$ rpki-client -vvf rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft File: epYXaVSeCq0Km_mSVoO673M6Lxo.mft (raw, json) Hash identifier: VqHo7T2n/9eylFcM632zdiw7g5wgZspId0q6nzth3FE= Subject key identifier: 26:9B:1F:AA:F9:66:86:85:13:73:3C:E1:B7:2E:6C:92:2C:F2:59:7E Authority key identifier: 7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A Certificate issuer: /CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Certificate serial: 3545 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft Manifest number: 350A Signing time: Sun 26 Oct 2025 14:23:21 +0000 Manifest this update: Sun 26 Oct 2025 14:23:20 +0000 Manifest next update: Sun 02 Nov 2025 14:23:20 +0000 Files and hashes: 1: epYXaVSeCq0Km_mSVoO673M6Lxo.crl (hash: iR3QsjWByXzTPfzrpEfpLaKPBn8KiHaAiJMC5COPs8o=) 2: A9B6556E064311F0BA61C549C4F9AE02.roa (hash: 0C6TlHkpuDCz4hvNzUcvUCrXDtcFtiPeiunaW4mmmk0=) 3: 1F5CD892C35111EE9D744F36C4F9AE02.roa (hash: 1gkTF4crGWzpTEQnLV3friPjpJHknrP6i19dnfTKZhs=) 4: 1A83389CC35211EE8CE04C38C4F9AE02.roa (hash: wP5Do/J+7GR346S2KVvf1dpQZtkQwT1BPnhQO5L+JJ4=) 5: DA202262C34F11EE93BC8317C4F9AE02.roa (hash: dcDioS0VFo6S9vVwz+paS1zd6YFHx5bsZVN3a7QsfW4=) 6: 61A65BF2C35011EE95366E18C4F9AE02.roa (hash: Q61bbCPssNF62XMkq5QJdqkEtUeKQLsoUnsJMBUa8ZI=) 7: 1EEE3E0AC35111EE9D744F36C4F9AE02.roa (hash: 5YdHJezTTAq6NbRIi4l4/6Fihe+icCcCreH0PZW2XgQ=) 8: A50EE218C34D11EEBC95A913C4F9AE02.roa (hash: 5q/2MUPjpxwhlN6OCcanacRv9yZj3jDJtQjCybC3W8U=) 9: DC67BC1E8E1A11F08364EF73C4F9AE02.roa (hash: n9kveW6T0zGofNIWBVL2lz5XwTYiSjqFUg+Xl3iNCMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 14:23:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13637 (0x3545) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C5B0, serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Validity Not Before: Oct 26 14:23:20 2025 GMT Not After : Nov 2 14:23:20 2025 GMT Subject: CN=68fe2ed8-8dff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f5:db:32:98:1d:c6:d8:2b:42:c7:c1:29:c1: d7:94:9a:36:4b:0c:fe:9f:e5:8c:30:5d:a0:e3:de: 62:75:b9:0b:5e:51:c4:ac:9c:a7:9f:d0:9d:7f:b3: 96:59:f8:8c:43:69:93:cc:a4:f0:38:86:ea:7a:e4: 9a:24:28:0a:c4:ee:6c:f9:63:27:6d:b5:03:6e:02: c4:13:36:95:35:1f:cc:99:ef:37:d5:89:ca:f7:30: 99:97:87:92:6c:54:5d:bd:36:42:41:39:46:7f:aa: 4d:7a:c8:cc:8d:20:c4:b0:27:b5:0a:6c:d4:b7:a3: 9b:8b:09:97:73:20:c3:f7:2a:16:dd:ef:8c:c4:6d: 56:da:d4:95:90:57:3a:f8:9f:08:9a:54:ce:15:b6: 0d:ef:20:6b:a1:ca:66:99:4d:ec:1a:13:28:00:3e: 34:0b:4e:46:16:cd:6a:a5:77:7b:7f:92:88:0f:a3: 69:16:f0:3c:23:00:ae:43:f3:f1:eb:cd:8d:6f:64: 66:86:29:77:f5:13:38:27:e3:da:37:fb:83:dc:0c: 94:20:5a:af:b5:a5:a3:8a:e9:bd:fb:da:60:fa:cb: b9:e3:b1:40:9e:28:26:73:38:59:61:2b:d4:97:c6: 