$ rpki-client -vvf rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.mft File: sdV2wMeOXPWNSDeibJJjxj8TFd0.mft (raw, json) Hash identifier: Sd2b4nPd/pMmLB8rF/z+zdDrLTtKFDecEWTqpEszYkk= Subject key identifier: 96:F4:8A:5D:1F:57:11:9E:F4:8F:A0:FB:43:8C:F7:3A:CE:37:E1:64 Authority key identifier: B1:D5:76:C0:C7:8E:5C:F5:8D:48:37:A2:6C:92:63:C6:3F:13:15:DD Certificate issuer: /CN=A914EB5A/serialNumber=B1D576C0C78E5CF58D4837A26C9263C63F1315DD Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sdV2wMeOXPWNSDeibJJjxj8TFd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.mft Manifest number: 015C Signing time: Wed 05 Nov 2025 04:13:27 +0000 Manifest this update: Wed 05 Nov 2025 04:13:26 +0000 Manifest next update: Wed 12 Nov 2025 04:13:26 +0000 Files and hashes: 1: sdV2wMeOXPWNSDeibJJjxj8TFd0.crl (hash: KpNtfVnDBan0vVqvBWMBROLmj3T1dXVEun1Bnl4a/Fw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.crl rsync://rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sdV2wMeOXPWNSDeibJJjxj8TFd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:13:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EB5A, serialNumber=B1D576C0C78E5CF58D4837A26C9263C63F1315DD Validity Not Before: Nov 5 04:13:26 2025 GMT Not After : Nov 12 04:13:26 2025 GMT Subject: CN=690acee7-411b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:60:82:d2:b1:f0:42:6f:f7:39:83:00:b7:f6: b0:d7:0b:89:70:20:60:65:37:3e:95:ce:fe:5f:a2: eb:b1:72:7c:d4:ba:33:ed:47:ce:61:d3:9e:29:30: 0d:5d:62:2d:f7:6e:bd:6f:49:fc:6a:c5:78:0c:bf: 97:f1:36:24:43:89:41:54:02:b0:11:f8:56:d8:d2: 86:6e:e6:9d:c5:5f:c6:d2:99:b8:21:e5:7a:48:c0: a0:c4:86:21:35:7f:6c:2b:71:83:16:2a:57:f1:86: 13:67:94:b8:e4:6f:7e:97:02:c7:71:55:8e:06:34: 72:92:19:8d:a7:57:2e:74:8b:8e:99:63:61:6d:db: 9d:a3:e8:82:85:55:2c:27:b6:c6:f1:0e:71:40:74: 10:ea:a0:33:72:9d:d0:88:d6:5d:ec:14:81:ea:7b: 6a:c7:cb:8a:d5:ac:8a:73:aa:9b:bb:1d:f2:69:62: 9e:e7:95:67:46:9b:7a:ab:fd:3a:e2:26:01:1b:90: fa:8f:aa:a8:d4:9e:ee:4f:ab:95:33:60:6b:b2:db: 0f:f2:a5:bd:dc:74:f7:c0:3a:46:74:4e:9f:c7:83: eb:3f:e8:62:97:8d:7a:65:c1:b4:da:26:9e:d2:b6: 7e:e7:77:eb:06:a3:e9:14:55:04:80:72:55:64:2b: 18:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:F4:8A:5D:1F:57:11:9E:F4:8F:A0:FB:43:8C:F7:3A:CE:37:E1:64 X509v3 Authority Key Identifier: keyid:B1:D5:76:C0:C7:8E:5C:F5:8D:48:37:A2:6C:92:63:C6:3F:13:15:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sdV2wMeOXPWNSDeibJJjxj8TFd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:5e:cd:83:4d:a3:0a:36:13:27:46:3b:fc:5e:5c:a3:2c:e0: 