$ rpki-client -vvf rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft File: 9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft (raw, json) Hash identifier: addQf5Zm+dFvJV4Qf7O/iNsVo6BEDXZIGYOvzqLADT8= Subject key identifier: 14:40:39:F5:18:73:0C:C1:1C:69:BD:0D:6F:CB:47:2D:2D:17:02:34 Authority key identifier: F5:80:2D:90:3D:A1:0C:D0:3F:CF:3E:8E:16:55:F5:21:C1:D8:57:83 Certificate issuer: /CN=A915AA2E/serialNumber=F5802D903DA10CD03FCF3E8E1655F521C1D85783 Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft Manifest number: E3 Signing time: Mon 27 Oct 2025 07:36:24 +0000 Manifest this update: Mon 27 Oct 2025 07:36:23 +0000 Manifest next update: Mon 03 Nov 2025 07:36:23 +0000 Files and hashes: 1: 9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl (hash: U9iENlayNary0LGXoiVkCfYKhOyzp31adz0zXWKJGmA=) 2: 485D1C1AABD111F09DF58512C4F9AE02.roa (hash: C+jNBE8aLOWYMKAuhubBOnivrdc2tpfTJOZLFUiLBvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 07:36:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915AA2E, serialNumber=F5802D903DA10CD03FCF3E8E1655F521C1D85783 Validity Not Before: Oct 27 07:36:23 2025 GMT Not After : Nov 3 07:36:23 2025 GMT Subject: CN=68ff20f8-04d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:d5:45:cc:a2:d6:9e:a0:56:b8:af:73:15:e2: f5:e6:d2:38:6a:ea:fd:0a:03:f5:59:ce:be:41:e3: 6f:92:f5:dc:59:c0:81:bd:a9:ef:1d:39:d3:db:1d: 08:09:cf:66:b4:6a:e8:70:03:e3:38:02:b3:f2:ee: b6:73:ff:92:0d:d0:75:8d:8e:55:cd:3b:0b:f8:f4: ac:4b:ad:81:39:9a:42:06:96:67:a8:9f:db:fd:ac: a7:26:93:84:d8:8d:41:c3:10:c5:39:4a:e0:0f:44: 20:43:71:2a:41:5d:c4:c0:84:0d:7f:51:e9:6c:a5: 3e:f2:7b:38:12:78:47:0a:d8:45:d1:43:27:af:ec: 1e:65:52:de:7c:71:1d:0f:ad:d7:cf:35:24:36:06: f6:9f:36:92:26:6a:e4:77:f6:d6:42:b6:83:ad:b9: af:5a:d3:59:bf:09:ec:75:f5:fb:0e:1b:69:91:52: 57:d5:92:6a:cc:52:fa:a9:9c:84:c1:7e:9c:60:2c: 7d:86:73:85:20:6b:67:51:53:3c:42:95:d6:fc:53: 3f:ae:17:87:65:d5:5b:7a:b8:86:1c:c6:3f:0a:5a: bc:a5:e7:af:1b:12:41:90:9a:c5:92:c7:63:98:2a: 24:9e:b9:74:4e:fd:ab:77:33:f0:38:7a:ef:c3:59: ef:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:40:39:F5:18:73:0C:C1:1C:69:BD:0D:6F:CB:47:2D:2D:17:02:34 X509v3 Authority Key Identifier: keyid:F5:80:2D:90:3D:A1:0C:D0:3F:CF:3E:8E:16:55:F5:21:C1:D8:57:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:92:36:04:22:29:b7:29:92:30:f3:21:ba:4c:2a:db:98:8c: b3:1e:e8:7a:c5:75:85:f8:2c:43:30:50:76:53:20:be:c7:a6: b1:81:af:d1:c9:b1:bb:11:a5:d2:62:2f:6c:30:44:7e:c4:10: 00:61:63:15:ed:9d:a5:a7:0f:58:8d:f8:68:e9:48:b7:a7:c5: 58:b7:28:a5:cc:cf:de:6c:0e:98:45:b1:4d:25:a7:8a:ff:69: c2:1d:ee:e2:81:5f:ff:7d:29:0b:82:20:28:0b:6d:ec:c9:55: 17:34:f4:49:be:f4:d4:9c:42:d9:39:9f:52:fd:e5:ba:f4:35: 86:a5:36:da:96:9f:63:76:88:b6:43:4b:f9:cd:63:57:a0:78: 86:ca:bd:ab:23:f1:5c:93:40:54:69:cd:a3:c8:e3:04:43:04: 26:2b:fe:e5:55:9f:18:5a:95:62:06:4c:c1:dc:29:38:ad:ec: 1b:45:a9:aa:09:1a:8f:ca:64:b9:dc:71:ae:ec:34:8f:9c:66: 0e:b7:57:17:1b:e1:80:44:25:69:2d:53:45:10:68:59:fc:32: f7:2e:f5:30:1a:73:7a:61:92:c2:2a:27:61:eb:e5:12:b3:c6: 31:fa:b8:f2:93:d6:69:78:4f:26:07:e4:53:83:10:60:93:47: b0:66:1b:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUFBMkUxMTAvBgNVBAUTKEY1ODAyRDkwM0RBMTBDRDAzRkNGM0U4RTE2NTVGNTIx QzFEODU3ODMwHhcNMjUxMDI3MDczNjIzWhcNMjUxMTAzMDczNjIzWjAYMRYwFAYD VQQDEw02OGZmMjBmOC0wNGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAntVFzKLWnqBWuK9zFeL15tI4aur9CgP1Wc6+QeNvkvXcWcCBvanvHTnT2x0I Cc9mtGrocAPjOAKz8u62c/+SDdB1jY5VzTsL+PSsS62BOZpCBpZnqJ/b/aynJpOE 2I1BwxDFOUrgD0QgQ3EqQV3EwIQNf1HpbKU+8ns4EnhHCthF0UMnr+weZVLefHEd D63XzzUkNgb2nzaSJmrkd/bWQraDrbmvWtNZvwnsdfX7DhtpkVJX1ZJqzFL6qZyE wX6cYCx9hnOFIGtnUVM8QpXW/FM/rheHZdVberiGHMY/Clq8peevGxJBkJrFksdj mCoknrl0Tv2rdzPwOHrvw1nvrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBRAOfUY cwzBHGm9DW/LRy0tFwI0MB8GA1UdIwQYMBaAFPWALZA9oQzQP88+jhZV9SHB2FeD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QUEyRS83QUZDOURGMDVB RTUxMUVGQjExQzQ5NDVDNEY5QUUwMi85WUF0a0QyaEROQV96ejZPRmxYMUljSFlW NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlZQXRrRDJoRE5BX3p6Nk9GbFgxSWNIWVY0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QUEyRS83QUZDOURGMDVBRTUxMUVGQjExQzQ5NDVDNEY5QUUwMi85WUF0a0QyaERO QV96ejZPRmxYMUljSFlWNE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/kjYEIim3KZIw8yG6TCrbmIyzHuh6xXWF+CxDMFB2UyC+x6axga/R ybG7EaXSYi9sMER+xBAAYWMV7Z2lpw9Yjfho6Ui3p8VYtyilzM/ebA6YRbFNJaeK /2nCHe7igV//fSkLgiAoC23syVUXNPRJvvTUnELZOZ9S/eW69DWGpTbalp9jdoi2 Q0v5zWNXoHiGyr2rI/Fck0BUac2jyOMEQwQmK/7lVZ8YWpViBkzB3Ck4rewbRamq CRqPymS53HGu7DSPnGYOt1cXG+GARCVpLVNFEGhZ/DL3LvUwGnN6YZLCKidh6+US s8Yx+rjyk9ZpeE8mB+RTgxBgk0ewZhso -----END CERTIFICATE-----Generated at Tue Oct 28 16:05:11 2025 by rpki-client