$ rpki-client -vvf rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft File: CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft (raw, json) Hash identifier: kihg8nAyIXCzun1tK6K0yHFFqlwyIYv/sP/IZOEr9F0= Subject key identifier: A4:85:6C:04:53:E6:40:8C:7C:BD:B9:C9:45:98:EA:98:D5:7A:09:57 Authority key identifier: 08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED Certificate issuer: /CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Certificate serial: 04EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft Manifest number: 04D0 Signing time: Tue 04 Nov 2025 23:57:03 +0000 Manifest this update: Tue 04 Nov 2025 23:57:02 +0000 Manifest next update: Tue 11 Nov 2025 23:57:02 +0000 Files and hashes: 1: CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl (hash: 3HWuZA/V5rR1lmcv9+UZ16x/bnM0qycSQt0QePutMwc=) 2: 02F57BD252E711EC931DB95CC4F9AE02.roa (hash: TGHGZPpqAj2jmtX8lTQMi8kBaI8ojiWWIFj1IWycEgs=) 3: 413AD9F852E411EC9E19AA2FC4F9AE02.roa (hash: Y2Z1jehKepnssjRVP8joGvXLmK9adM98wErhHrOtaeg=) 4: 0517C4F0470311EC9E6FA71DC4F9AE02.roa (hash: o+VIx3yy8oMDW/C3RImP2D9X9JrFefZYlsNOIecQzAE=) 5: 41E32C9852E411EC9E19AA2FC4F9AE02.roa (hash: i1mD+r6XwMu6On3/bUlN+PaLdP6khHenZ0Z0HUab9AI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:57:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1258 (0x4ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CCFF, serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Validity Not Before: Nov 4 23:57:02 2025 GMT Not After : Nov 11 23:57:02 2025 GMT Subject: CN=690a92cf-7908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:3c:63:3f:9b:a9:73:e2:35:d0:bd:ab:9f:33: 7c:17:dc:94:23:e3:38:46:9e:c5:c8:2e:2f:6f:3d: 14:b7:63:45:b4:09:62:82:f6:8a:d9:86:37:e7:6a: d8:cd:bb:a8:25:9b:3b:2b:3c:e9:c7:36:01:2f:52: b4:a9:c6:d4:5a:bf:b2:9a:90:d5:4c:5d:79:70:5f: 47:b5:45:76:1a:ea:c5:7c:ee:63:03:12:7a:a1:06: b5:ad:ed:a4:c3:c3:c7:52:21:15:fc:c7:32:3e:9a: 9f:42:63:9a:16:76:fc:f3:45:6b:d5:c9:e6:49:62: bd:5f:00:8d:c8:e5:83:d7:45:a2:c1:f2:42:fd:c5: 84:97:3a:b0:21:33:00:94:5b:12:0b:f3:4f:89:1c: 34:70:cc:fb:fc:ad:d9:08:d5:ba:da:6c:7c:a8:0c: 63:55:fd:56:74:f8:d2:86:1b:8a:9c:57:c8:c7:c7: 12:b4:f5:c9:51:6c:26:9c:b3:4e:9c:0d:0b:7b:74: 98:2c:dc:cd:bf:76:99:c4:f7:70:be:35:51:f5:a1: 47:71:85:5b:6c:07:93:1d:cc:c1:ce:7d:c7:d6:86: 83:39:43:7a:d6:f9:03:79:34:13:14:57:b8:2a:9f: 60:d1:cf:3b:75:b2:0c:73:16:dc:cb:f3:00:4c:a5: b6:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:85:6C:04:53:E6:40:8C:7C:BD:B9:C9:45:98:EA:98:D5:7A:09:57 