$ rpki-client -vvf rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft File: rMARlDOHfwx0KFe46lIPjaTtCVo.mft (raw, json) Hash identifier: s5GjeWwR21vZ/R0TooO7HPQ0NCfkRKibrEOItJxNys8= Subject key identifier: 70:32:96:E2:4E:D9:6E:81:27:5B:4B:02:47:37:CC:32:7E:AA:51:ED Authority key identifier: AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A Certificate issuer: /CN=A915A5E7/serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Certificate serial: 06A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft Manifest number: 069E Signing time: Sun 02 Nov 2025 22:19:06 +0000 Manifest this update: Sun 02 Nov 2025 22:19:06 +0000 Manifest next update: Sun 09 Nov 2025 22:19:06 +0000 Files and hashes: 1: rMARlDOHfwx0KFe46lIPjaTtCVo.crl (hash: +aAugeXg5xSPQepl6znycwEsOU0X46rZ3uVQls2DjJg=) 2: 1E1A1DB28C6A11EB91832D52C4F9AE02.roa (hash: 6Nwx6Bdy1j4/Wbla1onGos1GwfTZf0C7yW2rjUd5bAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:19:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1703 (0x6a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A5E7, serialNumber=ACC0119433877F0C742857B8EA520F8DA4ED095A Validity Not Before: Nov 2 22:19:06 2025 GMT Not After : Nov 9 22:19:06 2025 GMT Subject: CN=6907d8da-9047 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:79:43:3c:94:fb:8f:0c:6a:ca:e9:8b:b7:93: 4e:c7:82:9c:e5:0c:da:bb:55:95:ab:d7:3c:d9:02: a6:7a:4f:61:9d:29:ed:b2:c3:4c:a5:db:63:f8:22: 0a:90:6b:5e:8e:21:02:58:d7:65:55:39:98:9c:fb: db:ee:28:77:06:b8:5b:ac:e8:6a:c2:ab:79:19:3a: 92:fd:c9:9e:8c:05:5c:9f:2d:f3:a0:5e:c4:0d:27: 3d:ac:ed:e6:07:9e:e2:94:9f:dd:1a:20:24:54:2a: 89:6e:0e:dd:e1:f8:19:13:24:6a:2e:c8:bc:9f:00: 54:3b:e1:d4:af:0a:22:93:75:03:be:df:9e:04:5d: be:62:cf:5c:00:bf:b0:35:a9:02:76:13:85:b8:16: 95:67:9f:de:b8:e4:22:5b:2f:7a:d7:7f:90:d4:96: 05:9e:61:c2:9d:28:3f:d7:c9:1c:1b:f6:be:75:94: b5:24:b3:22:ef:f6:85:e2:ce:0f:d7:97:ed:2b:c1: b5:de:19:60:89:ec:94:fb:6f:10:71:a9:65:36:e9: 7e:16:e2:57:d1:f2:6c:21:53:29:ff:94:d3:68:a0: ac:f2:a5:8c:17:a1:80:bf:c5:1f:ff:a3:2c:14:08: 35:30:64:89:8c:c5:0b:37:cb:da:86:b0:11:ad:71: 69:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:32:96:E2:4E:D9:6E:81:27:5B:4B:02:47:37:CC:32:7E:AA:51:ED X509v3 Authority Key Identifier: keyid:AC:C0:11:94:33:87:7F:0C:74:28:57:B8:EA:52:0F:8D:A4:ED:09:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rMARlDOHfwx0KFe46lIPjaTtCVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A5E7/E959DC768C6811EB87042D51C4F9AE02/rMARlDOHfwx0KFe46lIPjaTtCVo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:bf:a6:e5:92:b5:1a:5d:a1:a0:75:cd:e3:ec:1b:12:64:ff: 