$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft File: CDWHSXi6MJ7X2kZz53OdkyLyYps.mft (raw, json) Hash identifier: s5Y3DSt2SncPeWTDJAjb+BAW655uoGYIDQkrNMqjBsc= Subject key identifier: A0:4A:27:71:64:2D:0C:33:9F:84:05:AC:4F:F2:6E:A6:5A:DF:7C:BA Authority key identifier: 08:35:87:49:78:BA:30:9E:D7:DA:46:73:E7:73:9D:93:22:F2:62:9B Certificate issuer: /CN=A917E00F/serialNumber=0835874978BA309ED7DA4673E7739D9322F2629B Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft Manifest number: 93 Signing time: Tue 28 Oct 2025 22:58:10 +0000 Manifest this update: Tue 28 Oct 2025 22:58:10 +0000 Manifest next update: Tue 04 Nov 2025 22:58:10 +0000 Files and hashes: 1: CDWHSXi6MJ7X2kZz53OdkyLyYps.crl (hash: /bAn9Wf5ZyL4ZHf5BmRR4RZDE4+MjzkbjpLasGuWAlU=) 2: 2DA549EAE23E11EFB267422EC4F9AE02.roa (hash: IwOryXN0CLNaxtv7IBy7ZDsktAOlHn3+ya1AEPZi2Ak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.crl rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 22:58:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00F, serialNumber=0835874978BA309ED7DA4673E7739D9322F2629B Validity Not Before: Oct 28 22:58:10 2025 GMT Not After : Nov 4 22:58:10 2025 GMT Subject: CN=69014a82-3cf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a9:97:b8:01:b7:17:3d:e6:44:58:87:8a:6d: 85:89:31:78:d9:bd:8d:97:c7:83:1e:b1:cd:e6:0e: 76:20:fa:91:1a:98:b3:97:b0:a2:99:8f:54:9f:15: 60:18:fd:2d:2a:b6:b6:07:77:50:6c:27:11:fe:be: b9:d4:ba:f7:c9:08:b4:c9:cc:80:1f:ef:b7:47:6a: 69:16:ff:2a:6a:c9:b1:a3:bb:dc:c8:34:b5:6d:a3: 4e:15:a2:36:b7:b7:b7:04:0b:61:bc:09:57:34:bd: f5:e4:8f:31:69:c7:7c:16:0e:61:7d:ea:3b:82:3c: 1f:0f:af:30:2f:21:cb:c5:b9:80:6f:6c:5d:4e:f6: 42:b8:0d:b8:ab:75:44:a2:6a:2a:d4:54:41:e1:32: 99:08:a4:35:33:23:1e:6b:f6:89:09:18:72:20:b0: ba:62:04:83:2a:02:a2:65:8c:eb:31:a5:2b:11:27: 43:31:87:94:c5:ec:79:11:0c:6c:c2:41:9c:b8:76: 9e:85:06:2d:59:59:63:57:b6:5d:ae:4d:e6:7d:3e: 5f:77:87:32:fb:7c:bc:bd:86:3c:a4:37:11:3d:48: e3:fc:37:5d:c5:6f:3e:a9:4f:1b:2b:10:78:64:e3: 79:c8:94:0c:f7:e1:9b:14:88:a8:a4:b7:ad:31:4b: 0f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:4A:27:71:64:2D:0C:33:9F:84:05:AC:4F:F2:6E:A6:5A:DF:7C:BA X509v3 Authority Key Identifier: keyid:08:35:87:49:78:BA:30:9E:D7:DA:46:73:E7:73:9D:93:22:F2:62:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:e9:df:50:9e:1a:d4:c6:72:b8:32:2f:fb:fd:02:8f:8c:50: 