$ rpki-client -vvf rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft File: Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft (raw, json) Hash identifier: AhDKvymdFP0mx1TTEUlWzDY0oMN/CMj/7bnHEXrmq7E= Subject key identifier: EB:C2:5F:7E:6A:E8:69:35:94:B5:FB:BD:59:3A:8F:79:33:EF:72:AE Authority key identifier: 15:DF:79:A0:07:39:BC:39:B7:17:89:25:95:8D:FE:E9:9B:E0:0D:42 Certificate issuer: /CN=A916B0EA/serialNumber=15DF79A00739BC39B7178925958DFEE99BE00D42 Certificate serial: 087B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft Manifest number: 14E3 Signing time: Sun 02 Nov 2025 18:29:12 +0000 Manifest this update: Sun 02 Nov 2025 18:29:12 +0000 Manifest next update: Sun 09 Nov 2025 18:29:11 +0000 Files and hashes: 1: Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl (hash: i6cnE+D5yEr14XTuezII5A/8bBzCLF2Vg7HKq38v10w=) 2: 6535FEC0345C11F0B4126F3CC4F9AE02.roa (hash: pjUqvx9LjqZcGK0IESA4LP1Wg4xMY3NQqlqvkln9QM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:29:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2171 (0x87b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B0EA, serialNumber=15DF79A00739BC39B7178925958DFEE99BE00D42 Validity Not Before: Nov 2 18:29:12 2025 GMT Not After : Nov 9 18:29:11 2025 GMT Subject: CN=6907a2f8-abd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e3:0f:6b:98:fd:f0:af:36:c9:1a:9c:68:03: c1:6c:4b:30:82:97:82:64:88:b0:9f:1a:77:46:5a: 87:03:30:27:bb:13:79:b5:0d:f7:bc:b1:ee:27:92: 79:a4:e7:e4:76:23:4f:0e:39:ca:87:72:16:96:a2: 4a:1d:c4:9c:6d:97:10:23:79:7e:e9:ba:93:73:31: b2:64:92:79:38:27:58:aa:9a:fb:5a:fe:03:e9:a9: 3c:d5:83:a8:9f:7b:03:ed:9a:78:fa:ec:6c:7f:1a: f2:67:21:e4:eb:1d:fb:56:4c:19:2f:74:3b:70:0a: 8e:46:c1:6c:9a:fe:c0:49:96:86:91:58:1a:ca:ce: 34:54:7e:f0:82:01:cd:c6:80:f9:5c:a9:19:d2:60: f3:d7:af:64:60:0a:84:e6:36:02:49:f3:ba:f9:6a: 36:5a:4a:2a:56:ec:7d:49:54:3c:4c:64:a2:36:26: 19:35:13:f1:08:c0:43:3f:9f:35:c5:ff:4e:8d:24: 3f:73:91:08:1d:bc:c8:68:83:f2:85:e9:ff:db:37: 5f:0b:92:d9:16:b9:d3:5f:0c:5d:5b:a1:23:ba:15: 33:12:8b:28:36:09:4c:24:09:a4:33:f7:38:22:11: 36:8f:40:d7:81:33:c7:0c:23:86:b9:41:7d:a2:20: 48:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:C2:5F:7E:6A:E8:69:35:94:B5:FB:BD:59:3A:8F:79:33:EF:72:AE X509v3 Authority Key Identifier: keyid:15:DF:79:A0:07:39:BC:39:B7:17:89:25:95:8D:FE:E9:9B:E0:0D:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:90:7b:44:be:c0:7a:62:33:88:a4:6d:55:65:c1:40:02:b7: 