0a:4f:e6:4d:3b:46:b7:bf:68:7a:66:51:1e:cc:4d:48:7c:c3: 4f:a3:e1:e6:39:40:a2:47:38:4f:a4:32:19:4a:b1:9d:28:74: 28:7a:e8:f9:09:07:a8:32:a2:5f:0d:3a:d8:1d:a2:7c:41:fa: ef:25:d5:52:47:2e:95:a6:d3:3c:77:ec:e7:aa:57:06:1f:40: 15:e4:59:93:7a:42:39:70:88:54:c1:1c:22:b6:de:20:c6:2f: dd:1a:bd:dd:54:ed:f3:90:17:be:65:45:c7:e7:65:cf:a0:3d: 1b:37:9b:3f:07:6a:0f:ba:e8:56:15:82:d2:2f:7c:d9:c8:02: 35:6b:6e:ae:f9:da:91:0e:80:ee:0b:3e:42:7a:36:8a:b8:73: f4:34:50:1a:9f:44:a9:fb:08:02:01:c4:af:48:4b:09:32:e3: 55:73:f7:6a:30:d1:40:dc:b3:b3:c4:ed:7e:ee:db:ea:f3:d0: 9d:ba:07:3a:76:18:3a:c6:9a:fe:4a:e0:b6:79:16:58:fc:79: c8:ee:e9:5a:64:52:50:0d:0e:59:60:80:2b:15:58:3c:6d:da: fd:c5:f7:c9:7b:a5:a8:7a:2f:93:7e:ba:c2:07:c4:e6:0d:b3: fd:f8:09:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1RTcxMTAvBgNVBAUTKEFDQzAxMTk0MzM4NzdGMEM3NDI4NTdCOEVBNTIwRjhE QTRFRDA5NUEwHhcNMjUxMTAyMjIxOTA2WhcNMjUxMTA5MjIxOTA2WjAYMRYwFAYD VQQDEw02OTA3ZDhkYS05MDQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHlDPJT7jwxqyumLt5NOx4Kc5Qzau1WVq9c82QKmek9hnSntssNMpdtj+CIK kGtejiECWNdlVTmYnPvb7ih3BrhbrOhqwqt5GTqS/cmejAVcny3zoF7EDSc9rO3m B57ilJ/dGiAkVCqJbg7d4fgZEyRqLsi8nwBUO+HUrwoik3UDvt+eBF2+Ys9cAL+w NakCdhOFuBaVZ5/euOQiWy9613+Q1JYFnmHCnSg/18kcG/a+dZS1JLMi7/aF4s4P 15ftK8G13hlgieyU+28QcallNul+FuJX0fJsIVMp/5TTaKCs8qWMF6GAv8Uf/6Ms FAg1MGSJjMULN8vahrARrXFpwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHAyluJO 2W6BJ1tLAkc3zDJ+qlHtMB8GA1UdIwQYMBaAFKzAEZQzh38MdChXuOpSD42k7Qla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTVFNy9FOTU5REM3NjhD NjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3eDBLRmU0NmxJUGphVHRD Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JNQVJsRE9IZnd4MEtGZTQ2bElQamFUdENWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTVFNy9FOTU5REM3NjhDNjgxMUVCODcwNDJENTFDNEY5QUUwMi9yTUFSbERPSGZ3 eDBLRmU0NmxJUGphVHRDVm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7v6blkrUaXaGgdc3j7BsSZP8KT+ZNO0a3v2h6ZlEezE1IfMNPo+Hm OUCiRzhPpDIZSrGdKHQoeuj5CQeoMqJfDTrYHaJ8QfrvJdVSRy6VptM8d+znqlcG H0AV5FmTekI5cIhUwRwitt4gxi/dGr3dVO3zkBe+ZUXH52XPoD0bN5s/B2oPuuhW FYLSL3zZyAI1a26u+dqRDoDuCz5CejaKuHP0NFAan0Sp+wgCAcSvSEsJMuNVc/dq MNFA3LOzxO1+7tvq89Cdugc6dhg6xpr+SuC2eRZY/HnI7ulaZFJQDQ5ZYIArFVg8 bdr9xffJe6Woei+TfrrCB8TmDbP9+An+ -----END CERTIFICATE-----Generated at Tue Nov 4 02:16:46 2025 by rpki-client