$ rpki-client -vvf rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft File: ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft (raw, json) Hash identifier: U0LjpUUau6VkIGtCQ+5LEY9j4Sb7f1l4GPrKGy1LtBs= Subject key identifier: 2D:1F:0B:CE:ED:F0:A2:DD:4C:61:54:01:02:B1:40:A2:CD:00:56:BE Authority key identifier: 76:CD:02:1E:0C:28:1D:A5:FE:64:D8:78:03:55:38:08:88:9A:11:67 Certificate issuer: /CN=A919DC79/serialNumber=76CD021E0C281DA5FE64D87803553808889A1167 Certificate serial: 0BFA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft Manifest number: 0BE9 Signing time: Sat 18 Oct 2025 19:43:18 +0000 Manifest this update: Sat 18 Oct 2025 19:43:18 +0000 Manifest next update: Sat 25 Oct 2025 19:43:18 +0000 Files and hashes: 1: ds0CHgwoHaX-ZNh4A1U4CIiaEWc.crl (hash: V48tfwAy3/0Ra8WhX7msQgxh5oMES4JINOF5fFsK+AA=) 2: 7AC6992E655411F088401528C4F9AE02.roa (hash: uIcNx9LJmFIiFy1R//MYnp48SjiCyMS3BH2WDp6mT4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.crl rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:43:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3066 (0xbfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DC79, serialNumber=76CD021E0C281DA5FE64D87803553808889A1167 Validity Not Before: Oct 18 19:43:18 2025 GMT Not After : Oct 25 19:43:18 2025 GMT Subject: CN=68f3edd6-bb47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:af:fb:9c:91:ae:28:12:c1:f2:21:74:79:2a: 1a:d7:9e:e9:a8:3e:b2:eb:b6:5c:c7:56:6f:d4:68: e7:42:6d:19:2f:01:18:1f:db:32:58:2b:67:08:63: 64:bb:39:5c:8e:6b:62:e5:6c:a7:a1:e6:72:5c:5c: 5b:99:63:37:4f:73:e5:55:11:bd:c2:a6:80:f8:f6: 75:b6:88:dc:7c:cb:75:fc:ec:49:ae:51:6b:e2:f6: e1:c8:d1:08:b0:dc:66:38:b8:09:9f:47:d2:af:50: de:ce:35:46:cb:28:bb:9c:0b:a8:0e:c8:98:5d:70: 79:e9:3d:5a:96:24:19:36:45:48:8e:2f:0d:2e:ef: 50:92:85:19:02:49:2b:7c:8d:05:d4:2d:f5:37:0c: 6b:a9:f8:4e:4f:21:61:e3:97:89:43:62:ba:1c:c6: a4:db:3e:8c:43:ce:a8:1b:27:df:2c:76:f8:9a:f5: a1:44:77:42:89:1f:0d:35:39:a3:86:00:7a:b8:ac: be:36:bc:07:5d:e7:35:ab:e7:54:0e:f0:dd:f7:d3: 47:15:0c:22:a9:5e:b5:21:f5:2f:eb:f9:f9:05:c3: e0:4e:9c:98:29:e2:62:5c:98:14:bf:e6:7f:f4:bf: 1f:bb:8e:20:f0:e9:d5:5a:df:36:6d:24:c5:c9:cc: 14:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:1F:0B:CE:ED:F0:A2:DD:4C:61:54:01:02:B1:40:A2:CD:00:56:BE X509v3 Authority Key Identifier: keyid:76:CD:02:1E:0C:28:1D:A5:FE:64:D8:78:03:55:38:08:88:9A:11:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DC79/A63F93D627CE11EA8E407E5BC4F9AE02/ds0CHgwoHaX-ZNh4A1U4CIiaEWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:8e:8d:73:31:2b:93:59:3a:d9:d8:98:25:5a:45:af:88:cb: 