$ rpki-client -vvf rpki.apnic.net/member_repository/A915479A/24A48388E37911EFB4666B31C4F9AE02/DS1vMynFa_bo-UG9_adJbb4lMOU.mft File: DS1vMynFa_bo-UG9_adJbb4lMOU.mft (raw, json) Hash identifier: 8ehGJq+QaWDkWJcAtqpBJWro7mqkFVle/C6LBYT1yT4= Subject key identifier: 57:A0:F8:E7:78:CB:81:F9:B1:F1:ED:B2:47:E8:E3:95:C6:5E:D2:CB Authority key identifier: 0D:2D:6F:33:29:C5:6B:F6:E8:F9:41:BD:FD:A7:49:6D:BE:25:30:E5 Certificate issuer: /CN=A915479A/serialNumber=0D2D6F3329C56BF6E8F941BDFDA7496DBE2530E5 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/DS1vMynFa_bo-UG9_adJbb4lMOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915479A/24A48388E37911EFB4666B31C4F9AE02/DS1vMynFa_bo-UG9_adJbb4lMOU.mft Manifest number: 8B Signing time: Wed 05 Nov 2025 06:44:44 +0000 Manifest this update: Wed 05 Nov 2025 06:44:43 +0000 Manifest next update: Wed 12 Nov 2025 06:44:43 +0000 Files and hashes: 1: DS1vMynFa_bo-UG9_adJbb4lMOU.crl (hash: 29UrIeTXhN7D/b1DobOxrP/nAnOSBxGaYVYqfNjNVWo=) 2: 8836D872E37B11EFB4D75458C4F9AE02.roa (hash: SXO1+0APe7z5DY3Hw4Iwvndpe+8U4RSEIeHcUiLcev8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915479A/24A48388E37911EFB4666B31C4F9AE02/DS1vMynFa_bo-UG9_adJbb4lMOU.crl rsync://rpki.apnic.net/member_repository/A915479A/24A48388E37911EFB4666B31C4F9AE02/DS1vMynFa_bo-UG9_adJbb4lMOU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/DS1vMynFa_bo-UG9_adJbb4lMOU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:44:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915479A, serialNumber=0D2D6F3329C56BF6E8F941BDFDA7496DBE2530E5 Validity Not Before: Nov 5 06:44:43 2025 GMT Not After : Nov 12 06:44:43 2025 GMT Subject: CN=690af25b-f8db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1b:3f:9c:92:e8:84:82:f8:77:a7:55:4a:2e: d8:62:c7:4e:5e:96:8a:07:87:9c:4b:5f:9c:ce:b0: 1a:25:76:ed:6d:ef:87:ae:1d:97:d3:76:2a:51:93: 86:37:9d:86:95:cd:c9:87:fa:fa:6b:95:75:7f:45: c9:7f:ac:c0:e9:54:93:a6:9b:1d:8e:79:9c:bc:42: 0d:94:ab:7c:08:7c:be:d7:fe:51:6b:ec:f3:f8:96: 64:73:9c:0c:b9:2b:0e:d6:a7:52:d7:73:95:48:df: 7e:b7:03:dd:23:49:fc:38:24:ba:05:3d:8f:4b:91: dc:9a:6e:ba:06:12:ab:a8:2e:28:52:e1:ee:39:a8: ca:24:bb:e9:9c:b6:30:1a:f5:e2:2e:7b:64:41:5c: bc:90:d0:cd:4a:34:3a:d1:cd:1d:80:8b:fc:5a:82: 80:2a:e8:4a:4b:cb:c7:c0:46:e6:85:a9:90:1f:4a: 82:ef:75:58:49:37:08:3a:ee:b5:cd:bf:1a:70:8b: c2:d5:e4:49:3b:61:86:cc:8e:76:bb:4f:fd:bc:ad: 77:61:38:3c:e0:19:8b:aa:ae:bb:de:9b:09:8f:9c: c3:0d:19:c7:13:18:d6:01:a8:77:08:ef:2c:d5:4d: 32:c0:3f:6f:08:9a:09:89:46:37:83:c8:f1:e6:59: ad:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:A0:F8:E7:78:CB:81:F9:B1:F1:ED:B2:47:E8:E3:95:C6:5E:D2:CB X509v3 Authority Key Identifier: keyid:0D:2D:6F:33:29:C5:6B:F6:E8:F9:41:BD:FD:A7:49:6D:BE:25:30:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915479A/24A48388E37911EFB4666B31C4F9AE02/DS1vMynFa_bo-UG9_adJbb4lMOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/DS1vMynFa_bo-UG9_adJbb4lMOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915479A/24A48388E37911EFB4666B31C4F9AE02/DS1vMynFa_bo-UG9_adJbb4lMOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:3c:56:48:2b:c9:99:8c:1b:28:76:d1:04:bb:7b:1c:1f:02: 65:e6:18:e1:fb:93:51:b1:37:45:5d:2c:16:f1:10:40:37:70: 41:af:1f:fa:34:48:75:43:27:53:3f:95:14:0f:f0:4f:62:2f: 70:54:2b:22:1d:c6:28:03:e8:9e:2b:ce:ce:96:89:2a:2a:6f: 20:24:98:56:5f:b4:0a:67:09:28:31:ff:13:78:eb:92:0d:60: 03:ea:ba:87:f6:86:16:81:1c:ea:38:fa:59:d3:fb:f0:0d:46: c9:8d:30:e5:06:fa:52:fb:18:75:64:65:aa:ad:b1:b0:d7:b1: c5:a9:a2:09:d9:f6:e7:46:04:b4:c3:21:79:28:ac:b4:58:c8: 5f:ef:ab:86:fd:d5:3b:25:26:e2:9e:32:1f:3e:2b:d1:d9:d2: 3f:0f:a4:e7:90:01:75:60:4d:2d:d9:66:52:9c:5a:4f:42:61: 77:be:c9:93:78:f3:e8:41:30:95:2e:89:5e:93:6b:58:8d:49: 4c:c6:55:84:df:44:b6:dd:88:6f:a6:b1:86:ff:39:dd:e1:f3: 2d:1e:b0:b5:7c:ff:25:e6:8e:fe:94:78:e0:bc:8a:25:d8:8f: a5:f8:33:72:08:88:4f:86:19:e1:8e:75:fc:84:b4:f4:0f:c3: 07:c1:05:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ3OUExMTAvBgNVBAUTKDBEMkQ2RjMzMjlDNTZCRjZFOEY5NDFCREZEQTc0OTZE QkUyNTMwRTUwHhcNMjUxMTA1MDY0NDQzWhcNMjUxMTEyMDY0NDQzWjAYMRYwFAYD VQQDEw02OTBhZjI1Yi1mOGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxs/nJLohIL4d6dVSi7YYsdOXpaKB4ecS1+czrAaJXbtbe+Hrh2X03YqUZOG N52Glc3Jh/r6a5V1f0XJf6zA6VSTppsdjnmcvEINlKt8CHy+1/5Ra+zz+JZkc5wM uSsO1qdS13OVSN9+twPdI0n8OCS6BT2PS5Hcmm66BhKrqC4oUuHuOajKJLvpnLYw GvXiLntkQVy8kNDNSjQ60c0dgIv8WoKAKuhKS8vHwEbmhamQH0qC73VYSTcIOu61 zb8acIvC1eRJO2GGzI52u0/9vK13YTg84BmLqq673psJj5zDDRnHExjWAah3CO8s 1U0ywD9vCJoJiUY3g8jx5lmt+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFeg+Od4 y4H5sfHtskfo45XGXtLLMB8GA1UdIwQYMBaAFA0tbzMpxWv26PlBvf2nSW2+JTDl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDc5QS8yNEE0ODM4OEUz NzkxMUVGQjQ2NjZCMzFDNEY5QUUwMi9EUzF2TXluRmFfYm8tVUc5X2FkSmJiNGxN T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0RTMXZNeW5GYV9iby1VRzlfYWRKYmI0bE1PVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDc5QS8yNEE0ODM4OEUzNzkxMUVGQjQ2NjZCMzFDNEY5QUUwMi9EUzF2TXluRmFf Ym8tVUc5X2FkSmJiNGxNT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIPFZIK8mZjBsodtEEu3scHwJl5hjh+5NRsTdFXSwW8RBAN3BBrx/6 NEh1QydTP5UUD/BPYi9wVCsiHcYoA+ieK87OlokqKm8gJJhWX7QKZwkoMf8TeOuS DWAD6rqH9oYWgRzqOPpZ0/vwDUbJjTDlBvpS+xh1ZGWqrbGw17HFqaIJ2fbnRgS0 wyF5KKy0WMhf76uG/dU7JSbinjIfPivR2dI/D6TnkAF1YE0t2WZSnFpPQmF3vsmT ePPoQTCVLolek2tYjUlMxlWE30S23YhvprGG/znd4fMtHrC1fP8l5o7+lHjgvIol 2I+l+DNyCIhPhhnhjnX8hLT0D8MHwQVT -----END CERTIFICATE-----Generated at Wed Nov 5 11:05:02 2025 by rpki-client