$ rpki-client -vvf rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.mft File: MkK64Aup8N9Ontpv5cCPEp-RaIE.mft (raw, json) Hash identifier: swVpEumjCjVz3w7l2XKVS4cpAnuplro9GfLcX4cvDLg= Subject key identifier: 41:8C:76:74:09:8E:E2:99:91:36:72:6A:78:19:91:50:65:09:37:F4 Authority key identifier: 32:42:BA:E0:0B:A9:F0:DF:4E:9E:DA:6F:E5:C0:8F:12:9F:91:68:81 Certificate issuer: /CN=A912B0A3/serialNumber=3242BAE00BA9F0DF4E9EDA6FE5C08F129F916881 Certificate serial: 0817 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkK64Aup8N9Ontpv5cCPEp-RaIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.mft Manifest number: 080C Signing time: Sun 02 Nov 2025 21:00:23 +0000 Manifest this update: Sun 02 Nov 2025 21:00:23 +0000 Manifest next update: Sun 09 Nov 2025 21:00:23 +0000 Files and hashes: 1: MkK64Aup8N9Ontpv5cCPEp-RaIE.crl (hash: CsOIwz+DUdnj9Ofau7nfW1HcBGgS/i6veVs3YxgNZGk=) 2: F0B154E6085A11EBA6864D71C4F9AE02.roa (hash: LwB2LqDOhHIBTqs2GBEUbqXjt3VBU4kWjANTbQ1spqo=) 3: 73DDDA0206FF11ED8C6B565FC4F9AE02.roa (hash: +6R7bMqMqpzAOMYELOdkWclWKRtU/auj18n3CAr0V2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.crl rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkK64Aup8N9Ontpv5cCPEp-RaIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2071 (0x817) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B0A3, serialNumber=3242BAE00BA9F0DF4E9EDA6FE5C08F129F916881 Validity Not Before: Nov 2 21:00:23 2025 GMT Not After : Nov 9 21:00:23 2025 GMT Subject: CN=6907c667-091d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2d:78:bf:34:99:19:22:d4:f7:8e:3a:7d:ab: 48:d3:97:de:cb:09:57:75:4d:85:8c:3d:f4:fa:48: 1a:77:e4:b0:7a:1a:d5:07:64:a9:9b:d6:97:41:73: 05:0a:65:8c:8f:76:dc:dc:3b:5a:85:96:40:fb:9f: 1c:d8:e2:85:14:3a:13:b5:49:e3:34:51:4b:f3:31: a5:1f:b6:57:55:5b:2c:25:de:04:09:8d:b9:61:1d: f3:32:2c:d3:b9:87:48:07:38:7c:ba:c5:2f:1b:db: 01:26:75:68:42:e4:20:2e:b0:36:c2:98:85:99:35: fd:62:d2:cc:40:25:59:ae:38:3a:d5:30:ac:48:e3: f0:39:8d:b9:a1:f4:b4:2a:01:57:75:5e:ee:4f:1a: c1:c1:43:55:af:88:bc:87:b9:1e:26:a3:e3:3b:2c: 9a:81:fb:cd:7f:17:88:d0:ad:e2:4d:3f:54:f8:7b: 1c:ab:f5:0c:e0:44:91:23:f7:25:7c:02:b1:50:0a: 59:ae:74:8b:01:bb:8f:a7:d9:d5:8d:4a:37:a6:e5: f8:2b:08:55:6f:50:c7:83:f5:42:59:44:df:52:c3: f4:c9:fb:48:2b:63:ae:87:39:85:56:1f:d6:f5:bd: 83:9e:26:59:ad:60:ab:43:10:68:37:ef:e2:07:cf: 45:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:8C:76:74:09:8E:E2:99:91:36:72:6A:78:19:91:50:65:09:37:F4 X509v3 Authority Key Identifier: keyid:32:42:BA:E0:0B:A9:F0:DF:4E:9E:DA:6F:E5:C0:8F:12:9F:91:68:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkK64Aup8N9Ontpv5cCPEp-RaIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B0A3/754545BC03B711EB97FBE568C4F9AE02/MkK64Aup8N9Ontpv5cCPEp-RaIE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:78:27:f6:dc:b8:ea:8c:0c:61:3d:3d:53:8f:9a:bc:b4:70: 1c:25:44:7b:cd:c6:24:14:48:ae:dd:f5:88:92:81:8f:ba:3b: bb:96:ea:c8:69:be:f1:f7:98:09:80:13:95:07:c8:ee:e0:3a: 76:34:aa:33:6e:86:ca:f9:67:f5:e1:e7:6f:3f:d6:98:9a:ef: f3:c1:1c:b1:67:5a:67:e0:9c:26:18:4f:bd:a3:2b:96:23:32: dd:69:3a:06:37:a5:e7:01:46:29:07:52:10:16:2f:d6:09:1a: 55:b7:c5:a6:03:5d:31:27:bb:10:3c:06:a4:26:64:48:35:87: 32:37:12:e0:3c:56:2d:d7:c0:1e:f8:14:b4:ce:e3:ab:5a:28: f6:2e:3e:17:fc:81:98:19:57:42:45:d7:b3:8f:05:7c:2a:c2: 4e:19:4d:11:09:61:d3:ad:ea:fc:39:73:61:6f:a1:19:43:6e: 79:10:ee:25:6e:ac:5f:95:78:20:0b:34:4d:a6:fa:4f:0c:cd: fc:66:83:d4:d5:87:d7:dd:64:ca:ec:c6:b4:6f:ee:72:44:67: ca:83:1e:97:30:bb:61:0b:29:73:fc:e1:87:51:6c:b0:90:c9: c0:72:7e:83:99:b5:4c:bd:a9:07:20:f3:b1:2d:35:b3:19:e6: 3e:a0:47:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIwQTMxMTAvBgNVBAUTKDMyNDJCQUUwMEJBOUYwREY0RTlFREE2RkU1QzA4RjEy OUY5MTY4ODEwHhcNMjUxMTAyMjEwMDIzWhcNMjUxMTA5MjEwMDIzWjAYMRYwFAYD VQQDEw02OTA3YzY2Ny0wOTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvC14vzSZGSLU9446fatI05feywlXdU2FjD30+kgad+SwehrVB2Spm9aXQXMF CmWMj3bc3DtahZZA+58c2OKFFDoTtUnjNFFL8zGlH7ZXVVssJd4ECY25YR3zMizT uYdIBzh8usUvG9sBJnVoQuQgLrA2wpiFmTX9YtLMQCVZrjg61TCsSOPwOY25ofS0 KgFXdV7uTxrBwUNVr4i8h7keJqPjOyyagfvNfxeI0K3iTT9U+Hscq/UM4ESRI/cl fAKxUApZrnSLAbuPp9nVjUo3puX4KwhVb1DHg/VCWUTfUsP0yftIK2OuhzmFVh/W 9b2DniZZrWCrQxBoN+/iB89FBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEGMdnQJ juKZkTZyangZkVBlCTf0MB8GA1UdIwQYMBaAFDJCuuALqfDfTp7ab+XAjxKfkWiB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjBBMy83NTQ1NDVCQzAz QjcxMUVCOTdGQkU1NjhDNEY5QUUwMi9Na0s2NEF1cDhOOU9udHB2NWNDUEVwLVJh SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01rSzY0QXVwOE45T250cHY1Y0NQRXAtUmFJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjBBMy83NTQ1NDVCQzAzQjcxMUVCOTdGQkU1NjhDNEY5QUUwMi9Na0s2NEF1cDhO OU9udHB2NWNDUEVwLVJhSUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmeCf23LjqjAxhPT1Tj5q8tHAcJUR7zcYkFEiu3fWIkoGPuju7lurI ab7x95gJgBOVB8ju4Dp2NKozbobK+Wf14edvP9aYmu/zwRyxZ1pn4JwmGE+9oyuW IzLdaToGN6XnAUYpB1IQFi/WCRpVt8WmA10xJ7sQPAakJmRINYcyNxLgPFYt18Ae +BS0zuOrWij2Lj4X/IGYGVdCRdezjwV8KsJOGU0RCWHTrer8OXNhb6EZQ255EO4l bqxflXggCzRNpvpPDM38ZoPU1YfX3WTK7Ma0b+5yRGfKgx6XMLthCylz/OGHUWyw kMnAcn6DmbVMvakHIPOxLTWzGeY+oEdc -----END CERTIFICATE-----Generated at Tue Nov 4 19:00:33 2025 by rpki-client