$ rpki-client -vvf rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft File: 67oUOyhmNxjNjH2j9jEAmpgE7l8.mft (raw, json) Hash identifier: F5I83CzHTysoTvrPBxDXBXAyK6QRR0yODM3diJ54lSU= Subject key identifier: 48:56:0C:C9:1E:1C:55:3E:7C:57:8E:04:92:CD:A5:06:FF:BC:F7:0E Authority key identifier: EB:BA:14:3B:28:66:37:18:CD:8C:7D:A3:F6:31:00:9A:98:04:EE:5F Certificate issuer: /CN=A919676F/serialNumber=EBBA143B28663718CD8C7DA3F631009A9804EE5F Certificate serial: 01E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67oUOyhmNxjNjH2j9jEAmpgE7l8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft Manifest number: 01E4 Signing time: Mon 03 Nov 2025 02:38:59 +0000 Manifest this update: Mon 03 Nov 2025 02:38:58 +0000 Manifest next update: Mon 10 Nov 2025 02:38:58 +0000 Files and hashes: 1: 67oUOyhmNxjNjH2j9jEAmpgE7l8.crl (hash: pBJWEsxHylH+PG7LxelwK6a+fO5ycuYevRs81hgDqGI=) 2: D277F83CD3A411ED8C51160FC4F9AE02.roa (hash: xeDK9WlWOxddaeQUzhh0jJMfgRYN6KWkgPqKssZPync=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.crl rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67oUOyhmNxjNjH2j9jEAmpgE7l8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:38:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919676F, serialNumber=EBBA143B28663718CD8C7DA3F631009A9804EE5F Validity Not Before: Nov 3 02:38:58 2025 GMT Not After : Nov 10 02:38:58 2025 GMT Subject: CN=690815c2-10ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:45:00:aa:cc:da:5f:99:d7:37:5a:95:69:a0: 7b:c1:1b:b4:9b:93:8c:20:58:71:c6:33:08:c9:e4: 06:e2:68:1f:ef:16:48:c5:75:7a:07:3b:a8:bc:1e: 2b:56:bb:cc:ca:ce:9e:af:e0:2f:82:91:ee:5b:a9: c3:7a:17:07:3f:84:62:c3:51:b5:7b:cc:32:62:43: 92:cd:c9:ac:d5:d8:b7:7b:09:51:e8:1e:78:9e:2f: e9:43:24:03:e2:b6:2a:71:1c:02:7e:8c:b7:e8:d5: 6f:49:06:54:ff:5f:0b:a7:34:ea:e7:bf:e7:b2:41: 40:38:9a:5a:99:f5:85:97:a8:1a:d1:d5:17:66:b6: f9:86:03:2c:34:57:e8:38:40:45:f0:40:37:45:bc: 54:52:37:2a:0a:cb:e9:c2:08:4d:c6:10:bd:a0:db: 48:06:83:11:d7:f0:fb:2c:86:f3:b3:d2:d3:e5:f9: 30:23:c7:bc:ea:b6:9d:da:93:aa:18:71:67:f1:ec: 2c:1f:e2:81:e5:3c:b9:0f:3f:7a:bf:94:b0:da:4a: c7:45:6b:3e:79:38:07:ef:96:e4:db:60:06:66:ae: 0c:a5:c4:f8:9c:9d:20:8d:c2:9c:fc:0c:e7:64:cc: 11:71:f6:3f:07:17:90:96:48:a9:e3:85:d4:07:34: 2c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:56:0C:C9:1E:1C:55:3E:7C:57:8E:04:92:CD:A5:06:FF:BC:F7:0E X509v3 Authority Key Identifier: