$ rpki-client -vvf rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft File: aMW6vfwSOWbQX4DD-kI3lELEIgw.mft (raw, json) Hash identifier: tZLylHCErMlwgnuJ5h1g+uQ7AqxV5WWFpx7br82BTJA= Subject key identifier: C2:A6:1E:CF:25:5B:2D:BF:7E:7A:D2:B6:B8:C1:34:3A:E3:50:77:81 Authority key identifier: 68:C5:BA:BD:FC:12:39:66:D0:5F:80:C3:FA:42:37:94:42:C4:22:0C Certificate issuer: /CN=A917201D/serialNumber=68C5BABDFC123966D05F80C3FA42379442C4220C Certificate serial: 3508 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft Manifest number: 34EA Signing time: Tue 04 Nov 2025 14:48:35 +0000 Manifest this update: Tue 04 Nov 2025 14:48:34 +0000 Manifest next update: Tue 11 Nov 2025 14:48:34 +0000 Files and hashes: 1: aMW6vfwSOWbQX4DD-kI3lELEIgw.crl (hash: HN1+Dowa9bM6sXuY4jxVG16YjX23leQHkOXLxKJpizU=) 2: E05FE99AB0D511E5B4F68B09C4F9AE02.roa (hash: Z9gsewhzEhlUHszkRSNsuOY1JzZl8Vjgyk5xiyq8V24=) 3: 73438FF06DED11E9A21D1341C4F9AE02.roa (hash: iWI19VTOrnz2nGN4modDRd0Vbot3Y2khTy6hDIMLekE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.crl rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:48:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13576 (0x3508) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917201D, serialNumber=68C5BABDFC123966D05F80C3FA42379442C4220C Validity Not Before: Nov 4 14:48:34 2025 GMT Not After : Nov 11 14:48:34 2025 GMT Subject: CN=690a1242-14fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:98:df:28:ff:30:3c:bc:87:3b:d3:b0:02:4e: a2:59:21:2e:be:1e:ff:92:9a:b9:64:62:33:7e:bf: ed:e9:19:4c:e7:b5:f2:e1:c2:6a:63:fc:95:fa:fa: 02:36:cb:8f:26:51:1c:a9:14:24:76:90:0b:04:be: 95:ff:0c:4a:66:c0:f0:8e:f4:73:43:46:a1:ea:0c: f0:56:07:05:52:1d:7b:52:29:8a:f9:4f:b4:0b:4b: fc:df:1d:03:bf:c4:5d:c1:de:38:bc:f8:f0:e9:5a: 5b:0d:09:64:93:ec:eb:a5:b7:7f:25:59:dc:94:1a: 94:98:85:1d:53:15:a9:be:5f:07:cc:81:d7:75:8f: 08:5b:3c:31:7a:a6:60:6e:26:4b:8a:4c:d0:e1:f6: ad:f7:f6:5f:d4:26:9f:6f:bc:bf:c9:d2:49:55:90: 40:4f:fb:5e:f9:80:6e:db:e9:92:5d:df:d5:82:88: 39:33:2c:ff:7d:05:71:6f:f3:2c:b1:81:e9:05:e7: e1:85:2e:ff:c8:a0:13:f7:1b:5c:97:a6:d0:3a:7b: d9:48:58:bb:fb:c4:38:5e:9f:99:d2:7e:17:30:4b: 6c:a7:a4:3e:2b:b2:54:cc:52:b0:f3:ea:f2:ec:a5: fa:52:29:1c:04:d9:25:0c:1c:a0:c2:2b:ca:72:f1: 2d:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:A6:1E:CF:25:5B:2D:BF:7E:7A:D2:B6:B8:C1:34:3A:E3:50:77:81 X509v3 Authority Key Identifier: keyid:68:C5:BA:BD:FC:12:39:66:D0:5F:80:C3:FA:42:37:94:42:C4:22:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:74:01:aa:82:8c:8f:ac:63:6b:19:10:28:36:18:16:fc:59: 76:a5:c2:99:96:73:f2:9a:7e:ee:d0:25:d9:1d:0c:5f:9b:68: 80:bc:68:aa:8d:ae:e0:01:11:03:24:01:a1:8c:f4:cc:02:79: 84:b0:0b:8b:6b:b3:73:b2:c1:2e:36:ee:f1:ab:e8:f4:e5:11: 62:c7:0c:74:4c:2d:bf:c1:6b:f5:e9:4b:30:5a:7a:af:2e:4e: e4:39:9f:8a:21:9e:b3:2c:1a:86:06:eb:38:f6:78:a4:b1:48: 16:d1:0c:b5:1f:f4:8e:f3:ef:cc:8a:a3:74:c1:4e:1a:27:be: e2:c0:b0:ef:fb:2a:2b:f9:f6:6a:4d:18:50:33:cb:4a:92:78: df:f3:5c:ec:78:3d:f5:ca:bc:a8:9f:2a:d3:1c:00:55:59:e8: 04:dd:a2:c7:60:1e:ae:fa:f5:0e:78:76:a0:33:00:66:06:c8: f4:fb:fa:11:cd:0d:d4:d1:6b:67:67:14:e5:b6:1e:7e:fc:b6: 5c:2a:13:ab:2f:8c:f2:b2:45:c9:3e:a7:78:bf:49:4c:cf:1a: f8:04:e7:72:36:e8:5e:ce:51:15:d7:65:66:d8:ef:62:92:b5: ac:0e:f4:14:ca:99:a1:63:90:64:94:2c:08:74:19:68:c4:33: a0:ff:c1:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIwMUQxMTAvBgNVBAUTKDY4QzVCQUJERkMxMjM5NjZEMDVGODBDM0ZBNDIzNzk0 NDJDNDIyMEMwHhcNMjUxMTA0MTQ0ODM0WhcNMjUxMTExMTQ0ODM0WjAYMRYwFAYD VQQDEw02OTBhMTI0Mi0xNGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5jfKP8wPLyHO9OwAk6iWSEuvh7/kpq5ZGIzfr/t6RlM57Xy4cJqY/yV+voC NsuPJlEcqRQkdpALBL6V/wxKZsDwjvRzQ0ah6gzwVgcFUh17UimK+U+0C0v83x0D v8Rdwd44vPjw6VpbDQlkk+zrpbd/JVnclBqUmIUdUxWpvl8HzIHXdY8IWzwxeqZg biZLikzQ4fat9/Zf1Cafb7y/ydJJVZBAT/te+YBu2+mSXd/Vgog5Myz/fQVxb/Ms sYHpBefhhS7/yKAT9xtcl6bQOnvZSFi7+8Q4Xp+Z0n4XMEtsp6Q+K7JUzFKw8+ry 7KX6UikcBNklDBygwivKcvEtwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKmHs8l Wy2/fnrStrjBNDrjUHeBMB8GA1UdIwQYMBaAFGjFur38Ejlm0F+Aw/pCN5RCxCIM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjAxRC9DRDFFMjk0ODFE OTIxMUUyQTNCMUY0RjUwOEIwMkNEMi9hTVc2dmZ3U09XYlFYNERELWtJM2xFTEVJ Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNVzZ2ZndTT1diUVg0REQta0kzbEVMRUlndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjAxRC9DRDFFMjk0ODFEOTIxMUUyQTNCMUY0RjUwOEIwMkNEMi9hTVc2dmZ3U09X YlFYNERELWtJM2xFTEVJZ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmdAGqgoyPrGNrGRAoNhgW/Fl2pcKZlnPymn7u0CXZHQxfm2iAvGiq ja7gAREDJAGhjPTMAnmEsAuLa7NzssEuNu7xq+j05RFixwx0TC2/wWv16UswWnqv Lk7kOZ+KIZ6zLBqGBus49niksUgW0Qy1H/SO8+/MiqN0wU4aJ77iwLDv+yor+fZq TRhQM8tKknjf81zseD31yryonyrTHABVWegE3aLHYB6u+vUOeHagMwBmBsj0+/oR zQ3U0WtnZxTlth5+/LZcKhOrL4zyskXJPqd4v0lMzxr4BOdyNuhezlEV12Vm2O9i krWsDvQUypmhY5BklCwIdBloxDOg/8ER -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:16 2025 by rpki-client