$ rpki-client -vvf rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft File: f30yDyoH5DPdvf4oV_XTGTVFF7k.mft (raw, json) Hash identifier: jONBAjOjnTTRuON5gHEtBaUwLB4y2wj89d0hklrVdeE= Subject key identifier: 34:6C:6A:80:5C:0C:A6:F7:34:06:8F:C3:10:36:D9:7F:7C:1E:5B:D7 Authority key identifier: 7F:7D:32:0F:2A:07:E4:33:DD:BD:FE:28:57:F5:D3:19:35:45:17:B9 Certificate issuer: /CN=A914877B/serialNumber=7F7D320F2A07E433DDBDFE2857F5D319354517B9 Certificate serial: 0C23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f30yDyoH5DPdvf4oV_XTGTVFF7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft Manifest number: 0C1C Signing time: Tue 04 Nov 2025 18:49:34 +0000 Manifest this update: Tue 04 Nov 2025 18:49:33 +0000 Manifest next update: Tue 11 Nov 2025 18:49:33 +0000 Files and hashes: 1: f30yDyoH5DPdvf4oV_XTGTVFF7k.crl (hash: Rz0394j2dY007eUxs6xkfCghtQ3B6ZdIPqJv5A8Tpgg=) 2: 800676321BD311EAA341A62DC4F9AE02.roa (hash: RHZCYYPvQQbME4QEcXK5NVornLFSgAMnD5MRoiwlBuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.crl rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f30yDyoH5DPdvf4oV_XTGTVFF7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:49:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3107 (0xc23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914877B, serialNumber=7F7D320F2A07E433DDBDFE2857F5D319354517B9 Validity Not Before: Nov 4 18:49:33 2025 GMT Not After : Nov 11 18:49:33 2025 GMT Subject: CN=690a4abd-dbaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:91:21:e6:f9:c8:0b:c0:d1:44:86:9c:c2:81: ac:56:b5:51:26:fe:bb:8d:26:17:05:ad:90:22:95: 9c:a7:70:f8:f1:6a:9c:b6:af:10:f7:df:79:ef:cc: 24:6e:11:36:4e:d6:ef:bf:cb:1a:35:16:7d:eb:b6: c9:88:c1:c0:f0:17:0c:da:e5:c7:63:f5:30:3c:40: 47:29:0b:0e:45:2a:82:ed:53:ae:af:cc:74:f6:ca: 6a:18:79:a1:d0:6e:0f:44:23:6e:5a:ef:f4:2e:52: 43:5f:20:ad:1a:fe:44:dd:6a:12:48:c9:86:ac:a7: 5a:01:d2:0a:d7:9b:eb:20:d0:23:1d:5c:49:03:68: 97:4b:b6:66:e0:42:59:96:dd:1a:bf:3f:a2:56:cd: be:41:f5:63:7b:e2:1b:fd:8f:4a:75:7d:75:d3:99: 27:09:10:fe:0b:89:b7:01:08:f1:aa:d1:ac:4d:6f: 99:86:6b:27:d0:eb:7e:7d:46:da:5d:e5:67:9a:36: 15:16:31:d4:88:d8:b6:d9:87:fc:03:e5:27:ff:65: 4c:d8:89:43:f8:4e:b6:3b:a1:8c:08:47:23:87:72: 9a:5c:2c:77:11:64:2e:05:b3:a5:2b:b7:a8:9a:b8: 9c:3f:53:b0:29:8c:11:5d:41:1e:34:78:9d:51:89: c4:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:6C:6A:80:5C:0C:A6:F7:34:06:8F:C3:10:36:D9:7F:7C:1E:5B:D7 X509v3 Authority Key Identifier: