$ rpki-client -vvf rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft File: diAma5iRohjA5fLvKI94LVcX8rw.mft (raw, json) Hash identifier: tJSU3pk4mEL0aFESuUixqC1DsJYT1n9jrCMZR+zi4T4= Subject key identifier: 0C:F6:C7:AC:7D:E0:3F:92:21:42:A4:FC:F4:D1:BE:94:E7:A4:01:5C Authority key identifier: 76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC Certificate issuer: /CN=A911E660/serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft Manifest number: 8E Signing time: Fri 17 Oct 2025 09:58:30 +0000 Manifest this update: Fri 17 Oct 2025 09:58:29 +0000 Manifest next update: Fri 24 Oct 2025 09:58:29 +0000 Files and hashes: 1: diAma5iRohjA5fLvKI94LVcX8rw.crl (hash: oz3Y3j37UZQY6jdywnca/pwdjSsOMXQZb0ldKJNeWJY=) 2: 4ECE44B0D24311EF919B6D12C4F9AE02.roa (hash: HTX8AzlBVBkYFaGVRN5GWHgC9HxdFLqil4uBj/GLN6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 09:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E660, serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Validity Not Before: Oct 17 09:58:29 2025 GMT Not After : Oct 24 09:58:29 2025 GMT Subject: CN=68f21345-a360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a8:be:e6:bb:92:a6:04:80:a2:71:3a:13:ca: 7a:64:dd:48:f5:0d:c2:85:04:46:c6:ab:28:dd:9d: 87:79:cc:2f:b1:ac:2a:e0:12:94:fd:b3:c4:42:7f: bc:71:81:a8:13:69:7f:6b:c0:dd:8c:d2:70:7e:7f: 0b:78:58:4e:c3:fb:c3:51:99:f4:ef:76:c8:12:0c: c0:46:9c:8c:8e:96:44:d2:8c:cc:50:9f:f9:59:ac: 76:1b:03:9a:25:67:2a:ff:e6:a6:ce:63:c3:e1:e3: bc:65:78:c3:1a:50:6a:7a:13:9b:e2:b7:10:b3:5b: b2:59:4b:88:61:71:43:e4:49:57:9b:f6:0f:dd:28: 7f:4b:9f:97:37:ea:ab:30:ac:c4:bb:a2:dc:f4:ef: 25:18:cd:1a:af:4a:89:bd:62:cb:b9:41:32:44:db: 91:73:8c:24:6b:fd:5c:f2:0e:a9:66:e4:25:76:94: cc:c6:bc:49:84:a4:af:de:38:cb:16:e8:89:e3:01: 40:0a:fb:73:99:ca:f0:83:88:ba:59:92:7b:14:ca: f3:5c:f0:38:0f:58:80:a2:76:a6:49:b8:ac:21:a5: 60:0f:8c:1f:65:86:79:51:45:44:59:32:8d:2b:f3: 93:48:dc:26:ff:dc:78:82:1c:3a:0c:c9:32:5e:d5: ac:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:F6:C7:AC:7D:E0:3F:92:21:42:A4:FC:F4:D1:BE:94:E7:A4:01:5C X509v3 Authority Key Identifier: keyid:76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:23:61:33:62:f0:6c:a2:79:00:12:af:63:c4:24:47:0a:d6: a4:91:6f:1f:9f:ff:20:40:5f:8e:fa:61:d5:ed:47:4a:3c:b3: 0a:85:89:e3:30:01:e0:74:ae:f2:2d:fe:7a:ab:3f:c7:49:74: a4:aa:84:40:42:7e:b4:42:e3:ec:ea:e2:bc:65:6b:4b:29:d2: 95:40:8f:30:3b:a0:82:ce:56:1c:1b:55:43:01:6b:61:0e:68: 8f:a0:46:66:e0:57:93:55:6c:7a:34:07:3a:06:98:4e:37:df: 1c:7d:fe:6b:a6:94:f6:a7:fd:e0:60:af:1e:70:3e:e7:96:db: 8b:88:8b:d4:00:f4:86:40:18:5c:6c:31:77:1d:5e:cb:32:02: 1c:d1:a5:d4:87:43:ef:96:4b:13:1a:3a:47:dd:68:14:16:5d: f5:5e:ed:8b:b9:9c:c4:3e:26:35:1d:8d:c0:af:d8:70:65:ff: e6:e7:d9:ca:44:56:70:17:cb:92:49:aa:51:91:d1:2c:4a:dd: 2b:80:1d:0e:33:11:e8:a8:39:46:72:95:df:77:b7:e2:00:84: 8a:f5:8a:c4:28:48:a9:a7:62:e9:54:7a:9a:e1:f5:a4:1a:d1: d5:0c:31:e0:e2:cc:4e:4b:b7:41:c0:00:ca:50:16:78:51:e4: 61:58:42:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2NjAxMTAvBgNVBAUTKDc2MjAyNjZCOTg5MUEyMThDMEU1RjJFRjI4OEY3ODJE NTcxN0YyQkMwHhcNMjUxMDE3MDk1ODI5WhcNMjUxMDI0MDk1ODI5WjAYMRYwFAYD VQQDEw02OGYyMTM0NS1hMzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26i+5ruSpgSAonE6E8p6ZN1I9Q3ChQRGxqso3Z2Hecwvsawq4BKU/bPEQn+8 cYGoE2l/a8DdjNJwfn8LeFhOw/vDUZn073bIEgzARpyMjpZE0ozMUJ/5Wax2GwOa JWcq/+amzmPD4eO8ZXjDGlBqehOb4rcQs1uyWUuIYXFD5ElXm/YP3Sh/S5+XN+qr MKzEu6Lc9O8lGM0ar0qJvWLLuUEyRNuRc4wka/1c8g6pZuQldpTMxrxJhKSv3jjL FuiJ4wFACvtzmcrwg4i6WZJ7FMrzXPA4D1iAonamSbisIaVgD4wfZYZ5UUVEWTKN K/OTSNwm/9x4ghw6DMkyXtWsTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAz2x6x9 4D+SIUKk/PTRvpTnpAFcMB8GA1UdIwQYMBaAFHYgJmuYkaIYwOXy7yiPeC1XF/K8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTY2MC9GOTg3MTFEQUQy NDIxMUVGODhDNUJDMTFDNEY5QUUwMi9kaUFtYTVpUm9oakE1Zkx2S0k5NExWY1g4 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RpQW1hNWlSb2hqQTVmTHZLSTk0TFZjWDhydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTY2MC9GOTg3MTFEQUQyNDIxMUVGODhDNUJDMTFDNEY5QUUwMi9kaUFtYTVpUm9o akE1Zkx2S0k5NExWY1g4cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxI2EzYvBsonkAEq9jxCRHCtakkW8fn/8gQF+O+mHV7UdKPLMKhYnj MAHgdK7yLf56qz/HSXSkqoRAQn60QuPs6uK8ZWtLKdKVQI8wO6CCzlYcG1VDAWth DmiPoEZm4FeTVWx6NAc6BphON98cff5rppT2p/3gYK8ecD7nltuLiIvUAPSGQBhc bDF3HV7LMgIc0aXUh0PvlksTGjpH3WgUFl31Xu2LuZzEPiY1HY3Ar9hwZf/m59nK RFZwF8uSSapRkdEsSt0rgB0OMxHoqDlGcpXfd7fiAISK9YrEKEipp2LpVHqa4fWk GtHVDDHg4sxOS7dBwADKUBZ4UeRhWELb -----END CERTIFICATE-----Generated at Sat Oct 18 23:38:45 2025 by rpki-client