$ rpki-client -vvf rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft File: A0iYvB-xsaJGF6zZvIMq6D6vni0.mft (raw, json) Hash identifier: kYwzQIg6PLx1cGQTDsWy5CatNkSztLNc+4CnWTb8ypU= Subject key identifier: C8:09:81:93:E6:AC:ED:43:28:41:6C:A3:8F:4B:F0:09:C5:C2:84:1C Authority key identifier: 03:48:98:BC:1F:B1:B1:A2:46:17:AC:D9:BC:83:2A:E8:3E:AF:9E:2D Certificate issuer: /CN=A918D727/serialNumber=034898BC1FB1B1A24617ACD9BC832AE83EAF9E2D Certificate serial: 01A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0iYvB-xsaJGF6zZvIMq6D6vni0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft Manifest number: 01A3 Signing time: Wed 05 Nov 2025 03:25:17 +0000 Manifest this update: Wed 05 Nov 2025 03:25:16 +0000 Manifest next update: Wed 12 Nov 2025 03:25:16 +0000 Files and hashes: 1: A0iYvB-xsaJGF6zZvIMq6D6vni0.crl (hash: mVaqWR8F/6+q/CQybkFObSBNMzYwBuVMGzKvYNFcdso=) 2: A7E3DAB237FB11EEBB03FD6CC4F9AE02.roa (hash: 9sHmTTxFdikI75A0R8/VBaOSUMcfi7+BpHqL1iyf12Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.crl rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0iYvB-xsaJGF6zZvIMq6D6vni0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:25:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 422 (0x1a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D727, serialNumber=034898BC1FB1B1A24617ACD9BC832AE83EAF9E2D Validity Not Before: Nov 5 03:25:16 2025 GMT Not After : Nov 12 03:25:16 2025 GMT Subject: CN=690ac39d-720d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3c:92:a0:b0:d5:ef:3d:04:23:ac:fa:95:76: a1:2d:3b:05:39:f3:1b:f2:4a:9d:d6:a5:c8:90:16: fb:2d:1e:51:2f:26:00:91:24:20:a2:b9:3c:b3:cc: 1c:41:23:da:67:32:38:16:ab:ff:ea:f2:c4:67:5f: 6e:c4:bc:f7:d2:30:6c:45:89:ed:b5:1a:3d:43:51: ab:bf:90:31:cd:d0:7b:0c:70:ba:2d:71:5f:e9:6c: 68:1a:bb:7a:d5:f5:6b:1c:c7:92:0b:3e:62:fb:aa: 56:dd:3b:b9:56:db:9f:1f:39:8d:98:72:79:26:e8: b4:97:be:7d:3f:04:8a:33:9c:a0:c3:ef:80:4a:03: 7e:81:88:3b:e5:e8:f4:1a:76:4e:5f:3e:0c:6b:c9: c9:c5:c5:02:16:0f:e4:76:67:cb:9c:ac:ba:15:d7: 86:ea:c4:0a:cc:ee:5a:b4:bb:e9:9f:28:a2:8a:a8: 67:12:47:f8:c7:e1:cb:ae:e0:1e:f8:75:83:e6:db: 7f:c2:c2:b3:7b:62:e3:f8:65:cf:75:b3:3b:12:9b: 4c:70:c2:8a:3d:44:8b:06:77:77:e4:87:04:29:70: 4b:31:c6:0f:79:01:4a:bc:ca:a7:c9:8b:b8:98:5f: 39:ca:8d:39:02:10:f3:d4:e0:37:5b:2a:4a:a2:f3: 98:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:09:81:93:E6:AC:ED:43:28:41:6C:A3:8F:4B:F0:09:C5:C2:84:1C X509v3 Authority Key Identifier: keyid:03:48:98:BC:1F:B1:B1:A2:46:17:AC:D9:BC:83:2A:E8:3E:AF:9E:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0iYvB-xsaJGF6zZvIMq6D6vni0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:65:cd:e9:bd:10:8e:6e:f6:20:c0:20:b5:a8:ba:0c:58:93: 3d:4b:0f:b2:16:1c:84:a8:eb:f6:1b:85:b0:15:ff:3f:34:81: 84:09:98:92:68:5e:ff:f2:be:6e:6c:49:63:22:42:e0:8e:61: c9:87:9d:40:8a:cf:41:68:2b:1c:df:f5:4b:4a:a9:9a:eb:7a: 8e:df:92:50:15:79:93:00:1f:8c:f7:53:40:89:e1:31:0f:56: 6f:91:8b:aa:b8:ac:d5:d3:2b:c1:b4:d6:51:9c:08:62:48:e7: 62:1b:cd:22:38:78:80:66:a1:c1:19:c7:e0:8f:21:65:07:94: 19:20:05:39:0f:a9:85:92:15:65:65:87:03:ae:ff:22:e2:93: ae:89:a3:b9:f4:4e:5c:14:1c:b3:18:a4:66:75:39:84:83:5a: 33:ef:8d:bd:53:34:36:a1:c3:44:e8:85:28:e9:91:e0:79:73: ed:19:ec:9d:74:f4:8e:3b:fc:68:ff:65:d1:2b:36:e1:7a:b2: e1:b7:6a:a7:01:14:c3:ea:70:ff:c7:b8:20:07:ac:eb:81:86: 02:12:ce:ee:dc:fc:2e:a9:f2:67:07:fb:e3:b1:20:0d:8f:d3: 6e:31:47:aa:af:7e:a2:94:6f:8f:aa:14:74:30:e9:a0:f1:95: 60:1f:75:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3MjcxMTAvBgNVBAUTKDAzNDg5OEJDMUZCMUIxQTI0NjE3QUNEOUJDODMyQUU4 M0VBRjlFMkQwHhcNMjUxMTA1MDMyNTE2WhcNMjUxMTEyMDMyNTE2WjAYMRYwFAYD VQQDEw02OTBhYzM5ZC03MjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTySoLDV7z0EI6z6lXahLTsFOfMb8kqd1qXIkBb7LR5RLyYAkSQgork8s8wc QSPaZzI4Fqv/6vLEZ19uxLz30jBsRYnttRo9Q1Grv5AxzdB7DHC6LXFf6WxoGrt6 1fVrHMeSCz5i+6pW3Tu5VtufHzmNmHJ5Jui0l759PwSKM5ygw++ASgN+gYg75ej0 GnZOXz4Ma8nJxcUCFg/kdmfLnKy6FdeG6sQKzO5atLvpnyiiiqhnEkf4x+HLruAe +HWD5tt/wsKze2Lj+GXPdbM7EptMcMKKPUSLBnd35IcEKXBLMcYPeQFKvMqnyYu4 mF85yo05AhDz1OA3WypKovOYIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMgJgZPm rO1DKEFso49L8AnFwoQcMB8GA1UdIwQYMBaAFANImLwfsbGiRhes2byDKug+r54t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDcyNy80Nzk4RkIwNjM3 RkIxMUVFQjQyOTZEM0RDNEY5QUUwMi9BMGlZdkIteHNhSkdGNnpadklNcTZENnZu aTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwaVl2Qi14c2FKR0Y2elp2SU1xNkQ2dm5pMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDcyNy80Nzk4RkIwNjM3RkIxMUVFQjQyOTZEM0RDNEY5QUUwMi9BMGlZdkIteHNh SkdGNnpadklNcTZENnZuaTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcZc3pvRCObvYgwCC1qLoMWJM9Sw+yFhyEqOv2G4WwFf8/NIGECZiS aF7/8r5ubEljIkLgjmHJh51Ais9BaCsc3/VLSqma63qO35JQFXmTAB+M91NAieEx D1ZvkYuquKzV0yvBtNZRnAhiSOdiG80iOHiAZqHBGcfgjyFlB5QZIAU5D6mFkhVl ZYcDrv8i4pOuiaO59E5cFByzGKRmdTmEg1oz7429UzQ2ocNE6IUo6ZHgeXPtGeyd dPSOO/xo/2XRKzbherLht2qnARTD6nD/x7ggB6zrgYYCEs7u3PwuqfJnB/vjsSAN j9NuMUeqr36ilG+PqhR0MOmg8ZVgH3XY -----END CERTIFICATE-----Generated at Wed Nov 5 19:32:44 2025 by rpki-client