$ rpki-client -vvf rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft File: k32ZUe4fk_ysJDM7CD-dfy458Pk.mft (raw, json) Hash identifier: 6ioipNM6CILOLK3Q3z8JCOphbzznOJP8K37r0hrH1Eg= Subject key identifier: 5E:EF:AA:68:F9:86:07:8C:C7:64:C1:DE:44:F9:38:56:6F:49:4A:A0 Authority key identifier: 93:7D:99:51:EE:1F:93:FC:AC:24:33:3B:08:3F:9D:7F:2E:39:F0:F9 Certificate issuer: /CN=A919C8C4/serialNumber=937D9951EE1F93FCAC24333B083F9D7F2E39F0F9 Certificate serial: 08E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft Manifest number: 08DB Signing time: Sun 12 Oct 2025 21:37:30 +0000 Manifest this update: Sun 12 Oct 2025 21:37:29 +0000 Manifest next update: Sun 19 Oct 2025 21:37:29 +0000 Files and hashes: 1: k32ZUe4fk_ysJDM7CD-dfy458Pk.crl (hash: gcSARDrAOHb9dIwCeulWx88RkXOtVm47N3Iw6Snvo+s=) 2: 6A3C327ABD1711EA8A3C8E20C4F9AE02.roa (hash: chUNg5uPEOUI/4y/JkNyLjCI88SKibEBtbB6b3Giy1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.crl rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Oct 2025 21:37:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2274 (0x8e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C8C4, serialNumber=937D9951EE1F93FCAC24333B083F9D7F2E39F0F9 Validity Not Before: Oct 12 21:37:29 2025 GMT Not After : Oct 19 21:37:29 2025 GMT Subject: CN=68ec1f99-5241 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:bb:82:55:0c:de:6c:8f:ac:5c:b7:01:f8:05: a1:3d:4c:14:f2:89:5d:57:77:cf:29:c5:a9:58:a1: af:c9:1c:ca:54:11:f0:67:ef:8f:47:3f:70:14:35: 21:06:bf:96:ad:db:ef:56:1c:44:28:71:3e:ca:b5: 9b:34:1c:04:96:59:66:fb:54:ae:24:6e:08:27:b8: 4b:b4:f9:16:89:74:22:a1:c3:14:c3:04:8d:07:e6: e4:c9:be:89:e8:1c:1e:35:04:7c:fe:6f:8f:42:c1: c2:2a:cb:59:ba:71:d8:28:3e:59:6e:af:67:48:80: fa:55:c1:44:e6:01:20:31:15:e0:85:fd:1f:34:a0: 47:d3:ab:ed:85:51:a6:4d:ab:20:d8:96:1a:05:39: be:09:bf:f1:29:e2:83:c4:34:15:17:6e:93:c7:a4: 52:41:1a:e2:e2:61:9a:3a:42:80:1b:d5:f2:3e:0e: 9f:df:d9:df:d3:0d:19:17:11:44:d7:a8:bd:8f:f0: fe:16:7a:90:e9:f2:4a:9a:b5:b1:79:a4:b8:65:7b: ed:5e:fb:22:96:65:0d:1a:68:d1:f2:d6:29:d0:41: d5:c8:75:cf:45:2e:11:77:3a:ca:a5:c0:72:e8:e9: cd:5e:47:b9:37:a7:27:fe:a3:d7:93:6e:68:bd:82: c3:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:EF:AA:68:F9:86:07:8C:C7:64:C1:DE:44:F9:38:56:6F:49:4A:A0 X509v3 Authority Key Identifier: keyid:93:7D:99:51:EE:1F:93:FC:AC:24:33:3B:08:3F:9D:7F:2E:39:F0:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:e1:55:34:6c:93:63:74:ff:6a:15:c6:15:14:c2:eb:34:e3: 