6a:1d:ae:b5:8f:53:d5:d9:02:51:7f:bb:ed:e3:82:d8:63:8b: 51:59:e8:7c:13:28:4a:19:28:6a:1f:7b:80:67:5d:a8:48:73: 74:ec:d6:9c:f4:31:8e:50:f2:2c:e0:56:ae:f3:bd:0c:c8:bd: 94:e6:b6:a7:81:71:c8:ee:10:17:cc:bb:61:34:6a:b2:d9:82: 9a:72:b9:6f:95:2d:ba:7b:87:44:36:24:94:3c:0b:71:1f:e5: 40:38:fd:8a:34:89:e0:26:be:19:f5:4c:eb:0b:e8:bf:4a:52: 21:86:a7:a0:ce:4f:0f:2c:98:de:94:3c:0d:31:db:88:bf:c1: fc:08:7b:ac:32:fc:45:84:a8:40:96:e1:b4:c8:e7:ec:ed:42: c7:b4:04:53:8f:c8:2b:1e:11:97:86:9f:1f:8e:0a:a9:10:7a: e8:8d:d3:57:bf:f5:11:89:82:de:2d:1b:2f:28:8c:63:3e:cf: 3e:7d:9d:96:f7:37:12:25:06:ed:10:a6:a4:b7:3a:c1:7f:14: 01:61:00:06:93:af:81:1f:d8:5b:c4:40:64:1c:ce:81:47:02: 7e:ac:a6:97:22:81:c4:db:c9:8f:db:76:31:e7:b8:d3:eb:50: 51:a1:0b:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwRUExMTAvBgNVBAUTKDE1REY3OUEwMDczOUJDMzlCNzE3ODkyNTk1OERGRUU5 OUJFMDBENDIwHhcNMjUxMTAyMTgyOTEyWhcNMjUxMTA5MTgyOTExWjAYMRYwFAYD VQQDEw02OTA3YTJmOC1hYmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2OMPa5j98K82yRqcaAPBbEswgpeCZIiwnxp3RlqHAzAnuxN5tQ33vLHuJ5J5 pOfkdiNPDjnKh3IWlqJKHcScbZcQI3l+6bqTczGyZJJ5OCdYqpr7Wv4D6ak81YOo n3sD7Zp4+uxsfxryZyHk6x37VkwZL3Q7cAqORsFsmv7ASZaGkVgays40VH7wggHN xoD5XKkZ0mDz169kYAqE5jYCSfO6+Wo2WkoqVux9SVQ8TGSiNiYZNRPxCMBDP581 xf9OjSQ/c5EIHbzIaIPyhen/2zdfC5LZFrnTXwxdW6EjuhUzEosoNglMJAmkM/c4 IhE2j0DXgTPHDCOGuUF9oiBIqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOvCX35q 6Gk1lLX7vVk6j3kz73KuMB8GA1UdIwQYMBaAFBXfeaAHObw5txeJJZWN/umb4A1C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjBFQS80RDhFNDlCMDBC NzQxMUVBQTU4NDAwMUNDNEY5QUUwMi9GZDk1b0FjNXZEbTNGNGtsbFkzLTZadmdE VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZkOTVvQWM1dkRtM0Y0a2xsWTMtNlp2Z0RVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjBFQS80RDhFNDlCMDBCNzQxMUVBQTU4NDAwMUNDNEY5QUUwMi9GZDk1b0FjNXZE bTNGNGtsbFkzLTZadmdEVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1kHtEvsB6YjOIpG1VZcFAArdqHa61j1PV2QJRf7vt44LYY4tRWeh8 EyhKGShqH3uAZ12oSHN07Nac9DGOUPIs4Fau870MyL2U5rangXHI7hAXzLthNGqy 2YKacrlvlS26e4dENiSUPAtxH+VAOP2KNIngJr4Z9UzrC+i/SlIhhqegzk8PLJje lDwNMduIv8H8CHusMvxFhKhAluG0yOfs7ULHtARTj8grHhGXhp8fjgqpEHrojdNX v/URiYLeLRsvKIxjPs8+fZ2W9zcSJQbtEKaktzrBfxQBYQAGk6+BH9hbxEBkHM6B RwJ+rKaXIoHE28mP23Yx57jT61BRoQu2 -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:22 2025 by rpki-client