$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft File: CDWHSXi6MJ7X2kZz53OdkyLyYps.mft (raw, json) Hash identifier: gTmTt8triYZmrokT3R2bpUzy7vQKRmsOCu46RaXbnug= Subject key identifier: 34:5E:3A:94:12:CF:96:5F:92:AA:7C:5F:77:E6:1F:9A:45:F0:8F:4E Authority key identifier: 08:35:87:49:78:BA:30:9E:D7:DA:46:73:E7:73:9D:93:22:F2:62:9B Certificate issuer: /CN=A917E00F/serialNumber=0835874978BA309ED7DA4673E7739D9322F2629B Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft Manifest number: 97 Signing time: Tue 04 Nov 2025 23:14:14 +0000 Manifest this update: Tue 04 Nov 2025 23:14:13 +0000 Manifest next update: Tue 11 Nov 2025 23:14:13 +0000 Files and hashes: 1: CDWHSXi6MJ7X2kZz53OdkyLyYps.crl (hash: tVGrmdvP1f2m356pv2tIqxGw3E6UEfWdJxEzGi1Yvq8=) 2: 2DA549EAE23E11EFB267422EC4F9AE02.roa (hash: IwOryXN0CLNaxtv7IBy7ZDsktAOlHn3+ya1AEPZi2Ak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.crl rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00F, serialNumber=0835874978BA309ED7DA4673E7739D9322F2629B Validity Not Before: Nov 4 23:14:13 2025 GMT Not After : Nov 11 23:14:13 2025 GMT Subject: CN=690a88c6-5e61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f2:28:f1:ec:8f:e8:f5:72:cc:f7:f5:7e:09: 16:e8:46:bf:be:31:1d:46:86:1f:f2:26:86:87:2f: f8:05:7f:bc:06:cc:f1:51:22:14:7a:74:7e:f3:de: f4:88:69:fa:dd:e8:ce:a8:d0:cb:85:5e:19:bd:c6: 5c:5e:de:cf:d6:5d:0e:ff:d4:59:a4:8b:60:1c:24: f7:63:72:57:48:6c:55:eb:06:45:8e:60:c7:69:b5: 8b:ef:b3:fc:b0:e4:cb:30:68:58:18:9f:83:2d:01: 80:2f:8d:19:1f:20:c9:d2:b4:e6:ce:74:23:d6:cd: 20:f4:50:25:02:cb:c5:e3:48:ff:09:d7:d2:70:40: ee:e2:f1:5e:fa:a0:3c:e1:ca:49:22:fe:cc:04:dc: f8:c0:6f:8e:fb:96:ef:fc:76:79:70:30:b9:1c:c7: 22:86:70:97:60:6a:da:83:96:a6:60:a0:bf:c0:21: 32:e9:2e:0a:9b:ad:5c:b5:70:38:2f:1c:3d:fc:7b: 83:37:50:1f:4a:13:cf:12:e3:bf:bd:a7:96:46:f9: 76:3f:f6:3f:9a:ed:bf:23:3c:bd:f3:da:76:d7:5a: e8:d2:b6:2d:b0:3d:6e:f0:e7:08:6e:a7:d9:02:d2: 6e:3c:5a:9c:5d:ca:19:06:cd:63:f4:76:18:fb:ac: c0:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:5E:3A:94:12:CF:96:5F:92:AA:7C:5F:77:E6:1F:9A:45:F0:8F:4E X509v3 Authority Key Identifier: keyid:08:35:87:49:78:BA:30:9E:D7:DA:46:73:E7:73:9D:93:22:F2:62:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:c3:8e:31:7a:4b:25:13:12:7f:52:ff:ff:a6:d7:9c:af:c9: b1:d6:e5:e6:b6:61:33:44:93:94:48:b0:84:79:db:9b:b0:e6: 5a:a5:d8:d7:60:55:16:29:bd:c1:72:16:9b:27:c9:eb:ff:ef: b2:2a:23:45:5b:1c:5d:9b:9b:ee:fb:f7:5e:5a:26:30:f0:08: f3:54:f4:97:3e:87:67:6d:0e:0c:f7:06:21:6f:c1:29:4c:6c: e4:db:62:4f:da:d3:b9:eb:1e:03:5b:25:3e:83:a2:f3:72:37: 90:b3:e8:ad:dc:31:de:fa:6b:85:82:3d:37:f2:29:01:24:f0: b4:a8:d6:21:d0:1d:2e:d4:0f:e6:38:6e:d8:65:0d:f1:3a:51: af:54:13:32:f2:4c:c6:1a:09:dc:06:e5:29:3c:2a:bb:df:08: 52:62:fa:84:ce:e0:27:8b:93:45:5b:fd:4c:7d:07:7a:ba:01: d9:08:27:bd:d8:59:72:9b:11:89:2c:1b:e4:75:47:3a:a6:cc: 78:8d:06:2f:00:a4:08:a2:d0:77:26:de:fc:78:47:f3:4c:1f: 85:af:d6:bc:94:99:80:01:a6:39:c0:b1:3a:b4:f5:29:ff:83: 90:af:b6:1d:a2:1a:b7:51:41:5c:44:57:37:4b:ff:a6:a1:0d: 9f:c8:b5:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwMEYxMTAvBgNVBAUTKDA4MzU4NzQ5NzhCQTMwOUVEN0RBNDY3M0U3NzM5RDkz MjJGMjYyOUIwHhcNMjUxMTA0MjMxNDEzWhcNMjUxMTExMjMxNDEzWjAYMRYwFAYD VQQDEw02OTBhODhjNi01ZTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfIo8eyP6PVyzPf1fgkW6Ea/vjEdRoYf8iaGhy/4BX+8BszxUSIUenR+8970 iGn63ejOqNDLhV4ZvcZcXt7P1l0O/9RZpItgHCT3Y3JXSGxV6wZFjmDHabWL77P8 sOTLMGhYGJ+DLQGAL40ZHyDJ0rTmznQj1s0g9FAlAsvF40j/CdfScEDu4vFe+qA8 4cpJIv7MBNz4wG+O+5bv/HZ5cDC5HMcihnCXYGrag5amYKC/wCEy6S4Km61ctXA4 Lxw9/HuDN1AfShPPEuO/vaeWRvl2P/Y/mu2/Izy989p211ro0rYtsD1u8OcIbqfZ AtJuPFqcXcoZBs1j9HYY+6zA4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDReOpQS z5Zfkqp8X3fmH5pF8I9OMB8GA1UdIwQYMBaAFAg1h0l4ujCe19pGc+dznZMi8mKb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTAwRi83RDJCMURGMEQ3 RDAxMUVGOUVGQzkxMERDNEY5QUUwMi9DRFdIU1hpNk1KN1gya1p6NTNPZGt5THlZ cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NEV0hTWGk2TUo3WDJrWno1M09ka3lMeVlwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTAwRi83RDJCMURGMEQ3RDAxMUVGOUVGQzkxMERDNEY5QUUwMi9DRFdIU1hpNk1K N1gya1p6NTNPZGt5THlZcHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKw44xekslExJ/Uv//ptecr8mx1uXmtmEzRJOUSLCEedubsOZapdjX YFUWKb3BchabJ8nr/++yKiNFWxxdm5vu+/deWiYw8AjzVPSXPodnbQ4M9wYhb8Ep TGzk22JP2tO56x4DWyU+g6LzcjeQs+it3DHe+muFgj038ikBJPC0qNYh0B0u1A/m OG7YZQ3xOlGvVBMy8kzGGgncBuUpPCq73whSYvqEzuAni5NFW/1MfQd6ugHZCCe9 2FlymxGJLBvkdUc6psx4jQYvAKQIotB3Jt78eEfzTB+Fr9a8lJmAAaY5wLE6tPUp /4OQr7Ydohq3UUFcRFc3S/+moQ2fyLUx -----END CERTIFICATE-----Generated at Wed Nov 5 03:54:02 2025 by rpki-client