X509v3 Authority Key Identifier: keyid:08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:ac:e0:d8:bd:d1:ac:00:72:d5:75:e6:17:d8:c0:7a:c6:ed: 5d:e0:de:54:7b:03:99:8a:29:0e:52:86:5d:09:be:7d:8f:f1: 5b:f9:1f:aa:ba:bb:80:07:3a:48:ce:9c:36:16:04:a8:4a:3d: 21:77:01:e0:10:6f:d8:5c:69:00:03:06:8f:87:a5:3a:d2:91: c8:eb:a4:76:e8:2c:f1:48:26:62:04:cd:71:c3:eb:28:d1:e9: c7:26:c7:d8:75:65:9f:e9:7c:af:37:8d:83:de:51:7b:b2:3a: 59:98:2a:d6:7c:bb:b8:cb:9a:25:04:42:c4:20:77:d6:e6:59: b1:08:45:0e:d3:af:9a:39:1c:11:0c:ce:d1:69:e3:68:22:47: 81:d9:eb:61:1c:2a:85:c7:15:7d:0e:21:75:17:ae:5f:66:9c: 2c:27:9f:5a:77:be:c5:21:d9:1d:93:e3:8a:3c:68:6b:19:b6: 6c:1b:13:79:9a:78:25:83:26:84:10:6b:7a:1b:a5:89:93:71: b6:b6:d1:62:3e:45:5d:19:4e:d4:f1:67:e5:07:77:bc:9e:b5: 84:fe:ee:b7:b3:3a:47:e3:26:96:31:27:39:10:af:03:14:95: 0b:f4:12:c8:d2:be:6b:6c:4b:52:b2:ba:03:3f:ba:a0:c5:82: a0:3a:46:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNDRkYxMTAvBgNVBAUTKDA4MDM2NjJDNTcxMzI1NzI4RjI0RkFBRDhDQjFBNUYx OTAwNzE1RUQwHhcNMjUxMTA0MjM1NzAyWhcNMjUxMTExMjM1NzAyWjAYMRYwFAYD VQQDEw02OTBhOTJjZi03OTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TxjP5upc+I10L2rnzN8F9yUI+M4Rp7FyC4vbz0Ut2NFtAligvaK2YY352rY zbuoJZs7KzzpxzYBL1K0qcbUWr+ympDVTF15cF9HtUV2GurFfO5jAxJ6oQa1re2k w8PHUiEV/McyPpqfQmOaFnb880Vr1cnmSWK9XwCNyOWD10WiwfJC/cWElzqwITMA lFsSC/NPiRw0cMz7/K3ZCNW62mx8qAxjVf1WdPjShhuKnFfIx8cStPXJUWwmnLNO nA0Le3SYLNzNv3aZxPdwvjVR9aFHcYVbbAeTHczBzn3H1oaDOUN61vkDeTQTFFe4 Kp9g0c87dbIMcxbcy/MATKW2XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKSFbART 5kCMfL25yUWY6pjVeglXMB8GA1UdIwQYMBaAFAgDZixXEyVyjyT6rYyxpfGQBxXt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0NGRi85QTVFQzE2QzQ2 RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpYS1BKUHF0akxHbDhaQUhG ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBTm1MRmNUSlhLUEpQcXRqTEdsOFpBSEZlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0NGRi85QTVFQzE2QzQ2RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpY S1BKUHF0akxHbDhaQUhGZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8rODYvdGsAHLVdeYX2MB6xu1d4N5UewOZiikOUoZdCb59j/Fb+R+q uruABzpIzpw2FgSoSj0hdwHgEG/YXGkAAwaPh6U60pHI66R26CzxSCZiBM1xw+so 0enHJsfYdWWf6XyvN42D3lF7sjpZmCrWfLu4y5olBELEIHfW5lmxCEUO06+aORwR DM7RaeNoIkeB2ethHCqFxxV9DiF1F65fZpwsJ59ad77FIdkdk+OKPGhrGbZsGxN5 mnglgyaEEGt6G6WJk3G2ttFiPkVdGU7U8WflB3e8nrWE/u63szpH4yaWMSc5EK8D FJUL9BLI0r5rbEtSsroDP7qgxYKgOkZn -----END CERTIFICATE-----Generated at Wed Nov 5 05:49:52 2025 by rpki-client