$ rpki-client -vvf rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft File: 1mAaggCAx5DwpRpsN2X1tLDQGzc.mft (raw, json) Hash identifier: wG3SO3++RKONs1LF/xX5lloRj9oJ2tSbyC3qZJv/ek4= Subject key identifier: DB:E2:7F:04:60:43:2C:F9:A2:EB:E0:3D:61:1C:3A:3D:74:2A:B7:37 Authority key identifier: D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37 Certificate issuer: /CN=A915343B/serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37 Certificate serial: 0B16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft Manifest number: 0B0F Signing time: Sun 02 Nov 2025 19:17:29 +0000 Manifest this update: Sun 02 Nov 2025 19:17:28 +0000 Manifest next update: Sun 09 Nov 2025 19:17:28 +0000 Files and hashes: 1: 1mAaggCAx5DwpRpsN2X1tLDQGzc.crl (hash: r7D3h0H7a8ra83N4bo30u5hP7HNVx858smwCRfLmpZo=) 2: 5EEC619850A611EA823DE980C4F9AE02.roa (hash: q02Hd4XFE+H9p8qEMOu2AbjA5nPs5WOETsJPUT9HbXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:17:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2838 (0xb16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915343B, serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37 Validity Not Before: Nov 2 19:17:28 2025 GMT Not After : Nov 9 19:17:28 2025 GMT Subject: CN=6907ae49-725f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d8:77:b1:2e:e3:57:44:6c:48:f3:25:32:3d: c0:79:24:80:92:93:67:09:6c:b7:00:66:bd:2f:7c: 2c:22:ea:46:71:2b:66:ff:18:c5:f1:78:2d:af:da: b2:9f:96:bd:bb:36:64:86:0a:d3:e2:64:d8:80:35: b5:7c:39:54:2a:81:fa:3e:04:b8:f9:a2:3d:e6:dd: 23:4f:70:ae:2b:1b:2f:d0:80:7b:22:e7:66:dd:f3: f3:29:b6:66:da:c4:e7:09:7f:2f:a6:85:8b:b4:8a: da:2a:d0:a5:27:02:7d:76:60:3d:48:fe:92:71:81: db:73:a0:82:93:58:8e:72:ac:58:f3:90:4b:c9:f9: 6b:a3:1c:b2:cc:9b:1b:f9:89:41:39:da:42:80:f4: ca:ca:b3:ec:ef:63:b5:f6:44:6c:6a:3c:77:86:d1: 0f:4c:e7:b3:5c:f2:68:5f:26:18:77:94:4b:5a:95: a6:d2:5c:8b:7f:58:4e:44:80:d1:f0:19:89:8c:13: 16:71:3d:44:b2:14:bc:1a:16:59:16:c0:60:b7:8a: b3:fa:a1:48:08:05:0d:b3:a6:15:e3:3d:9c:3d:29: e0:eb:d8:26:35:23:79:9e:6d:8a:70:ee:f9:dc:b4: 51:32:2f:eb:19:a3:7b:9c:4d:03:93:fe:2a:9a:4e: af:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E2:7F:04:60:43:2C:F9:A2:EB:E0:3D:61:1C:3A:3D:74:2A:B7:37 X509v3 Authority Key Identifier: keyid:D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:e3:c1:8f:3c:99:01:17:5e:b1:b0:4b:56:45:79:49:bc:21: 0f:dc:a7:04:e3:47:ff:65:fd:3b:55:a0:a8:f5:7e:f3:a4:14: 4f:c0:52:e9:4f:ea:c3:0b:4f:d7:59:97:c9:80:5f:63:31:7a: 62:80:77:40:c1:ae:e2:ba:e4:72:da:72:34:a5:7a:52:ee:a7: aa:9c:f3:5c:07:53:00:81:82:70:26:0a:28:b1:31:e4:a8:08: 99:c6:7a:54:fc:ea:d1:16:96:e8:c4:b7:ec:a0:21:37:af:17: 22:e4:26:b6:8f:44:df:8c:99:e2:01:fc:d2:dc:4e:97:5f:28: ba:10:3e:8b:9c:ec:be:ee:ab:35:1b:2f:de:0e:17:bc:66:63: 90:05:a3:55:67:45:96:56:cf:7b:bd:cf:ac:df:0a:a5:5a:b4: f5:5d:0b:1d:19:33:76:5e:d3:04:6f:9b:16:28:1c:c6:3a:b1: e6:bb:a4:e2:52:ee:d4:10:6a:00:9e:73:63:ce:9b:27:3a:a0: 09:f1:7e:75:ad:6c:57:9a:91:cf:5b:5a:24:4a:0b:94:85:fb: eb:9a:42:d5:fe:54:41:24:26:09:2f:e3:09:cf:ff:7d:20:4a: 07:30:b4:e4:b3:2a:cb:3f:c5:ca:24:9e:3f:31:64:cf:8a:6e: b9:d8:66:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0M0IxMTAvBgNVBAUTKEQ2NjAxQTgyMDA4MEM3OTBGMEE1MUE2QzM3NjVGNUI0 QjBEMDFCMzcwHhcNMjUxMTAyMTkxNzI4WhcNMjUxMTA5MTkxNzI4WjAYMRYwFAYD VQQDEw02OTA3YWU0OS03MjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqNh3sS7jV0RsSPMlMj3AeSSAkpNnCWy3AGa9L3wsIupGcStm/xjF8Xgtr9qy n5a9uzZkhgrT4mTYgDW1fDlUKoH6PgS4+aI95t0jT3CuKxsv0IB7Iudm3fPzKbZm 2sTnCX8vpoWLtIraKtClJwJ9dmA9SP6ScYHbc6CCk1iOcqxY85BLyflroxyyzJsb +YlBOdpCgPTKyrPs72O19kRsajx3htEPTOezXPJoXyYYd5RLWpWm0lyLf1hORIDR 8BmJjBMWcT1EshS8GhZZFsBgt4qz+qFICAUNs6YV4z2cPSng69gmNSN5nm2KcO75 3LRRMi/rGaN7nE0Dk/4qmk6vGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNvifwRg Qyz5ouvgPWEcOj10Krc3MB8GA1UdIwQYMBaAFNZgGoIAgMeQ8KUabDdl9bSw0Bs3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzQzQi82QTAzODNFNjUw QTUxMUVBOTc2Q0I3N0ZDNEY5QUUwMi8xbUFhZ2dDQXg1RHdwUnBzTjJYMXRMRFFH emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFtQWFnZ0NBeDVEd3BScHNOMlgxdExEUUd6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzQzQi82QTAzODNFNjUwQTUxMUVBOTc2Q0I3N0ZDNEY5QUUwMi8xbUFhZ2dDQXg1 RHdwUnBzTjJYMXRMRFFHemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCb48GPPJkBF16xsEtWRXlJvCEP3KcE40f/Zf07VaCo9X7zpBRPwFLp T+rDC0/XWZfJgF9jMXpigHdAwa7iuuRy2nI0pXpS7qeqnPNcB1MAgYJwJgoosTHk qAiZxnpU/OrRFpboxLfsoCE3rxci5Ca2j0TfjJniAfzS3E6XXyi6ED6LnOy+7qs1 Gy/eDhe8ZmOQBaNVZ0WWVs97vc+s3wqlWrT1XQsdGTN2XtMEb5sWKBzGOrHmu6Ti Uu7UEGoAnnNjzpsnOqAJ8X51rWxXmpHPW1okSguUhfvrmkLV/lRBJCYJL+MJz/99 IEoHMLTksyrLP8XKJJ4/MWTPim652GZ6 -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:16 2025 by rpki-client