37:e6:09:c4:85:98:ea:ef:1d:d0:66:ee:13:68:15:5e:42:7b: 93:4e:81:74:62:18:dc:40:62:c0:f8:f3:c7:03:c9:91:82:53: 74:3a:c0:6a:bb:d2:90:e2:49:ee:3a:e6:04:69:c4:96:b6:8e: a0:05:85:7b:7b:1a:d1:0f:61:40:51:1c:bf:f4:2b:9e:c4:8c: e2:61:22:73:36:1b:78:2b:bd:04:71:b4:32:da:55:69:3d:f8: 4d:1d:6d:07:43:54:1a:1f:ee:71:9d:ea:fd:16:b2:54:4e:df: 97:48:7f:ec:2f:86:74:db:26:c7:36:63:17:2a:d6:e5:cd:0b: 19:3e:eb:3e:11:28:bf:56:b1:05:c8:d4:8a:9a:c5:2e:88:36: 48:83:d0:c4:0e:03:56:66:1e:34:e5:40:fb:9e:04:a4:b9:ee: 0b:b9:cd:3a:3b:e0:e3:fd:9b:2b:37:c4:5a:15:a7:4c:62:1a: 23:17:9f:29:d0:f4:4e:cc:69:bd:e8:fd:56:2e:4e:5d:27:dd: 42:9d:06:ec:70:c0:fa:b7:79:8a:bc:31:57:a4:28:aa:db:7f: 8d:c0:66:c2:d8:7d:33:5b:7a:e5:6f:47:23:e0:48:40:42:a8: 09:32:cc:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM4QzQxMTAvBgNVBAUTKDkzN0Q5OTUxRUUxRjkzRkNBQzI0MzMzQjA4M0Y5RDdG MkUzOUYwRjkwHhcNMjUxMDEyMjEzNzI5WhcNMjUxMDE5MjEzNzI5WjAYMRYwFAYD VQQDEw02OGVjMWY5OS01MjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA27uCVQzebI+sXLcB+AWhPUwU8oldV3fPKcWpWKGvyRzKVBHwZ++PRz9wFDUh Br+WrdvvVhxEKHE+yrWbNBwElllm+1SuJG4IJ7hLtPkWiXQiocMUwwSNB+bkyb6J 6BweNQR8/m+PQsHCKstZunHYKD5Zbq9nSID6VcFE5gEgMRXghf0fNKBH06vthVGm Tasg2JYaBTm+Cb/xKeKDxDQVF26Tx6RSQRri4mGaOkKAG9XyPg6f39nf0w0ZFxFE 16i9j/D+FnqQ6fJKmrWxeaS4ZXvtXvsilmUNGmjR8tYp0EHVyHXPRS4RdzrKpcBy 6OnNXke5N6cn/qPXk25ovYLDAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7vqmj5 hgeMx2TB3kT5OFZvSUqgMB8GA1UdIwQYMBaAFJN9mVHuH5P8rCQzOwg/nX8uOfD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzhDNC9DMjQ0QzgzQUJE MTUxMUVBQUJERUIwMURDNEY5QUUwMi9rMzJaVWU0ZmtfeXNKRE03Q0QtZGZ5NDU4 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2szMlpVZTRma195c0pETTdDRC1kZnk0NThQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzhDNC9DMjQ0QzgzQUJEMTUxMUVBQUJERUIwMURDNEY5QUUwMi9rMzJaVWU0Zmtf eXNKRE03Q0QtZGZ5NDU4UGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT4VU0bJNjdP9qFcYVFMLrNOM35gnEhZjq7x3QZu4TaBVeQnuTToF0 YhjcQGLA+PPHA8mRglN0OsBqu9KQ4knuOuYEacSWto6gBYV7exrRD2FAURy/9Cue xIziYSJzNht4K70EcbQy2lVpPfhNHW0HQ1QaH+5xner9FrJUTt+XSH/sL4Z02ybH NmMXKtblzQsZPus+ESi/VrEFyNSKmsUuiDZIg9DEDgNWZh405UD7ngSkue4Luc06 O+Dj/ZsrN8RaFadMYhojF58p0PROzGm96P1WLk5dJ91CnQbscMD6t3mKvDFXpCiq 23+NwGbC2H0zW3rlb0cj4EhAQqgJMsz9 -----END CERTIFICATE-----Generated at Tue Oct 14 16:28:01 2025 by rpki-client