:5d:18:7e: b9:3e:bf:8a:be:54:a9:7c:55:23:8d:48:a2:b9:3a: 27:8a:c8:f2:02:37:c3:d8:88:51:b5:a4:63:b1:83: 8e:9d:f3:cd:41:b8:6e:65:fe:7e:3b:8b:1a:4c:62: 36:61:7c:7a:5c:1a:81:c1:ed:f7:3c:cd:83:d1:42: c8:6f:24:16:26:a9:1b:0f:2e:96:f2:83:48:8c:c8: 05:89:23:c4:3f:33:10:9b:10:a5:f7:b7:11:cc:af: e0:b3:37:bf:a6:64:80:1d:02:53:51:d2:96:e0:8d: 79:24:78:ba:fc:b2:56:e7:50:4a:38:03:fa:a8:9d: c8:b1:6f:b7:f8:31:cf:88:ba:33:bb:be:55:06:53: 45:ef:b2:be:4e:f2:bb:59:87:2f:f6:92:04:1a:2d: dc:b2:21:bb:ff:6d:29:14:a1:4f:8b:82:50:08:5e: b4:08:e7:d8:1c:70:f9:2a:d5:15:9b:6d:86:74:67: 0e:68:9b:c6:1c:5e:6d:fa:ac:ae:78:64:74:c8:a9: 7c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:E4:D4:23:02:5D:B0:01:1D:DC:1A:E0:7A:0A:26:84:7A:73:0A:DD X509v3 Authority Key Identifier: keyid:70:CD:4C:D1:3E:2E:37:7E:5E:5C:37:AB:BC:79:7E:ED:E6:B6:62:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916F338/D21117DC043F11ED939AE062C4F9AE02/cM1M0T4uN35eXDervHl-7ea2Yhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM1M0T4uN35eXDervHl-7ea2Yhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916F338/D21117DC043F11ED939AE062C4F9AE02/cM1M0T4uN35eXDervHl-7ea2Yhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:d9:45:63:52:20:50:c3:da:6c:54:dd:28:ee:aa:bb:3b:2e: df:4e:18:bf:eb:20:61:b1:c8:1b:4f:e2:78:e4:39:55:66:e0: 46:45:08:3c:aa:6b:c5:c7:bd:94:05:b4:68:e5:35:b2:84:70: 72:51:b7:85:de:e7:b3:4d:5e:87:ba:d0:f2:17:f5:5f:15:76: 7e:6a:a3:95:dd:b4:69:d4:14:8e:24:52:25:4d:dc:63:66:05: 4d:6a:39:f1:51:ed:ba:7d:72:fa:67:2b:59:63:3d:86:29:90: 38:e8:a4:b9:33:aa:5e:22:9f:2e:a7:7b:81:7f:00:ed:48:d5: a9:f2:62:aa:17:84:f7:cf:2e:69:4c:40:71:fc:3d:38:76:83: 68:93:57:74:d0:ea:12:96:ce:87:12:36:98:eb:88:eb:6e:fc: 29:b8:f8:9b:ed:cc:9f:dc:8b:ae:fe:1b:6f:cc:3b:0d:02:1b: 5d:4b:6a:cf:52:37:ef:31:22:15:55:4d:88:46:86:95:55:16: 24:cd:bb:f4:7d:6f:22:f3:08:47:0e:7e:dc:2c:be:d7:7e:43: e0:c3:fd:aa:43:2c:99:44:fd:59:ff:a2:cd:f3:76:15:a8:c0: c5:8d:c2:aa:4f:76:88:8e:5a:dc:84:ee:20:67:9a:b6:94:6b: 03:64:d9:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkYzMzgxMTAvBgNVBAUTKDcwQ0Q0Q0QxM0UyRTM3N0U1RTVDMzdBQkJDNzk3RUVE RTZCNjYyMUIwHhcNMjUxMDE5MDMyNzA0WhcNMjUxMDI2MDMyNzA0WjAYMRYwFAYD VQQDEw02OGY0NWE4OC1jYjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxBMtu/cdCjReZqIWGK4R3RypIeO60T3ubV+BTs8iZyPJR9StsYSqyiVuaEQ Y/2XlhMWwGBJN8ZdGH65Pr+KvlSpfFUjjUiiuTonisjyAjfD2IhRtaRjsYOOnfPN QbhuZf5+O4saTGI2YXx6XBqBwe33PM2D0ULIbyQWJqkbDy6W8oNIjMgFiSPEPzMQ mxCl97cRzK/gsze/pmSAHQJTUdKW4I15JHi6/LJW51BKOAP6qJ3IsW+3+DHPiLoz u75VBlNF77K+TvK7WYcv9pIEGi3csiG7/20pFKFPi4JQCF60COfYHHD5KtUVm22G dGcOaJvGHF5t+qyueGR0yKl8LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJjk1CMC XbABHdwa4HoKJoR6cwrdMB8GA1UdIwQYMBaAFHDNTNE+Ljd+Xlw3q7x5fu3mtmIb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RjMzOC9EMjExMTdEQzA0 M0YxMUVEOTM5QUUwNjJDNEY5QUUwMi9jTTFNMFQ0dU4zNWVYRGVydkhsLTdlYTJZ aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NNMU0wVDR1TjM1ZVhEZXJ2SGwtN2VhMllocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RjMzOC9EMjExMTdEQzA0M0YxMUVEOTM5QUUwNjJDNEY5QUUwMi9jTTFNMFQ0dU4z NWVYRGVydkhsLTdlYTJZaHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn2UVjUiBQw9psVN0o7qq7Oy7fThi/6yBhscgbT+J45DlVZuBGRQg8 qmvFx72UBbRo5TWyhHByUbeF3uezTV6HutDyF/VfFXZ+aqOV3bRp1BSOJFIlTdxj ZgVNajnxUe26fXL6ZytZYz2GKZA46KS5M6peIp8up3uBfwDtSNWp8mKqF4T3zy5p TEBx/D04doNok1d00OoSls6HEjaY64jrbvwpuPib7cyf3Iuu/htvzDsNAhtdS2rP UjfvMSIVVU2IRoaVVRYkzbv0fW8i8whHDn7cLL7XfkPgw/2qQyyZRP1Z/6LN83YV qMDFjcKqT3aIjlrchO4gZ5q2lGsDZNnF -----END CERTIFICATE-----Generated at Mon Oct 20 14:00:37 2025 by rpki-client