$ rpki-client -vvf rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft File: AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft (raw, json) Hash identifier: dbtNP7Afcm37tqITFhGuwlGfAsBNwteRQK6XyguoptI= Subject key identifier: CA:41:3B:C8:7A:C7:22:EA:6A:1E:59:87:1C:9D:6A:78:55:05:73:BA Authority key identifier: 02:81:1C:31:D5:0C:91:FF:FD:5E:DA:68:B9:EF:81:C3:F9:E9:FB:12 Certificate issuer: /CN=A919188A/serialNumber=02811C31D50C91FFFD5EDA68B9EF81C3F9E9FB12 Certificate serial: 0207 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AoEcMdUMkf_9Xtpoue-Bw_np-xI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft Manifest number: 0200 Signing time: Mon 03 Nov 2025 02:21:40 +0000 Manifest this update: Mon 03 Nov 2025 02:21:39 +0000 Manifest next update: Mon 10 Nov 2025 02:21:39 +0000 Files and hashes: 1: AoEcMdUMkf_9Xtpoue-Bw_np-xI.crl (hash: Xpaqz7sIYkOHAw+frt53yg4IBcSqJ0O89ptrIEBt214=) 2: 12AE9E92AA9711EDAAEB8345C4F9AE02.roa (hash: k3NlozvnlaqSreMbUh2TfHEQDX5Xr4Ukgk/pUkd38rY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.crl rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AoEcMdUMkf_9Xtpoue-Bw_np-xI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:21:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919188A, serialNumber=02811C31D50C91FFFD5EDA68B9EF81C3F9E9FB12 Validity Not Before: Nov 3 02:21:39 2025 GMT Not After : Nov 10 02:21:39 2025 GMT Subject: CN=690811b3-ff29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7e:41:4c:87:be:fd:23:02:23:97:32:77:7e: 06:52:17:f6:e6:d2:da:7c:58:fa:2e:42:b4:5d:9d: 10:30:a3:9a:ff:e4:1a:09:82:ee:8e:7e:f6:01:7e: 44:e9:29:ad:1b:7d:46:e5:f9:60:fa:ac:a0:16:4e: 8f:41:1a:93:b5:c3:ca:7c:a2:d3:b1:de:27:70:09: c6:81:c8:4b:14:03:bb:eb:2b:54:8c:61:d5:48:ea: 63:d2:59:4b:d6:8d:46:ea:d8:1b:9b:84:f5:fe:1b: 9d:f9:45:e1:71:16:26:68:41:cc:7b:25:de:80:72: 5c:18:1f:90:4b:56:b9:a6:19:f0:0b:d2:91:8b:99: 52:02:59:bc:3b:28:e5:8b:de:69:d3:f3:a2:38:6c: 86:23:1c:e5:0f:1a:7e:e5:5e:42:a5:0b:40:34:5e: 38:cd:39:42:ff:be:14:e9:da:e3:5e:c9:be:85:b3: dd:27:79:d8:29:51:2e:be:8b:d6:82:6a:ed:42:bd: e4:2f:3e:ee:bf:d6:b3:21:6a:24:7c:a8:25:3e:a3: d4:52:bb:36:79:4f:74:23:bf:35:f9:f6:38:6c:d4: cc:b5:b3:09:ca:f6:1c:8c:af:12:eb:de:a6:90:ea: 02:c4:ea:9e:8d:9a:68:56:ae:cd:f0:57:19:78:66: a3:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:41:3B:C8:7A:C7:22:EA:6A:1E:59:87:1C:9D:6A:78:55:05:73:BA X509v3 Authority Key Identifier: keyid:02:81:1C:31:D5:0C:91:FF:FD:5E:DA:68:B9:EF:81:C3:F9:E9:FB:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AoEcMdUMkf_9Xtpoue-Bw_np-xI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:2a:94:04:0a:25:12:e2:3d:ea:90:8a:be:f5:57:ff:93:2a: a8:dd:04:4c:ae:94:e2:40:6c:27:df:0d:c8:5a:66:0b:55:22: 9b:e8:88:33:b7:a8:cd:7d:42:a3:6e:d2:8c:69:b0:eb:cc:06: da:42:7f:8b:bb:ce:a5:77:ed:c3:09:2f:60:c2:fc:a6:9f:05: d9:fc:93:46:82:de:a4:d6:8e:3e:9d:76:e3:d6:90:39:e5:68: 1e:fe:dd:b3:90:8a:d6:f5:44:59:c9:dc:12:26:54:cc:b0:5d: b4:c5:56:55:98:4b:a8:1d:83:11:9b:a0:8e:76:e2:39:7b:ff: 92:12:8c:fc:26:dd:0a:28:a8:a0:1e:a7:c6:6c:2d:04:d4:44: 8a:8c:c0:9a:de:31:b4:c7:cb:fa:a5:e4:1f:4c:f6:05:55:d5: 18:10:76:5c:51:72:42:c5:d5:8f:98:e4:a2:b5:be:ab:d2:01: 43:94:2f:57:11:f6:aa:e5:fa:9c:5c:59:91:b2:56:df:ec:12: ca:ee:d2:c4:f0:93:fb:78:aa:6f:d2:0c:f1:78:cb:7a:21:0f: 58:eb:23:3b:36:63:2e:84:55:12:84:cd:6d:46:38:2a:6c:3a: f9:88:c3:f1:ec:39:a1:54:4d:bb:a1:96:28:af:58:7a:ba:57: ae:14:8b:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE4OEExMTAvBgNVBAUTKDAyODExQzMxRDUwQzkxRkZGRDVFREE2OEI5RUY4MUMz RjlFOUZCMTIwHhcNMjUxMTAzMDIyMTM5WhcNMjUxMTEwMDIyMTM5WjAYMRYwFAYD VQQDEw02OTA4MTFiMy1mZjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz35BTIe+/SMCI5cyd34GUhf25tLafFj6LkK0XZ0QMKOa/+QaCYLujn72AX5E 6SmtG31G5flg+qygFk6PQRqTtcPKfKLTsd4ncAnGgchLFAO76ytUjGHVSOpj0llL 1o1G6tgbm4T1/hud+UXhcRYmaEHMeyXegHJcGB+QS1a5phnwC9KRi5lSAlm8Oyjl i95p0/OiOGyGIxzlDxp+5V5CpQtANF44zTlC/74U6drjXsm+hbPdJ3nYKVEuvovW gmrtQr3kLz7uv9azIWokfKglPqPUUrs2eU90I781+fY4bNTMtbMJyvYcjK8S696m kOoCxOqejZpoVq7N8FcZeGajnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpBO8h6 xyLqah5ZhxydanhVBXO6MB8GA1UdIwQYMBaAFAKBHDHVDJH//V7aaLnvgcP56fsS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTg4QS9DOTYzNTdDQUFB OTQxMUVEQjA3NzRGNDVDNEY5QUUwMi9Bb0VjTWRVTWtmXzlYdHBvdWUtQndfbnAt eEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FvRWNNZFVNa2ZfOVh0cG91ZS1Cd19ucC14SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTg4QS9DOTYzNTdDQUFBOTQxMUVEQjA3NzRGNDVDNEY5QUUwMi9Bb0VjTWRVTWtm XzlYdHBvdWUtQndfbnAteEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOKpQECiUS4j3qkIq+9Vf/kyqo3QRMrpTiQGwn3w3IWmYLVSKb6Igz t6jNfUKjbtKMabDrzAbaQn+Lu86ld+3DCS9gwvymnwXZ/JNGgt6k1o4+nXbj1pA5 5Wge/t2zkIrW9URZydwSJlTMsF20xVZVmEuoHYMRm6COduI5e/+SEoz8Jt0KKKig HqfGbC0E1ESKjMCa3jG0x8v6peQfTPYFVdUYEHZcUXJCxdWPmOSitb6r0gFDlC9X Efaq5fqcXFmRslbf7BLK7tLE8JP7eKpv0gzxeMt6IQ9Y6yM7NmMuhFUShM1tRjgq bDr5iMPx7DmhVE27oZYor1h6uleuFIsA -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:14 2025 by rpki-client