$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft File: P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft (raw, json) Hash identifier: 1OzTyEe+BNOu8lQzSadN/BXdH8y12yVM4hhUFTjJVs4= Subject key identifier: 36:40:84:95:61:16:91:EE:0A:69:DD:8A:E7:AD:42:9E:5E:B9:2E:EF Authority key identifier: 3F:41:E0:48:D2:2B:2A:1A:EA:4C:E0:B8:44:95:2A:4A:39:D6:CB:37 Certificate issuer: /CN=A919F0DA/serialNumber=3F41E048D22B2A1AEA4CE0B844952A4A39D6CB37 Certificate serial: 34D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft Manifest number: 610B Signing time: Sat 18 Oct 2025 14:15:30 +0000 Manifest this update: Sat 18 Oct 2025 14:15:29 +0000 Manifest next update: Sat 25 Oct 2025 14:15:29 +0000 Files and hashes: 1: P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl (hash: 1d+El2Th0yNpvlY7F10ZAactgbLCj5X9LYZjunZrC5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:15:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13524 (0x34d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA, serialNumber=3F41E048D22B2A1AEA4CE0B844952A4A39D6CB37 Validity Not Before: Oct 18 14:15:29 2025 GMT Not After : Oct 25 14:15:29 2025 GMT Subject: CN=68f3a102-5fe9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b8:bc:1f:4f:9e:77:fe:05:71:c2:3e:31:80: fb:85:a7:74:ad:4a:eb:6b:c0:69:12:b1:bf:60:0e: 8d:9e:18:fe:10:e6:13:15:0e:d4:cd:b5:96:c6:ad: 0b:aa:ba:f9:05:1b:bb:5c:b0:d1:33:95:8c:ab:17: 48:09:70:8e:48:1d:2e:bf:53:9e:5e:d7:24:32:35: c1:f7:44:b4:29:ee:29:08:bb:3b:ed:06:a7:83:0d: fe:90:9e:2f:f3:14:76:55:c3:a1:05:9c:be:af:88: b2:e8:ca:2f:97:71:43:72:ec:2a:b8:be:a1:b3:09: 91:9c:a5:41:6c:f4:ec:8d:bc:6f:f9:67:83:92:50: 8c:6d:4f:b4:9b:2c:44:e0:ad:32:f1:78:74:7b:7a: c4:34:70:e2:86:a5:07:c4:53:d8:9f:b6:e3:96:49: 44:c9:4a:e8:3b:d6:32:79:bd:f6:fa:25:e1:f5:51: aa:5e:e0:94:91:e6:00:bb:92:12:5d:00:e5:fd:be: 1a:67:5a:e3:8d:80:85:a8:6f:81:fd:a2:77:16:2c: f6:31:3f:39:fa:69:57:dd:87:fa:90:1d:14:87:17: 09:c7:7d:ad:1a:31:5a:a8:e9:f8:bf:68:0b:19:dc: 10:a5:17:9d:04:8e:32:ca:e1:1c:c5:27:e1:25:c0: c2:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:40:84:95:61:16:91:EE:0A:69:DD:8A:E7:AD:42:9E:5E:B9:2E:EF X509v3 Authority Key Identifier: keyid:3F:41:E0:48:D2:2B:2A:1A:EA:4C:E0:B8:44:95:2A:4A:39:D6:CB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:c4:24:7e:c9:9e:e3:8c:1e:0f:32:6c:04:4c:39:a6:61:d3: a1:20:b0:c2:31:e1:d1:4d:97:25:e0:db:cd:c2:f4:2a:33:90: 22:fc:10:e7:9d:cf:fd:20:77:3b:82:64:0f:9b:be:aa:94:7b: e2:81:7f:a8:30:b7:10:13:d6:b1:4c:2e:f1:72:6c:aa:2e:cd: 96:00:9e:7a:c1:d1:b8:12:9f:57:5c:d7:09:6b:45:a8:28:e6: 93:a2:aa:04:a5:d6:f8:8e:ce:fe:08:1b:bd:fe:7a:73:21:47: 30:e2:4b:df:da:a4:30:76:43:5a:19:fa:14:2c:76:aa:e1:49: 9f:2a:05:cd:74:43:76:98:61:af:cc:0d:95:23:68:f2:e8:44: fa:5d:ed:81:88:2d:d1:dd:aa:53:ab:f4:08:9f:94:4d:3a:17: 07:43:6f:f2:ee:e9:67:62:ce:47:aa:d7:12:97:99:0a:a9:5d: 6d:63:01:4e:c7:60:68:21:db:0d:57:9c:5e:91:cc:11:b3:b0: 57:6c:9d:9e:d7:f1:2e:cd:0d:43:bb:eb:aa:68:91:4e:cf:28: d9:1b:21:48:9f:cd:2d:4c:29:8e:e2:53:59:26:5d:f8:5e:a7: 9b:89:17:7a:2d:ab:ec:b1:6f:34:5d:e1:d6:78:b4:3b:62:10: 7a:12:b5:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDNGNDFFMDQ4RDIyQjJBMUFFQTRDRTBCODQ0OTUyQTRB MzlENkNCMzcwHhcNMjUxMDE4MTQxNTI5WhcNMjUxMDI1MTQxNTI5WjAYMRYwFAYD VQQDEw02OGYzYTEwMi01ZmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ri8H0+ed/4FccI+MYD7had0rUrra8BpErG/YA6Nnhj+EOYTFQ7UzbWWxq0L qrr5BRu7XLDRM5WMqxdICXCOSB0uv1OeXtckMjXB90S0Ke4pCLs77Qangw3+kJ4v 8xR2VcOhBZy+r4iy6Movl3FDcuwquL6hswmRnKVBbPTsjbxv+WeDklCMbU+0myxE 4K0y8Xh0e3rENHDihqUHxFPYn7bjlklEyUroO9Yyeb32+iXh9VGqXuCUkeYAu5IS XQDl/b4aZ1rjjYCFqG+B/aJ3Fiz2MT85+mlX3Yf6kB0UhxcJx32tGjFaqOn4v2gL GdwQpRedBI4yyuEcxSfhJcDCuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZAhJVh FpHuCmndiuetQp5euS7vMB8GA1UdIwQYMBaAFD9B4EjSKyoa6kzguESVKko51ss3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS8xNTBEM0VGNDFE NjgxMUUyOEMxODI4QTQwOEIwMkNEMi9QMEhnU05JcktocnFUT0M0UkpVcVNqbld5 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwSGdTTklyS2hycVRPQzRSSlVxU2puV3l6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBEQS8xNTBEM0VGNDFENjgxMUUyOEMxODI4QTQwOEIwMkNEMi9QMEhnU05Jckto cnFUT0M0UkpVcVNqbld5emMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALxCR+yZ7jjB4PMmwETDmmYdOhILDCMeHRTZcl4NvNwvQqM5Ai/BDn nc/9IHc7gmQPm76qlHvigX+oMLcQE9axTC7xcmyqLs2WAJ56wdG4Ep9XXNcJa0Wo KOaToqoEpdb4js7+CBu9/npzIUcw4kvf2qQwdkNaGfoULHaq4UmfKgXNdEN2mGGv zA2VI2jy6ET6Xe2BiC3R3apTq/QIn5RNOhcHQ2/y7ulnYs5HqtcSl5kKqV1tYwFO x2BoIdsNV5xekcwRs7BXbJ2e1/EuzQ1Du+uqaJFOzyjZGyFIn80tTCmO4lNZJl34 XqebiRd6LavssW80XeHWeLQ7YhB6ErUH -----END CERTIFICATE-----Generated at Mon Oct 20 14:41:52 2025 by rpki-client