$ rpki-client -vvf rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft File: SHy2MxcaDd84rLtq0e2K5pZVhgo.mft (raw, json) Hash identifier: 9RAUZuwWfTmbqlQOn4DqNl95WrWXpaumef339ioZ6f0= Subject key identifier: 6E:BB:7B:61:45:25:CD:F2:B1:C6:38:7F:6F:C4:D7:76:3B:24:22:D4 Authority key identifier: 48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A Certificate issuer: /CN=A916899E/serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Certificate serial: 01ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft Manifest number: 01EA Signing time: Mon 03 Nov 2025 02:34:42 +0000 Manifest this update: Mon 03 Nov 2025 02:34:41 +0000 Manifest next update: Mon 10 Nov 2025 02:34:41 +0000 Files and hashes: 1: SHy2MxcaDd84rLtq0e2K5pZVhgo.crl (hash: 4xan7vQ+/vUkPIW1VXmV9Xj5gdcZU8w83XPJAWAD+DI=) 2: 96540A72CD0E11ED9A9CAE58C4F9AE02.roa (hash: wjMufEaDH/y4s6T5wRstNmQqRorcPZgCttuLv7sLSbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916899E, serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Validity Not Before: Nov 3 02:34:41 2025 GMT Not After : Nov 10 02:34:41 2025 GMT Subject: CN=690814c1-96d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:28:0b:8f:2e:4b:e6:38:1b:6f:13:bd:0f:c3: 9b:2e:af:71:00:f6:ce:af:99:7d:63:86:13:09:7f: 8e:77:fc:65:ce:06:61:43:cc:8d:ec:f0:21:13:67: d1:3d:5a:d9:9f:52:22:95:9b:61:ae:ad:0b:a5:27: ee:cd:c2:62:5f:49:c7:d5:42:a6:02:2f:11:0d:3f: 61:4c:63:1f:94:94:77:b7:52:d0:00:b6:5d:a3:2b: ac:17:08:ea:6b:d0:9f:0f:86:ed:a5:aa:c0:71:f5: be:09:34:34:8c:a3:66:6a:ba:29:1f:10:94:64:6a: dd:29:be:b9:cf:0b:85:e0:89:6e:4d:61:c5:d3:b6: 8f:8f:67:d4:68:1f:09:00:8c:66:92:3d:14:18:57: de:32:b2:42:0c:b2:6d:0f:20:5a:c1:d9:83:c4:d7: 84:1c:d8:a3:ef:e7:ec:85:31:81:78:72:06:5a:e8: 02:2d:4b:ac:01:7e:11:05:65:f8:f7:77:75:0a:97: a3:5c:4d:69:cb:3d:32:74:b2:9e:80:4e:df:c0:3b: a6:f8:72:26:58:9c:de:1b:52:90:15:27:52:a4:b1: f1:f2:1d:5a:b7:c5:64:04:72:a3:b0:ca:f3:62:62: 49:ef:d0:77:14:c0:8f:59:3f:6e:ad:44:d6:b5:cf: 01:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:BB:7B:61:45:25:CD:F2:B1:C6:38:7F:6F:C4:D7:76:3B:24:22:D4 X509v3 Authority Key Identifier: keyid:48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:22:6c:e4:73:4e:25:91:b9:b1:b1:86:8e:7e:4c:fa:bd:3b: c7:1a:2f:d1:12:84:b2:23:03:c3:96:35:e2:71:21:ad:e1:7d: 46:e5:84:d7:f3:d7:81:38:bc:4f:fb:07:b1:17:4c:fa:c8:c1: db:f9:e6:20:ac:a2:a1:4e:37:3a:06:0c:80:ed:70:8b:86:0c: 7a:59:9b:e4:4f:0e:61:2d:34:9d:e4:21:b4:09:aa:a0:eb:a6: 06:2b:a4:71:c8:5c:fb:90:56:c5:80:ef:f6:19:cd:e4:e0:de: b7:1a:b8:78:2b:1e:e0:68:e5:ed:73:50:9c:cf:6d:41:cb:d0: 94:00:18:e1:02:dd:bd:19:3b:e0:dc:15:68:29:86:98:04:34: c8:ee:93:c0:7a:f4:39:d3:6e:a4:72:70:18:4a:f3:09:55:6d: 97:c3:7b:2d:58:fa:e2:09:8c:55:be:0d:96:21:3f:e3:95:ad: 6a:37:19:97:e9:df:e8:e0:10:ca:c6:60:7d:71:71:02:4f:62: a2:3e:18:a0:82:81:f2:c2:ba:67:f1:b5:18:74:f1:34:e4:11: f8:f4:ce:e1:75:b8:81:1d:5b:8c:35:93:68:fc:11:0b:58:0b: f8:66:d0:8e:93:fb:79:50:84:73:cd:f5:63:f2:9b:49:b6:c1: 7b:9d:84:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5OUUxMTAvBgNVBAUTKDQ4N0NCNjMzMTcxQTBEREYzOEFDQkI2QUQxRUQ4QUU2 OTY1NTg2MEEwHhcNMjUxMTAzMDIzNDQxWhcNMjUxMTEwMDIzNDQxWjAYMRYwFAYD VQQDEw02OTA4MTRjMS05NmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9CgLjy5L5jgbbxO9D8ObLq9xAPbOr5l9Y4YTCX+Od/xlzgZhQ8yN7PAhE2fR PVrZn1IilZthrq0LpSfuzcJiX0nH1UKmAi8RDT9hTGMflJR3t1LQALZdoyusFwjq a9CfD4btparAcfW+CTQ0jKNmaropHxCUZGrdKb65zwuF4IluTWHF07aPj2fUaB8J AIxmkj0UGFfeMrJCDLJtDyBawdmDxNeEHNij7+fshTGBeHIGWugCLUusAX4RBWX4 93d1CpejXE1pyz0ydLKegE7fwDum+HImWJzeG1KQFSdSpLHx8h1at8VkBHKjsMrz YmJJ79B3FMCPWT9urUTWtc8BhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG67e2FF Jc3yscY4f2/E13Y7JCLUMB8GA1UdIwQYMBaAFEh8tjMXGg3fOKy7atHtiuaWVYYK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODk5RS82QzEzNTQzNEM5 RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURkODRyTHRxMGUySzVwWlZo Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NIeTJNeGNhRGQ4NHJMdHEwZTJLNXBaVmhnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODk5RS82QzEzNTQzNEM5RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURk ODRyTHRxMGUySzVwWlZoZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUImzkc04lkbmxsYaOfkz6vTvHGi/REoSyIwPDljXicSGt4X1G5YTX 89eBOLxP+wexF0z6yMHb+eYgrKKhTjc6BgyA7XCLhgx6WZvkTw5hLTSd5CG0Caqg 66YGK6RxyFz7kFbFgO/2Gc3k4N63Grh4Kx7gaOXtc1Ccz21By9CUABjhAt29GTvg 3BVoKYaYBDTI7pPAevQ5026kcnAYSvMJVW2Xw3stWPriCYxVvg2WIT/jla1qNxmX 6d/o4BDKxmB9cXECT2KiPhiggoHywrpn8bUYdPE05BH49M7hdbiBHVuMNZNo/BEL WAv4ZtCOk/t5UIRzzfVj8ptJtsF7nYQK -----END CERTIFICATE-----Generated at Tue Nov 4 16:03:47 2025 by rpki-client