$ rpki-client -vvf rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft File: SztaAaiVL7VkLSSEt_AgWufcx2E.mft (raw, json) Hash identifier: w7wCWLm/YKdq30ixR6E4ZlmUvPViFx3iCpvi31McgYg= Subject key identifier: 6E:88:E9:AC:04:3E:D5:02:AF:C0:E0:1E:6F:98:37:BA:25:E2:F5:EC Authority key identifier: 4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 Certificate issuer: /CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Certificate serial: 0251 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft Manifest number: 0244 Signing time: Wed 05 Nov 2025 01:57:18 +0000 Manifest this update: Wed 05 Nov 2025 01:57:18 +0000 Manifest next update: Wed 12 Nov 2025 01:57:18 +0000 Files and hashes: 1: SztaAaiVL7VkLSSEt_AgWufcx2E.crl (hash: BZOTt+BqJHVwhi6Ir+EfAbFBuKBdITXvpfCBUBIOUR0=) 2: 82A6D4C4373711F0B4C22F6AC4F9AE02.roa (hash: rrVBYVrSFiqn3nLdHTxIyiA8PTcgPoGjeKcEaq4wMoo=) 3: A4B9732E372211F088B77741C4F9AE02.roa (hash: 3TNlyeCxwMy8NOZgnGPzQndaWXiemPUyKwLX2o1mWQM=) 4: 46C3344E346611F0AF16091DC4F9AE02.roa (hash: hLV0teY5RA06JKeLhF6EKVNH5GsjoHWUOS3I4OJihTg=) 5: 2434E2E24FAD11EDA19F8316C4F9AE02.roa (hash: QKPxnsl5W/cKLCZuMQFferj3l2oedmhBT9kPnPZhJg4=) 6: 0C21BBAC373711F08FA9BD3DC4F9AE02.roa (hash: ye1UKpo8u7ojDH21WRiG292JL5bV63l2uZsql1JK7Ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 593 (0x251) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917748E, serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Validity Not Before: Nov 5 01:57:18 2025 GMT Not After : Nov 12 01:57:18 2025 GMT Subject: CN=690aaefe-ced1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a3:f9:10:35:f3:ab:2f:9a:e2:18:b2:d1:ab: e4:d2:be:90:cc:3e:d9:ce:97:03:74:26:1e:37:01: d5:0e:22:8f:b4:44:75:f6:2a:ba:62:e9:24:63:3f: 8e:ca:f0:57:b0:23:1d:53:8e:38:f5:a5:ea:74:18: 86:24:20:28:c1:c3:c0:27:50:7e:b8:a4:bc:29:33: 4e:00:bc:8e:e0:4d:b1:b5:a7:74:93:1e:1a:ad:ed: 99:16:da:e3:0d:27:61:c4:af:9b:15:c0:9c:81:19: ea:b2:82:8f:b3:39:f8:0d:f3:0d:57:39:b8:b4:0f: 87:49:e3:1c:82:14:08:3e:5a:7a:37:e3:03:0c:cb: 95:9d:0f:39:c7:72:5d:2e:73:b9:d6:fd:f8:6d:3b: 2c:7e:28:52:f4:11:9a:b0:e3:57:8a:b9:6d:0e:69: 39:32:0f:f8:35:31:e0:7c:21:22:d1:39:57:54:93: bb:9d:c3:47:e9:95:fb:6c:2e:33:9f:b9:e1:b4:6d: 65:a2:85:6a:c7:0c:53:69:0a:aa:b5:ba:57:7f:82: ec:c5:07:07:cd:a9:05:bd:c2:d0:87:9d:4f:7e:8a: 14:c1:f5:f1:ee:92:ed:fb:d4:22:ef:65:5e:92:35: e5:e5:c9:2a:57:95:a8:90:51:fb:df:6d:31:69:b2: ad:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:88:E9:AC:04:3E:D5:02:AF:C0:E0:1E:6F:98:37:BA:25:E2:F5:EC