$ rpki-client -vvf rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft File: MLwu5bdWT-D98gDnibI6LA2OkiQ.mft (raw, json) Hash identifier: kTHsdOt12I2bFS2IOYDZ4QqSRe0LxYY8vvvMxOlvpoU= Subject key identifier: F1:C7:81:41:C7:59:D1:95:5A:34:BD:B0:91:50:95:AB:87:61:D8:75 Authority key identifier: 30:BC:2E:E5:B7:56:4F:E0:FD:F2:00:E7:89:B2:3A:2C:0D:8E:92:24 Certificate issuer: /CN=A916CAC7/serialNumber=30BC2EE5B7564FE0FDF200E789B23A2C0D8E9224 Certificate serial: 0CA9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft Manifest number: 0CA2 Signing time: Tue 04 Nov 2025 18:21:21 +0000 Manifest this update: Tue 04 Nov 2025 18:21:20 +0000 Manifest next update: Tue 11 Nov 2025 18:21:20 +0000 Files and hashes: 1: MLwu5bdWT-D98gDnibI6LA2OkiQ.crl (hash: OGHXXS/TWtuHWV0eSFXCvaK9mBczd93Ds1GGMQ0Sid8=) 2: 9E5B75C0022D11EAAD80DA48C4F9AE02.roa (hash: LXTrgQN3T+0OVcDzvaM6T5a0p0NXB+0zRwSrfQRhFSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.crl rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3241 (0xca9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CAC7, serialNumber=30BC2EE5B7564FE0FDF200E789B23A2C0D8E9224 Validity Not Before: Nov 4 18:21:20 2025 GMT Not After : Nov 11 18:21:20 2025 GMT Subject: CN=690a4420-a3e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ae:53:88:34:b0:8f:d7:73:3a:72:fc:b5:f0: a1:0f:91:42:1e:a3:bf:e2:a4:f5:70:d4:57:56:7a: 4b:a2:a8:8e:7e:c5:59:d9:37:eb:66:29:2c:56:cb: 7d:37:c4:14:ee:3a:09:ef:73:78:1e:4f:91:f8:9e: 90:34:41:d2:fd:00:fa:a8:7c:0e:e4:37:11:ea:61: 0f:3a:06:1c:03:4c:f5:03:54:22:0f:d1:45:67:74: 25:30:fa:45:3c:d6:e0:96:4a:3d:e4:fa:d3:c0:32: a8:94:9d:a8:25:01:ef:5c:50:7c:d5:a4:97:b8:2b: 4b:93:42:f9:d9:82:95:e9:48:fe:92:b1:ce:0f:1b: 24:37:02:5f:62:74:0c:a4:1d:16:0d:84:81:d2:61: 53:f0:f8:a7:9b:a7:20:27:d2:6f:67:92:84:cd:17: 66:1a:68:dc:ba:68:ff:ce:14:7c:66:95:fd:5c:c8: 53:e2:09:d9:70:f1:fd:07:c0:bc:b7:c0:db:a9:fb: 51:e1:73:20:3a:18:97:7d:41:45:a9:00:16:ac:ce: 35:b6:fb:9a:40:9c:69:52:5d:56:b2:51:ac:6b:7c: 6b:0d:f3:66:04:aa:49:3f:1a:53:21:d7:af:ed:c8: 41:65:af:aa:c0:b7:fd:90:b3:44:d6:43:67:f9:20: 7c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:C7:81:41:C7:59:D1:95:5A:34:BD:B0:91:50:95:AB:87:61:D8:75 X509v3 Authority Key Identifier: keyid:30:BC:2E:E5:B7:56:4F:E0:FD:F2:00:E7:89:B2:3A:2C:0D:8E:92:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:8b:c3:fd:34:ea:7d:45:52:42:92:73:0c:d1:4f:ad:03:ec: 