$ rpki-client -vvf rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft File: sQtPQ0P6rissTT3WYGS-km7HTJ8.mft (raw, json) Hash identifier: T2W3jsvaudIUJRd8eiol6mTpvWiJq7WnNrLMIK6jGWc= Subject key identifier: E2:E3:41:A1:71:25:C6:33:B0:47:AF:D9:B9:7C:92:80:94:13:7B:9C Authority key identifier: B1:0B:4F:43:43:FA:AE:2B:2C:4D:3D:D6:60:64:BE:92:6E:C7:4C:9F Certificate issuer: /CN=A915CE2F/serialNumber=B10B4F4343FAAE2B2C4D3DD66064BE926EC74C9F Certificate serial: 0229 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft Manifest number: 0225 Signing time: Mon 03 Nov 2025 02:02:47 +0000 Manifest this update: Mon 03 Nov 2025 02:02:46 +0000 Manifest next update: Mon 10 Nov 2025 02:02:46 +0000 Files and hashes: 1: sQtPQ0P6rissTT3WYGS-km7HTJ8.crl (hash: VCW/0KiYE0Ro8GacAofQpnNqaw9rAG2SUINlU56mqeA=) 2: 670087C4EEF011ED9C693D31C4F9AE02.roa (hash: aXVsQ3eTDOFY8R9G8hcsnCxP/cyR26ThIRn0dDawEqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.crl rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 553 (0x229) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CE2F, serialNumber=B10B4F4343FAAE2B2C4D3DD66064BE926EC74C9F Validity Not Before: Nov 3 02:02:46 2025 GMT Not After : Nov 10 02:02:46 2025 GMT Subject: CN=69080d46-2915 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4d:25:84:78:61:12:39:0b:a5:cd:a5:19:d3: a9:5e:68:85:0d:e6:50:82:bf:4d:ac:16:f4:4d:e5: b6:ed:a9:23:56:38:b2:e2:46:d0:fa:58:4d:83:33: b7:5f:b6:6a:71:7c:6d:00:5c:ee:61:12:cd:09:6d: 68:fe:9a:cb:24:2f:e8:56:16:a3:91:fd:b8:d9:06: f8:5b:f1:51:a3:05:26:a6:71:f6:42:6f:f7:50:e9: b5:49:54:8b:2c:7d:c3:48:4a:f9:3c:c0:e5:9f:fe: 61:86:8e:05:73:16:80:44:63:18:af:a5:35:ed:18: 70:46:e1:83:31:92:83:e8:0d:da:c5:dc:79:9e:40: 07:cb:95:29:a9:ab:92:14:7b:3c:9b:f3:3e:4b:c1: cf:8c:1e:42:9f:98:e4:11:6c:52:86:35:c3:44:bc: 2f:47:3b:6b:12:69:a8:a5:ec:a3:40:d9:0d:93:1d: 8a:b4:5b:0f:7b:44:ca:a5:47:bf:65:86:40:20:a9: 52:15:ea:2b:a9:b3:a2:b8:a4:b9:43:15:ea:32:e1: 1d:05:58:5d:ad:0a:a1:d3:b3:2c:40:cb:22:09:5c: d2:19:56:aa:5a:8f:18:4c:13:36:d5:6c:98:b3:87: 18:13:24:b9:2a:7d:27:7d:09:09:f3:23:6a:ec:23: da:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E3:41:A1:71:25:C6:33:B0:47:AF:D9:B9:7C:92:80:94:13:7B:9C X509v3 Authority Key Identifier: keyid:B1:0B:4F:43:43:FA:AE:2B:2C:4D:3D:D6:60:64:BE:92:6E:C7:4C:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:77:17:64:6c:ca:86:1b:c2:cf:ab:33:f8:39:8c:10:6e:a2: d1:12:c6:c4:45:7a:87:88:18:e7:96:ac:dd:32:52:cc:e8:0d: ed:c9:7a:14:5c:3b:80:e9:6d:7c:b1:ab:f9:79:d3:8e:80:e2: 52:2a:cc:f3:25:26:41:31:8f:0e:bd:01:2f:54:dd:51:d6:47: c0:3b:47:92:9a:a9:cb:dd:ca:37:6a:8f:4b:2f:a1:d8:0c:0b: 05:d6:e5:d7:d4:e2:9d:c1:bb:05:3b:77:52:40:74:b6:22:f8: 51:9d:a4:71:c1:23:38:81:66:f8:ce:95:da:f8:59:ce:ec:3a: 5c:04:8a:79:d1:71:02:90:c5:79:48:82:9a:49:c9:1f:bd:b7: 13:be:c7:0a:f8:3c:3b:af:0f:8f:ac:4a:64:20:db:6a:37:71: bd:99:bf:c3:9f:bc:62:99:ef:d9:e0:21:05:ff:c6:47:46:1c: 6b:5a:c1:56:e9:cd:8c:78:76:97:a3:54:2d:32:ad:05:2b:67: c4:62:69:b0:7d:91:02:e0:ea:15:3e:f4:68:8a:02:8b:04:26: 7a:54:01:6b:ca:e5:ee:b0:a3:94:4a:9a:8d:72:9e:28:b0:3c: 38:24:54:de:ab:a2:d2:03:1c:59:61:b7:78:39:36:80:d1:bc: bc:82:0c:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNFMkYxMTAvBgNVBAUTKEIxMEI0RjQzNDNGQUFFMkIyQzREM0RENjYwNjRCRTky NkVDNzRDOUYwHhcNMjUxMTAzMDIwMjQ2WhcNMjUxMTEwMDIwMjQ2WjAYMRYwFAYD VQQDEw02OTA4MGQ0Ni0yOTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyE0lhHhhEjkLpc2lGdOpXmiFDeZQgr9NrBb0TeW27akjVjiy4kbQ+lhNgzO3 X7ZqcXxtAFzuYRLNCW1o/prLJC/oVhajkf242Qb4W/FRowUmpnH2Qm/3UOm1SVSL LH3DSEr5PMDln/5hho4FcxaARGMYr6U17RhwRuGDMZKD6A3axdx5nkAHy5UpqauS FHs8m/M+S8HPjB5Cn5jkEWxShjXDRLwvRztrEmmopeyjQNkNkx2KtFsPe0TKpUe/ ZYZAIKlSFeorqbOiuKS5QxXqMuEdBVhdrQqh07MsQMsiCVzSGVaqWo8YTBM21WyY s4cYEyS5Kn0nfQkJ8yNq7CPaTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLjQaFx JcYzsEev2bl8koCUE3ucMB8GA1UdIwQYMBaAFLELT0ND+q4rLE091mBkvpJux0yf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0UyRi8wQkRFQTUyODcw RTMxMUVEQjU3NzA0M0ZDNEY5QUUwMi9zUXRQUTBQNnJpc3NUVDNXWUdTLWttN0hU SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NRdFBRMFA2cmlzc1RUM1dZR1Mta203SFRKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0UyRi8wQkRFQTUyODcwRTMxMUVEQjU3NzA0M0ZDNEY5QUUwMi9zUXRQUTBQNnJp c3NUVDNXWUdTLWttN0hUSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUdxdkbMqGG8LPqzP4OYwQbqLREsbERXqHiBjnlqzdMlLM6A3tyXoU XDuA6W18sav5edOOgOJSKszzJSZBMY8OvQEvVN1R1kfAO0eSmqnL3co3ao9LL6HY DAsF1uXX1OKdwbsFO3dSQHS2IvhRnaRxwSM4gWb4zpXa+FnO7DpcBIp50XECkMV5 SIKaSckfvbcTvscK+Dw7rw+PrEpkINtqN3G9mb/Dn7xime/Z4CEF/8ZHRhxrWsFW 6c2MeHaXo1QtMq0FK2fEYmmwfZEC4OoVPvRoigKLBCZ6VAFryuXusKOUSpqNcp4o sDw4JFTeq6LSAxxZYbd4OTaA0by8ggwn -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:25 2025 by rpki-client