$ rpki-client -vvf rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.mft File: k-dhjM_iZIDXknoYcbrYP--d9IQ.mft (raw, json) Hash identifier: ARW+o9r0w5c0RzpqrqtqybLDE9Q/9Q8ukSpBSu+pYA8= Subject key identifier: 9C:E5:4C:3A:87:98:24:F1:9E:81:96:F1:E4:A1:97:09:BC:7A:EB:C7 Authority key identifier: 93:E7:61:8C:CF:E2:64:80:D7:92:7A:18:71:BA:D8:3F:EF:9D:F4:84 Certificate issuer: /CN=A915F438/serialNumber=93E7618CCFE26480D7927A1871BAD83FEF9DF484 Certificate serial: 257A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-dhjM_iZIDXknoYcbrYP--d9IQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.mft Manifest number: 2565 Signing time: Tue 04 Nov 2025 15:49:32 +0000 Manifest this update: Tue 04 Nov 2025 15:49:32 +0000 Manifest next update: Tue 11 Nov 2025 15:49:32 +0000 Files and hashes: 1: k-dhjM_iZIDXknoYcbrYP--d9IQ.crl (hash: zYxb9n/w2l5j4NKSvfvcBW2jYNmyOTAbXWmW2OVgLmA=) 2: 657B47B61C2F11E880C4ED7BC4F9AE02.roa (hash: SqubnCOkk8RsrmFBLZGk+dGzptnKgDT9xCotCHCxhuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.crl rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-dhjM_iZIDXknoYcbrYP--d9IQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:49:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9594 (0x257a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F438, serialNumber=93E7618CCFE26480D7927A1871BAD83FEF9DF484 Validity Not Before: Nov 4 15:49:32 2025 GMT Not After : Nov 11 15:49:32 2025 GMT Subject: CN=690a208c-393a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:4e:90:d9:e0:3d:dd:e6:ac:ce:a2:62:f3:31: 18:a9:bd:83:0d:c1:34:a1:45:9c:fa:e6:ba:96:fa: ee:af:6b:f7:1a:4a:77:b0:52:8c:81:31:2a:b6:89: e3:db:35:da:17:4b:d3:ab:ce:3e:65:bd:ba:d9:11: cd:e5:56:7d:95:91:30:43:5c:9a:cb:c9:4e:a1:c3: c7:b6:70:0a:27:16:29:28:25:a4:0e:a6:94:b8:8c: 23:e4:89:70:01:f9:33:ed:22:68:ea:1a:d7:50:d7: 0e:0f:54:4f:2b:80:21:e2:f4:53:58:b5:67:e8:ef: 40:f7:74:fd:1d:fd:61:80:fe:99:e9:0e:ae:1f:c6: 66:cc:ca:d7:8c:59:eb:17:29:17:3f:cd:49:ae:75: fc:b8:5f:89:80:01:b2:df:ae:16:9c:04:ab:59:b4: af:5b:b5:6f:ec:c4:3c:19:d9:7d:7f:27:db:9d:74: 11:0f:41:e5:6c:25:ff:28:67:ad:0a:78:9e:3f:b3: a4:9e:57:f1:f6:a8:9e:c7:80:86:eb:65:36:4d:2a: ee:92:f1:89:04:16:ab:dd:26:8e:6c:2e:74:30:6a: ee:c0:50:b5:67:bb:c8:2c:36:1f:31:51:14:98:7a: e4:d8:08:4c:e4:41:19:22:ee:f6:a3:10:aa:c7:a4: 0f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:E5:4C:3A:87:98:24:F1:9E:81:96:F1:E4:A1:97:09:BC:7A:EB:C7 X509v3 Authority Key Identifier: