$ rpki-client -vvf rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft File: aamToYghmKytXxzqNQZrr0nn1dA.mft (raw, json) Hash identifier: tCehUMZjQ2PnvFyqpYw7RRt4n+rhvwIpzRFkq303cMQ= Subject key identifier: D3:E2:30:6D:C0:ED:64:67:81:00:3B:87:43:A3:48:B7:1B:19:F7:DB Authority key identifier: 69:A9:93:A1:88:21:98:AC:AD:5F:1C:EA:35:06:6B:AF:49:E7:D5:D0 Certificate issuer: /CN=A912B23F/serialNumber=69A993A1882198ACAD5F1CEA35066BAF49E7D5D0 Certificate serial: 013B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft Manifest number: 0137 Signing time: Mon 03 Nov 2025 04:32:02 +0000 Manifest this update: Mon 03 Nov 2025 04:32:02 +0000 Manifest next update: Mon 10 Nov 2025 04:32:02 +0000 Files and hashes: 1: aamToYghmKytXxzqNQZrr0nn1dA.crl (hash: 6qumqphT/Z/QhrHyrJXYw9K7w7Q+ErWiOKfSSHFleTE=) 2: 78585C5EB6E011EFBB3E2A0DC4F9AE02.roa (hash: WBqt8bWcN7f1UBdrAmgdhcX9VMn7anvz2CtIGPkbbz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.crl rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 315 (0x13b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B23F, serialNumber=69A993A1882198ACAD5F1CEA35066BAF49E7D5D0 Validity Not Before: Nov 3 04:32:02 2025 GMT Not After : Nov 10 04:32:02 2025 GMT Subject: CN=69083042-889b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:cd:19:12:8f:22:67:b7:0a:63:ae:4c:e5:81: dd:02:b1:bf:33:e0:6d:66:5c:79:4b:c0:c3:ed:6a: b7:77:bb:cb:81:c4:8c:e4:01:f8:65:02:81:1a:da: fe:17:9b:0b:91:4a:d2:56:bc:af:2c:b8:38:ad:6b: 05:f6:a1:e8:4d:88:54:2d:65:8e:69:01:a6:d1:64: 54:15:b0:16:98:df:6d:5f:a5:cf:c1:32:7f:43:55: 69:bf:09:3a:1e:da:56:b6:db:7a:d9:fd:2b:13:37: 73:35:0e:77:ae:f9:e5:c4:32:07:8c:e9:96:fe:95: 42:f3:db:6f:9f:d1:5c:0a:90:86:ed:51:e2:9e:04: 2c:db:51:08:71:9f:33:c3:c2:60:8d:a0:e5:cc:bd: 7e:3d:42:f5:84:8f:d0:42:6e:bf:6c:0b:c4:2f:fe: 8b:7d:24:84:a4:63:94:99:9e:89:63:aa:a0:d9:93: 3d:c5:e0:c3:e7:fd:77:be:33:73:a3:d8:9a:24:d4: 0f:9a:45:d1:70:7d:e3:e0:b1:5f:7a:87:ec:68:12: 21:8a:5e:f2:72:99:28:d9:7e:64:a2:2a:5b:49:f4: 2d:36:71:0b:15:57:70:27:24:82:0c:7b:ec:86:23: f7:56:48:f6:4e:04:a8:fc:ae:d0:f2:ec:a5:9e:34: d2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:E2:30:6D:C0:ED:64:67:81:00:3B:87:43:A3:48:B7:1B:19:F7:DB X509v3 Authority Key Identifier: keyid:69:A9:93:A1:88:21:98:AC:AD:5F:1C:EA:35:06:6B:AF:49:E7:D5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:d4:c6:26:d7:85:cd:52:96:f3:2d:ad:7b:90:c4:df:18:cc: 