65:cb:89:12:4f:06:43:45:e4:b6:13:91:63:3e:1a:7c:7f:97: 8b:b2:ce:71:f5:7d:4a:38:e5:49:de:ec:b3:c2:3b:94:32:d9: 26:4a:fd:78:80:57:65:32:aa:bd:45:99:d7:47:2f:e7:dc:72: c9:ff:69:af:28:16:4c:06:ae:17:72:f3:1e:6c:a6:62:bb:84: b5:5a:35:4a:90:4b:84:af:23:a2:5b:b8:b6:ad:66:7e:7a:61: 7f:0b:7d:8a:2a:e4:cb:9a:38:a6:c2:4b:82:27:89:50:a4:36: be:07:af:b6:04:16:99:bf:d0:6b:e1:07:d3:a1:8a:38:fe:39: 28:00:1e:26:5f:75:eb:d3:0b:f3:7e:32:5f:e8:34:da:d0:e1: 5f:70:61:da:72:0e:b6:a4:3f:b1:65:49:ca:cd:f7:81:2d:97: 9f:43:11:c8:e1:8a:61:b1:ac:e2:18:f9:94:aa:b6:c0:fb:95: ac:48:69:44:6d:fd:9d:ea:44:6d:b7:9f:42:20:dd:ef:1c:60: 34:e4:ec:05:d7:66:d3:e4:38:10:d2:ce:a6:02:f4:6c:f1:64: dc:8f:cb:98:f8:d2:01:7c:8f:de:4a:52:40:d0:84:2e:ed:6f: 11:e2:86:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVCNUExMTAvBgNVBAUTKEIxRDU3NkMwQzc4RTVDRjU4RDQ4MzdBMjZDOTI2M0M2 M0YxMzE1REQwHhcNMjUxMTA1MDQxMzI2WhcNMjUxMTEyMDQxMzI2WjAYMRYwFAYD VQQDEw02OTBhY2VlNy00MTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2CC0rHwQm/3OYMAt/aw1wuJcCBgZTc+lc7+X6LrsXJ81Loz7UfOYdOeKTAN XWIt9269b0n8asV4DL+X8TYkQ4lBVAKwEfhW2NKGbuadxV/G0pm4IeV6SMCgxIYh NX9sK3GDFipX8YYTZ5S45G9+lwLHcVWOBjRykhmNp1cudIuOmWNhbdudo+iChVUs J7bG8Q5xQHQQ6qAzcp3QiNZd7BSB6ntqx8uK1ayKc6qbux3yaWKe55VnRpt6q/06 4iYBG5D6j6qo1J7uT6uVM2BrstsP8qW93HT3wDpGdE6fx4PrP+hil416ZcG02iae 0rZ+53frBqPpFFUEgHJVZCsYbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJb0il0f VxGe9I+g+0OM9zrON+FkMB8GA1UdIwQYMBaAFLHVdsDHjlz1jUg3omySY8Y/ExXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUI1QS83QzA3NUUxOEEz QjMxMUVFQUQ2NjI5MTlDNEY5QUUwMi9zZFYyd01lT1hQV05TRGVpYkpKanhqOFRG ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NkVjJ3TWVPWFBXTlNEZWliSkpqeGo4VEZkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUI1QS83QzA3NUUxOEEzQjMxMUVFQUQ2NjI5MTlDNEY5QUUwMi9zZFYyd01lT1hQ V05TRGVpYkpKanhqOFRGZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0Xs2DTaMKNhMnRjv8XlyjLOBly4kSTwZDReS2E5FjPhp8f5eLss5x 9X1KOOVJ3uyzwjuUMtkmSv14gFdlMqq9RZnXRy/n3HLJ/2mvKBZMBq4XcvMebKZi u4S1WjVKkEuEryOiW7i2rWZ+emF/C32KKuTLmjimwkuCJ4lQpDa+B6+2BBaZv9Br 4QfToYo4/jkoAB4mX3Xr0wvzfjJf6DTa0OFfcGHacg62pD+xZUnKzfeBLZefQxHI 4YphsaziGPmUqrbA+5WsSGlEbf2d6kRtt59CIN3vHGA05OwF12bT5DgQ0s6mAvRs 8WTcj8uY+NIBfI/eSlJA0IQu7W8R4obH -----END CERTIFICATE-----Generated at Wed Nov 5 12:05:06 2025 by rpki-client