$ rpki-client -vvf rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft File: CViGFDhyEOi2mtPDGnNhnXVe0MA.mft (raw, json) Hash identifier: n68V4FiDkEMJXkivmxeS/2e40n+ZbcF7GqOsB6eIWgY= Subject key identifier: F3:7E:F9:03:9C:D2:3A:B7:7D:3E:AA:88:1A:B3:02:24:6B:5D:40:45 Authority key identifier: 09:58:86:14:38:72:10:E8:B6:9A:D3:C3:1A:73:61:9D:75:5E:D0:C0 Certificate issuer: /CN=A914CB22/serialNumber=09588614387210E8B69AD3C31A73619D755ED0C0 Certificate serial: 016D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft Manifest number: 016A Signing time: Mon 03 Nov 2025 03:54:36 +0000 Manifest this update: Mon 03 Nov 2025 03:54:36 +0000 Manifest next update: Mon 10 Nov 2025 03:54:36 +0000 Files and hashes: 1: CViGFDhyEOi2mtPDGnNhnXVe0MA.crl (hash: 1ev9nXe2pJjngZgKOJOQ4uTENsnaFSRbu/YYUIfLJ5E=) 2: 2F996DC6C77311EEBD6F2D2BC4F9AE02.roa (hash: lfBaqProMut7Uby4sm5sXFCXR+BzVB4lKdYH7qIjDTw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.crl rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:54:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 365 (0x16d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CB22, serialNumber=09588614387210E8B69AD3C31A73619D755ED0C0 Validity Not Before: Nov 3 03:54:36 2025 GMT Not After : Nov 10 03:54:36 2025 GMT Subject: CN=6908277c-9b10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c2:2d:be:eb:2a:f2:5b:6b:33:b7:aa:79:95: cd:43:47:75:60:eb:da:c7:ea:dc:77:e9:34:c6:15: e8:8f:9e:73:0e:44:6a:f5:06:c5:93:8e:51:1a:4b: f5:30:ec:3e:86:92:24:07:ce:28:10:00:36:5d:eb: 1f:82:5a:c2:ce:fd:c7:6a:47:6f:76:e9:c7:3f:35: d5:68:4f:48:4c:ad:99:78:a2:16:f3:0c:c0:45:f5: 37:7b:15:d3:02:6c:44:3f:5d:07:ad:4f:97:55:4e: 25:51:8f:ac:b4:db:ea:a9:ea:5e:1a:da:4d:6a:06: 4b:80:ef:77:42:f0:34:48:92:2c:5b:0e:27:15:7e: 06:68:78:3a:0d:6c:ce:42:9c:31:e9:2e:a7:e3:78: 68:fd:24:e7:e5:96:da:a2:5d:e3:3e:41:ea:53:51: c6:a2:c9:ed:3e:31:99:36:cf:1e:3d:40:6d:f8:35: 45:15:bf:d4:57:95:0c:e5:89:a7:29:70:ee:22:8f: 86:a8:eb:06:07:dd:4e:49:7c:93:ca:5a:60:50:1e: 28:17:b7:79:c1:ce:5d:6b:cc:af:d5:b1:12:60:96: f8:f4:21:a0:42:ea:20:a5:1a:11:9c:61:46:e3:3c: a8:25:e0:9b:1d:4d:b2:9a:b1:2e:78:06:9d:92:21: 7c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:7E:F9:03:9C:D2:3A:B7:7D:3E:AA:88:1A:B3:02:24:6B:5D:40:45 X509v3 Authority Key Identifier: keyid:09:58:86:14:38:72:10:E8:B6:9A:D3:C3:1A:73:61:9D:75:5E:D0:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:84:4a:a5:1c:b2:40:eb:a1:10:85:2e:2e:28:cb:0e:e6:ba: ff:16:d6:12:6c:79:e6:6a:54:7a:a9:f3:c1:29:73:54:bf:23: d4:33:a8:5c:c4:58:3d:09:ce:93:7e:07:b0:14:37:83:e5:8a: ec:e0:35:b4:08:6c:31:a3:0b:ec:79:9c:39:2d:1a:3f:f8:5f: 31:84:b9:c4:83:37:9d:a7:f6:8b:3c:41:c7:5a:e9:85:69:4b: 57:93:bd:5c:30:d6:7e:2e:ea:62:5d:c4:27:19:54:05:59:b9: c1:7d:e7:df:f0:f4:92:93:86:5b:01:85:59:75:0c:b0:19:59: 2f:dd:a0:de:38:c3:9e:fd:20:c6:20:a3:52:44:53:9b:1e:2a: a6:f8:bc:43:7a:07:88:f5:aa:a2:ea:f3:fc:f9:21:83:e6:c3: 4c:9e:d2:e8:80:7a:ef:12:65:06:d4:4e:d1:a4:02:ee:0c:5b: 59:d3:4e:e0:b3:f1:6c:35:ff:26:7d:05:a8:fa:63:79:06:3f: 24:50:2e:56:78:ba:2b:0c:67:c2:09:d3:32:19:f4:31:83:73: 37:32:47:d0:6e:74:dc:ce:e2:88:23:fc:b6:4f:79:6e:df:f9: 5d:a2:bc:fc:cf:35:e0:e3:65:28:5a:16:48:06:4f:b1:05:99: f4:55:85:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCMjIxMTAvBgNVBAUTKDA5NTg4NjE0Mzg3MjEwRThCNjlBRDNDMzFBNzM2MTlE NzU1RUQwQzAwHhcNMjUxMTAzMDM1NDM2WhcNMjUxMTEwMDM1NDM2WjAYMRYwFAYD VQQDEw02OTA4Mjc3Yy05YjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysItvusq8ltrM7eqeZXNQ0d1YOvax+rcd+k0xhXoj55zDkRq9QbFk45RGkv1 MOw+hpIkB84oEAA2XesfglrCzv3HakdvdunHPzXVaE9ITK2ZeKIW8wzARfU3exXT AmxEP10HrU+XVU4lUY+stNvqqepeGtpNagZLgO93QvA0SJIsWw4nFX4GaHg6DWzO Qpwx6S6n43ho/STn5Zbaol3jPkHqU1HGosntPjGZNs8ePUBt+DVFFb/UV5UM5Ymn KXDuIo+GqOsGB91OSXyTylpgUB4oF7d5wc5da8yv1bESYJb49CGgQuogpRoRnGFG 4zyoJeCbHU2ymrEueAadkiF8IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPN++QOc 0jq3fT6qiBqzAiRrXUBFMB8GA1UdIwQYMBaAFAlYhhQ4chDotprTwxpzYZ11XtDA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0IyMi82NjAyRTk3ODhD RDExMUVFQjYxRkM2MzhDNEY5QUUwMi9DVmlHRkRoeUVPaTJtdFBER25OaG5YVmUw TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NWaUdGRGh5RU9pMm10UERHbk5oblhWZTBNQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0IyMi82NjAyRTk3ODhDRDExMUVFQjYxRkM2MzhDNEY5QUUwMi9DVmlHRkRoeUVP aTJtdFBER25OaG5YVmUwTUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGhEqlHLJA66EQhS4uKMsO5rr/FtYSbHnmalR6qfPBKXNUvyPUM6hc xFg9Cc6TfgewFDeD5Yrs4DW0CGwxowvseZw5LRo/+F8xhLnEgzedp/aLPEHHWumF aUtXk71cMNZ+LupiXcQnGVQFWbnBfeff8PSSk4ZbAYVZdQywGVkv3aDeOMOe/SDG IKNSRFObHiqm+LxDegeI9aqi6vP8+SGD5sNMntLogHrvEmUG1E7RpALuDFtZ007g s/FsNf8mfQWo+mN5Bj8kUC5WeLorDGfCCdMyGfQxg3M3MkfQbnTczuKII/y2T3lu 3/ldorz8zzXg42UoWhZIBk+xBZn0VYWH -----END CERTIFICATE-----Generated at Wed Nov 5 00:26:10 2025 by rpki-client