$ rpki-client -vvf rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft File: _wsVRthMDZNVkFtsopPiW0QJSMU.mft (raw, json) Hash identifier: lzPXionTCQJOaXw30Jr+cleKGpBUmHa0OANjhm33kFY= Subject key identifier: B5:3B:65:E6:9E:6B:8C:A4:C7:17:C3:FE:CE:1D:75:4C:FC:6D:90:EF Authority key identifier: FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 Certificate issuer: /CN=A9198F53/serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Certificate serial: 0B5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft Manifest number: 0B57 Signing time: Sat 18 Oct 2025 20:00:21 +0000 Manifest this update: Sat 18 Oct 2025 20:00:21 +0000 Manifest next update: Sat 25 Oct 2025 20:00:21 +0000 Files and hashes: 1: _wsVRthMDZNVkFtsopPiW0QJSMU.crl (hash: HciZrpXV8aUOVXZS8Occyvv/HOxFrIjJT7cVWvbQnv4=) 2: 0B1FBD4A40F611EAACD44866C4F9AE02.roa (hash: O+1TVwNVO9fy4asd+g6mFvUYSSGMZxyCsanhKoUd1UE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2910 (0xb5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198F53, serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Validity Not Before: Oct 18 20:00:21 2025 GMT Not After : Oct 25 20:00:21 2025 GMT Subject: CN=68f3f1d5-8ca1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:89:a9:65:31:5d:f7:b4:a6:ef:2c:ce:5e:74: 0b:ab:29:1f:39:c0:84:0a:32:15:e9:69:98:cb:09: 53:a8:9b:34:f4:f4:c6:b1:aa:8c:8a:0d:cf:62:69: e5:b8:1b:5c:e8:8d:88:56:7f:b2:d6:f9:88:d3:e2: 9f:8a:ec:06:63:48:fd:28:61:b8:8b:84:99:6a:70: 9f:89:9f:80:5a:3b:74:f6:80:41:8c:da:a2:71:dd: ae:cb:f4:b0:3d:f9:9a:28:79:d4:21:f9:5d:3c:13: 2b:46:01:fd:64:92:00:4e:89:aa:22:0a:17:7b:1b: 40:3d:9b:28:18:37:f4:e0:df:c4:2d:48:04:20:97: d5:d3:d3:6d:70:cb:d1:3b:fe:08:a5:ec:cd:18:fb: a2:8d:a7:b1:46:7f:a4:80:05:80:dc:7e:a0:85:c2: 0e:76:bc:e9:dd:f3:43:7f:92:0b:1f:41:86:eb:3f: 57:84:20:7a:98:39:00:f1:49:c8:41:7a:e0:05:0c: e4:6a:cf:8c:a4:53:3b:29:a2:1b:f0:5c:23:0f:a2: 4b:f3:4d:fe:33:1c:c3:68:aa:f0:cc:2a:64:d3:87: d7:2d:45:6f:be:ca:9c:a4:d0:5b:65:34:06:bc:9c: 89:5e:39:e5:83:0b:2d:d1:d6:52:52:16:d7:67:ba: b4:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:3B:65:E6:9E:6B:8C:A4:C7:17:C3:FE:CE:1D:75:4C:FC:6D:90:EF X509v3 Authority Key Identifier: keyid:FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:7a:31:bc:a3:8f:1d:e7:04:34:2f:13:29:bd:b3:09:df:9c: c7:eb:f3:83:c1:59:51:62:f0:41:e2:bd:2d:6a:f1:60:8e:f3: 43:bc:22:09:50:b1:75:a0:81:b8:b3:c1:44:7b:a5:96:f0:4f: a7:75:39:d7:06:4f:4a:ea:0a:5c:b1:5c:83:4f:83:92:bf:c4: ed:bf:bf:59:0a:9a:a8:f3:34:e4:ad:08:6c:1f:26:06:5e:0a: 4d:0f:d4:03:86:d0:b8:7a:55:10:d1:18:d7:b2:da:fb:f2:89: 08:2a:8c:05:d0:86:f7:07:77:94:0c:3a:ea:70:c0:c9:c4:7e: 78:71:09:fd:80:11:4c:ad:67:3d:ba:af:3f:42:b6:b6:42:10: a7:da:a0:0d:1d:51:b1:c6:75:c2:1b:9c:88:41:f5:f2:01:b4: 7f:7e:9c:87:63:c4:13:90:fd:f4:6b:40:8d:7e:11:b2:c9:0c: 72:31:ce:5c:f4:20:67:44:e3:b3:f5:a3:a6:78:25:18:6d:9c: f6:b3:21:e6:85:77:a7:78:ec:8d:66:3f:3a:55:e8:2b:20:73: 0d:d1:16:d8:2f:98:29:e5:fc:5e:b7:63:65:82:3c:90:a0:23: e0:c6:2c:e2:a8:32:08:47:57:b7:e2:92:f2:2d:49:8c:01:6a: f4:b1:e7:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC14wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThGNTMxMTAvBgNVBAUTKEZGMEIxNTQ2RDg0QzBEOTM1NTkwNUI2Q0EyOTNFMjVC NDQwOTQ4QzUwHhcNMjUxMDE4MjAwMDIxWhcNMjUxMDI1MjAwMDIxWjAYMRYwFAYD VQQDEw02OGYzZjFkNS04Y2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYmpZTFd97Sm7yzOXnQLqykfOcCECjIV6WmYywlTqJs09PTGsaqMig3PYmnl uBtc6I2IVn+y1vmI0+KfiuwGY0j9KGG4i4SZanCfiZ+AWjt09oBBjNqicd2uy/Sw PfmaKHnUIfldPBMrRgH9ZJIATomqIgoXextAPZsoGDf04N/ELUgEIJfV09NtcMvR O/4IpezNGPuijaexRn+kgAWA3H6ghcIOdrzp3fNDf5ILH0GG6z9XhCB6mDkA8UnI QXrgBQzkas+MpFM7KaIb8FwjD6JL803+MxzDaKrwzCpk04fXLUVvvsqcpNBbZTQG vJyJXjnlgwst0dZSUhbXZ7q0mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLU7Zeae a4ykxxfD/s4ddUz8bZDvMB8GA1UdIwQYMBaAFP8LFUbYTA2TVZBbbKKT4ltECUjF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEY1My9DRDA2MjE3NjQw RjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURaTlZrRnRzb3BQaVcwUUpT TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193c1ZSdGhNRFpOVmtGdHNvcFBpVzBRSlNNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEY1My9DRDA2MjE3NjQwRjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURa TlZrRnRzb3BQaVcwUUpTTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLejG8o48d5wQ0LxMpvbMJ35zH6/ODwVlRYvBB4r0tavFgjvNDvCIJ ULF1oIG4s8FEe6WW8E+ndTnXBk9K6gpcsVyDT4OSv8Ttv79ZCpqo8zTkrQhsHyYG XgpND9QDhtC4elUQ0RjXstr78okIKowF0Ib3B3eUDDrqcMDJxH54cQn9gBFMrWc9 uq8/Qra2QhCn2qANHVGxxnXCG5yIQfXyAbR/fpyHY8QTkP30a0CNfhGyyQxyMc5c 9CBnROOz9aOmeCUYbZz2syHmhXeneOyNZj86VegrIHMN0RbYL5gp5fxet2NlgjyQ oCPgxiziqDIIR1e34pLyLUmMAWr0sefQ -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:59 2025 by rpki-client