$ rpki-client -vvf rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.mft File: AgtgbdnoiYp9XfXqHKPZlgKOddk.mft (raw, json) Hash identifier: ajTUPsoBsUx5AQV2yLXlUARpT1+mLsiXw5+1KHdHM7I= Subject key identifier: 26:B4:6D:14:2C:FE:4A:15:1F:74:FB:AF:49:86:62:04:E2:17:C6:C6 Authority key identifier: 02:0B:60:6D:D9:E8:89:8A:7D:5D:F5:EA:1C:A3:D9:96:02:8E:75:D9 Certificate issuer: /CN=A913E23F/serialNumber=020B606DD9E8898A7D5DF5EA1CA3D996028E75D9 Certificate serial: 025E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgtgbdnoiYp9XfXqHKPZlgKOddk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.mft Manifest number: 0255 Signing time: Mon 03 Nov 2025 01:41:37 +0000 Manifest this update: Mon 03 Nov 2025 01:41:37 +0000 Manifest next update: Mon 10 Nov 2025 01:41:37 +0000 Files and hashes: 1: AgtgbdnoiYp9XfXqHKPZlgKOddk.crl (hash: pdyZVKZBhdvMzeVRd32xR0ikN7odVCC0Prz6CjAFLr4=) 2: D9F1B3C036DA11EEA0D3EE61C4F9AE02.roa (hash: KFPYG7z3ovj/gDTTmWKC0rC1bedBGEtuFgPr4XMRScs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.crl rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgtgbdnoiYp9XfXqHKPZlgKOddk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:41:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 606 (0x25e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E23F, serialNumber=020B606DD9E8898A7D5DF5EA1CA3D996028E75D9 Validity Not Before: Nov 3 01:41:37 2025 GMT Not After : Nov 10 01:41:37 2025 GMT Subject: CN=69080851-80ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:22:9f:16:0e:dc:9e:d0:06:c5:5f:34:2c:ca: bc:6f:d4:91:c4:c9:d7:e4:5a:e5:73:87:86:50:2f: 4f:9f:e3:fe:5b:70:1a:16:7e:84:f7:e3:47:ba:88: 20:af:d2:da:7b:b9:3e:39:29:be:ca:f1:f9:96:65: 24:b3:90:8a:1e:0e:e7:52:89:5e:42:f1:b0:2d:e1: f2:7b:d0:cc:50:9f:33:e2:f4:5f:e0:dd:ca:d4:30: 8c:2b:8d:b1:ec:bc:33:28:fe:f2:cd:6d:bb:29:71: 6f:f9:1d:0f:19:8e:4b:c8:7d:c4:02:3e:82:6d:b1: 80:2e:3c:aa:18:4a:93:e0:50:02:1f:92:74:22:9a: d8:b8:5a:ee:50:b1:ec:74:5c:5e:e0:56:1f:59:aa: d5:6d:19:54:75:15:83:bb:e5:1e:73:f8:1f:00:87: 71:cb:fc:72:4e:cf:bd:d9:d1:81:28:ec:bf:ff:64: 4a:7e:d3:30:55:57:9e:6b:4c:20:86:53:91:f5:87: ce:0e:a3:55:6e:5b:94:4f:38:cb:f4:da:a1:d0:9d: 9e:c5:3d:80:a8:a4:8e:d0:26:42:a0:a8:cf:5c:8f: e7:8d:79:d7:51:73:21:4e:fc:69:1d:c8:f9:c2:e7: 99:5e:71:3b:2d:8c:a2:f1:bf:a2:2a:82:2c:df:cd: 96:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:B4:6D:14:2C:FE:4A:15:1F:74:FB:AF:49:86:62:04:E2:17:C6:C6 X509v3 Authority Key Identifier: keyid:02:0B:60:6D:D9:E8:89:8A:7D:5D:F5:EA:1C:A3:D9:96:02:8E:75:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgtgbdnoiYp9XfXqHKPZlgKOddk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:ee:50:e2:67:28:b1:8a:8e:65:8d:a3:d9:10:69:da:08:a0: 26:41:5d:27:0c:2c:3b:8b:69:74:b3:8a:b1:11:75:c3:51:6c: b7:da:66:0a:41:80:30:c3:0e:b4:45:56:9d:f7:30:01:6e:27: b9:bd:1b:c8:83:77:d5:c8:69:d0:bc:95:73:11:9e:b3:fe:96: cb:c0:e5:bc:9a:e4:15:ac:aa:46:dd:a3:36:74:18:b1:ca:a5: fd:a5:34:e5:7b:6a:d4:19:d2:63:5f:f1:43:64:92:da:5b:28: a6:f8:8d:77:40:b5:cf:31:a1:35:b7:4f:1e:40:87:81:9b:70: c1:b1:2d:72:db:28:5a:37:df:dc:67:c9:c1:87:3a:70:d6:d8: fb:97:d3:da:4b:94:18:ce:04:c0:b0:80:73:bc:b2:1c:be:78: 2b:f0:26:ed:3a:19:7a:4e:40:d2:46:da:2c:76:d2:d5:80:f9: 3e:f0:ec:be:5d:ad:68:c8:63:4d:dc:39:08:6c:10:c7:99:0a: 9e:16:2f:bd:19:5c:19:78:29:8f:17:99:c6:a2:47:58:87:a0: a6:49:d0:bd:2e:bd:29:ff:ed:8f:29:ee:3a:eb:d1:aa:96:e2: 7b:08:76:3a:5e:f0:5f:28:2b:ee:3c:c6:50:7c:cb:fc:23:f9: a2:a6:4a:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyM0YxMTAvBgNVBAUTKDAyMEI2MDZERDlFODg5OEE3RDVERjVFQTFDQTNEOTk2 MDI4RTc1RDkwHhcNMjUxMTAzMDE0MTM3WhcNMjUxMTEwMDE0MTM3WjAYMRYwFAYD VQQDEw02OTA4MDg1MS04MGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtiKfFg7cntAGxV80LMq8b9SRxMnX5Frlc4eGUC9Pn+P+W3AaFn6E9+NHuogg r9Lae7k+OSm+yvH5lmUks5CKHg7nUoleQvGwLeHye9DMUJ8z4vRf4N3K1DCMK42x 7LwzKP7yzW27KXFv+R0PGY5LyH3EAj6CbbGALjyqGEqT4FACH5J0IprYuFruULHs dFxe4FYfWarVbRlUdRWDu+Uec/gfAIdxy/xyTs+92dGBKOy//2RKftMwVVeea0wg hlOR9YfODqNVbluUTzjL9Nqh0J2exT2AqKSO0CZCoKjPXI/njXnXUXMhTvxpHcj5 wueZXnE7LYyi8b+iKoIs382WGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCa0bRQs /koVH3T7r0mGYgTiF8bGMB8GA1UdIwQYMBaAFAILYG3Z6ImKfV316hyj2ZYCjnXZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTIzRi9DNjRDQUFBNDNF NTIxMUVEQUFENEI2NEZDNEY5QUUwMi9BZ3RnYmRub2lZcDlYZlhxSEtQWmxnS09k ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FndGdiZG5vaVlwOVhmWHFIS1BabGdLT2Rkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTIzRi9DNjRDQUFBNDNFNTIxMUVEQUFENEI2NEZDNEY5QUUwMi9BZ3RnYmRub2lZ cDlYZlhxSEtQWmxnS09kZGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAK7lDiZyixio5ljaPZEGnaCKAmQV0nDCw7i2l0s4qxEXXDUWy32mYK QYAwww60RVad9zABbie5vRvIg3fVyGnQvJVzEZ6z/pbLwOW8muQVrKpG3aM2dBix yqX9pTTle2rUGdJjX/FDZJLaWyim+I13QLXPMaE1t08eQIeBm3DBsS1y2yhaN9/c Z8nBhzpw1tj7l9PaS5QYzgTAsIBzvLIcvngr8CbtOhl6TkDSRtosdtLVgPk+8Oy+ Xa1oyGNN3DkIbBDHmQqeFi+9GVwZeCmPF5nGokdYh6CmSdC9Lr0p/+2PKe4669Gq luJ7CHY6XvBfKCvuPMZQfMv8I/mipkpa -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:35 2025 by rpki-client