80:62:b9:75:ce:44:50:00:17:bd:e2:49:b8:fc:f6:28:0b:df: 98:0e:9d:fc:b0:ed:9f:61:c8:b1:cb:44:c2:69:0c:57:a8:75: e8:d2:df:ce:ce:b0:d7:f1:3a:0f:42:df:d8:fb:73:d9:18:81: 5d:68:40:b3:96:81:cc:66:f9:fa:71:fc:bb:b7:c0:84:46:8d: e9:3b:aa:ff:11:75:45:a8:a3:b5:b4:c4:56:47:03:ed:c2:35: fd:90:33:b6:5c:e0:e9:09:6c:8e:15:3d:de:a3:86:f0:48:a6: 8d:5e:f9:c9:bd:9c:2e:26:de:a7:96:da:ff:9c:70:06:4a:91: d4:60:bc:84:87:f8:3d:22:f6:42:0d:bb:10:9e:ba:c2:53:b2: d5:d8:5d:ed:b9:0c:e0:42:05:a0:cb:b0:3e:2a:14:f9:7e:99: 50:ed:1d:60:61:90:45:cc:f2:22:6c:e5:3e:77:49:01:36:d0: 35:da:57:3c:00:2e:0c:91:fa:65:c4:87:ce:35:14:c6:b2:f0: 45:6e:d9:d3:6f:5a:b2:2c:bf:62:0a:fc:65:7a:87:1d:7d:42: 30:1f:5e:70:f9:34:6d:ed:b7:33:29:6b:77:f4:74:19:c4:43: 4d:10:d7:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNBQzcxMTAvBgNVBAUTKDMwQkMyRUU1Qjc1NjRGRTBGREYyMDBFNzg5QjIzQTJD MEQ4RTkyMjQwHhcNMjUxMTA0MTgyMTIwWhcNMjUxMTExMTgyMTIwWjAYMRYwFAYD VQQDEw02OTBhNDQyMC1hM2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxK5TiDSwj9dzOnL8tfChD5FCHqO/4qT1cNRXVnpLoqiOfsVZ2TfrZiksVst9 N8QU7joJ73N4Hk+R+J6QNEHS/QD6qHwO5DcR6mEPOgYcA0z1A1QiD9FFZ3QlMPpF PNbglko95PrTwDKolJ2oJQHvXFB81aSXuCtLk0L52YKV6Uj+krHODxskNwJfYnQM pB0WDYSB0mFT8Pinm6cgJ9JvZ5KEzRdmGmjcumj/zhR8ZpX9XMhT4gnZcPH9B8C8 t8DbqftR4XMgOhiXfUFFqQAWrM41tvuaQJxpUl1WslGsa3xrDfNmBKpJPxpTIdev 7chBZa+qwLf9kLNE1kNn+SB8hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPHHgUHH WdGVWjS9sJFQlauHYdh1MB8GA1UdIwQYMBaAFDC8LuW3Vk/g/fIA54myOiwNjpIk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0FDNy9DMTM5REFCQTAy MkMxMUVBQkUxRjBDNDhDNEY5QUUwMi9NTHd1NWJkV1QtRDk4Z0RuaWJJNkxBMk9r aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01Md3U1YmRXVC1EOThnRG5pYkk2TEEyT2tpUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0FDNy9DMTM5REFCQTAyMkMxMUVBQkUxRjBDNDhDNEY5QUUwMi9NTHd1NWJkV1Qt RDk4Z0RuaWJJNkxBMk9raVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATi8P9NOp9RVJCknMM0U+tA+yAYrl1zkRQABe94km4/PYoC9+YDp38 sO2fYcixy0TCaQxXqHXo0t/OzrDX8ToPQt/Y+3PZGIFdaECzloHMZvn6cfy7t8CE Ro3pO6r/EXVFqKO1tMRWRwPtwjX9kDO2XODpCWyOFT3eo4bwSKaNXvnJvZwuJt6n ltr/nHAGSpHUYLyEh/g9IvZCDbsQnrrCU7LV2F3tuQzgQgWgy7A+KhT5fplQ7R1g YZBFzPIibOU+d0kBNtA12lc8AC4MkfplxIfONRTGsvBFbtnTb1qyLL9iCvxleocd fUIwH15w+TRt7bczKWt39HQZxENNENcq -----END CERTIFICATE-----Generated at Wed Nov 5 03:50:48 2025 by rpki-client