$ rpki-client -vvf rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft File: CF4MUA89R900skS9OSnO_a3ZbD0.mft (raw, json) Hash identifier: r3G83AcbixA1sZVc4uFMPsYqMlOizg+gLGNRqUdrLBA= Subject key identifier: CB:88:9B:29:A5:A5:D9:46:89:FA:8F:76:54:6C:EE:32:97:19:4B:CD Authority key identifier: 08:5E:0C:50:0F:3D:47:DD:34:B2:44:BD:39:29:CE:FD:AD:D9:6C:3D Certificate issuer: /CN=A919D118/serialNumber=085E0C500F3D47DD34B244BD3929CEFDADD96C3D Certificate serial: 0ACD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CF4MUA89R900skS9OSnO_a3ZbD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft Manifest number: 0AB9 Signing time: Sat 18 Oct 2025 20:26:58 +0000 Manifest this update: Sat 18 Oct 2025 20:26:58 +0000 Manifest next update: Sat 25 Oct 2025 20:26:58 +0000 Files and hashes: 1: CF4MUA89R900skS9OSnO_a3ZbD0.crl (hash: /oZ52X6ioPwO4XeYf6BmHDTvh2sHnApAYPKawOVuvpY=) 2: 676A2DE2564911F08353B443C4F9AE02.roa (hash: YM/jqlM3yjwQowPEPNTW8kWHF+17BJwpa8g+tmnEC0w=) 3: 5FFA4BEC3C0B11ED89AD755FC4F9AE02.roa (hash: +qdSnSMI4Cq6GPacx1y6troGvfBHeu8mDwsrgTG91us=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.crl rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CF4MUA89R900skS9OSnO_a3ZbD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:26:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2765 (0xacd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D118, serialNumber=085E0C500F3D47DD34B244BD3929CEFDADD96C3D Validity Not Before: Oct 18 20:26:58 2025 GMT Not After : Oct 25 20:26:58 2025 GMT Subject: CN=68f3f812-c715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:9b:6d:40:dc:f9:60:d3:79:e5:81:bb:33:84: 00:b1:75:d6:f3:ce:eb:a8:7a:e5:19:26:79:0f:bc: 66:42:24:13:43:32:34:a0:59:15:d5:b6:eb:ce:da: 87:41:ab:c3:13:b8:d8:77:c2:ea:5d:70:91:31:ac: 19:bc:62:1f:a7:89:35:7c:9a:c8:55:4d:e0:d1:c0: 47:e7:77:4e:d0:18:78:ff:f3:1a:4f:90:c5:16:98: b2:25:22:73:bd:5c:a1:3c:bc:74:81:d2:1e:d0:ad: b3:1a:90:99:48:2d:d6:0c:8f:54:c9:93:b2:31:70: 4b:42:7d:40:d0:b2:26:8f:e7:b7:67:08:3c:c7:2c: 6e:65:20:92:12:fc:62:57:1b:62:8b:38:e1:7a:fb: 83:b3:2e:90:e8:cd:3e:af:a3:51:eb:59:2d:b9:22: d4:d2:83:aa:02:43:ab:3a:26:e4:4e:a4:9e:cd:bd: 35:cf:fd:31:69:84:10:dc:93:70:3f:d1:1a:62:03: 5b:6f:bb:a6:89:19:bb:92:fd:09:e1:a1:be:77:05: e7:1c:24:01:35:be:b7:53:fa:b1:0a:7a:bd:c2:53: 04:53:61:f6:0f:f6:29:03:ae:25:81:a3:cb:65:47: c0:4e:dc:7d:fb:f8:5f:c8:dc:d9:05:e2:c9:35:b3: a4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:88:9B:29:A5:A5:D9:46:89:FA:8F:76:54:6C:EE:32:97:19:4B:CD X509v3 Authority Key Identifier: keyid:08:5E:0C:50:0F:3D:47:DD:34:B2:44:BD:39:29:CE:FD:AD:D9:6C:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CF4MUA89R900skS9OSnO_a3ZbD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:d5:dc:dc:1d:e5:19:f9:33:6d:de:7c:dc:d2:2a:28:e7:0e: 8b:f4:01:f8:7e:7c:8d:41:0a:28:51:c0:d7:f3:0d:99:59:ff: 25:27:6c:5f:1a:c9:99:44:ac:09:2d:93:53:81:81:15:e3:71: 8d:5d:c7:87:1d:6d:77:f6:9b:ef:db:4b:03:4c:2a:a0:a8:72: f7:2c:bf:32:ed:a9:16:a7:9e:66:a7:86:0e:67:3a:72:9c:4d: da:12:1e:f9:d1:80:62:6f:12:2c:4b:b7:c2:9f:7d:b7:b5:2c: c5:d5:df:e9:19:30:49:d6:30:63:67:21:eb:4c:44:97:af:1f: 04:9d:a2:0f:8c:5e:5f:72:ab:5f:11:2c:84:3a:fd:87:9c:35: 3a:3f:13:d8:33:a3:fa:62:c4:b6:a6:c1:bd:64:fe:4a:29:88: 5d:f8:b5:e2:0c:7b:0f:b5:d1:28:fb:3f:b5:e6:fa:06:41:cd: 54:1b:c0:ed:ad:6e:2b:0c:5a:07:3a:fc:96:56:91:24:04:8a: 80:84:dd:98:98:6a:0c:79:f1:5f:02:9c:f4:49:ca:aa:26:e6: 21:e2:85:df:95:a7:8c:1e:c5:5c:d1:5b:37:59:83:e8:01:ad: 4d:b6:8d:38:13:83:cf:1d:58:b1:d2:b5:3f:01:6e:91:b5:b5: 87:87:1f:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxMTgxMTAvBgNVBAUTKDA4NUUwQzUwMEYzRDQ3REQzNEIyNDRCRDM5MjlDRUZE QUREOTZDM0QwHhcNMjUxMDE4MjAyNjU4WhcNMjUxMDI1MjAyNjU4WjAYMRYwFAYD VQQDEw02OGYzZjgxMi1jNzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ZttQNz5YNN55YG7M4QAsXXW887rqHrlGSZ5D7xmQiQTQzI0oFkV1bbrztqH QavDE7jYd8LqXXCRMawZvGIfp4k1fJrIVU3g0cBH53dO0Bh4//MaT5DFFpiyJSJz vVyhPLx0gdIe0K2zGpCZSC3WDI9UyZOyMXBLQn1A0LImj+e3Zwg8xyxuZSCSEvxi VxtiizjhevuDsy6Q6M0+r6NR61ktuSLU0oOqAkOrOibkTqSezb01z/0xaYQQ3JNw P9EaYgNbb7umiRm7kv0J4aG+dwXnHCQBNb63U/qxCnq9wlMEU2H2D/YpA64lgaPL ZUfATtx9+/hfyNzZBeLJNbOk5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMuImyml pdlGifqPdlRs7jKXGUvNMB8GA1UdIwQYMBaAFAheDFAPPUfdNLJEvTkpzv2t2Ww9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDExOC9CQjgxQTUxNDYy QkYxMUVBQUEzQTg5NDVDNEY5QUUwMi9DRjRNVUE4OVI5MDBza1M5T1NuT19hM1pi RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NGNE1VQTg5UjkwMHNrUzlPU25PX2EzWmJEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDExOC9CQjgxQTUxNDYyQkYxMUVBQUEzQTg5NDVDNEY5QUUwMi9DRjRNVUE4OVI5 MDBza1M5T1NuT19hM1piRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDD1dzcHeUZ+TNt3nzc0ioo5w6L9AH4fnyNQQooUcDX8w2ZWf8lJ2xf GsmZRKwJLZNTgYEV43GNXceHHW139pvv20sDTCqgqHL3LL8y7akWp55mp4YOZzpy nE3aEh750YBibxIsS7fCn323tSzF1d/pGTBJ1jBjZyHrTESXrx8EnaIPjF5fcqtf ESyEOv2HnDU6PxPYM6P6YsS2psG9ZP5KKYhd+LXiDHsPtdEo+z+15voGQc1UG8Dt rW4rDFoHOvyWVpEkBIqAhN2YmGoMefFfApz0ScqqJuYh4oXflaeMHsVc0Vs3WYPo Aa1Nto04E4PPHVix0rU/AW6RtbWHhx9R -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:46 2025 by rpki-client