$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft File: 03F5y7l9aA5qgNwS7kIv6LbjY_U.mft (raw, json) Hash identifier: T+U2XW6YP/qQJXH6xNf+BNtt0lnFa0QbpDvHx2rxcMY= Subject key identifier: A3:AB:B9:D8:2A:29:80:17:0B:81:CE:5F:F4:27:02:79:AE:84:3B:88 Authority key identifier: D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 Certificate issuer: /CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Certificate serial: 0795 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft Manifest number: 0730 Signing time: Wed 22 Oct 2025 22:47:25 +0000 Manifest this update: Wed 22 Oct 2025 22:47:24 +0000 Manifest next update: Wed 29 Oct 2025 22:47:24 +0000 Files and hashes: 1: 03F5y7l9aA5qgNwS7kIv6LbjY_U.crl (hash: 22q0x6Uhj+fxInFLyVfAqtlS8EkJh72r3e7MnVb1ZGs=) 2: B46F239C6A8D11EB82AF1144C4F9AE02.roa (hash: S6sSUQCmJtkaMtMbA1O0Mmg6DyeiEI+XUAJAroLQzw0=) 3: B24078AA6A8D11EB82AF1144C4F9AE02.roa (hash: 3GgLx+CbNEwoDetwa0xclFosAF0ThnHDNkGy9hkBwHY=) 4: B34D07906A8D11EB82AF1144C4F9AE02.roa (hash: gFTQhXxxWg+vWFd9YUvmY8166bjE5yYi7F/AL03zQaU=) 5: B57F14B86A8D11EB82AF1144C4F9AE02.roa (hash: e4/df1ZKDr4aEamOFlzJbyomY0cdDHsDrVrwwMv17eI=) 6: 35BE363E668F11EBA738AF61C4F9AE02.roa (hash: 4feN6gwvjlguQsUZ0+vuacffttVLy9DJIXoMNN8hWOI=) 7: 4CBC0878AA5111ECBEC4A312C4F9AE02.roa (hash: zplnnTYrDs6ATh1oYF/06orqoqHtQxFtplLwmc2mqPA=) 8: E9ECC32008C611EDBC862E48C4F9AE02.roa (hash: 53gHj/OrKFXtL8aMTpoTUjSuuGCGwdKOy6cQhgB55pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 22:47:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1941 (0x795) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF1F, serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Validity Not Before: Oct 22 22:47:24 2025 GMT Not After : Oct 29 22:47:24 2025 GMT Subject: CN=68f95efd-b567 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:30:97:2d:6c:fc:64:6e:5c:ef:b3:df:df:f6: 52:d7:de:64:41:60:d9:7d:6d:05:c6:40:0b:29:ed: 05:70:ad:de:bb:43:41:d0:ad:4f:52:f0:58:2e:89: bc:b5:e4:14:de:ea:65:3c:20:d9:19:c3:73:a3:03: c5:7e:b3:04:bf:59:db:02:b4:ba:51:ca:e7:d6:18: 92:7e:95:12:6a:da:ea:0e:ad:f3:a2:eb:c0:df:e1: 46:39:a2:44:16:e1:50:eb:fc:ed:4b:e7:9f:16:69: 55:df:a8:e1:e5:62:b4:4c:f2:25:3c:35:85:37:88: 7f:94:b2:f7:28:64:8b:10:ad:b3:43:0c:8d:a3:5e: 60:3b:a8:bc:35:e9:a5:ed:6a:9f:0c:0b:c3:92:87: 51:e0:cd:08:10:29:eb:62:ef:ec:80:89:40:d6:74: b8:52:c8:68:94:b5:12:15:57:69:c9:0e:12:7c:17: 85:7f:d4:51:7c:61:6d:49:a7:b3:57:fe:db:02:0f: 4a:db:e6:fa:2d:e4:44:5b:e4:59:5f:3f:31:f3:39: 4e:b2:b4:5f:a4:0a:bc:06:3f:8f:88:69:2a:7d:0a: 4b:af:f5:80:3f:4d:c2:16:dc:92:f8:07:b3:58:b7: 52:21:40:d8:c2:6c:79:ea:13:7f:06:64:95:a1:fe: db:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:AB:B9:D8:2A:29:80:17:0B:81:CE:5F:F4:27:02:79:AE:84:3B:88 X509v3 Authority Key Identifier: keyid:D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:4f:f2:71:2c:04:02:7f:cf:f3:ff:00:9e:8e:05:1e:7d:2c: d2:18:45:72:90:6f:87:dc:09:92:aa:1a:8f:f6:d2:04:fc:f7: dd:d3:f8:b8:78:fd:35:a1:e6:3a:37:1e:78:41:02:fb:34:24: 73:0b:1b:93:cf:87:a4:ec:b4:35:29:6e:48:cf:4d:25:12:ce: 12:9d:a9:5e:c6:76:b4:da:91:90:4a:23:0d:25:3f:87:65:5c: 28:aa:2d:3b:e2:10:49:c9:fb:47:ef:73:c1:e8:14:09:cc:f4: 80:06:07:26:60:28:b4:51:d0:9f:fc:56:0e:a7:a1:d6:71:68: 55:4f:7c:54:0c:9a:48:44:b4:d7:37:ae:bf:64:36:ca:6e:0e: fe:96:59:31:4a:3d:3a:b4:04:db:10:1f:04:4d:13:0f:ce:01: 2b:6c:5d:c1:41:9d:88:07:ee:3c:a0:05:a3:c6:82:6a:7e:a0: f8:b3:d9:f7:d1:69:3e:9b:13:ad:67:99:5d:ed:2e:d4:48:c4: 22:ec:7d:ab:a9:dd:5b:7b:d1:08:c7:4d:67:d5:4c:44:6e:fc: 65:ac:a9:e4:96:a4:39:08:26:05:dd:c5:d9:32:ce:29:f4:49: 5f:e6:e4:a0:8b:1d:22:9d:01:a9:c9:6d:db:5e:84:9c:e9:b4: d5:05:a9:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGMUYxMTAvBgNVBAUTKEQzNzE3OUNCQjk3RDY4MEU2QTgwREMxMkVFNDIyRkU4 QjZFMzYzRjUwHhcNMjUxMDIyMjI0NzI0WhcNMjUxMDI5MjI0NzI0WjAYMRYwFAYD VQQDEw02OGY5NWVmZC1iNTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6zCXLWz8ZG5c77Pf3/ZS195kQWDZfW0FxkALKe0FcK3eu0NB0K1PUvBYLom8 teQU3uplPCDZGcNzowPFfrMEv1nbArS6Ucrn1hiSfpUSatrqDq3zouvA3+FGOaJE FuFQ6/ztS+efFmlV36jh5WK0TPIlPDWFN4h/lLL3KGSLEK2zQwyNo15gO6i8Neml 7WqfDAvDkodR4M0IECnrYu/sgIlA1nS4UsholLUSFVdpyQ4SfBeFf9RRfGFtSaez V/7bAg9K2+b6LeREW+RZXz8x8zlOsrRfpAq8Bj+PiGkqfQpLr/WAP03CFtyS+Aez WLdSIUDYwmx56hN/BmSVof7bMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKOrudgq KYAXC4HOX/QnAnmuhDuIMB8GA1UdIwQYMBaAFNNxecu5fWgOaoDcEu5CL+i242P1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREYxRi9GNUNCNkU2QTVD NTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFBNXFnTndTN2tJdjZMYmpZ X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzRjV5N2w5YUE1cWdOd1M3a0l2NkxiallfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REYxRi9GNUNCNkU2QTVDNTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFB NXFnTndTN2tJdjZMYmpZX1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1T/JxLAQCf8/z/wCejgUefSzSGEVykG+H3AmSqhqP9tIE/Pfd0/i4 eP01oeY6Nx54QQL7NCRzCxuTz4ek7LQ1KW5Iz00lEs4Snalexna02pGQSiMNJT+H ZVwoqi074hBJyftH73PB6BQJzPSABgcmYCi0UdCf/FYOp6HWcWhVT3xUDJpIRLTX N66/ZDbKbg7+llkxSj06tATbEB8ETRMPzgErbF3BQZ2IB+48oAWjxoJqfqD4s9n3 0Wk+mxOtZ5ld7S7USMQi7H2rqd1be9EIx01n1UxEbvxlrKnklqQ5CCYF3cXZMs4p 9Elf5uSgix0inQGpyW3bXoSc6bTVBalz -----END CERTIFICATE-----Generated at Thu Oct 23 04:13:05 2025 by rpki-client