$ rpki-client -vvf rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft File: rMARlDOHfwx0KFe46lIPjaTtCVo.mft (raw, json) Hash identifier: s5Inf8DCfi4N52YtfDDvHRXD/YiG+Cs6e5qa/j6mrto= Subject key identifier: 76:25:16:FF:01:28:51:A9:86:58:01:E7:68:F3:75:CE:D0:6A:D3:85 Authority key identifier: AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A Certificate issuer: /CN=A915A5E7/serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Certificate serial: 06A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft Manifest number: 069F Signing time: Tue 04 Nov 2025 22:25:28 +0000 Manifest this update: Tue 04 Nov 2025 22:25:27 +0000 Manifest next update: Tue 11 Nov 2025 22:25:27 +0000 Files and hashes: 1: rMARlDOHfwx0KFe46lIPjaTtCVo.crl (hash: aYEnS5drJL+dxbbLxZq9e7qiSK7Ge65SuKRuNetNMiM=) 2: 1E1A1DB28C6A11EB91832D52C4F9AE02.roa (hash: 6Nwx6Bdy1j4/Wbla1onGos1GwfTZf0C7yW2rjUd5bAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:25:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1704 (0x6a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A5E7, serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Validity Not Before: Nov 4 22:25:27 2025 GMT Not After : Nov 11 22:25:27 2025 GMT Subject: CN=690a7d57-e510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:06:ac:84:f4:d6:d7:6a:7c:42:66:ab:cc:6a: 02:09:07:5d:4c:31:56:37:ac:bf:2c:3d:b3:4e:22: 93:26:45:73:a8:50:0b:d0:74:00:14:d5:06:f7:e8: 63:47:3a:99:e3:05:96:af:56:a5:75:32:1a:65:ea: 57:50:76:21:1f:55:ca:0f:76:7b:5a:33:5c:6b:54: a2:fa:03:41:a4:d7:34:25:75:6d:f1:ab:76:6d:6b: 0a:43:dc:4f:59:1d:72:90:61:de:83:e2:85:7d:56: 9f:01:15:45:e5:d3:65:29:34:7e:5d:2c:af:18:fc: af:56:9f:9c:70:af:75:c6:8e:c5:a5:40:0d:80:c7: 2e:a8:a7:1e:73:fa:91:79:f8:27:5f:1f:69:b3:6f: 33:a6:d1:65:ad:6a:21:57:12:ee:1b:f7:36:f2:0e: 50:7f:7b:0f:8c:f9:48:8c:30:c1:9e:2c:f7:9a:75: 5b:52:b7:3c:cb:1b:c3:32:5b:3a:39:bb:ca:9d:14: 5f:c2:83:6d:1c:7f:92:84:cf:e8:40:5d:eb:8a:4b: 8c:49:7f:55:92:3f:9e:78:1c:e5:62:9a:bd:a7:43: 13:68:7b:56:54:44:16:f0:80:35:c1:6c:9b:86:20: 91:da:a3:80:a7:a6:18:c6:f0:d8:d6:12:99:4b:ab: ae:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:25:16:FF:01:28:51:A9:86:58:01:E7:68:F3:75:CE:D0:6A:D3:85 X509v3 Authority Key Identifier: keyid:AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:d0:92:5d:2f:91:ca:c0:f1:7b:78:1a:53:80:a7:fe:37:f0: 2f:a2:31:fc:99:bd:83:d3:d4:83:94:fb:d8:96:01:ed:69:01: 16:3c:e9:50:cc:9d:18:10:c6:87:a6:26:a7:3d:ae:d6:31:fd: fc:b8:7f:2c:69:d8:d0:ec:e1:6d:21:2c:e0:4f:65:24:5f:97: 84:13:9f:68:37:44:f4:c0:59:7f:29:03:bd:43:34:b6:68:ec: 24:6d:8e:c2:f3:1c:a4:5b:ed:68:41:f8:44:2a:1d:19:81:6a: 8d:4a:0f:e2:66:de:e2:96:ea:73:98:7f:f5:b6:2a:f2:87:cb: 6b:34:c3:72:44:4c:33:2c:09:03:8f:b0:62:7e:1e:55:79:54: d7:ae:14:62:be:8b:7e:69:bd:67:b0:72:d0:10:6b:0b:b8:b4: 7c:26:cb:af:50:9d:6f:26:3c:03:c8:ec:29:29:b4:c3:36:e0: 34:19:d2:0e:16:21:81:66:de:29:c3:ad:f4:cb:29:be:22:e1: ec:50:02:3c:ef:44:85:6e:07:d7:f1:65:c4:07:ef:1f:5b:47: 97:05:9d:bf:16:9d:87:04:8e:ea:1a:ec:9b:dc:d9:1e:11:e0: e0:23:10:e4:55:2d:45:da:67:87:e9:42:28:26:ed:7a:77:1f: 85:93:5e:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1RTcxMTAvBgNVBAUTKEFDQzAxMTk0MzM4NzdGMEM3NDI4NTdCOEVBNTIwRjhE QTRFRDA5NUEwHhcNMjUxMTA0MjIyNTI3WhcNMjUxMTExMjIyNTI3WjAYMRYwFAYD VQQDEw02OTBhN2Q1Ny1lNTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5QashPTW12p8QmarzGoCCQddTDFWN6y/LD2zTiKTJkVzqFAL0HQAFNUG9+hj RzqZ4wWWr1aldTIaZepXUHYhH1XKD3Z7WjNca1Si+gNBpNc0JXVt8at2bWsKQ9xP WR1ykGHeg+KFfVafARVF5dNlKTR+XSyvGPyvVp+ccK91xo7FpUANgMcuqKcec/qR efgnXx9ps28zptFlrWohVxLuG/c28g5Qf3sPjPlIjDDBniz3mnVbUrc8yxvDMls6 ObvKnRRfwoNtHH+ShM/oQF3rikuMSX9Vkj+eeBzlYpq9p0MTaHtWVEQW8IA1wWyb hiCR2qOAp6YYxvDY1hKZS6uuAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHYlFv8B KFGphlgB52jzdc7QatOFMB8GA1UdIwQYMBaAFKzAEZQzh38MdChXuOpSD42k7Qla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTVFNy9FOTU5REM3NjhD NjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3eDBLRmU0NmxJUGphVHRD Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JNQVJsRE9IZnd4MEtGZTQ2bElQamFUdENWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTVFNy9FOTU5REM3NjhDNjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3 eDBLRmU0NmxJUGphVHRDVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr0JJdL5HKwPF7eBpTgKf+N/AvojH8mb2D09SDlPvYlgHtaQEWPOlQ zJ0YEMaHpianPa7WMf38uH8sadjQ7OFtISzgT2UkX5eEE59oN0T0wFl/KQO9QzS2 aOwkbY7C8xykW+1oQfhEKh0ZgWqNSg/iZt7ilupzmH/1tiryh8trNMNyREwzLAkD j7Bifh5VeVTXrhRivot+ab1nsHLQEGsLuLR8JsuvUJ1vJjwDyOwpKbTDNuA0GdIO FiGBZt4pw630yym+IuHsUAI870SFbgfX8WXEB+8fW0eXBZ2/Fp2HBI7qGuyb3Nke EeDgIxDkVS1F2meH6UIoJu16dx+Fk17O -----END CERTIFICATE-----Generated at Wed Nov 5 13:05:49 2025 by rpki-client