$ rpki-client -vvf rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.mft File: DeK2pi5UoKYbzzFLbi77jzoeOno.mft (raw, json) Hash identifier: X+MSIIm/HH3FWWPM7Pa77HciQNYQbgSX2YRsXKyhEfw= Subject key identifier: 35:3A:F7:AD:19:CF:F6:10:C5:0F:09:64:8A:74:F4:0F:CB:F5:24:61 Authority key identifier: 0D:E2:B6:A6:2E:54:A0:A6:1B:CF:31:4B:6E:2E:FB:8F:3A:1E:3A:7A Certificate issuer: /CN=A916F8DB/serialNumber=0DE2B6A62E54A0A61BCF314B6E2EFB8F3A1E3A7A Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeK2pi5UoKYbzzFLbi77jzoeOno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.mft Manifest number: 018E Signing time: Mon 03 Nov 2025 03:29:13 +0000 Manifest this update: Mon 03 Nov 2025 03:29:13 +0000 Manifest next update: Mon 10 Nov 2025 03:29:13 +0000 Files and hashes: 1: DeK2pi5UoKYbzzFLbi77jzoeOno.crl (hash: xUraHjrTj2ygjZFt/nO+kO+LpXouNV9K4IpCVpWXo7g=) 2: 65A459FE54BD11EE8C958973C4F9AE02.roa (hash: iUnEHsfjN1jchtBZnX9gEs2PWdWpqrF2oKCzEFQT8+I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.crl rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeK2pi5UoKYbzzFLbi77jzoeOno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:29:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916F8DB, serialNumber=0DE2B6A62E54A0A61BCF314B6E2EFB8F3A1E3A7A Validity Not Before: Nov 3 03:29:13 2025 GMT Not After : Nov 10 03:29:13 2025 GMT Subject: CN=69082189-d62d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:25:a7:58:53:66:39:44:4c:a8:62:c9:86:eb: 3f:01:d1:90:7f:7b:b7:35:52:b9:9b:c9:62:31:9e: 24:b0:4b:a5:4a:c8:32:f2:06:08:8a:47:73:f3:c2: 18:c8:9a:c8:4d:7a:8d:34:f4:e0:99:6c:d8:37:46: 09:d9:cf:fe:4d:c1:66:ec:9b:03:72:cc:9d:eb:a1: bb:8b:b4:c2:f2:2e:1c:b2:7f:6f:9f:3d:a6:3a:41: 52:ca:60:64:7a:b6:11:f8:76:2a:1e:ba:ac:f6:14: 1a:13:3c:b4:a4:d1:cb:eb:66:5d:7b:af:36:ef:7f: 85:52:b0:6b:f6:93:9c:99:99:50:4b:72:63:6c:9d: 0b:3b:01:e8:89:5b:79:65:60:5e:56:9a:a2:08:54: 5b:33:f4:23:35:c3:22:c8:73:9f:22:4d:03:da:62: da:75:ab:72:49:64:d7:a8:01:74:eb:38:5c:1c:b9: f3:2f:d3:bd:16:f8:e4:d1:d0:03:10:98:42:56:d7: e2:7f:0e:a5:90:a4:c0:09:2d:67:21:e2:11:8e:5f: 34:e5:93:c1:d1:b4:90:41:f5:7b:ac:bf:44:96:51: fe:7f:78:b8:d7:ed:0e:ec:c0:ee:09:20:81:bb:ef: e6:fa:3f:20:14:14:f2:f3:42:7a:0b:65:58:22:ee: 44:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:3A:F7:AD:19:CF:F6:10:C5:0F:09:64:8A:74:F4:0F:CB:F5:24:61 X509v3 Authority Key Identifier: keyid:0D:E2:B6:A6:2E:54:A0:A6:1B:CF:31:4B:6E:2E:FB:8F:3A:1E:3A:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeK2pi5UoKYbzzFLbi77jzoeOno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916F8DB/6C8BB86254BC11EEB8DB114AC4F9AE02/DeK2pi5UoKYbzzFLbi77jzoeOno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:64:32:24:91:88:50:ea:da:8b:c1:d0:46:c6:98:aa:09:c1: 90:40:e9:f2:6d:10:28:20:74:04:78:b5:da:8b:5a:ff:53:6b: 91:b8:2d:1d:a5:92:5b:66:47:7c:d3:4b:dd:ce:cc:c8:2b:f0: 89:72:fd:1b:66:b8:ca:a1:d0:38:cb:7b:af:7d:38:ae:75:22: 54:b5:91:da:f7:bc:b5:a4:99:02:ec:d8:9f:97:5b:fc:4b:24: ee:a5:bd:09:fb:0e:2b:2a:40:26:2b:d9:a1:6d:10:7e:cd:68: f9:c6:0e:95:a4:79:31:d3:81:35:86:ad:25:02:16:cc:cd:b7: b3:3f:16:6c:1d:6a:2a:33:7c:9c:72:61:5a:51:2b:f2:37:f3: ea:9d:2e:b2:0d:e5:1f:5f:4a:2e:f7:45:17:1d:ee:8a:57:c4: 8d:c1:51:4c:e4:e4:98:19:84:0b:12:85:fd:87:97:5a:ec:0d: 1d:df:4f:f1:d9:f4:b8:0f:ff:08:37:54:05:ec:d2:b9:4e:23: 15:90:1c:bf:92:54:17:cf:b9:7d:89:a8:74:15:52:e4:87:c1: f7:3e:9c:45:16:f9:06:f7:cb:95:e3:40:2e:47:22:34:05:4b: dc:a3:b9:43:be:80:f6:d5:a4:cd:8e:65:94:f0:c2:b4:80:5e: 7c:ac:b7:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkY4REIxMTAvBgNVBAUTKDBERTJCNkE2MkU1NEEwQTYxQkNGMzE0QjZFMkVGQjhG M0ExRTNBN0EwHhcNMjUxMTAzMDMyOTEzWhcNMjUxMTEwMDMyOTEzWjAYMRYwFAYD VQQDEw02OTA4MjE4OS1kNjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSWnWFNmOURMqGLJhus/AdGQf3u3NVK5m8liMZ4ksEulSsgy8gYIikdz88IY yJrITXqNNPTgmWzYN0YJ2c/+TcFm7JsDcsyd66G7i7TC8i4csn9vnz2mOkFSymBk erYR+HYqHrqs9hQaEzy0pNHL62Zde68273+FUrBr9pOcmZlQS3JjbJ0LOwHoiVt5 ZWBeVpqiCFRbM/QjNcMiyHOfIk0D2mLadatySWTXqAF06zhcHLnzL9O9Fvjk0dAD EJhCVtfifw6lkKTACS1nIeIRjl805ZPB0bSQQfV7rL9EllH+f3i41+0O7MDuCSCB u+/m+j8gFBTy80J6C2VYIu5E6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDU6960Z z/YQxQ8JZIp09A/L9SRhMB8GA1UdIwQYMBaAFA3itqYuVKCmG88xS24u+486Hjp6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RjhEQi82QzhCQjg2MjU0 QkMxMUVFQjhEQjExNEFDNEY5QUUwMi9EZUsycGk1VW9LWWJ6ekZMYmk3N2p6b2VP bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlSzJwaTVVb0tZYnp6RkxiaTc3anpvZU9uby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RjhEQi82QzhCQjg2MjU0QkMxMUVFQjhEQjExNEFDNEY5QUUwMi9EZUsycGk1VW9L WWJ6ekZMYmk3N2p6b2VPbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1ZDIkkYhQ6tqLwdBGxpiqCcGQQOnybRAoIHQEeLXai1r/U2uRuC0d pZJbZkd800vdzszIK/CJcv0bZrjKodA4y3uvfTiudSJUtZHa97y1pJkC7Nifl1v8 SyTupb0J+w4rKkAmK9mhbRB+zWj5xg6VpHkx04E1hq0lAhbMzbezPxZsHWoqM3yc cmFaUSvyN/PqnS6yDeUfX0ou90UXHe6KV8SNwVFM5OSYGYQLEoX9h5da7A0d30/x 2fS4D/8IN1QF7NK5TiMVkBy/klQXz7l9iah0FVLkh8H3PpxFFvkG98uV40AuRyI0 BUvco7lDvoD21aTNjmWU8MK0gF58rLdr -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:13 2025 by rpki-client