48:d5:5c:7f:d3:de:5e:d1:84:a4:9c:5d:b6:2b:3a: c4:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:9B:1F:AA:F9:66:86:85:13:73:3C:E1:B7:2E:6C:92:2C:F2:59:7E X509v3 Authority Key Identifier: keyid:7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:62:29:ea:b6:f8:40:0b:0a:75:11:1c:af:7e:60:9b:62:57: 3e:42:1f:1f:dd:89:df:2a:c9:c7:0d:7d:fc:fa:4a:c5:72:21: f8:14:8a:67:fd:24:fc:ab:48:dd:a2:f4:84:9d:20:cd:5f:53: 0d:4c:61:e0:99:e8:c1:ef:5d:4d:ca:4f:db:2b:e9:11:ee:15: e7:a4:13:e2:d3:5f:ff:a4:67:8a:fa:be:3a:34:a4:66:00:d4: a3:d1:e3:4f:a3:a7:0d:62:7b:19:0d:1c:c6:1c:ec:62:cb:f5: a2:33:a2:27:94:48:aa:fa:6a:5a:1d:35:1f:39:90:3b:84:05: 00:a5:79:34:e5:9c:e9:b4:16:02:67:cc:c7:e5:15:bc:f5:bf: 25:d9:3f:be:d4:7a:c9:8a:5c:7d:9c:26:32:ee:ce:4a:e6:48: 06:47:25:f1:86:f3:0f:2e:c9:37:0c:2f:3d:86:16:34:32:88: a4:db:10:2a:cf:ff:28:7a:6f:c2:fa:0a:e6:84:0a:bc:a9:9a: c0:46:42:ed:43:7a:e5:ce:08:cb:1c:c1:5e:5b:c0:6c:6c:43: 0e:a1:79:59:97:ed:94:a9:f8:81:ab:a5:79:29:e1:fb:5a:24: cc:ee:aa:f5:ee:6b:29:e1:84:84:31:d7:7f:50:54:62:9c:8e: 07:94:66:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1QjAxMTAvBgNVBAUTKDdBOTYxNzY5NTQ5RTBBQUQwQTlCRjk5MjU2ODNCQUVG NzMzQTJGMUEwHhcNMjUxMDI2MTQyMzIwWhcNMjUxMTAyMTQyMzIwWjAYMRYwFAYD VQQDEw02OGZlMmVkOC04ZGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPXbMpgdxtgrQsfBKcHXlJo2Swz+n+WMMF2g495idbkLXlHErJynn9Cdf7OW WfiMQ2mTzKTwOIbqeuSaJCgKxO5s+WMnbbUDbgLEEzaVNR/Mme831YnK9zCZl4eS bFRdvTZCQTlGf6pNesjMjSDEsCe1CmzUt6ObiwmXcyDD9yoW3e+MxG1W2tSVkFc6 +J8ImlTOFbYN7yBrocpmmU3sGhMoAD40C05GFs1qpXd7f5KID6NpFvA8IwCuQ/Px 682Nb2Rmhil39RM4J+PaN/uD3AyUIFqvtaWjium9+9pg+su547FAnigmczhZYSvU l8ZI1Vx/095e0YSknF22KzrEgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCabH6r5 ZoaFE3M84bcubJIs8ll+MB8GA1UdIwQYMBaAFHqWF2lUngqtCpv5klaDuu9zOi8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzVCMC80MEM4RDVBNjFE ODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNxMEttX21TVm9PNjczTTZM eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwWVhhVlNlQ3EwS21fbVNWb082NzNNNkx4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzVCMC80MEM4RDVBNjFEODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNx MEttX21TVm9PNjczTTZMeG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7YinqtvhACwp1ERyvfmCbYlc+Qh8f3YnfKsnHDX38+krFciH4FIpn /ST8q0jdovSEnSDNX1MNTGHgmejB711Nyk/bK+kR7hXnpBPi01//pGeK+r46NKRm ANSj0eNPo6cNYnsZDRzGHOxiy/WiM6InlEiq+mpaHTUfOZA7hAUApXk05ZzptBYC Z8zH5RW89b8l2T++1HrJilx9nCYy7s5K5kgGRyXxhvMPLsk3DC89hhY0Moik2xAq z/8oem/C+grmhAq8qZrARkLtQ3rlzgjLHMFeW8BsbEMOoXlZl+2UqfiBq6V5KeH7 WiTM7qr17msp4YSEMdd/UFRinI4HlGay -----END CERTIFICATE-----Generated at Tue Oct 28 07:09:24 2025 by rpki-client