$ rpki-client -vvf rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft File: cFErPTLQXcMlQemOV1oxxTIHNkg.mft (raw, json) Hash identifier: 4c2SrpNuX91pk84TkeRbVzfN9EuJHbsIotYQEZDV1nw= Subject key identifier: 92:08:8F:1D:BD:14:2A:6F:B4:FA:58:67:32:D4:D1:72:F6:C5:87:28 Authority key identifier: 70:51:2B:3D:32:D0:5D:C3:25:41:E9:8E:57:5A:31:C5:32:07:36:48 Certificate issuer: /CN=A918D75D/serialNumber=70512B3D32D05DC32541E98E575A31C532073648 Certificate serial: 0659 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft Manifest number: 0654 Signing time: Sun 02 Nov 2025 22:37:36 +0000 Manifest this update: Sun 02 Nov 2025 22:37:36 +0000 Manifest next update: Sun 09 Nov 2025 22:37:36 +0000 Files and hashes: 1: cFErPTLQXcMlQemOV1oxxTIHNkg.crl (hash: QGcXLuSzg6F/V0f+iKskzuWrF72mzCk3jgEvhZUv2VU=) 2: D0763FECA68A11EB9F23D74FC4F9AE02.roa (hash: otn7zJrk0PPbtnlH9qLQ0UvTzJRXUBW5NBaU6fJKloc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.crl rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:37:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1625 (0x659) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D75D, serialNumber=70512B3D32D05DC32541E98E575A31C532073648 Validity Not Before: Nov 2 22:37:36 2025 GMT Not After : Nov 9 22:37:36 2025 GMT Subject: CN=6907dd30-302b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ce:1c:c0:3b:b4:f3:be:20:d9:f0:1a:1d:c0: 73:6b:50:2c:e5:cd:b6:d5:c9:de:4a:9d:98:63:db: 35:16:21:ee:b9:a2:41:fc:af:73:22:11:91:96:55: 9c:5e:77:8d:11:3a:c2:82:35:e1:49:bf:2b:89:72: cb:7e:09:1e:49:13:98:bf:e5:7c:6a:6a:12:f9:cd: b6:99:8f:47:df:32:4d:64:a4:9b:8a:de:ec:44:17: e6:49:a2:c0:68:d0:d9:da:17:ca:70:1a:cd:30:61: 21:a9:bd:d0:01:ea:b0:0f:d3:7f:3c:8c:e1:fd:55: e3:a6:c5:c9:73:e5:2e:4f:96:c1:12:fc:d8:ab:44: 1b:29:55:17:fd:4c:3e:44:a4:9f:8f:e1:5c:c3:65: 34:25:1a:49:1e:b0:f1:6a:f3:75:18:3a:ba:37:3f: a7:6b:bd:53:cf:c1:73:a2:43:75:d2:38:c5:3a:21: 30:b1:58:b0:3a:ba:40:04:2e:91:fa:ba:56:f0:d8: 90:f1:51:6b:46:53:a7:35:31:9d:c9:26:25:67:0b: dd:4b:dc:70:ad:ff:5f:0d:f3:77:d7:a0:0f:f0:0e: 12:22:11:10:59:d4:cd:5e:57:83:10:9d:ad:97:50: 4d:39:6f:df:e8:11:11:7d:60:d6:69:fe:9f:fa:a8: 51:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:08:8F:1D:BD:14:2A:6F:B4:FA:58:67:32:D4:D1:72:F6:C5:87:28 X509v3 Authority Key Identifier: keyid:70:51:2B:3D:32:D0:5D:C3:25:41:E9:8E:57:5A:31:C5:32:07:36:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:13:b9:7c:9b:30:c8:a6:cf:27:78:1f:f2:bc:49:e2:99:0b: 