$ rpki-client -vvf rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft File: 32d9hpNHe5Kh6f58IEImls6oYJ0.mft (raw, json) Hash identifier: J1yH2BV1cDR4F1idlPNJ/rspvmWKc5Yn0f+F+gY1k5c= Subject key identifier: 26:A2:D7:D0:C0:9B:51:3E:8F:01:C2:B3:62:F0:50:D0:E4:79:2F:74 Authority key identifier: DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D Certificate issuer: /CN=A918BDA2/serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Certificate serial: 0361 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft Manifest number: 035B Signing time: Sun 19 Oct 2025 03:00:23 +0000 Manifest this update: Sun 19 Oct 2025 03:00:23 +0000 Manifest next update: Sun 26 Oct 2025 03:00:23 +0000 Files and hashes: 1: 32d9hpNHe5Kh6f58IEImls6oYJ0.crl (hash: 9CCuizMJusIrT7kRNWzKRP9tg8No/By6zv9re+nAbAg=) 2: 4BBDE05299B011F0B174EC14C4F9AE02.roa (hash: pdXvO5dWNffMF+g7wdheLMnKcr86zZnCCOuGAycJNwg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 865 (0x361) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BDA2, serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Validity Not Before: Oct 19 03:00:23 2025 GMT Not After : Oct 26 03:00:23 2025 GMT Subject: CN=68f45447-5ea9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:98:cd:5a:0f:14:88:74:2a:60:61:6a:82:8b: 6f:eb:a1:3d:42:24:3d:e2:97:a8:a4:86:d0:3f:31: 76:59:13:3f:ee:ad:d0:27:03:b5:7a:0c:e5:18:93: ad:89:e9:39:d7:01:01:ce:59:4d:a0:74:a2:f6:a2: ff:1a:27:d8:0c:84:a5:2c:b1:de:7a:98:a1:99:8f: 04:de:7c:23:ec:2f:58:fc:01:03:f7:d9:91:2d:9a: d8:2c:46:aa:a4:98:52:18:1a:37:03:3f:46:2e:07: 46:e5:88:5b:2c:20:ca:fe:1d:07:38:30:6f:1f:44: fb:c9:ca:a3:12:bc:39:f8:d2:af:f0:e7:d3:7f:77: 4b:57:b7:10:1a:29:67:3c:49:ec:c9:89:65:af:7f: 58:bd:9a:82:56:25:92:43:a4:58:33:84:d0:04:d4: c2:05:da:d3:25:b4:80:aa:30:e4:1d:1b:e7:6e:0f: 72:b5:a8:c5:d5:22:ca:74:d0:d6:03:c7:55:77:1b: 41:5c:08:94:9f:57:2c:8a:83:09:d7:f4:6f:cc:83: 5b:29:fb:bb:1b:26:fa:c1:17:f9:ff:bd:c2:3d:6e: 97:47:a6:77:b1:d1:11:be:ed:ec:c3:66:23:01:33: 85:c6:ff:66:0c:e0:3f:87:c6:34:44:fa:1b:86:e9: 03:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:A2:D7:D0:C0:9B:51:3E:8F:01:C2:B3:62:F0:50:D0:E4:79:2F:74 X509v3 Authority Key Identifier: keyid:DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:29:e4:3a:c8:b4:62:bb:7c:21:dd:98:85:7a:35:01:29:d4: b1:55:35:c5:0e:9b:60:2f:08:32:f0:f5:81:a2:1d:0b:ee:2f: 55:90:d7:8b:16:24:4e:2f:99:ec:5e:73:be:f5:63:57:24:ec: e6:90:2f:c1:c9:b2:12:3e:92:c2:f3:11:0a:10:f6:30:65:3d: 7f:ac:e2:14:75:83:91:0c:0e:d5:6c:af:19:91:a4:b3:6d:10: 0f:a9:b1:e0:37:ab:93:e2:65:27:9c:b3:15:fb:e4:fa:9f:90: e4:bb:52:26:2a:34:0c:bb:51:65:ea:78:5c:30:72:a5:70:c2: 44:78:08:13:d1:76:aa:05:15:b7:2c:d5:ff:09:3c:ba:23:79: b6:57:01:92:4c:52:ab:9a:c0:22:d3:ad:9b:c6:8a:c6:df:7d: 30:0f:9f:27:08:c8:81:ce:94:88:38:b3:c0:75:b1:9b:a5:d4: 3a:b3:61:f3:26:31:2b:37:3a:37:a2:eb:bd:54:11:c5:c4:74: 5d:46:f7:28:15:06:e4:f5:c6:7d:b6:19:ea:f2:11:d6:7f:73: 49:43:84:f9:6a:bb:0c:08:d4:97:41:92:e1:80:ee:f0:ca:44: 22:eb:95:86:1a:d5:4b:63:5c:5c:b8:df:4a:7c:7d:69:ab:a0: 57:fc:97:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEQTIxMTAvBgNVBAUTKERGNjc3RDg2OTM0NzdCOTJBMUU5RkU3QzIwNDIyNjk2 Q0VBODYwOUQwHhcNMjUxMDE5MDMwMDIzWhcNMjUxMDI2MDMwMDIzWjAYMRYwFAYD VQQDEw02OGY0NTQ0Ny01ZWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxZjNWg8UiHQqYGFqgotv66E9QiQ94peopIbQPzF2WRM/7q3QJwO1egzlGJOt iek51wEBzllNoHSi9qL/GifYDISlLLHeepihmY8E3nwj7C9Y/AED99mRLZrYLEaq pJhSGBo3Az9GLgdG5YhbLCDK/h0HODBvH0T7ycqjErw5+NKv8OfTf3dLV7cQGiln PEnsyYllr39YvZqCViWSQ6RYM4TQBNTCBdrTJbSAqjDkHRvnbg9ytajF1SLKdNDW A8dVdxtBXAiUn1csioMJ1/RvzINbKfu7Gyb6wRf5/73CPW6XR6Z3sdERvu3sw2Yj ATOFxv9mDOA/h8Y0RPobhukDiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCai19DA m1E+jwHCs2LwUNDkeS90MB8GA1UdIwQYMBaAFN9nfYaTR3uSoen+fCBCJpbOqGCd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkRBMi83MEU2OUMxOEQw RUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1S2g2ZjU4SUVJbWxzNm9Z SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyZDlocE5IZTVLaDZmNThJRUltbHM2b1lKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkRBMi83MEU2OUMxOEQwRUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1 S2g2ZjU4SUVJbWxzNm9ZSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApKeQ6yLRiu3wh3ZiFejUBKdSxVTXFDptgLwgy8PWBoh0L7i9VkNeL FiROL5nsXnO+9WNXJOzmkC/BybISPpLC8xEKEPYwZT1/rOIUdYORDA7VbK8ZkaSz bRAPqbHgN6uT4mUnnLMV++T6n5Dku1ImKjQMu1Fl6nhcMHKlcMJEeAgT0XaqBRW3 LNX/CTy6I3m2VwGSTFKrmsAi062bxorG330wD58nCMiBzpSIOLPAdbGbpdQ6s2Hz JjErNzo3ouu9VBHFxHRdRvcoFQbk9cZ9thnq8hHWf3NJQ4T5arsMCNSXQZLhgO7w ykQi65WGGtVLY1xcuN9KfH1pq6BX/JcJ -----END CERTIFICATE-----Generated at Sun Oct 19 23:23:46 2025 by rpki-client