$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft File: Vj8ylI68GzkPMqCqPzYUeFr858I.mft (raw, json) Hash identifier: k8w7LsM6GPn9lKSpNcVgvG01GYfvOeBCMESFh3UBzI4= Subject key identifier: C5:2E:65:BD:77:CB:00:4A:D1:BB:9B:B6:E6:CB:9B:F1:76:AA:8D:04 Authority key identifier: 56:3F:32:94:8E:BC:1B:39:0F:32:A0:AA:3F:36:14:78:5A:FC:E7:C2 Certificate issuer: /CN=A917AC8C/serialNumber=563F32948EBC1B390F32A0AA3F3614785AFCE7C2 Certificate serial: 0326 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft Manifest number: 031E Signing time: Mon 03 Nov 2025 01:03:41 +0000 Manifest this update: Mon 03 Nov 2025 01:03:40 +0000 Manifest next update: Mon 10 Nov 2025 01:03:40 +0000 Files and hashes: 1: Vj8ylI68GzkPMqCqPzYUeFr858I.crl (hash: ml90jak5i4q0cOpwOZO3HmRXi0YGbbdlqHEEUIV/ei8=) 2: EA5EB99CEBBD11ECB3DAFE39C4F9AE02.roa (hash: 6Otg6zDUC3T6chkRppH8+51GAfFhb4rhNrj+nGsoi3I=) 3: EB756434EBBD11ECB3DAFE39C4F9AE02.roa (hash: dSIhsF2Xt53EsY5Qnrga5XSOK9oGKkuxZKuBhxw3Vak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.crl rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 806 (0x326) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC8C, serialNumber=563F32948EBC1B390F32A0AA3F3614785AFCE7C2 Validity Not Before: Nov 3 01:03:40 2025 GMT Not After : Nov 10 01:03:40 2025 GMT Subject: CN=6907ff6d-0fc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8d:81:1d:59:5b:31:e2:2b:67:7e:9a:ee:09: a4:b0:e9:eb:84:26:da:9f:1a:07:32:e6:fd:4f:60: fe:5c:60:e8:0e:3b:4a:c0:8c:e8:2f:38:3e:27:55: 4d:52:ea:1f:ae:bb:d5:33:2a:3b:f5:28:ca:68:c2: ff:ed:3b:18:c0:5f:7a:89:ad:08:ed:f4:b7:a5:68: 1c:bd:05:dd:a6:e2:4f:0c:56:4a:7d:6d:07:49:0d: bd:ec:37:e7:df:c9:2d:a5:e4:76:eb:3c:c8:47:a5: 8d:3d:dc:81:42:ce:a5:2d:8d:68:9e:a2:06:31:af: bb:5a:d5:93:dc:45:ad:bf:c6:dc:32:c4:e6:19:75: 77:2f:04:3e:45:1b:b2:41:05:a8:96:c8:66:b6:00: 13:69:5c:2f:21:83:6a:ef:f7:4b:3f:75:b5:7d:4c: b9:2a:3d:2a:71:46:e5:5f:94:d3:00:a1:ef:53:fc: 49:fe:fb:93:dc:97:40:b1:f7:c3:06:6d:d7:c0:ee: 94:99:01:fa:06:e9:c2:3c:f6:78:8b:c5:b5:53:27: f5:be:dc:44:04:f9:50:c3:0f:3f:07:f0:f0:7d:c7: 43:31:94:3a:33:97:46:a8:4b:d0:ad:5d:99:09:2d: 95:bd:52:9f:a2:a8:48:ce:2d:45:f1:d9:34:e7:19: 01:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:2E:65:BD:77:CB:00:4A:D1:BB:9B:B6:E6:CB:9B:F1:76:AA:8D:04 X509v3 Authority Key Identifier: keyid:56:3F:32:94:8E:BC:1B:39:0F:32:A0:AA:3F:36:14:78:5A:FC:E7:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:10:38:88:ff:40:0e:b3:ad:5b:05:5d:d7:cd:f1:57:e2:5e: 