$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft File: ctH2ecltIFwtRxyUqA3vYNkRJhw.mft (raw, json) Hash identifier: yRNx4z5ZGwxaLVeSMa53+F/Hq8PGNd05hwR5ZJiHiZM= Subject key identifier: C1:FC:82:EA:0D:55:DD:7C:D4:67:ED:DE:80:FA:7B:CC:13:DE:C8:72 Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft Manifest number: 0120 Signing time: Sun 19 Oct 2025 07:33:36 +0000 Manifest this update: Sun 19 Oct 2025 07:33:35 +0000 Manifest next update: Sun 26 Oct 2025 07:33:35 +0000 Files and hashes: 1: ctH2ecltIFwtRxyUqA3vYNkRJhw.crl (hash: vd+WaLyk359FQ5ZHVQzdaQddVW6FN+9nOMTn60L9seM=) 2: 255842A2EFF411EE853CC833C4F9AE02.roa (hash: 0a/19rU1zoR8HPG3b9KrbOC4Srzy59tAkTtlFRC+aqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:33:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E, serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Validity Not Before: Oct 19 07:33:35 2025 GMT Not After : Oct 26 07:33:35 2025 GMT Subject: CN=68f4944f-8f4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:86:c3:7b:cf:18:a6:a2:ed:51:7b:da:ec:d5: e7:7c:45:ae:a3:33:93:0b:e0:71:9d:6b:e5:2f:f5: 6e:cf:43:64:51:26:26:18:99:f6:e4:7a:4b:9c:15: c1:26:bd:db:5b:15:28:e7:00:61:1a:e4:95:f6:c8: c3:35:fd:d6:f2:69:b4:d3:36:73:42:77:69:b5:9f: 19:71:b9:3e:77:bc:91:57:73:92:d7:d9:be:47:32: 22:b0:eb:9b:7c:85:04:d0:2e:1f:82:76:95:65:41: 81:14:51:4a:8e:ba:1b:44:f8:f4:ee:74:64:8c:c4: 9a:f8:ef:a1:61:76:fb:00:06:34:a1:e1:5c:89:a5: db:79:0d:4b:c6:f6:e5:c3:1c:09:78:2d:dc:ee:07: a0:8c:ce:d3:99:c3:c0:22:85:c2:f9:a2:50:92:e9: aa:3e:83:3c:d9:85:03:bd:97:12:28:91:4a:75:44: 56:3a:ce:58:93:d2:48:f8:49:95:71:3d:ee:68:33: 34:d9:4b:1f:0a:d3:fa:62:dd:4f:a8:92:9a:b1:da: 41:dc:a4:f1:7f:5b:10:62:69:5f:a0:bd:18:04:a1: dd:a6:6e:15:e2:74:2f:cd:b3:77:36:f2:c7:e9:4e: 77:b3:8a:4b:08:c3:89:e6:ca:f0:9e:7d:07:a5:11: dd:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:FC:82:EA:0D:55:DD:7C:D4:67:ED:DE:80:FA:7B:CC:13:DE:C8:72 X509v3 Authority Key Identifier: keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:1c:81:24:c4:98:4b:c2:51:03:b1:9b:9b:56:aa:5d:2b:49: 06:6f:e5:71:e7:fb:c0:91:db:8b:67:44:8b:87:b6:63:d2:38: 4e:56:9c:a2:59:0f:95:8e:ca:dd:2c:46:29:c5:a8:e3:33:47: a4:5f:00:d3:1d:91:8f:2b:c7:ca:39:53:e5:96:22:40:88:bd: 3e:57:e3:24:3c:e1:2c:e4:c2:4b:4f:3e:5f:03:ca:86:6d:aa: ba:f7:90:a3:b6:d2:7d:95:22:71:43:85:06:d9:ca:5f:11:4f: d6:f1:de:72:71:14:5f:3d:5e:50:da:3c:05:49:ad:62:0b:8c: 77:34:6f:26:d8:f5:e1:97:34:57:f7:e1:16:21:d2:34:11:c3: 5e:ce:24:f4:df:b3:9f:53:08:62:03:08:e8:97:41:dd:00:3c: d7:0d:cd:ec:40:93:08:d8:e0:30:5d:5c:28:36:e5:d5:27:d9: 88:04:4a:c6:58:47:ac:39:fa:47:4a:19:51:0b:9c:78:5c:61: 3c:69:bc:53:d2:56:80:e2:a9:71:90:64:6b:8f:8d:1f:91:ea: 57:67:ae:d2:d1:d2:82:63:40:a5:dd:9b:f1:95:b9:8d:64:cb: c5:f2:7c:c6:ba:5f:e7:7b:8d:5a:c8:2e:db:71:4b:38:5e:3a: 17:7c:47:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKDcyRDFGNjc5Qzk2RDIwNUMyRDQ3MUM5NEE4MERFRjYw RDkxMTI2MUMwHhcNMjUxMDE5MDczMzM1WhcNMjUxMDI2MDczMzM1WjAYMRYwFAYD VQQDEw02OGY0OTQ0Zi04ZjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1YbDe88YpqLtUXva7NXnfEWuozOTC+BxnWvlL/Vuz0NkUSYmGJn25HpLnBXB Jr3bWxUo5wBhGuSV9sjDNf3W8mm00zZzQndptZ8Zcbk+d7yRV3OS19m+RzIisOub fIUE0C4fgnaVZUGBFFFKjrobRPj07nRkjMSa+O+hYXb7AAY0oeFciaXbeQ1Lxvbl wxwJeC3c7gegjM7TmcPAIoXC+aJQkumqPoM82YUDvZcSKJFKdURWOs5Yk9JI+EmV cT3uaDM02UsfCtP6Yt1PqJKasdpB3KTxf1sQYmlfoL0YBKHdpm4V4nQvzbN3NvLH 6U53s4pLCMOJ5srwnn0HpRHdDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMH8guoN Vd181Gft3oD6e8wT3shyMB8GA1UdIwQYMBaAFHLR9nnJbSBcLUcclKgN72DZESYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS81QkMxMjY3QUVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElGd3RSeHlVcUEzdllOa1JK aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2N0SDJlY2x0SUZ3dFJ4eVVxQTN2WU5rUkpody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg1RS81QkMxMjY3QUVGRjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElG d3RSeHlVcUEzdllOa1JKaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyHIEkxJhLwlEDsZubVqpdK0kGb+Vx5/vAkduLZ0SLh7Zj0jhOVpyi WQ+VjsrdLEYpxajjM0ekXwDTHZGPK8fKOVPlliJAiL0+V+MkPOEs5MJLTz5fA8qG baq695CjttJ9lSJxQ4UG2cpfEU/W8d5ycRRfPV5Q2jwFSa1iC4x3NG8m2PXhlzRX 9+EWIdI0EcNeziT037OfUwhiAwjol0HdADzXDc3sQJMI2OAwXVwoNuXVJ9mIBErG WEesOfpHShlRC5x4XGE8abxT0laA4qlxkGRrj40fkepXZ67S0dKCY0Cl3ZvxlbmN ZMvF8nzGul/ne41ayC7bcUs4XjoXfEfE -----END CERTIFICATE-----Generated at Mon Oct 20 22:23:39 2025 by rpki-client