$ rpki-client -vvf rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft File: 0rolH4MRa7tToMiSMQ9P963v_es.mft (raw, json) Hash identifier: 0xD5lvYkFgDaiiFWfvQPn0QKIRQFpq9d1oTm+XNDBBA= Subject key identifier: 0B:E3:01:BE:0A:1B:7E:5A:11:1A:EF:42:B0:0F:DF:D4:21:FC:7D:BE Authority key identifier: D2:BA:25:1F:83:11:6B:BB:53:A0:C8:92:31:0F:4F:F7:AD:EF:FD:EB Certificate issuer: /CN=A9175B42/serialNumber=D2BA251F83116BBB53A0C892310F4FF7ADEFFDEB Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft Manifest number: 57 Signing time: Sun 19 Oct 2025 10:33:24 +0000 Manifest this update: Sun 19 Oct 2025 10:33:23 +0000 Manifest next update: Sun 26 Oct 2025 10:33:23 +0000 Files and hashes: 1: 0rolH4MRa7tToMiSMQ9P963v_es.crl (hash: pJVHKnCf9xLvD25Z19kzUDudJLs036ubAC4OoyKzT+Y=) 2: EABFF866266511F0A3060E66C4F9AE02.roa (hash: vMnU2L7BbF2F7HptBFQtmVOzrhuM46aGtKFKK+TOQcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.crl rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175B42, serialNumber=D2BA251F83116BBB53A0C892310F4FF7ADEFFDEB Validity Not Before: Oct 19 10:33:23 2025 GMT Not After : Oct 26 10:33:23 2025 GMT Subject: CN=68f4be73-1ca3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:66:d8:9e:65:77:bc:7e:59:99:1e:c5:36:6a: ff:52:fd:d9:45:67:77:b5:26:ce:cc:3a:3f:c5:a4: c1:97:cd:76:57:4d:0c:9c:01:b0:9b:60:31:75:a9: 26:df:2d:29:0d:82:7e:8e:81:fe:ab:4b:d9:f9:48: 12:f8:35:19:3a:87:43:d3:3f:bf:54:49:5f:de:a1: 5e:68:ba:fd:53:35:1c:97:f3:73:25:7c:e6:51:30: 88:e7:78:24:05:cd:09:e8:ea:4a:de:f9:f6:4c:d9: b9:be:ad:3d:1f:57:40:bc:3c:a8:d2:93:c8:19:4d: 80:05:32:a7:62:8c:e8:dc:93:02:30:5c:ae:da:79: 4a:d9:a2:f8:c3:66:d8:2f:9b:42:0f:90:b8:21:b6: 48:45:25:f8:31:c3:bc:b5:5a:14:3a:4c:00:48:8a: ab:7a:32:cd:2c:ff:09:04:75:94:bd:46:31:c6:6a: 46:d7:1d:c0:64:94:3c:ff:93:c4:ee:04:12:6c:e4: 27:ec:ee:b3:74:92:26:1d:49:f2:f4:33:88:92:8a: bc:fd:40:c4:df:50:33:f4:a0:9b:33:cf:6d:62:1d: 8d:c5:8e:64:a1:0d:30:15:9d:46:69:c9:0c:b8:1e: bd:be:fc:42:b2:b8:82:e4:f5:de:38:0b:b9:6a:02: 4d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:E3:01:BE:0A:1B:7E:5A:11:1A:EF:42:B0:0F:DF:D4:21:FC:7D:BE X509v3 Authority Key Identifier: keyid:D2:BA:25:1F:83:11:6B:BB:53:A0:C8:92:31:0F:4F:F7:AD:EF:FD:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:8d:88:54:02:83:c6:95:4a:d1:2e:e8:f3:5a:ba:b4:4c:42: 