$ rpki-client -vvf rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft File: D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft (raw, json) Hash identifier: QZGp7Nc+QvY8LQu6MMTMThOLbpPb6BO4tm6WY8WyuLc= Subject key identifier: 6D:D5:9F:11:FC:F1:58:BA:F8:E0:4A:32:BB:16:D8:BE:69:AC:4B:E4 Authority key identifier: 0F:54:5E:62:73:D7:C9:7E:99:95:41:1F:76:D5:C4:F0:06:BB:51:86 Certificate issuer: /CN=A918A05D/serialNumber=0F545E6273D7C97E9995411F76D5C4F006BB5186 Certificate serial: 01C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft Manifest number: 01AE Signing time: Sun 19 Oct 2025 06:05:39 +0000 Manifest this update: Sun 19 Oct 2025 06:05:39 +0000 Manifest next update: Sun 26 Oct 2025 06:05:39 +0000 Files and hashes: 1: D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl (hash: 4TsgL+h4M0kWnLLts9G83m0fS3F81hbP70SE1Bq1zIw=) 2: 06856B04A5EA11F095618A7CC4F9AE02.roa (hash: TuFTA9EywCFfz3mauYPbCJRfabXsCP/+IjwcQJDFIS8=) 3: E506BE2CF03811EFAD4C2257C4F9AE02.roa (hash: iRxA1ggG5Gg6gMWZuZ8L1lPJN3fft+M4sC43triwT/s=) 4: A045C92CB46611EEAFEE8758C4F9AE02.roa (hash: tbP1wHLZXWdBy80smo7nwsfBeTkYD2DmwbznFImHmJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:05:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A05D, serialNumber=0F545E6273D7C97E9995411F76D5C4F006BB5186 Validity Not Before: Oct 19 06:05:39 2025 GMT Not After : Oct 26 06:05:39 2025 GMT Subject: CN=68f47fb3-18c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:19:a7:17:27:0f:fe:9d:7c:f5:0c:03:67:a9: cb:93:05:85:98:b7:c0:ae:57:5c:c9:71:30:75:ab: f2:80:5f:13:1a:c1:f0:4b:b7:e5:dd:3d:1a:d8:a5: 46:74:ba:fb:b6:6e:be:ab:f0:73:de:78:d3:d0:88: f6:c6:6f:4c:89:d1:26:34:d5:82:8f:9c:a5:5d:8b: e4:e1:c5:47:86:25:1c:17:9c:d3:b6:26:4a:30:00: ee:19:4c:c7:6f:5a:8b:d5:ba:03:89:67:5e:44:0e: 42:09:95:fb:5a:fb:24:dd:07:c9:8c:17:7b:13:30: 64:53:57:65:3a:3e:d7:c8:4a:c5:7c:3a:43:06:eb: ad:f2:ac:d9:f7:a2:67:53:b6:a1:22:18:84:9d:f6: 6e:1b:8b:76:ec:da:7e:16:4c:9b:5e:99:eb:15:d5: cb:f1:6c:42:a0:06:d7:0f:58:dd:d7:f3:f5:65:9f: 9c:cd:4f:9f:9b:f8:39:59:af:d7:3c:03:10:a4:1e: 07:da:9e:00:5e:e6:68:84:a5:8e:da:2c:68:65:c8: f6:6e:5b:ca:20:1c:c2:a8:45:8a:7c:1f:38:d9:e7: 30:c8:f6:fe:ca:ae:e2:e9:34:c9:30:33:be:79:aa: 8b:88:e6:38:b5:f5:89:63:a7:8f:9f:8f:e8:99:67: 2c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:D5:9F:11:FC:F1:58:BA:F8:E0:4A:32:BB:16:D8:BE:69:AC:4B:E4 X509v3 Authority Key Identifier: keyid:0F:54:5E:62:73:D7:C9:7E:99:95:41:1F:76:D5:C4:F0:06:BB:51:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:d1:54:90:bf:71:7e:16:2b:2a:47:cb:c8:9a:67:78:eb:cb: 4f:c8:b1:c9:61:a5:d7:89:51:bc:cb:04:14:5c:be:87:43:2b: 7a:c2:c9:45:c8:78:2f:01:0a:1c:d3:39:f1:89:e6:09:76:76: 1d:92:e4:e3:02:e1:55:80:a0:8e:c9:86:a7:06:71:0c:c0:90: 07:25:cc:8d:09:ec:88:0b:11:f2:29:e9:4a:75:8d:c6:02:59: e1:d7:68:81:d7:83:85:f1:39:78:96:15:46:67:df:30:ab:79: ba:80:a8:3f:1f:ff:a1:fe:5d:c1:c7:28:5e:30:db:17:49:f0: a9:7a:eb:77:e2:b4:6a:af:34:42:82:4c:aa:ce:b5:e0:75:4a: 83:a7:5d:66:45:91:b1:45:7a:60:9c:3c:af:ca:95:54:f5:83: 5a:f7:9b:79:cb:b9:05:c6:21:59:7f:3b:82:b2:d0:12:d1:d7: 6e:5f:4a:ad:5c:3d:9f:76:ab:11:b4:93:f2:fc:d7:6c:70:54: 07:ac:ab:46:8f:ca:fe:12:f9:02:c8:0c:65:ca:32:1c:28:90: 66:21:fb:38:4f:ae:ce:31:90:67:7a:03:32:f3:09:fe:fc:65: 07:67:01:a5:3b:f0:5c:46:e0:3a:c1:2d:5e:4f:16:54:9b:1b: b0:48:28:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEwNUQxMTAvBgNVBAUTKDBGNTQ1RTYyNzNEN0M5N0U5OTk1NDExRjc2RDVDNEYw MDZCQjUxODYwHhcNMjUxMDE5MDYwNTM5WhcNMjUxMDI2MDYwNTM5WjAYMRYwFAYD VQQDEw02OGY0N2ZiMy0xOGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArRmnFycP/p189QwDZ6nLkwWFmLfArldcyXEwdavygF8TGsHwS7fl3T0a2KVG dLr7tm6+q/Bz3njT0Ij2xm9MidEmNNWCj5ylXYvk4cVHhiUcF5zTtiZKMADuGUzH b1qL1boDiWdeRA5CCZX7Wvsk3QfJjBd7EzBkU1dlOj7XyErFfDpDBuut8qzZ96Jn U7ahIhiEnfZuG4t27Np+FkybXpnrFdXL8WxCoAbXD1jd1/P1ZZ+czU+fm/g5Wa/X PAMQpB4H2p4AXuZohKWO2ixoZcj2blvKIBzCqEWKfB842ecwyPb+yq7i6TTJMDO+ eaqLiOY4tfWJY6ePn4/omWcsrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG3VnxH8 8Vi6+OBKMrsW2L5prEvkMB8GA1UdIwQYMBaAFA9UXmJz18l+mZVBH3bVxPAGu1GG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTA1RC9DMUVGQjA4MDRF MjUxMUVFQUFBRTZENDlDNEY5QUUwMi9EMVJlWW5QWHlYNlpsVUVmZHRYRThBYTdV WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QxUmVZblBYeVg2WmxVRWZkdFhFOEFhN1VZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTA1RC9DMUVGQjA4MDRFMjUxMUVFQUFBRTZENDlDNEY5QUUwMi9EMVJlWW5QWHlY NlpsVUVmZHRYRThBYTdVWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA90VSQv3F+FisqR8vImmd468tPyLHJYaXXiVG8ywQUXL6HQyt6wslF yHgvAQoc0znxieYJdnYdkuTjAuFVgKCOyYanBnEMwJAHJcyNCeyICxHyKelKdY3G Alnh12iB14OF8Tl4lhVGZ98wq3m6gKg/H/+h/l3BxyheMNsXSfCpeut34rRqrzRC gkyqzrXgdUqDp11mRZGxRXpgnDyvypVU9YNa95t5y7kFxiFZfzuCstAS0dduX0qt XD2fdqsRtJPy/NdscFQHrKtGj8r+EvkCyAxlyjIcKJBmIfs4T67OMZBnegMy8wn+ /GUHZwGlO/BcRuA6wS1eTxZUmxuwSCiE -----END CERTIFICATE-----Generated at Mon Oct 20 09:38:15 2025 by rpki-client