$ rpki-client -vvf rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.mft File: cDaiAHf_h_76NADX-QdrfhmDiy4.mft (raw, json) Hash identifier: OSAXhrBMYPwSmd5xsHraBE3l5OWhYGLbryQKwDNzs3g= Subject key identifier: 6D:16:94:1D:CA:30:1D:6E:8B:7B:12:79:B8:A9:78:3B:37:15:09:96 Authority key identifier: 70:36:A2:00:77:FF:87:FE:FA:34:00:D7:F9:07:6B:7E:19:83:8B:2E Certificate issuer: /CN=A913F124/serialNumber=7036A20077FF87FEFA3400D7F9076B7E19838B2E Certificate serial: 0243 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cDaiAHf_h_76NADX-QdrfhmDiy4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.mft Manifest number: 023F Signing time: Mon 03 Nov 2025 01:45:01 +0000 Manifest this update: Mon 03 Nov 2025 01:45:00 +0000 Manifest next update: Mon 10 Nov 2025 01:45:00 +0000 Files and hashes: 1: cDaiAHf_h_76NADX-QdrfhmDiy4.crl (hash: 2O7FbSt0PJ8u4RMes5sGmwXifAzGZ8rjo8Tjwon0xTs=) 2: B13C376049EC11ED9EAEAC0CC4F9AE02.roa (hash: 3aaeEi1YrA3uSceTUOZGuJZHBHy8WbpEjF+B/7Isrys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.crl rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cDaiAHf_h_76NADX-QdrfhmDiy4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:44:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 579 (0x243) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F124, serialNumber=7036A20077FF87FEFA3400D7F9076B7E19838B2E Validity Not Before: Nov 3 01:45:00 2025 GMT Not After : Nov 10 01:45:00 2025 GMT Subject: CN=6908091c-9597 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8d:7c:7f:7f:8f:6b:d1:84:de:86:64:78:14: 66:99:3d:54:8b:20:fe:a6:77:af:49:1a:ad:c6:d8: a0:69:cc:25:2c:b7:52:1e:75:ee:fc:b2:5e:b7:6e: 70:7d:11:45:71:2d:da:a1:34:05:18:26:23:12:61: c8:78:e5:e6:6e:d8:66:4f:97:d8:1f:70:2b:cd:1b: 92:44:11:6a:41:fe:bd:1f:9c:de:2a:ac:1b:ee:e0: 34:d0:d6:a6:9e:fd:b3:cf:75:71:35:3f:d3:d9:5a: 78:a0:07:cd:91:9a:d7:2c:38:09:68:bd:64:e1:4a: 65:36:20:c3:f2:96:04:06:a2:6a:ff:60:9d:1b:1c: e9:17:18:39:3a:b8:4e:f3:00:b7:85:25:ac:19:47: 4c:a8:ed:cd:60:86:08:64:2a:ae:fd:dc:90:62:c3: 30:fe:1d:36:c9:d8:bf:87:ca:af:bd:5c:f2:a8:ca: e5:cc:aa:d6:82:ab:93:c6:b5:7b:9d:04:b1:7f:e5: de:2c:d4:9e:65:f5:94:bd:14:29:ce:0a:4e:33:3e: 27:a1:5b:db:2b:6a:17:1f:50:92:1c:80:75:83:ca: a6:be:d4:81:5c:7b:e6:cb:1a:ef:ed:5a:57:c7:c3: fb:b7:c2:68:e5:a2:92:36:83:37:ce:8b:52:46:c6: 36:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:16:94:1D:CA:30:1D:6E:8B:7B:12:79:B8:A9:78:3B:37:15:09:96 X509v3 Authority Key Identifier: keyid:70:36:A2:00:77:FF:87:FE:FA:34:00:D7:F9:07:6B:7E:19:83:8B:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cDaiAHf_h_76NADX-QdrfhmDiy4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F124/5655DA7649E811ED943C4984C4F9AE02/cDaiAHf_h_76NADX-QdrfhmDiy4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:67:95:de:ea:a5:a0:fc:b4:45:8d:2d:98:8c:bd:79:98:e4: 4d:e1:dd:b5:db:25:f3:d4:43:4b:4f:25:2d:e1:fa:ff:f7:56: 48:ed:a2:8b:83:42:5a:c1:f1:b8:ca:40:2b:c8:fc:44:70:b9: ef:29:8f:4a:bc:6d:91:c8:93:2b:b5:ae:d8:76:2a:85:1e:1f: b0:d1:83:54:4a:c6:55:3b:aa:32:76:50:e9:fe:52:ff:b3:47: a0:ad:59:a7:0f:64:1c:ec:92:06:55:9f:ae:c0:fc:cb:3b:37: 98:6d:f1:c1:69:1a:3a:0a:9b:89:d7:af:03:b3:05:0c:d6:5a: 9d:60:7d:38:1b:6d:6c:d1:5e:48:46:74:28:09:7d:b4:9b:55: 7f:53:8f:98:36:04:46:ba:0a:32:94:30:9b:db:b1:18:67:33: 05:58:89:33:74:02:51:ed:f0:cb:88:5b:36:9b:7b:16:cb:74: a6:d6:76:8f:80:2d:5d:aa:6e:df:70:92:0b:36:76:22:7e:c5: c7:49:f1:c6:7c:97:0f:04:b2:a2:5d:e7:80:bb:7e:92:34:29: c6:b6:87:81:35:18:3d:ef:e2:b6:a0:e6:63:b2:b3:c8:e9:b4: dc:72:50:f7:7b:a3:42:c2:7e:7e:9c:67:a4:b3:e4:89:08:77: f1:97:c2:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YxMjQxMTAvBgNVBAUTKDcwMzZBMjAwNzdGRjg3RkVGQTM0MDBEN0Y5MDc2QjdF MTk4MzhCMkUwHhcNMjUxMTAzMDE0NTAwWhcNMjUxMTEwMDE0NTAwWjAYMRYwFAYD VQQDEw02OTA4MDkxYy05NTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzY18f3+Pa9GE3oZkeBRmmT1UiyD+pnevSRqtxtigacwlLLdSHnXu/LJet25w fRFFcS3aoTQFGCYjEmHIeOXmbthmT5fYH3ArzRuSRBFqQf69H5zeKqwb7uA00Nam nv2zz3VxNT/T2Vp4oAfNkZrXLDgJaL1k4UplNiDD8pYEBqJq/2CdGxzpFxg5OrhO 8wC3hSWsGUdMqO3NYIYIZCqu/dyQYsMw/h02ydi/h8qvvVzyqMrlzKrWgquTxrV7 nQSxf+XeLNSeZfWUvRQpzgpOMz4noVvbK2oXH1CSHIB1g8qmvtSBXHvmyxrv7VpX x8P7t8Jo5aKSNoM3zotSRsY2+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG0WlB3K MB1ui3sSebipeDs3FQmWMB8GA1UdIwQYMBaAFHA2ogB3/4f++jQA1/kHa34Zg4su MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjEyNC81NjU1REE3NjQ5 RTgxMUVEOTQzQzQ5ODRDNEY5QUUwMi9jRGFpQUhmX2hfNzZOQURYLVFkcmZobURp eTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NEYWlBSGZfaF83Nk5BRFgtUWRyZmhtRGl5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjEyNC81NjU1REE3NjQ5RTgxMUVEOTQzQzQ5ODRDNEY5QUUwMi9jRGFpQUhmX2hf NzZOQURYLVFkcmZobURpeTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4Z5Xe6qWg/LRFjS2YjL15mORN4d212yXz1ENLTyUt4fr/91ZI7aKL g0JawfG4ykAryPxEcLnvKY9KvG2RyJMrta7YdiqFHh+w0YNUSsZVO6oydlDp/lL/ s0egrVmnD2Qc7JIGVZ+uwPzLOzeYbfHBaRo6CpuJ168DswUM1lqdYH04G21s0V5I RnQoCX20m1V/U4+YNgRGugoylDCb27EYZzMFWIkzdAJR7fDLiFs2m3sWy3Sm1naP gC1dqm7fcJILNnYifsXHSfHGfJcPBLKiXeeAu36SNCnGtoeBNRg97+K2oOZjsrPI 6bTcclD3e6NCwn5+nGeks+SJCHfxl8JT -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:07 2025 by rpki-client