$ rpki-client -vvf rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft File: cHDFVlzC_kVsMWBAi25_toDAjBk.mft (raw, json) Hash identifier: HN7zzyESrdSzy9nY9A7OiaO1h5WOs+oieWpsnexLYmE= Subject key identifier: 82:1F:5F:87:83:D3:74:0B:C2:E0:3B:77:1F:54:6C:41:BB:B1:A8:F6 Authority key identifier: 70:70:C5:56:5C:C2:FE:45:6C:31:60:40:8B:6E:7F:B6:80:C0:8C:19 Certificate issuer: /CN=A915B77C/serialNumber=7070C5565CC2FE456C3160408B6E7FB680C08C19 Certificate serial: 0AAC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cHDFVlzC_kVsMWBAi25_toDAjBk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft Manifest number: 0A9A Signing time: Tue 28 Oct 2025 19:28:31 +0000 Manifest this update: Tue 28 Oct 2025 19:28:31 +0000 Manifest next update: Tue 04 Nov 2025 19:28:31 +0000 Files and hashes: 1: cHDFVlzC_kVsMWBAi25_toDAjBk.crl (hash: W2gQigZ2tvKSi02qS/hdAzLFJ2HkWGyey1k5QmPnalE=) 2: 96ACE9CE8E8F11EE8915FE78C4F9AE02.roa (hash: R4xHtrMxN1c5iDWMnVRL8nAiEpy4Y4o7VWQJMa2QgSY=) 3: 6EA165728E8F11EEA8A9EE68C4F9AE02.roa (hash: lqCVN/RdBlCCTJpxacPdT4SGQm9YuvVTkcWZpCdTrhc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.crl rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cHDFVlzC_kVsMWBAi25_toDAjBk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 19:28:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2732 (0xaac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B77C, serialNumber=7070C5565CC2FE456C3160408B6E7FB680C08C19 Validity Not Before: Oct 28 19:28:31 2025 GMT Not After : Nov 4 19:28:31 2025 GMT Subject: CN=6901195f-dc1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e8:ff:a1:2e:d0:7c:30:d3:af:26:6b:72:a4: da:1f:55:46:ce:9a:07:0f:28:f9:ae:ca:95:9a:17: 5b:cc:75:c3:f7:6f:a3:7b:b2:af:ca:9e:bd:20:2f: 3b:c2:da:cf:41:bb:20:2b:e8:91:64:b9:bd:41:1e: 61:b5:6b:0c:70:e4:5f:07:b8:a3:42:f5:e4:9b:2e: 39:4a:3e:90:56:1b:a3:31:32:86:b5:72:2d:ef:02: 63:10:b0:11:8e:cd:66:80:09:2f:94:2f:a6:a6:2a: cf:df:82:a7:c1:57:b5:49:0c:ad:40:2e:41:2c:d1: f7:66:55:75:65:c1:f5:10:c9:66:2b:49:6d:6a:50: 88:b5:7e:36:fb:43:13:db:fe:1c:ff:f5:b3:bd:1a: 94:38:f4:e8:95:3d:44:b2:02:b7:d9:54:3a:b2:00: cd:82:f2:ce:dc:4c:5b:46:73:f7:cf:98:05:bd:d1: 4e:47:2b:5c:b6:2c:88:62:a6:86:5a:a3:f4:0a:40: 99:28:ef:ad:3e:04:f1:b0:7a:60:d5:3f:0e:7f:37: 93:55:ca:c4:49:37:91:68:41:64:d5:71:d2:be:c4: b6:4c:7f:d0:63:d2:48:b4:f8:d3:cd:9f:11:d7:33: 99:51:10:0a:37:fe:ff:d6:1a:9f:65:0d:a4:bd:e0: bf:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:1F:5F:87:83:D3:74:0B:C2:E0:3B:77:1F:54:6C:41:BB:B1:A8:F6 X509v3 Authority Key Identifier: keyid:70:70:C5:56:5C:C2:FE:45:6C:31:60:40:8B:6E:7F:B6:80:C0:8C:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cHDFVlzC_kVsMWBAi25_toDAjBk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:87:21:6e:9f:02:e2:68:a1:f8:cd:4c:a5:e8:5a:12:f9:9d: a6:ab:65:00:68:cb:28:de:58:d6:bf:a9:e5:ee:2c:ff:a0:b6: 5e:94:54:7c:0a:f3:94:6e:a1:2a:64:df:72:27:cf:78:46:7d: a6:8d:cd:a3:74:be:80:9f:4c:f9:3f:66:be:23:b6:0e:5d:8f: bf:24:f1:8f:06:f8:b7:f4:25:7d:43:3b:af:84:15:bb:cf:90: f3:04:ff:19:3e:9f:c8:7d:b5:11:7f:24:d8:b2:70:64:40:55: ac:e7:da:c6:df:95:f7:da:55:ba:fc:72:bb:81:0e:98:13:53: bd:1a:09:ba:4f:85:86:55:fc:a5:ec:43:6c:a2:6f:a8:a8:e4: 8c:4e:a1:22:ef:5d:35:02:6c:99:b9:19:35:48:6b:64:f8:b9: 84:95:9a:ca:d5:b1:85:83:46:a8:b1:d1:04:af:1a:d4:e6:b6: 96:06:b8:5c:6f:c9:93:da:a7:79:f6:73:ab:17:46:6d:63:fb: a4:aa:f9:14:9d:0b:3f:c3:83:44:24:2c:b3:79:fe:e0:76:75: 48:f0:e8:ee:bb:43:82:64:7c:b0:e5:ac:0c:bb:59:78:0b:fe: 74:c6:ae:b1:6f:19:22:70:99:22:8a:4a:95:b4:5b:3a:a9:18: c8:fc:48:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI3N0MxMTAvBgNVBAUTKDcwNzBDNTU2NUNDMkZFNDU2QzMxNjA0MDhCNkU3RkI2 ODBDMDhDMTkwHhcNMjUxMDI4MTkyODMxWhcNMjUxMTA0MTkyODMxWjAYMRYwFAYD VQQDEw02OTAxMTk1Zi1kYzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1uj/oS7QfDDTryZrcqTaH1VGzpoHDyj5rsqVmhdbzHXD92+je7Kvyp69IC87 wtrPQbsgK+iRZLm9QR5htWsMcORfB7ijQvXkmy45Sj6QVhujMTKGtXIt7wJjELAR js1mgAkvlC+mpirP34KnwVe1SQytQC5BLNH3ZlV1ZcH1EMlmK0ltalCItX42+0MT 2/4c//WzvRqUOPTolT1EsgK32VQ6sgDNgvLO3ExbRnP3z5gFvdFORytctiyIYqaG WqP0CkCZKO+tPgTxsHpg1T8OfzeTVcrESTeRaEFk1XHSvsS2TH/QY9JItPjTzZ8R 1zOZURAKN/7/1hqfZQ2kveC/SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIIfX4eD 03QLwuA7dx9UbEG7saj2MB8GA1UdIwQYMBaAFHBwxVZcwv5FbDFgQItuf7aAwIwZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Qjc3Qy8yODE0Rjc3QTY5 QjUxMUVBQkE2MDE3NTJDNEY5QUUwMi9jSERGVmx6Q19rVnNNV0JBaTI1X3RvREFq QmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NIREZWbHpDX2tWc01XQkFpMjVfdG9EQWpCay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Qjc3Qy8yODE0Rjc3QTY5QjUxMUVBQkE2MDE3NTJDNEY5QUUwMi9jSERGVmx6Q19r VnNNV0JBaTI1X3RvREFqQmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBahyFunwLiaKH4zUyl6FoS+Z2mq2UAaMso3ljWv6nl7iz/oLZelFR8 CvOUbqEqZN9yJ894Rn2mjc2jdL6An0z5P2a+I7YOXY+/JPGPBvi39CV9QzuvhBW7 z5DzBP8ZPp/IfbURfyTYsnBkQFWs59rG35X32lW6/HK7gQ6YE1O9Ggm6T4WGVfyl 7ENsom+oqOSMTqEi7101AmyZuRk1SGtk+LmElZrK1bGFg0aosdEErxrU5raWBrhc b8mT2qd59nOrF0ZtY/ukqvkUnQs/w4NEJCyzef7gdnVI8Ojuu0OCZHyw5awMu1l4 C/50xq6xbxkicJkiikqVtFs6qRjI/Ei6 -----END CERTIFICATE-----Generated at Thu Oct 30 05:21:00 2025 by rpki-client