X509v3 Authority Key Identifier: keyid:4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:95:79:91:ea:6a:34:22:85:13:e1:70:0d:81:39:da:cd:27: ca:fd:5e:89:d1:10:31:09:f3:9f:4c:17:c3:30:67:22:0e:c4: 5c:96:98:09:b5:b6:c1:4f:d3:d8:a1:19:e7:14:f2:fb:76:81: d5:07:c2:d4:06:5b:46:05:2f:d7:57:d0:18:25:f5:d6:de:8d: fb:80:76:bb:ac:6e:36:b1:d0:8b:96:e3:71:76:f2:e5:90:5d: 05:16:0c:8b:7f:6a:0a:75:c1:35:2f:70:4e:0c:87:85:62:d9: 28:79:9b:28:cf:5c:31:7a:b5:d8:98:9b:46:4f:da:3a:9e:45: a7:fe:ce:a4:ee:4d:e3:c1:ff:5d:99:b9:21:c3:31:81:51:7e: 9c:51:86:4f:40:17:e9:58:d7:54:ae:b0:f6:c3:31:4f:5a:19: 99:bb:80:09:a0:26:44:b3:9c:01:a2:4e:47:fb:05:24:aa:6a: 36:9a:60:14:9a:fa:a0:a7:63:02:ce:94:7a:42:e6:e5:de:23: 98:57:f7:47:7f:63:62:fa:bb:58:74:8d:af:15:fe:49:cb:c4: 52:83:d1:b1:b4:d6:25:ae:02:4d:07:81:e0:a0:39:4f:5c:63: f5:45:59:a1:aa:0a:00:de:0f:be:7d:d0:ed:29:cf:6c:fd:ab: ce:02:37:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc0OEUxMTAvBgNVBAUTKDRCM0I1QTAxQTg5NTJGQjU2NDJEMjQ4NEI3RjAyMDVB RTdEQ0M3NjEwHhcNMjUxMTA1MDE1NzE4WhcNMjUxMTEyMDE1NzE4WjAYMRYwFAYD VQQDEw02OTBhYWVmZS1jZWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoaP5EDXzqy+a4hiy0avk0r6QzD7ZzpcDdCYeNwHVDiKPtER19iq6YukkYz+O yvBXsCMdU4449aXqdBiGJCAowcPAJ1B+uKS8KTNOALyO4E2xtad0kx4are2ZFtrj DSdhxK+bFcCcgRnqsoKPszn4DfMNVzm4tA+HSeMcghQIPlp6N+MDDMuVnQ85x3Jd LnO51v34bTssfihS9BGasONXirltDmk5Mg/4NTHgfCEi0TlXVJO7ncNH6ZX7bC4z n7nhtG1looVqxwxTaQqqtbpXf4LsxQcHzakFvcLQh51PfooUwfXx7pLt+9Qi72Ve kjXl5ckqV5WokFH7320xabKt0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG6I6awE PtUCr8DgHm+YN7ol4vXsMB8GA1UdIwQYMBaAFEs7WgGolS+1ZC0khLfwIFrn3Mdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzQ4RS80RDc4OTI2QTRG QTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3VmtMU1NFdF9BZ1d1ZmN4 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N6dGFBYWlWTDdWa0xTU0V0X0FnV3VmY3gyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzQ4RS80RDc4OTI2QTRGQTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3 VmtMU1NFdF9BZ1d1ZmN4MkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFlXmR6mo0IoUT4XANgTnazSfK/V6J0RAxCfOfTBfDMGciDsRclpgJ tbbBT9PYoRnnFPL7doHVB8LUBltGBS/XV9AYJfXW3o37gHa7rG42sdCLluNxdvLl kF0FFgyLf2oKdcE1L3BODIeFYtkoeZsoz1wxerXYmJtGT9o6nkWn/s6k7k3jwf9d mbkhwzGBUX6cUYZPQBfpWNdUrrD2wzFPWhmZu4AJoCZEs5wBok5H+wUkqmo2mmAU mvqgp2MCzpR6Qubl3iOYV/dHf2Ni+rtYdI2vFf5Jy8RSg9GxtNYlrgJNB4HgoDlP XGP1RVmhqgoA3g++fdDtKc9s/avOAjc5 -----END CERTIFICATE-----Generated at Wed Nov 5 11:15:10 2025 by rpki-client