keyid:93:E7:61:8C:CF:E2:64:80:D7:92:7A:18:71:BA:D8:3F:EF:9D:F4:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-dhjM_iZIDXknoYcbrYP--d9IQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:63:a0:86:0a:e2:5c:16:ed:a2:76:b6:e8:5b:6a:7b:0f:08: ea:42:05:6c:72:d2:63:5c:e5:26:73:b2:2c:1a:f1:d9:e2:86: 69:2a:1a:20:b6:15:f8:03:3a:b6:5d:4a:5e:a0:7d:e3:86:66: 4e:f7:74:f4:91:49:3b:d8:03:24:3b:e2:b5:ba:3f:83:16:63: 45:95:90:8c:6f:7d:8b:9d:f6:8e:b5:76:7e:a6:02:16:a0:3b: 56:c1:ae:f9:37:5c:19:88:f4:79:50:70:b5:cd:ac:3c:48:e6: 18:91:ef:33:08:4b:5f:2a:2d:37:06:08:ed:06:1d:2f:4c:25: e2:fb:ec:94:ed:b2:fa:d8:9a:96:3c:ec:b5:ad:92:67:bf:99: 69:6c:eb:70:cb:36:1b:28:4f:bd:68:68:3c:af:b6:93:20:64: ef:d4:f4:10:d5:68:9d:c9:e3:9c:d5:fb:24:5c:7e:52:28:28: 29:e4:ed:a3:ee:2d:e4:a8:c1:b9:65:fa:79:a8:bf:e8:c1:f2: b2:66:cb:01:2a:f3:4c:0d:fa:cb:22:74:b2:41:f3:d7:9d:38: 94:55:5a:5c:6f:ab:6c:68:81:ff:a0:34:c8:61:f5:59:2f:e9: 57:4e:99:d7:a1:bb:a3:b9:a4:46:20:04:cf:81:8a:a9:cd:86: 67:48:e3:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY0MzgxMTAvBgNVBAUTKDkzRTc2MThDQ0ZFMjY0ODBENzkyN0ExODcxQkFEODNG RUY5REY0ODQwHhcNMjUxMTA0MTU0OTMyWhcNMjUxMTExMTU0OTMyWjAYMRYwFAYD VQQDEw02OTBhMjA4Yy0zOTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8E6Q2eA93easzqJi8zEYqb2DDcE0oUWc+ua6lvrur2v3Gkp3sFKMgTEqtonj 2zXaF0vTq84+Zb262RHN5VZ9lZEwQ1yay8lOocPHtnAKJxYpKCWkDqaUuIwj5Ilw Afkz7SJo6hrXUNcOD1RPK4Ah4vRTWLVn6O9A93T9Hf1hgP6Z6Q6uH8ZmzMrXjFnr FykXP81JrnX8uF+JgAGy364WnASrWbSvW7Vv7MQ8Gdl9fyfbnXQRD0HlbCX/KGet CnieP7Oknlfx9qiex4CG62U2TSrukvGJBBar3SaObC50MGruwFC1Z7vILDYfMVEU mHrk2AhM5EEZIu72oxCqx6QPrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJzlTDqH mCTxnoGW8eShlwm8euvHMB8GA1UdIwQYMBaAFJPnYYzP4mSA15J6GHG62D/vnfSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjQzOC9CN0VGNTNGRTJC NEUxMUU1QUNCQkRGM0FDNEY5QUUwMi9rLWRoak1faVpJRFhrbm9ZY2JyWVAtLWQ5 SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2stZGhqTV9pWklEWGtub1ljYnJZUC0tZDlJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjQzOC9CN0VGNTNGRTJCNEUxMUU1QUNCQkRGM0FDNEY5QUUwMi9rLWRoak1faVpJ RFhrbm9ZY2JyWVAtLWQ5SVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgY6CGCuJcFu2idrboW2p7DwjqQgVsctJjXOUmc7IsGvHZ4oZpKhog thX4Azq2XUpeoH3jhmZO93T0kUk72AMkO+K1uj+DFmNFlZCMb32LnfaOtXZ+pgIW oDtWwa75N1wZiPR5UHC1zaw8SOYYke8zCEtfKi03BgjtBh0vTCXi++yU7bL62JqW POy1rZJnv5lpbOtwyzYbKE+9aGg8r7aTIGTv1PQQ1WidyeOc1fskXH5SKCgp5O2j 7i3kqMG5Zfp5qL/owfKyZssBKvNMDfrLInSyQfPXnTiUVVpcb6tsaIH/oDTIYfVZ L+lXTpnXobujuaRGIATPgYqpzYZnSOPu -----END CERTIFICATE-----Generated at Wed Nov 5 05:44:55 2025 by rpki-client