$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft File: AiMNlU5PPWqtRJXXTNs-4PKHygc.mft (raw, json) Hash identifier: XEhve860I1IwW5bg0mPbAvc9oFbvuPfDsmomheRE4O4= Subject key identifier: 73:44:67:D6:94:E8:D7:12:4E:91:94:44:6D:29:CD:B0:F6:11:B1:5E Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 240E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft Manifest number: 23DF Signing time: Mon 20 Oct 2025 16:01:24 +0000 Manifest this update: Mon 20 Oct 2025 16:01:23 +0000 Manifest next update: Mon 27 Oct 2025 16:01:23 +0000 Files and hashes: 1: AiMNlU5PPWqtRJXXTNs-4PKHygc.crl (hash: 6mpMKpi0e/gYuRaQXpjUca3THmysjRz5PkJTk7s3CK4=) 2: 32B76C00562411E79589C739C4F9AE02.roa (hash: kqhMnfAhDmR4IZ0Axmi5T1EoQ78FgGAVuc9AOLKd1P0=) 3: 7DBDA87C561A11E79F98831DC4F9AE02.roa (hash: m/PBzrUGWugPaCGagvAaIChjvxuAIIbVmkI5yx8UVT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9230 (0x240e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6, serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Validity Not Before: Oct 20 16:01:23 2025 GMT Not After : Oct 27 16:01:23 2025 GMT Subject: CN=68f65cd3-16e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3b:06:35:9c:cd:55:79:8c:d1:72:9c:2d:b5: 5b:3e:44:cf:a5:77:dd:14:08:66:9e:e1:fa:c1:55: f8:f1:a8:c9:89:e2:9e:14:2b:8a:c1:77:95:22:4e: e3:aa:49:9b:f7:92:94:54:2b:58:e6:e0:bf:96:99: b2:96:c3:ac:0a:b2:31:d0:cf:be:58:e6:56:83:37: 1d:91:2c:8b:ce:48:e2:b5:e4:bb:4b:72:76:0c:54: 38:29:91:a1:d7:a5:b3:32:91:a5:d4:35:1f:8c:1e: 26:98:ca:d6:b4:3c:34:6f:a4:81:ea:d0:93:43:0e: 9c:a3:c4:38:1f:1e:c4:6d:22:4c:50:1a:8e:c9:4b: 35:8d:a3:6d:36:76:ce:18:87:06:8c:36:47:eb:9a: e7:8d:59:2f:1e:6f:31:cd:3f:5c:4c:04:d1:80:65: 79:c9:60:01:c8:09:e7:f4:cf:70:2a:45:3e:89:34: c8:ef:05:40:e3:c0:dd:38:74:2f:be:ed:c3:a2:e6: 14:c9:b3:d1:39:b8:69:59:fc:6b:91:c5:73:a9:ac: 12:f3:8b:0f:f1:c4:04:e4:b5:d2:92:a4:ff:df:4c: 5d:18:82:7c:b6:e7:6d:40:63:5b:28:72:72:bc:2a: 9e:db:c8:96:9f:a1:51:6b:77:1e:8c:08:71:aa:66: 0a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:44:67:D6:94:E8:D7:12:4E:91:94:44:6D:29:CD:B0:F6:11:B1:5E X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:36:6c:c5:c1:95:e3:d4:6a:3c:cc:8f:a3:51:55:18:e3:b1: d3:35:17:f2:32:1a:77:37:d9:0e:76:76:0e:20:d9:e2:71:15: 76:21:03:9b:0d:dc:7f:9e:08:ee:82:96:16:48:0a:9c:f6:93: fe:3f:31:7c:cb:13:6e:bc:a5:88:f6:0b:b9:bf:03:22:7a:7e: 62:c9:47:93:2b:d0:6d:21:17:c1:47:3e:0b:91:bb:dd:16:28: 74:51:7b:72:fd:6d:48:f8:7f:fa:71:46:e3:b0:c9:0d:73:70: 88:d0:dc:de:fb:fd:a0:40:db:ce:af:89:6a:4f:44:97:e9:e8: 09:28:42:3f:72:89:4b:a9:4e:46:9e:65:2d:4a:a8:83:39:98: 3d:e7:58:f5:0d:ad:10:44:fa:7e:51:dd:e6:61:48:c1:34:88: b6:e3:a8:51:32:7a:c8:45:43:a4:48:15:57:f6:06:53:91:7c: 61:ed:5f:67:5f:25:79:d4:9c:a8:a1:4c:8c:33:9a:8e:c9:7d: 68:aa:2b:77:7f:e2:f4:19:8f:96:f6:db:fd:9d:d4:2e:82:4c: c1:a3:55:25:45:b8:77:01:7f:e2:c4:98:8d:47:2f:b0:03:e4: 8f:b7:e8:f4:96:92:19:08:38:e8:16:46:79:b3:97:b3:b1:9a: a0:23:bd:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjUxMDIwMTYwMTIzWhcNMjUxMDI3MTYwMTIzWjAYMRYwFAYD VQQDEw02OGY2NWNkMy0xNmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDsGNZzNVXmM0XKcLbVbPkTPpXfdFAhmnuH6wVX48ajJieKeFCuKwXeVIk7j qkmb95KUVCtY5uC/lpmylsOsCrIx0M++WOZWgzcdkSyLzkjiteS7S3J2DFQ4KZGh 16WzMpGl1DUfjB4mmMrWtDw0b6SB6tCTQw6co8Q4Hx7EbSJMUBqOyUs1jaNtNnbO GIcGjDZH65rnjVkvHm8xzT9cTATRgGV5yWAByAnn9M9wKkU+iTTI7wVA48DdOHQv vu3DouYUybPRObhpWfxrkcVzqawS84sP8cQE5LXSkqT/30xdGIJ8tudtQGNbKHJy vCqe28iWn6FRa3cejAhxqmYKKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNEZ9aU 6NcSTpGURG0pzbD2EbFeMB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRDNi84REZFNjI4ODc4QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBX cXRSSlhYVE5zLTRQS0h5Z2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrNmzFwZXj1Go8zI+jUVUY47HTNRfyMhp3N9kOdnYOINnicRV2IQOb Ddx/ngjugpYWSAqc9pP+PzF8yxNuvKWI9gu5vwMien5iyUeTK9BtIRfBRz4Lkbvd Fih0UXty/W1I+H/6cUbjsMkNc3CI0Nze+/2gQNvOr4lqT0SX6egJKEI/colLqU5G nmUtSqiDOZg951j1Da0QRPp+Ud3mYUjBNIi246hRMnrIRUOkSBVX9gZTkXxh7V9n XyV51JyooUyMM5qOyX1oqit3f+L0GY+W9tv9ndQugkzBo1UlRbh3AX/ixJiNRy+w A+SPt+j0lpIZCDjoFkZ5s5ezsZqgI71X -----END CERTIFICATE-----Generated at Mon Oct 20 19:11:19 2025 by rpki-client