$ rpki-client -vvf rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft File: MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft (raw, json) Hash identifier: zmUgqIvOi2jlZsxs53y8DdFpxQBB4Ecz7shiT1FLRRA= Subject key identifier: 09:FE:F5:BA:73:F8:08:C2:86:98:23:84:86:34:DF:36:DA:17:60:69 Authority key identifier: 32:64:43:64:79:A5:0E:D4:0C:CF:D2:B7:04:E6:02:49:60:8E:43:A8 Certificate issuer: /CN=A918C88D/serialNumber=3264436479A50ED40CCFD2B704E60249608E43A8 Certificate serial: 0B89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft Manifest number: 0B72 Signing time: Sat 18 Oct 2025 19:58:01 +0000 Manifest this update: Sat 18 Oct 2025 19:58:00 +0000 Manifest next update: Sat 25 Oct 2025 19:58:00 +0000 Files and hashes: 1: MmRDZHmlDtQMz9K3BOYCSWCOQ6g.crl (hash: 7kMMjQx8J2Z1n1JqVmMJMqHS9JYKvYpGkLImqurXORU=) 2: E1EFDAA8F40611EAA5B2244FC4F9AE02.roa (hash: 1JlSj0jibLQBYUZDl8FfRdFm1NJZVGdp1slha+X5ouk=) 3: E324E2F6F40611EAA5B2244FC4F9AE02.roa (hash: JjlHcRfhosfD6kjrFJUxOquQczoFwZ+SbHdvTDfS9h8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.crl rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:57:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2953 (0xb89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C88D, serialNumber=3264436479A50ED40CCFD2B704E60249608E43A8 Validity Not Before: Oct 18 19:58:00 2025 GMT Not After : Oct 25 19:58:00 2025 GMT Subject: CN=68f3f148-2aa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:cd:2e:f6:1e:1e:5b:56:a6:b1:08:8f:4d:64: 2d:f1:13:bd:56:42:14:a9:57:b9:c3:d0:b5:07:f9: c4:f3:08:c0:49:1c:0e:05:c7:90:c9:6f:71:53:14: 4a:3b:3b:1b:c3:5f:77:83:70:11:d0:47:28:f4:0f: 0d:b2:74:a9:7e:1d:10:d9:fd:30:1f:60:b7:62:c6: fb:5d:07:46:33:59:d7:5a:c7:af:e2:8b:ea:83:d3: 30:97:b6:31:c9:fc:cc:d4:72:11:e9:c1:05:29:29: 14:ce:c0:19:7d:e3:3e:9f:b2:05:5c:47:8b:43:79: b8:6d:56:31:78:28:43:92:17:97:f3:b3:a5:de:5f: 4b:7b:3e:d5:7e:72:80:10:cf:f3:1e:c0:aa:0a:c1: 23:7e:be:e6:d8:3a:d4:ce:6f:fd:12:03:0c:eb:6e: a2:6f:7a:1d:30:dd:e4:4c:3c:86:34:59:94:ef:0c: c4:92:59:86:f9:e0:80:41:b7:1e:9b:f1:03:9a:f1: b5:44:bc:74:9e:69:3c:22:66:bd:a3:74:37:b5:f8: 15:04:4f:e7:00:56:68:8e:62:50:fd:c2:78:50:68: 1c:47:f5:9f:9d:c7:9b:32:b6:55:49:16:f1:eb:f8: 62:f5:ba:ec:cd:b5:0a:da:ff:a0:bc:94:79:1f:d9: 89:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:FE:F5:BA:73:F8:08:C2:86:98:23:84:86:34:DF:36:DA:17:60:69 X509v3 Authority Key Identifier: keyid:32:64:43:64:79:A5:0E:D4:0C:CF:D2:B7:04:E6:02:49:60:8E:43:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:82:74:39:ae:44:5e:40:1d:9f:df:27:99:4d:f3:7a:88:bf: 78:b6:70:69:fb:b0:fe:55:8f:7d:c0:a5:f0:4f:b2:5d:8c:f3: 02:d1:5d:54:f8:65:ec:e0:aa:82:eb:67:6d:5a:48:be:cd:e4: 8e:5d:83:15:89:28:ab:c2:71:e1:44:b1:35:04:68:16:6d:dd: a3:15:27:ba:3b:3b:d9:8e:ba:88:f9:36:5c:07:6c:a6:35:35: 95:f7:8b:a9:de:82:23:bd:a8:62:38:5b:1f:11:c2:99:2a:63: 52:4b:e7:77:12:d4:66:10:8e:cc:8f:62:13:67:28:28:33:0f: a3:4e:9a:d8:ac:32:b1:5d:9d:21:50:ac:3d:ac:13:96:98:f9: 89:cc:cc:f0:55:04:4a:77:48:61:e0:0d:6d:d9:97:6d:38:1f: 97:42:f8:61:eb:2f:02:68:cf:ff:99:36:57:83:ed:9d:d7:6f: 7e:6a:b6:f1:c6:eb:71:19:9d:a8:1d:37:58:fc:b7:4a:06:d3: 26:c8:6a:9b:f7:21:4a:cc:62:27:d9:12:8f:6b:7b:c6:60:a3: 98:eb:50:c9:b9:00:1b:9b:11:5e:03:f8:60:90:e0:c9:38:dc: 6b:8f:28:6a:cf:2d:24:d0:7c:98:5e:55:33:e4:ef:57:2e:1c: e6:1f:93:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM4OEQxMTAvBgNVBAUTKDMyNjQ0MzY0NzlBNTBFRDQwQ0NGRDJCNzA0RTYwMjQ5 NjA4RTQzQTgwHhcNMjUxMDE4MTk1ODAwWhcNMjUxMDI1MTk1ODAwWjAYMRYwFAYD VQQDEw02OGYzZjE0OC0yYWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2s0u9h4eW1amsQiPTWQt8RO9VkIUqVe5w9C1B/nE8wjASRwOBceQyW9xUxRK Ozsbw193g3AR0Eco9A8NsnSpfh0Q2f0wH2C3Ysb7XQdGM1nXWsev4ovqg9Mwl7Yx yfzM1HIR6cEFKSkUzsAZfeM+n7IFXEeLQ3m4bVYxeChDkheX87Ol3l9Lez7VfnKA EM/zHsCqCsEjfr7m2DrUzm/9EgMM626ib3odMN3kTDyGNFmU7wzEklmG+eCAQbce m/EDmvG1RLx0nmk8Ima9o3Q3tfgVBE/nAFZojmJQ/cJ4UGgcR/WfncebMrZVSRbx 6/hi9brszbUK2v+gvJR5H9mJkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAn+9bpz +AjChpgjhIY03zbaF2BpMB8GA1UdIwQYMBaAFDJkQ2R5pQ7UDM/StwTmAklgjkOo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Qzg4RC8zOEFCNTkxRTNE QzExMUVBQUYyQjY3MzVDNEY5QUUwMi9NbVJEWkhtbER0UU16OUszQk9ZQ1NXQ09R NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01tUkRaSG1sRHRRTXo5SzNCT1lDU1dDT1E2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Qzg4RC8zOEFCNTkxRTNEQzExMUVBQUYyQjY3MzVDNEY5QUUwMi9NbVJEWkhtbER0 UU16OUszQk9ZQ1NXQ09RNmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbgnQ5rkReQB2f3yeZTfN6iL94tnBp+7D+VY99wKXwT7JdjPMC0V1U +GXs4KqC62dtWki+zeSOXYMViSirwnHhRLE1BGgWbd2jFSe6OzvZjrqI+TZcB2ym NTWV94up3oIjvahiOFsfEcKZKmNSS+d3EtRmEI7Mj2ITZygoMw+jTprYrDKxXZ0h UKw9rBOWmPmJzMzwVQRKd0hh4A1t2ZdtOB+XQvhh6y8CaM//mTZXg+2d129+arbx xutxGZ2oHTdY/LdKBtMmyGqb9yFKzGIn2RKPa3vGYKOY61DJuQAbmxFeA/hgkODJ ONxrjyhqzy0k0HyYXlUz5O9XLhzmH5NA -----END CERTIFICATE-----Generated at Mon Oct 20 01:48:16 2025 by rpki-client