$ rpki-client -vvf rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft File: Sp1OqbVF6hBQTTa2X6owSfmezUY.mft (raw, json) Hash identifier: DOS2gyj5XXW3C23JtBXeEoyGknj5YzikxC85muupfI8= Subject key identifier: 61:AB:24:71:AD:7F:3C:37:4B:19:49:15:39:90:06:8B:3E:97:A8:3B Authority key identifier: 4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 Certificate issuer: /CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Certificate serial: 100F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft Manifest number: 1003 Signing time: Tue 04 Nov 2025 17:33:13 +0000 Manifest this update: Tue 04 Nov 2025 17:33:12 +0000 Manifest next update: Tue 11 Nov 2025 17:33:12 +0000 Files and hashes: 1: Sp1OqbVF6hBQTTa2X6owSfmezUY.crl (hash: kq3FhfhRFNqAjychEzk7Q1HVIpik3j7SzXvvUiSipIM=) 2: D34588789F8A11ECB8E03812C4F9AE02.roa (hash: WPeDV8L3X0hykJxlwLabrBRbZ1a+b6BWMeh2+gJp+KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:33:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4111 (0x100f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FAD2, serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Validity Not Before: Nov 4 17:33:12 2025 GMT Not After : Nov 11 17:33:12 2025 GMT Subject: CN=690a38d9-61f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:11:d1:68:86:10:a2:ce:b3:e8:85:80:ad:3b: 10:bc:60:72:f1:57:ed:67:8e:ff:98:c9:e6:07:7a: c4:55:39:aa:d0:50:0b:c7:7e:32:15:68:53:31:fd: 6a:f1:a4:95:9e:09:d2:42:f8:83:da:e5:9e:30:6e: 8e:3c:f8:f2:be:5a:e9:7d:ec:4e:0c:26:d2:c1:7c: af:e7:1d:f7:72:bb:8e:ff:59:ec:dc:7c:0f:e1:c7: be:2a:3e:0f:bf:a0:ef:db:97:35:c6:3c:38:5f:8c: c8:8a:b2:13:4a:f7:2e:d6:09:c2:a8:36:c6:5e:5a: 8e:de:ca:2a:c3:80:88:b3:32:58:63:32:6f:07:2b: dd:15:29:ef:22:d6:97:9f:9c:1d:f0:aa:54:92:f7: 70:71:38:72:dc:08:d5:54:46:6f:00:5a:74:da:ae: 37:33:50:63:e1:33:42:e5:9b:61:92:8c:80:c0:7a: 84:54:d5:6e:38:06:92:7c:40:14:6e:32:7d:fe:2a: 2a:91:e6:d9:a9:52:cf:09:1c:54:75:8e:d4:2d:36: 92:10:e5:76:21:14:00:34:64:1a:ce:61:c6:99:31: 17:3d:e5:05:e9:ea:f5:a5:8d:27:4a:ed:9c:47:f0: f2:0f:4a:21:74:41:9f:d6:bb:a3:bd:9f:b7:b0:13: 86:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:AB:24:71:AD:7F:3C:37:4B:19:49:15:39:90:06:8B:3E:97:A8:3B X509v3 Authority Key Identifier: keyid:4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:f5:7e:4a:7b:c0:c1:c6:e3:f7:ec:a3:38:09:b1:9c:6a:91: 90:0d:c3:40:c5:cb:bb:17:be:72:16:10:ac:3d:69:dd:46:2d: 9f:9b:80:df:73:e3:b8:0c:44:8d:d1:a5:82:df:5d:b7:1c:c7: 48:7a:b8:7f:ad:d7:c3:bf:87:98:a5:68:36:2d:7f:b9:13:4e: bb:6a:2e:fc:88:cd:02:5a:bb:f4:3d:76:dc:74:66:dc:a3:34: 08:c7:da:f5:31:93:7a:a9:c2:cb:61:ad:a1:91:ac:c1:f4:5a: 36:b9:de:23:57:30:20:ed:b4:3f:20:1c:7a:0d:6f:af:af:8d: 02:d0:92:6a:af:ed:22:45:41:66:b7:f2:97:72:b4:bb:fb:1c: 4f:b7:b4:97:2a:4f:9b:b4:34:e3:97:ac:c9:ff:0c:a1:86:43: 3d:03:86:c0:85:03:02:28:53:c2:3e:e5:51:1e:b7:26:aa:78: f8:78:4b:12:1d:c7:5a:7d:96:64:da:f2:98:21:15:aa:d2:d7: 0e:fc:ea:48:17:8c:38:9e:4d:22:6b:e4:e4:10:a4:2a:64:95: db:50:9e:3c:1a:70:7d:09:eb:b6:3e:a3:b9:58:38:e8:c5:95: a7:b0:dd:a9:d3:95:e7:2f:31:bb:b8:c5:f3:6e:bc:bd:5c:92: 5a:62:62:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBRDIxMTAvBgNVBAUTKDRBOUQ0RUE5QjU0NUVBMTA1MDREMzZCNjVGQUEzMDQ5 Rjk5RUNENDYwHhcNMjUxMTA0MTczMzEyWhcNMjUxMTExMTczMzEyWjAYMRYwFAYD VQQDEw02OTBhMzhkOS02MWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxHRaIYQos6z6IWArTsQvGBy8VftZ47/mMnmB3rEVTmq0FALx34yFWhTMf1q 8aSVngnSQviD2uWeMG6OPPjyvlrpfexODCbSwXyv5x33cruO/1ns3HwP4ce+Kj4P v6Dv25c1xjw4X4zIirITSvcu1gnCqDbGXlqO3soqw4CIszJYYzJvByvdFSnvItaX n5wd8KpUkvdwcThy3AjVVEZvAFp02q43M1Bj4TNC5ZthkoyAwHqEVNVuOAaSfEAU bjJ9/ioqkebZqVLPCRxUdY7ULTaSEOV2IRQANGQazmHGmTEXPeUF6er1pY0nSu2c R/DyD0ohdEGf1rujvZ+3sBOG3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGGrJHGt fzw3SxlJFTmQBos+l6g7MB8GA1UdIwQYMBaAFEqdTqm1ReoQUE02tl+qMEn5ns1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkFEMi84MzRBQzQ3ODU5 QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZoQlFUVGEyWDZvd1NmbWV6 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NwMU9xYlZGNmhCUVRUYTJYNm93U2ZtZXpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkFEMi84MzRBQzQ3ODU5QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZo QlFUVGEyWDZvd1NmbWV6VVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBT9X5Ke8DBxuP37KM4CbGcapGQDcNAxcu7F75yFhCsPWndRi2fm4Df c+O4DESN0aWC3123HMdIerh/rdfDv4eYpWg2LX+5E067ai78iM0CWrv0PXbcdGbc ozQIx9r1MZN6qcLLYa2hkazB9Fo2ud4jVzAg7bQ/IBx6DW+vr40C0JJqr+0iRUFm t/KXcrS7+xxPt7SXKk+btDTjl6zJ/wyhhkM9A4bAhQMCKFPCPuVRHrcmqnj4eEsS HcdafZZk2vKYIRWq0tcO/OpIF4w4nk0ia+TkEKQqZJXbUJ48GnB9Ceu2PqO5WDjo xZWnsN2p05XnLzG7uMXzbry9XJJaYmKE -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:19 2025 by rpki-client