28:07:94:19:f4:ab:95:44:cf:d5:c9:20:d9:9b:63:8f:00:b4: 23:74:0f:7b:16:27:62:3b:17:0a:fd:3e:c7:17:71:af:ef:14: 5f:f3:35:36:b7:a7:60:a3:49:f3:c4:47:38:5e:4a:ea:bd:3d: 1f:74:9d:7f:0e:3a:d7:f0:fa:65:d8:1c:ab:41:ce:34:80:67: c7:78:44:4e:b9:7a:b6:9e:16:ec:df:3d:66:b1:dc:ce:ca:b3: 5b:f4:25:ef:4a:07:f3:d4:b9:1c:15:d8:a8:25:ba:cf:28:6e: ad:a8:b5:be:25:f3:f7:fd:ee:9d:98:47:21:7a:b1:e1:1d:3f: d2:60:df:fc:cc:04:11:fb:18:a6:6a:e2:72:95:d5:bd:7e:15: 3e:9b:5a:f2:85:72:c6:69:74:c0:e5:6a:d9:4e:dc:28:56:f5: 7b:4d:1e:7a:c0:6e:1f:a8:ac:7e:fc:d7:3a:5d:7b:08:f6:77: 84:c7:01:7c:2e:63:46:51:a4:e0:7b:19:81:c6:00:8a:c1:71: 32:1a:04:cf:63:13:ef:5b:b2:75:a6:0a:02:2f:01:6e:53:25: 95:30:59:ae:d3:00:75:0b:61:7c:82:2b:41:f0:f0:77:e3:2c: c4:5b:83:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3NUQxMTAvBgNVBAUTKDcwNTEyQjNEMzJEMDVEQzMyNTQxRTk4RTU3NUEzMUM1 MzIwNzM2NDgwHhcNMjUxMTAyMjIzNzM2WhcNMjUxMTA5MjIzNzM2WjAYMRYwFAYD VQQDEw02OTA3ZGQzMC0zMDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlc4cwDu0874g2fAaHcBza1As5c221cneSp2YY9s1FiHuuaJB/K9zIhGRllWc XneNETrCgjXhSb8riXLLfgkeSROYv+V8amoS+c22mY9H3zJNZKSbit7sRBfmSaLA aNDZ2hfKcBrNMGEhqb3QAeqwD9N/PIzh/VXjpsXJc+UuT5bBEvzYq0QbKVUX/Uw+ RKSfj+Fcw2U0JRpJHrDxavN1GDq6Nz+na71Tz8FzokN10jjFOiEwsViwOrpABC6R +rpW8NiQ8VFrRlOnNTGdySYlZwvdS9xwrf9fDfN316AP8A4SIhEQWdTNXleDEJ2t l1BNOW/f6BERfWDWaf6f+qhREQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJIIjx29 FCpvtPpYZzLU0XL2xYcoMB8GA1UdIwQYMBaAFHBRKz0y0F3DJUHpjldaMcUyBzZI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDc1RC83RTI3MkY3Q0E2 ODkxMUVCQTQ0QjAyNEZDNEY5QUUwMi9jRkVyUFRMUVhjTWxRZW1PVjFveHhUSUhO a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NGRXJQVExRWGNNbFFlbU9WMW94eFRJSE5rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDc1RC83RTI3MkY3Q0E2ODkxMUVCQTQ0QjAyNEZDNEY5QUUwMi9jRkVyUFRMUVhj TWxRZW1PVjFveHhUSUhOa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXE7l8mzDIps8neB/yvEnimQsoB5QZ9KuVRM/VySDZm2OPALQjdA97 FidiOxcK/T7HF3Gv7xRf8zU2t6dgo0nzxEc4XkrqvT0fdJ1/DjrX8Ppl2ByrQc40 gGfHeEROuXq2nhbs3z1msdzOyrNb9CXvSgfz1LkcFdioJbrPKG6tqLW+JfP3/e6d mEcherHhHT/SYN/8zAQR+ximauJyldW9fhU+m1ryhXLGaXTA5WrZTtwoVvV7TR56 wG4fqKx+/Nc6XXsI9neExwF8LmNGUaTgexmBxgCKwXEyGgTPYxPvW7J1pgoCLwFu UyWVMFmu0wB1C2F8gitB8PB34yzEW4MI -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:16 2025 by rpki-client