keyid:EB:BA:14:3B:28:66:37:18:CD:8C:7D:A3:F6:31:00:9A:98:04:EE:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67oUOyhmNxjNjH2j9jEAmpgE7l8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919676F/FE49FAC2D3A011ED814C4C18C4F9AE02/67oUOyhmNxjNjH2j9jEAmpgE7l8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:0f:1a:28:81:aa:50:ea:cf:80:1b:59:e1:6d:17:35:bc:58: 0e:c6:6a:44:22:90:03:a3:84:60:69:41:e6:d6:bf:a6:d3:6a: 31:43:8f:93:f7:b7:70:ad:2c:de:f7:66:35:9a:a0:85:9e:bf: d4:74:b8:91:62:a3:35:5b:4c:05:bf:4d:ad:49:c5:94:fe:ae: 82:1a:79:11:bd:44:f3:bd:dc:71:59:b5:30:09:01:25:b4:bd: cc:58:05:57:0d:dd:a7:3a:df:64:61:ed:39:5a:c6:0b:0b:8d: b4:62:d6:0a:0e:e9:0a:37:0b:04:6e:1d:a3:e6:c8:74:2a:b7: f3:e4:ae:0d:f8:06:bb:cc:b0:ea:b4:c9:d3:8f:c9:ed:bf:4d: 8f:00:8c:e4:58:26:2e:da:3c:60:bd:ea:55:55:49:23:9c:71: 6b:9b:36:67:40:fc:03:d8:29:45:0a:81:2b:fe:fe:c7:23:60: f9:e9:07:e7:8a:a9:f1:ea:f6:26:36:7b:05:ed:1c:f3:54:ba: 1d:4f:30:db:f3:25:2c:ba:62:05:02:60:d2:36:2a:2c:e2:a5: c5:ba:07:04:77:64:e2:76:4d:ec:f9:ca:55:6c:c4:b6:6e:fe: 2b:eb:61:a6:59:f2:8c:b5:3f:f0:43:a7:54:77:55:4d:ba:07: c8:11:27:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY3NkYxMTAvBgNVBAUTKEVCQkExNDNCMjg2NjM3MThDRDhDN0RBM0Y2MzEwMDlB OTgwNEVFNUYwHhcNMjUxMTAzMDIzODU4WhcNMjUxMTEwMDIzODU4WjAYMRYwFAYD VQQDEw02OTA4MTVjMi0xMGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnUUAqszaX5nXN1qVaaB7wRu0m5OMIFhxxjMIyeQG4mgf7xZIxXV6BzuovB4r VrvMys6er+AvgpHuW6nDehcHP4Riw1G1e8wyYkOSzcms1di3ewlR6B54ni/pQyQD 4rYqcRwCfoy36NVvSQZU/18LpzTq57/nskFAOJpamfWFl6ga0dUXZrb5hgMsNFfo OEBF8EA3RbxUUjcqCsvpwghNxhC9oNtIBoMR1/D7LIbzs9LT5fkwI8e86rad2pOq GHFn8ewsH+KB5Ty5Dz96v5Sw2krHRWs+eTgH75bk22AGZq4MpcT4nJ0gjcKc/Azn ZMwRcfY/BxeQlkip44XUBzQsmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEhWDMke HFU+fFeOBJLNpQb/vPcOMB8GA1UdIwQYMBaAFOu6FDsoZjcYzYx9o/YxAJqYBO5f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Njc2Ri9GRTQ5RkFDMkQz QTAxMUVEODE0QzRDMThDNEY5QUUwMi82N29VT3lobU54ak5qSDJqOWpFQW1wZ0U3 bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY3b1VPeWhtTnhqTmpIMmo5akVBbXBnRTdsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Njc2Ri9GRTQ5RkFDMkQzQTAxMUVEODE0QzRDMThDNEY5QUUwMi82N29VT3lobU54 ak5qSDJqOWpFQW1wZ0U3bDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0DxoogapQ6s+AG1nhbRc1vFgOxmpEIpADo4RgaUHm1r+m02oxQ4+T 97dwrSze92Y1mqCFnr/UdLiRYqM1W0wFv02tScWU/q6CGnkRvUTzvdxxWbUwCQEl tL3MWAVXDd2nOt9kYe05WsYLC420YtYKDukKNwsEbh2j5sh0Krfz5K4N+Aa7zLDq tMnTj8ntv02PAIzkWCYu2jxgvepVVUkjnHFrmzZnQPwD2ClFCoEr/v7HI2D56Qfn iqnx6vYmNnsF7RzzVLodTzDb8yUsumIFAmDSNios4qXFugcEd2Tidk3s+cpVbMS2 bv4r62GmWfKMtT/wQ6dUd1VNugfIESdv -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:19 2025 by rpki-client