07:60:2d:87:d2:df:79:ae:dd:30:ca:4a:f1:7a:b5:62:62:ca: ae:d0:cf:02:46:eb:88:e0:98:12:b3:f1:ba:5b:ba:0d:7e:65: dc:c4:0a:3b:67:c1:29:11:c1:5c:ee:5f:8e:d7:6a:75:35:81: a0:4f:86:02:8c:54:59:00:c4:95:ca:38:e9:f6:7b:f8:ee:3b: c8:cd:e7:74:3d:c0:1d:c2:c9:97:b8:b7:db:22:82:f2:f7:9e: f0:44:17:f4:f8:1f:42:08:ee:ef:cb:66:3d:4e:10:4d:0a:9f: 63:6c:22:66:22:59:b4:b2:54:cf:4a:f5:94:fc:bd:66:2f:98: 1b:dc:eb:a2:59:aa:6f:ad:31:be:4f:79:91:66:b2:57:06:98: e6:1b:af:66:d8:da:dd:a9:3c:68:f4:63:5b:f0:16:1e:7e:84: 95:7a:e5:95:d2:65:4a:9a:df:6f:88:43:10:87:56:40:ef:c2: 56:6f:4e:d4:d4:b8:1a:bc:93:18:e2:42:9c:0c:ac:90:3f:e6: 1d:49:aa:31:74:18:19:61:15:b1:4d:15:9b:1e:cf:99:6e:c0: f9:8e:c1:57:6f:c6:0b:8e:18:d8:a1:e0:14:8b:6d:5d:1c:c5: 2c:a0:a1:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwMEYxMTAvBgNVBAUTKDA4MzU4NzQ5NzhCQTMwOUVEN0RBNDY3M0U3NzM5RDkz MjJGMjYyOUIwHhcNMjUxMDI4MjI1ODEwWhcNMjUxMTA0MjI1ODEwWjAYMRYwFAYD VQQDEw02OTAxNGE4Mi0zY2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26mXuAG3Fz3mRFiHim2FiTF42b2Nl8eDHrHN5g52IPqRGpizl7CimY9UnxVg GP0tKra2B3dQbCcR/r651Lr3yQi0ycyAH++3R2ppFv8qasmxo7vcyDS1baNOFaI2 t7e3BAthvAlXNL315I8xacd8Fg5hfeo7gjwfD68wLyHLxbmAb2xdTvZCuA24q3VE omoq1FRB4TKZCKQ1MyMea/aJCRhyILC6YgSDKgKiZYzrMaUrESdDMYeUxex5EQxs wkGcuHaehQYtWVljV7Zdrk3mfT5fd4cy+3y8vYY8pDcRPUjj/DddxW8+qU8bKxB4 ZON5yJQM9+GbFIiopLetMUsPyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKBKJ3Fk LQwzn4QFrE/ybqZa33y6MB8GA1UdIwQYMBaAFAg1h0l4ujCe19pGc+dznZMi8mKb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTAwRi83RDJCMURGMEQ3 RDAxMUVGOUVGQzkxMERDNEY5QUUwMi9DRFdIU1hpNk1KN1gya1p6NTNPZGt5THlZ cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NEV0hTWGk2TUo3WDJrWno1M09ka3lMeVlwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTAwRi83RDJCMURGMEQ3RDAxMUVGOUVGQzkxMERDNEY5QUUwMi9DRFdIU1hpNk1K N1gya1p6NTNPZGt5THlZcHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB66d9QnhrUxnK4Mi/7/QKPjFAHYC2H0t95rt0wykrxerViYsqu0M8C RuuI4JgSs/G6W7oNfmXcxAo7Z8EpEcFc7l+O12p1NYGgT4YCjFRZAMSVyjjp9nv4 7jvIzed0PcAdwsmXuLfbIoLy957wRBf0+B9CCO7vy2Y9ThBNCp9jbCJmIlm0slTP SvWU/L1mL5gb3OuiWapvrTG+T3mRZrJXBpjmG69m2NrdqTxo9GNb8BYefoSVeuWV 0mVKmt9viEMQh1ZA78JWb07U1LgavJMY4kKcDKyQP+YdSaoxdBgZYRWxTRWbHs+Z bsD5jsFXb8YLjhjYoeAUi21dHMUsoKHv -----END CERTIFICATE-----Generated at Wed Oct 29 22:34:29 2025 by rpki-client