keyid:7F:7D:32:0F:2A:07:E4:33:DD:BD:FE:28:57:F5:D3:19:35:45:17:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f30yDyoH5DPdvf4oV_XTGTVFF7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:ec:4f:0f:e1:cc:ef:57:09:2e:e0:70:9e:ef:fd:ef:41:3d: 2a:b8:de:44:20:79:1f:e0:65:3f:e7:a8:3f:51:4f:b5:c3:c7: cf:e3:53:dc:76:86:af:86:b4:a4:20:d8:56:17:2f:e6:41:9a: ce:8e:83:e5:29:36:fa:06:16:77:1a:17:6b:66:c0:e5:78:13: 8c:82:8d:2e:b6:5e:b9:30:68:29:eb:af:6a:98:39:25:5f:e5: 6c:95:87:67:a0:2d:57:90:16:20:52:2c:37:f0:06:30:ee:c3: 90:2d:28:81:e1:28:3f:9b:75:e5:db:2c:8c:e7:a3:75:fd:96: 82:2e:e9:a2:20:bf:60:e8:1f:c5:84:64:be:dc:ca:1b:ca:6b: 25:e6:ee:76:16:02:39:57:4f:6c:87:00:06:fc:24:0a:aa:0e: fe:0e:4d:7e:c5:85:59:bb:a1:6e:2b:95:c1:b6:48:d4:c1:20: 63:24:19:65:a8:c5:b2:b9:a2:5b:21:1f:24:e1:f5:c1:dd:c6: 05:f1:b0:f7:0a:70:b6:ae:65:cf:92:a5:44:74:34:58:5a:31: cb:1c:40:ca:ad:fe:86:c9:4e:b1:b7:ce:3c:64:b3:13:19:90: 26:a1:05:6a:05:99:66:2c:b6:f9:6d:55:25:42:fc:c8:ea:90: b3:07:08:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg3N0IxMTAvBgNVBAUTKDdGN0QzMjBGMkEwN0U0MzNEREJERkUyODU3RjVEMzE5 MzU0NTE3QjkwHhcNMjUxMTA0MTg0OTMzWhcNMjUxMTExMTg0OTMzWjAYMRYwFAYD VQQDEw02OTBhNGFiZC1kYmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5pEh5vnIC8DRRIacwoGsVrVRJv67jSYXBa2QIpWcp3D48Wqctq8Q999578wk bhE2Ttbvv8saNRZ967bJiMHA8BcM2uXHY/UwPEBHKQsORSqC7VOur8x09spqGHmh 0G4PRCNuWu/0LlJDXyCtGv5E3WoSSMmGrKdaAdIK15vrINAjHVxJA2iXS7Zm4EJZ lt0avz+iVs2+QfVje+Ib/Y9KdX1105knCRD+C4m3AQjxqtGsTW+Zhmsn0Ot+fUba XeVnmjYVFjHUiNi22Yf8A+Un/2VM2IlD+E62O6GMCEcjh3KaXCx3EWQuBbOlK7eo mricP1OwKYwRXUEeNHidUYnEewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRsaoBc DKb3NAaPwxA22X98HlvXMB8GA1UdIwQYMBaAFH99Mg8qB+Qz3b3+KFf10xk1RRe5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODc3Qi8yNTkxMDExRTFC RDIxMUVBQUJEMEVFMkFDNEY5QUUwMi9mMzB5RHlvSDVEUGR2ZjRvVl9YVEdUVkZG N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YzMHlEeW9INURQZHZmNG9WX1hUR1RWRkY3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODc3Qi8yNTkxMDExRTFCRDIxMUVBQUJEMEVFMkFDNEY5QUUwMi9mMzB5RHlvSDVE UGR2ZjRvVl9YVEdUVkZGN2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCW7E8P4czvVwku4HCe7/3vQT0quN5EIHkf4GU/56g/UU+1w8fP41Pc doavhrSkINhWFy/mQZrOjoPlKTb6BhZ3GhdrZsDleBOMgo0utl65MGgp669qmDkl X+VslYdnoC1XkBYgUiw38AYw7sOQLSiB4Sg/m3Xl2yyM56N1/ZaCLumiIL9g6B/F hGS+3Mobymsl5u52FgI5V09shwAG/CQKqg7+Dk1+xYVZu6FuK5XBtkjUwSBjJBll qMWyuaJbIR8k4fXB3cYF8bD3CnC2rmXPkqVEdDRYWjHLHEDKrf6GyU6xt848ZLMT GZAmoQVqBZlmLLb5bVUlQvzI6pCzBwil -----END CERTIFICATE-----Generated at Wed Nov 5 22:34:38 2025 by rpki-client