5c:dc:a3:b8:9d:ce:21:06:34:23:87:58:12:5e:18:d5:4c:60: 1f:8b:c5:c5:ce:0d:8f:0b:df:76:44:9e:c2:75:16:98:dd:a0: 1a:dc:b3:0f:37:03:3a:f1:9c:ba:49:ca:af:f6:fa:e9:48:a9: 92:41:fa:92:35:b0:ee:db:28:9a:44:c4:91:b9:20:a2:54:4f: a2:bc:d4:56:d6:28:e3:e4:82:d4:52:34:f4:75:a4:97:fe:fb: 4b:5d:b0:dc:47:8d:c3:6d:9f:46:ad:c1:e2:65:ea:b7:9a:a9: a6:55:f3:bb:d1:16:db:de:bc:59:ce:42:f5:e1:8a:9f:aa:00: f1:07:c8:b4:90:80:6f:14:7c:ec:0e:50:83:95:83:f2:38:d8: 5f:97:16:ae:82:4f:03:b4:cd:54:d4:46:0f:63:ea:db:4b:4a: 80:98:df:ae:4f:67:16:03:4f:ee:f4:80:82:ec:3d:8d:5f:a8: ea:7f:91:92:10:d2:56:b1:58:88:58:7f:6b:de:a5:d2:63:2e: e6:f1:a6:3f:d7:a2:1e:80:67:31:a1:14:3e:3f:51:6c:dc:15: af:a7:50:1c:46:66:3b:42:15:4a:03:4a:c1:7a:d3:11:95:35: 47:2a:64:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIyM0YxMTAvBgNVBAUTKDY5QTk5M0ExODgyMTk4QUNBRDVGMUNFQTM1MDY2QkFG NDlFN0Q1RDAwHhcNMjUxMTAzMDQzMjAyWhcNMjUxMTEwMDQzMjAyWjAYMRYwFAYD VQQDEw02OTA4MzA0Mi04ODliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5M0ZEo8iZ7cKY65M5YHdArG/M+BtZlx5S8DD7Wq3d7vLgcSM5AH4ZQKBGtr+ F5sLkUrSVryvLLg4rWsF9qHoTYhULWWOaQGm0WRUFbAWmN9tX6XPwTJ/Q1Vpvwk6 HtpWttt62f0rEzdzNQ53rvnlxDIHjOmW/pVC89tvn9FcCpCG7VHingQs21EIcZ8z w8JgjaDlzL1+PUL1hI/QQm6/bAvEL/6LfSSEpGOUmZ6JY6qg2ZM9xeDD5/13vjNz o9iaJNQPmkXRcH3j4LFfeofsaBIhil7ycpko2X5koipbSfQtNnELFVdwJySCDHvs hiP3Vkj2TgSo/K7Q8uylnjTS2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNPiMG3A 7WRngQA7h0OjSLcbGffbMB8GA1UdIwQYMBaAFGmpk6GIIZisrV8c6jUGa69J59XQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjIzRi82NzBDMkYyQ0Uy OUYxMUVFQjY4MkM2MTFDNEY5QUUwMi9hYW1Ub1lnaG1LeXRYeHpxTlFacnIwbm4x ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhbVRvWWdobUt5dFh4enFOUVpycjBubjFkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjIzRi82NzBDMkYyQ0UyOUYxMUVFQjY4MkM2MTFDNEY5QUUwMi9hYW1Ub1lnaG1L eXRYeHpxTlFacnIwbm4xZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL1MYm14XNUpbzLa17kMTfGMxc3KO4nc4hBjQjh1gSXhjVTGAfi8XF zg2PC992RJ7CdRaY3aAa3LMPNwM68Zy6Scqv9vrpSKmSQfqSNbDu2yiaRMSRuSCi VE+ivNRW1ijj5ILUUjT0daSX/vtLXbDcR43DbZ9GrcHiZeq3mqmmVfO70Rbb3rxZ zkL14YqfqgDxB8i0kIBvFHzsDlCDlYPyONhflxaugk8DtM1U1EYPY+rbS0qAmN+u T2cWA0/u9ICC7D2NX6jqf5GSENJWsViIWH9r3qXSYy7m8aY/16IegGcxoRQ+P1Fs 3BWvp1AcRmY7QhVKA0rBetMRlTVHKmR2 -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:44 2025 by rpki-client