93:ec:21:df:f1:89:f4:df:20:a7:59:be:88:88:cd:d1:36:59: 22:7d:c9:30:70:3f:70:06:38:f9:d9:b7:30:7e:fe:aa:32:60: c6:0f:1e:ae:13:14:48:14:f5:a6:8a:4f:df:a3:a8:ae:01:f1: 01:81:48:b6:89:93:f2:d3:b9:68:37:79:c9:ac:20:aa:35:9d: 95:9d:37:26:f4:5e:d5:a8:9d:42:e4:b4:f3:60:41:a5:94:23: b8:b5:56:13:2a:b4:0a:6d:d5:5e:6b:c7:59:d6:93:f2:72:dc: 8e:a4:fa:f5:34:02:95:6d:82:a7:00:f8:1a:eb:60:f1:d2:23: a1:1e:e5:bc:d9:e1:0a:fa:1f:9b:94:31:d9:e2:b0:71:1d:e0: 11:28:90:54:1b:59:b6:f0:3a:41:56:12:70:8f:8f:49:e3:eb: ee:ba:9c:f6:e8:2a:3d:cc:29:3d:2d:15:5e:d9:04:1c:d1:48: 44:e8:7c:94:c9:1c:48:b0:88:6f:da:8d:1b:a0:fb:51:b3:80: 45:66:f8:c3:b9:50:bc:2d:6b:db:ce:00:39:99:2f:2c:fb:b3: ff:27:b5:ff:c1:09:0f:c6:09:8e:8a:12:1f:0a:e2:01:c0:0e: 8e:70:40:90 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NUI0MjExMC8GA1UEBRMoRDJCQTI1MUY4MzExNkJCQjUzQTBDODkyMzEwRjRGRjdB REVGRkRFQjAeFw0yNTEwMTkxMDMzMjNaFw0yNTEwMjYxMDMzMjNaMBgxFjAUBgNV BAMTDTY4ZjRiZTczLTFjYTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDiZtieZXe8flmZHsU2av9S/dlFZ3e1Js7MOj/FpMGXzXZXTQycAbCbYDF1qSbf LSkNgn6Ogf6rS9n5SBL4NRk6h0PTP79USV/eoV5ouv1TNRyX83MlfOZRMIjneCQF zQno6kre+fZM2bm+rT0fV0C8PKjSk8gZTYAFMqdijOjckwIwXK7aeUrZovjDZtgv m0IPkLghtkhFJfgxw7y1WhQ6TABIiqt6Ms0s/wkEdZS9RjHGakbXHcBklDz/k8Tu BBJs5Cfs7rN0kiYdSfL0M4iSirz9QMTfUDP0oJszz21iHY3FjmShDTAVnUZpyQy4 Hr2+/EKyuILk9d44C7lqAk2rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUC+MBvgob floRGu9CsA/f1CH8fb4wHwYDVR0jBBgwFoAU0rolH4MRa7tToMiSMQ9P963v/esw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1QjQyLzQ4RkVCMUMwMjY2 NTExRjA4MDE1QUI2MkM0RjlBRTAyLzByb2xINE1SYTd0VG9NaVNNUTlQOTYzdl9l cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMHJvbEg0TVJhN3RUb01pU01ROVA5NjN2X2VzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 QjQyLzQ4RkVCMUMwMjY2NTExRjA4MDE1QUI2MkM0RjlBRTAyLzByb2xINE1SYTd0 VG9NaVNNUTlQOTYzdl9lcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKmNiFQCg8aVStEu6PNaurRMQpPsId/xifTfIKdZvoiIzdE2WSJ9yTBw P3AGOPnZtzB+/qoyYMYPHq4TFEgU9aaKT9+jqK4B8QGBSLaJk/LTuWg3ecmsIKo1 nZWdNyb0XtWonULktPNgQaWUI7i1VhMqtApt1V5rx1nWk/Jy3I6k+vU0ApVtgqcA +BrrYPHSI6Ee5bzZ4Qr6H5uUMdnisHEd4BEokFQbWbbwOkFWEnCPj0nj6+66nPbo Kj3MKT0tFV7ZBBzRSETofJTJHEiwiG/ajRug+1GzgEVm+MO5ULwta9vOADmZLyz7 s/8ntf/BCQ/GCY6KEh8K4gHADo5wQJA= -----END CERTIFICATE-----Generated at Mon Oct 20 21:39:32 2025 by rpki-client