$ rpki-client -vvf rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft File: 32d9hpNHe5Kh6f58IEImls6oYJ0.mft (raw, json) Hash identifier: 4LuMlUi9v4Q3nTX34nTo9PehFxel8XHTmGv+yPLok2A= Subject key identifier: AD:C5:14:C0:BB:1E:0B:53:A8:BD:B3:4C:73:89:0C:99:06:F9:16:BA Authority key identifier: DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D Certificate issuer: /CN=A918BDA2/serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Certificate serial: 0368 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft Manifest number: 0362 Signing time: Mon 03 Nov 2025 00:53:38 +0000 Manifest this update: Mon 03 Nov 2025 00:53:38 +0000 Manifest next update: Mon 10 Nov 2025 00:53:38 +0000 Files and hashes: 1: 32d9hpNHe5Kh6f58IEImls6oYJ0.crl (hash: rHeFF7JLxBNi9caWu/gekTfg3UBiJpQqgO7djRDLnPc=) 2: 4BBDE05299B011F0B174EC14C4F9AE02.roa (hash: pdXvO5dWNffMF+g7wdheLMnKcr86zZnCCOuGAycJNwg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:53:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 872 (0x368) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BDA2, serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Validity Not Before: Nov 3 00:53:38 2025 GMT Not After : Nov 10 00:53:38 2025 GMT Subject: CN=6907fd12-0c9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:5d:65:f3:46:c2:28:0d:e4:65:dd:79:55:6a: 51:31:41:fd:92:6b:3c:88:1c:d1:43:5a:db:9a:4a: 38:66:92:25:6c:5b:5b:e3:09:a3:2d:93:3d:2b:ee: a5:a1:ce:b8:37:56:7e:a3:64:29:3b:47:6e:e3:32: 86:a1:3f:ef:11:be:1a:01:88:1d:53:6d:1b:07:18: fa:1b:5e:34:19:a6:4d:6f:90:92:b4:1e:36:20:64: b2:76:1d:e2:3b:24:b0:01:3f:49:92:d8:48:d4:5d: 02:3c:62:22:c5:3b:7c:21:61:d8:22:18:62:37:76: f9:2f:10:4d:b1:a4:a8:3a:7a:73:86:f6:1a:de:ee: 17:01:a6:80:f3:e9:8b:b7:e5:b5:06:94:89:6f:17: d7:59:50:ee:31:6e:df:fb:12:b7:b1:90:7c:77:f4: f1:b8:0f:85:ac:35:03:78:e2:01:75:91:56:0d:c3: 1a:ba:1e:e0:f5:be:8d:47:6a:95:48:c1:51:91:35: 3a:31:6b:b3:50:e4:de:10:3d:ab:69:01:2d:03:11: ff:d3:44:93:75:4c:e7:59:9e:af:32:99:1f:a1:a2: 41:67:e6:57:cb:cc:1e:2e:b0:2e:5a:d1:3b:c6:00: 0f:a6:2c:f9:1c:d8:62:9f:c4:3a:a4:be:7b:4f:59: 3f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:C5:14:C0:BB:1E:0B:53:A8:BD:B3:4C:73:89:0C:99:06:F9:16:BA X509v3 Authority Key Identifier: keyid:DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:46:4e:a6:c7:09:ca:18:44:b1:92:12:48:85:7f:ad:35:0e: 1b:90:3e:dc:45:ac:22:73:c6:22:35:0c:e7:70:5e:f0:35:0d: 3e:30:59:c2:ae:20:06:55:f8:dc:2c:f8:51:d7:0f:93:c8:6a: 34:03:d8:8f:41:25:d7:77:40:b7:56:58:ba:40:5c:49:c2:90: 92:01:a9:b8:1f:7d:d4:dd:dc:ab:ed:70:3f:cc:b6:7b:4c:28: 83:52:8e:a8:40:50:71:65:d5:56:38:9d:91:12:6c:f4:88:52: 8b:2e:b7:e5:62:ba:b0:d1:00:ff:75:a9:49:44:0f:d2:b8:56: fe:85:a2:c7:e6:a6:1c:87:d2:8a:77:7b:c0:6b:13:26:c1:76: e6:29:d6:28:65:58:e2:c3:07:47:01:67:5f:66:22:54:e8:12: c1:11:05:5b:a6:e0:e4:ca:0c:0e:45:dc:ff:c9:3d:d9:84:f2: c8:d7:be:a7:99:24:42:f8:15:91:e4:a4:0e:31:21:12:14:6c: ff:89:98:75:c0:d5:4b:fd:d4:cb:71:26:ab:f0:e0:3c:07:99: 98:f6:88:76:08:c6:c0:5e:5c:53:1a:bb:6b:74:d3:04:5f:c2: 1a:bd:d5:da:5c:02:43:22:48:70:8b:ed:70:e7:e0:da:02:a3: 9a:7b:d6:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEQTIxMTAvBgNVBAUTKERGNjc3RDg2OTM0NzdCOTJBMUU5RkU3QzIwNDIyNjk2 Q0VBODYwOUQwHhcNMjUxMTAzMDA1MzM4WhcNMjUxMTEwMDA1MzM4WjAYMRYwFAYD VQQDEw02OTA3ZmQxMi0wYzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8V1l80bCKA3kZd15VWpRMUH9kms8iBzRQ1rbmko4ZpIlbFtb4wmjLZM9K+6l oc64N1Z+o2QpO0du4zKGoT/vEb4aAYgdU20bBxj6G140GaZNb5CStB42IGSydh3i OySwAT9JkthI1F0CPGIixTt8IWHYIhhiN3b5LxBNsaSoOnpzhvYa3u4XAaaA8+mL t+W1BpSJbxfXWVDuMW7f+xK3sZB8d/TxuA+FrDUDeOIBdZFWDcMauh7g9b6NR2qV SMFRkTU6MWuzUOTeED2raQEtAxH/00STdUznWZ6vMpkfoaJBZ+ZXy8weLrAuWtE7 xgAPpiz5HNhin8Q6pL57T1k/VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3FFMC7 HgtTqL2zTHOJDJkG+Ra6MB8GA1UdIwQYMBaAFN9nfYaTR3uSoen+fCBCJpbOqGCd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkRBMi83MEU2OUMxOEQw RUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1S2g2ZjU4SUVJbWxzNm9Z SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyZDlocE5IZTVLaDZmNThJRUltbHM2b1lKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkRBMi83MEU2OUMxOEQwRUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1 S2g2ZjU4SUVJbWxzNm9ZSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZRk6mxwnKGESxkhJIhX+tNQ4bkD7cRawic8YiNQzncF7wNQ0+MFnC riAGVfjcLPhR1w+TyGo0A9iPQSXXd0C3Vli6QFxJwpCSAam4H33U3dyr7XA/zLZ7 TCiDUo6oQFBxZdVWOJ2REmz0iFKLLrflYrqw0QD/dalJRA/SuFb+haLH5qYch9KK d3vAaxMmwXbmKdYoZVjiwwdHAWdfZiJU6BLBEQVbpuDkygwORdz/yT3ZhPLI176n mSRC+BWR5KQOMSESFGz/iZh1wNVL/dTLcSar8OA8B5mY9oh2CMbAXlxTGrtrdNME X8IavdXaXAJDIkhwi+1w5+DaAqOae9bq -----END CERTIFICATE-----Generated at Mon Nov 3 18:16:39 2025 by rpki-client