$ rpki-client -vvf rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft File: CKtUearwyEilFC1v5NyZFitFwzc.mft (raw, json) Hash identifier: UxLNtFCpJVPp/G/3syyCMcfe3qLDwYb7hNHq6hh3oZc= Subject key identifier: E9:7E:61:21:28:C7:C3:11:9B:28:22:6C:BE:F3:2E:4F:90:90:AF:28 Authority key identifier: 08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 Certificate issuer: /CN=A916DC7C/serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Certificate serial: ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft Manifest number: EB Signing time: Wed 05 Nov 2025 00:44:23 +0000 Manifest this update: Wed 05 Nov 2025 00:44:23 +0000 Manifest next update: Wed 12 Nov 2025 00:44:23 +0000 Files and hashes: 1: CKtUearwyEilFC1v5NyZFitFwzc.crl (hash: 2RK4+mFsEaaUGZHXY3caOGiTvGtgWa2W8qm1AfkYrvk=) 2: 710957A8559411EFA07E1C5AC4F9AE02.roa (hash: kCmrnMtq0oO23W6srUkZmhxFZ7143rIIMei/dep36jM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:44:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 237 (0xed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DC7C, serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Validity Not Before: Nov 5 00:44:23 2025 GMT Not After : Nov 12 00:44:23 2025 GMT Subject: CN=690a9de7-ee92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fc:e7:9d:72:7a:53:33:63:5d:c3:40:49:58: 5d:40:7c:53:fc:a4:19:a9:3b:01:ed:7a:16:09:34: 95:c1:80:79:be:55:8c:aa:44:a1:b3:05:61:20:3e: 8f:e8:e0:d4:b6:87:97:af:ba:fe:d9:4c:23:b7:cb: 0f:8d:33:42:7c:3b:ac:96:a8:75:ab:af:fc:bd:4c: cb:72:9f:c3:09:d4:ff:b3:41:3c:44:f8:b7:fe:8f: 6f:09:af:62:1a:b6:9d:10:65:3e:3c:15:63:56:cf: a9:4c:20:38:4c:9a:7f:03:0c:99:f0:e1:5d:7a:b5: a2:51:43:20:64:78:2e:d5:88:65:8f:9a:0d:6e:b4: e7:33:44:08:52:c4:f2:59:74:8d:26:aa:ac:4d:15: 6c:3d:59:42:7c:7b:55:7e:68:83:af:8e:3b:90:57: c7:7b:5e:a6:a8:65:6b:4a:a8:10:fd:43:c4:a6:00: f7:43:b3:c3:47:0c:4b:ab:0a:6e:e5:ec:44:90:75: 69:c5:71:94:4b:94:3d:33:43:05:ca:2a:9b:76:dc: d6:ea:71:1f:52:74:f3:56:f6:40:f7:d9:98:0b:4c: 5d:61:4b:e5:20:4e:0d:93:62:81:6b:1f:03:11:0d: e6:5c:48:d1:ea:02:7f:42:5e:e5:a0:ce:79:b0:0b: 90:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:7E:61:21:28:C7:C3:11:9B:28:22:6C:BE:F3:2E:4F:90:90:AF:28 X509v3 Authority Key Identifier: keyid:08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:a3:97:f2:de:ef:c2:28:6e:7e:04:58:d3:80:57:af:4f:48: 9e:c1:e3:ea:80:7c:32:b6:85:24:f2:c8:bd:dd:a2:a6:7d:b4: ac:60:2c:49:d2:e1:23:5d:91:63:ac:06:11:a7:06:33:9c:43: 52:40:26:12:52:4b:75:95:ef:27:60:9c:74:47:f6:66:b6:ae: de:22:63:8c:28:8a:65:15:7f:07:a0:d2:ee:6c:2b:35:9c:fb: f3:53:b2:b3:3f:14:9f:e3:8c:e6:f9:9d:1c:a5:6d:5f:67:ba: ac:e4:ff:ae:31:7c:47:42:ef:cb:f9:27:bc:48:19:20:6c:36: 66:98:0e:45:36:f7:09:9a:c6:5c:05:a1:37:56:ed:37:07:f3: 1c:60:7e:7f:48:d1:1a:40:73:38:d3:b1:65:d0:89:39:42:d8: 02:5f:78:a4:e9:95:13:8d:1c:19:b0:d2:a5:57:46:da:fa:57: b4:74:e2:8b:d3:ab:22:f3:99:16:2e:f0:98:2f:30:9d:ab:ca: 51:f5:69:1f:6e:10:5b:ca:11:1f:96:5e:32:b9:34:e4:2e:71: 71:bc:ae:0d:da:22:ae:6d:35:61:4a:4c:dd:f9:05:01:3a:9c: be:c2:5a:85:33:ea:df:6b:ac:9a:0a:52:d0:b1:b1:fb:39:38: 37:29:5b:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRDN0MxMTAvBgNVBAUTKDA4QUI1NDc5QUFGMEM4NDhBNTE0MkQ2RkU0REM5OTE2 MkI0NUMzMzcwHhcNMjUxMTA1MDA0NDIzWhcNMjUxMTEyMDA0NDIzWjAYMRYwFAYD VQQDEw02OTBhOWRlNy1lZTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/znnXJ6UzNjXcNASVhdQHxT/KQZqTsB7XoWCTSVwYB5vlWMqkShswVhID6P 6ODUtoeXr7r+2Uwjt8sPjTNCfDuslqh1q6/8vUzLcp/DCdT/s0E8RPi3/o9vCa9i GradEGU+PBVjVs+pTCA4TJp/AwyZ8OFderWiUUMgZHgu1Yhlj5oNbrTnM0QIUsTy WXSNJqqsTRVsPVlCfHtVfmiDr447kFfHe16mqGVrSqgQ/UPEpgD3Q7PDRwxLqwpu 5exEkHVpxXGUS5Q9M0MFyiqbdtzW6nEfUnTzVvZA99mYC0xdYUvlIE4Nk2KBax8D EQ3mXEjR6gJ/Ql7loM55sAuQRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOl+YSEo x8MRmygibL7zLk+QkK8oMB8GA1UdIwQYMBaAFAirVHmq8MhIpRQtb+TcmRYrRcM3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REM3Qy9BNEMxNDYyODU1 NDkxMUVGODJCNUQzNkZDNEY5QUUwMi9DS3RVZWFyd3lFaWxGQzF2NU55WkZpdEZ3 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NLdFVlYXJ3eUVpbEZDMXY1TnlaRml0Rnd6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REM3Qy9BNEMxNDYyODU1NDkxMUVGODJCNUQzNkZDNEY5QUUwMi9DS3RVZWFyd3lF aWxGQzF2NU55WkZpdEZ3emMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbo5fy3u/CKG5+BFjTgFevT0iewePqgHwytoUk8si93aKmfbSsYCxJ 0uEjXZFjrAYRpwYznENSQCYSUkt1le8nYJx0R/Zmtq7eImOMKIplFX8HoNLubCs1 nPvzU7KzPxSf44zm+Z0cpW1fZ7qs5P+uMXxHQu/L+Se8SBkgbDZmmA5FNvcJmsZc BaE3Vu03B/McYH5/SNEaQHM407Fl0Ik5QtgCX3ik6ZUTjRwZsNKlV0ba+le0dOKL 06si85kWLvCYLzCdq8pR9WkfbhBbyhEfll4yuTTkLnFxvK4N2iKubTVhSkzd+QUB Opy+wlqFM+rfa6yaClLQsbH7OTg3KVvV -----END CERTIFICATE-----Generated at Wed Nov 5 21:30:26 2025 by rpki-client