2b:0a:f8:38:f0:3d:8f:0b:8e:5c:5a:71:f0:79:ea:b7:64:c1: 86:02:6c:de:23:a8:92:19:16:b4:b7:86:11:3f:c5:ec:a3:f9: a0:38:3e:dc:44:08:fa:43:9c:78:30:c7:bc:aa:ca:ee:62:83: 44:f3:b9:2c:d8:f4:83:09:5f:49:11:50:1e:00:21:c5:34:a0: d7:d6:04:00:95:db:ca:4e:21:0d:f6:25:1c:a8:66:db:71:69: 55:b3:b8:74:9c:f2:65:c4:f0:54:e0:40:79:1a:af:64:95:46: fa:10:ef:3e:39:a5:3b:5e:a3:54:13:08:09:86:4f:99:19:bc: a2:1a:8b:7d:38:42:1b:0e:d5:47:b5:4d:ea:b3:10:d7:e7:02: 38:11:21:1e:20:e0:2f:48:e8:94:ff:f3:7f:ef:a0:f3:de:e3: 0f:96:43:8a:98:c0:d1:50:b3:32:29:94:cb:e8:f5:9b:14:ba: 98:c2:e0:f1:00:33:df:56:9f:ce:86:21:e7:7f:2f:55:35:05: 9a:7e:10:10:6f:31:23:b4:00:d5:9a:58:35:29:c0:f0:a8:23: b6:ae:1e:3a:de:78:49:7d:1a:7b:32:6e:a8:51:f6:81:ba:d6: 91:8a:f2:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDOEMxMTAvBgNVBAUTKDU2M0YzMjk0OEVCQzFCMzkwRjMyQTBBQTNGMzYxNDc4 NUFGQ0U3QzIwHhcNMjUxMTAzMDEwMzQwWhcNMjUxMTEwMDEwMzQwWjAYMRYwFAYD VQQDEw02OTA3ZmY2ZC0wZmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyI2BHVlbMeIrZ36a7gmksOnrhCbanxoHMub9T2D+XGDoDjtKwIzoLzg+J1VN UuofrrvVMyo79SjKaML/7TsYwF96ia0I7fS3pWgcvQXdpuJPDFZKfW0HSQ297Dfn 38ktpeR26zzIR6WNPdyBQs6lLY1onqIGMa+7WtWT3EWtv8bcMsTmGXV3LwQ+RRuy QQWolshmtgATaVwvIYNq7/dLP3W1fUy5Kj0qcUblX5TTAKHvU/xJ/vuT3JdAsffD Bm3XwO6UmQH6BunCPPZ4i8W1Uyf1vtxEBPlQww8/B/DwfcdDMZQ6M5dGqEvQrV2Z CS2VvVKfoqhIzi1F8dk05xkBpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMUuZb13 ywBK0bubtubLm/F2qo0EMB8GA1UdIwQYMBaAFFY/MpSOvBs5DzKgqj82FHha/OfC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUM4Qy84OTk2NkRDQUVC QjkxMUVDOTlFNTYxMEVDNEY5QUUwMi9Wajh5bEk2OEd6a1BNcUNxUHpZVWVGcjg1 OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZqOHlsSTY4R3prUE1xQ3FQellVZUZyODU4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUM4Qy84OTk2NkRDQUVCQjkxMUVDOTlFNTYxMEVDNEY5QUUwMi9Wajh5bEk2OEd6 a1BNcUNxUHpZVWVGcjg1OEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/EDiI/0AOs61bBV3XzfFX4l4rCvg48D2PC45cWnHweeq3ZMGGAmze I6iSGRa0t4YRP8Xso/mgOD7cRAj6Q5x4MMe8qsruYoNE87ks2PSDCV9JEVAeACHF NKDX1gQAldvKTiEN9iUcqGbbcWlVs7h0nPJlxPBU4EB5Gq9klUb6EO8+OaU7XqNU EwgJhk+ZGbyiGot9OEIbDtVHtU3qsxDX5wI4ESEeIOAvSOiU//N/76Dz3uMPlkOK mMDRULMyKZTL6PWbFLqYwuDxADPfVp/OhiHnfy9VNQWafhAQbzEjtADVmlg1KcDw qCO2rh463nhJfRp7Mm6oUfaButaRivIr -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:14 2025 by rpki-client