9f:03:b2:dc:51:95:f0:6f:4a:c7:9b:64:2f:cd:5d:20:be:21: bd:89:7a:d8:cf:2d:a0:5c:1a:ea:49:7e:a5:51:05:de:f9:19: f3:36:1a:a7:13:99:13:b3:e9:5d:78:ba:a0:7e:0d:6e:a9:8a: 19:0a:d4:e0:ae:90:77:16:07:f3:4d:42:e8:fd:58:e0:08:4b: bc:d3:c9:01:83:4a:3b:b7:a9:b3:ff:41:d3:da:5e:6b:f3:2f: 8d:49:51:e5:b7:a7:f9:de:b2:09:a0:31:53:ee:ef:42:82:e8: 2f:4b:5d:22:eb:82:77:9e:4f:1a:e1:64:4f:84:05:92:58:5f: 10:db:21:44:1e:99:d4:4a:0a:17:26:cf:56:7f:b8:10:6a:34: 40:f5:c5:6d:45:83:44:93:61:38:67:2a:b3:34:30:d6:12:a7: 20:35:be:ba:11:ee:57:19:8b:6a:b7:ec:ba:f5:05:80:cb:ab: 98:dd:fc:2f:62:83:6c:c9:1f:77:be:d1:7d:ff:81:73:26:5e: d5:5f:76:bb:4a:fb:a9:f2:28:b4:8f:1d:b7:8e:07:ba:b6:90: a1:15:24:bf:59:e3:2e:bf:2e:9f:2d:c5:55:b5:f7:bd:5f:78: 8f:99:9b:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURDNzkxMTAvBgNVBAUTKDc2Q0QwMjFFMEMyODFEQTVGRTY0RDg3ODAzNTUzODA4 ODg5QTExNjcwHhcNMjUxMDE4MTk0MzE4WhcNMjUxMDI1MTk0MzE4WjAYMRYwFAYD VQQDEw02OGYzZWRkNi1iYjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAva/7nJGuKBLB8iF0eSoa157pqD6y67Zcx1Zv1GjnQm0ZLwEYH9syWCtnCGNk uzlcjmti5WynoeZyXFxbmWM3T3PlVRG9wqaA+PZ1tojcfMt1/OxJrlFr4vbhyNEI sNxmOLgJn0fSr1DezjVGyyi7nAuoDsiYXXB56T1aliQZNkVIji8NLu9QkoUZAkkr fI0F1C31NwxrqfhOTyFh45eJQ2K6HMak2z6MQ86oGyffLHb4mvWhRHdCiR8NNTmj hgB6uKy+NrwHXec1q+dUDvDd99NHFQwiqV61IfUv6/n5BcPgTpyYKeJiXJgUv+Z/ 9L8fu44g8OnVWt82bSTFycwUUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0fC87t 8KLdTGFUAQKxQKLNAFa+MB8GA1UdIwQYMBaAFHbNAh4MKB2l/mTYeANVOAiImhFn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REM3OS9BNjNGOTNENjI3 Q0UxMUVBOEU0MDdFNUJDNEY5QUUwMi9kczBDSGd3b0hhWC1aTmg0QTFVNENJaWFF V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RzMENIZ3dvSGFYLVpOaDRBMVU0Q0lpYUVXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 REM3OS9BNjNGOTNENjI3Q0UxMUVBOEU0MDdFNUJDNEY5QUUwMi9kczBDSGd3b0hh WC1aTmg0QTFVNENJaWFFV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxjo1zMSuTWTrZ2JglWkWviMufA7LcUZXwb0rHm2QvzV0gviG9iXrY zy2gXBrqSX6lUQXe+RnzNhqnE5kTs+ldeLqgfg1uqYoZCtTgrpB3FgfzTULo/Vjg CEu808kBg0o7t6mz/0HT2l5r8y+NSVHlt6f53rIJoDFT7u9CgugvS10i64J3nk8a 4WRPhAWSWF8Q2yFEHpnUSgoXJs9Wf7gQajRA9cVtRYNEk2E4ZyqzNDDWEqcgNb66 Ee5XGYtqt+y69QWAy6uY3fwvYoNsyR93vtF9/4FzJl7VX3a7Svup8ii0jx23jge6 tpChFSS/WeMuvy6fLcVVtfe9X3iPmZvm -----END CERTIFICATE-----Generated at Mon Oct 20 10:47:23 2025 by rpki-client