$ rpki-client -vvf rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft File: ID0eLahSvltkOpm-9WTXdL3cx_Q.mft (raw, json) Hash identifier: n+WGbQMAMJwUKP0PH2WtwsLTE1ACntZotD62KbJ6iWw= Subject key identifier: BC:55:F3:69:2D:B0:B2:6D:1B:DF:AE:F8:2A:EF:72:68:9D:F5:4D:DB Authority key identifier: 20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 Certificate issuer: /CN=A917E832/serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Certificate serial: 0B18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft Manifest number: 0B11 Signing time: Sun 02 Nov 2025 19:17:21 +0000 Manifest this update: Sun 02 Nov 2025 19:17:21 +0000 Manifest next update: Sun 09 Nov 2025 19:17:21 +0000 Files and hashes: 1: ID0eLahSvltkOpm-9WTXdL3cx_Q.crl (hash: rEbYGUkPtmKNgFNHq5tU1Oqdvxfbl2rMt1i+ziKoU90=) 2: E869880C500511EA98307A59C4F9AE02.roa (hash: vj3M9GWIecNQbzYctkTLvK5haUmE73bb2B+bBqSBJ9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2840 (0xb18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E832, serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Validity Not Before: Nov 2 19:17:21 2025 GMT Not After : Nov 9 19:17:21 2025 GMT Subject: CN=6907ae41-ace8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:19:0f:0f:6a:3c:69:34:d3:d1:04:a5:12:09: d3:0d:04:9a:af:15:98:49:63:e1:b3:ce:61:b8:6a: 31:e9:f3:f4:5d:e9:ee:51:77:8e:17:a1:ee:8a:ad: c7:59:b1:83:66:24:8d:c8:db:8b:67:6e:13:90:6d: c4:38:07:c2:6e:c1:05:d4:a1:68:1f:ac:9b:3b:2d: b4:3a:17:f7:bf:34:05:c1:2d:11:73:7a:34:fc:b4: 9c:43:b9:a2:0f:8a:0e:40:8c:47:d8:ef:a5:f1:b6: 67:37:09:ed:b8:62:23:03:66:9d:1a:25:9b:9a:3f: fd:28:1b:b3:23:72:b8:30:5f:a1:0a:87:be:85:23: 0e:02:9b:0d:62:d6:2c:85:04:aa:08:c6:7a:3f:51: 7a:ec:ca:6b:ab:12:2a:90:0d:18:34:a1:21:77:5d: d0:3d:78:a6:c5:46:f3:09:53:5c:c6:d4:f5:b2:22: b6:34:ba:2f:e5:5a:96:12:df:b5:82:10:28:37:d2: f5:ca:7f:1e:b2:33:a2:8c:ce:14:cb:25:e9:2d:7c: 87:ac:cf:8b:24:61:e7:b1:cf:e3:f2:7d:b4:97:65: f2:73:79:38:79:12:32:de:60:83:7c:a5:7a:30:49: 18:77:4a:ef:ea:9b:8d:5d:f6:18:d9:30:49:0f:b4: 52:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:55:F3:69:2D:B0:B2:6D:1B:DF:AE:F8:2A:EF:72:68:9D:F5:4D:DB X509v3 Authority Key Identifier: keyid:20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:b6:02:06:f8:e7:1a:83:f0:55:6f:59:91:d8:df:59:37:e0: 5e:77:5d:31:dd:22:6d:82:4d:9e:21:4d:91:63:6e:d4:2f:9f: fb:13:0e:d5:3d:02:48:a1:9e:c8:dd:07:bb:4e:9c:b1:64:5d: 94:00:e7:dc:99:65:60:aa:38:15:eb:2d:ac:9c:60:14:97:3d: 68:d7:42:03:c0:81:85:49:52:58:71:86:b7:57:98:86:58:8f: 1a:6b:af:92:2f:25:18:b7:43:b8:ef:f2:00:61:3b:72:b4:12: e9:82:cf:94:10:44:1c:d9:d7:f6:00:ff:f0:b0:cd:25:62:74: 1d:21:08:0d:56:43:04:0e:da:46:b4:3d:e0:49:61:d4:93:39: 62:ff:80:6f:aa:94:58:df:28:1c:2d:b6:f1:20:da:eb:a1:de: 8e:82:ac:ce:59:6b:e9:cf:0d:16:0d:c6:5c:34:32:11:04:49: fe:5e:f6:41:ea:ff:e5:10:e6:11:8d:ba:ec:0a:87:c6:ef:ba: ac:66:81:a4:79:b6:4e:48:d4:da:06:17:d9:b1:11:91:fb:44: a1:23:c2:f7:17:5b:be:9e:90:3e:f0:26:b5:c6:c9:79:2d:33: cb:fb:46:c3:04:d6:4c:5c:f3:26:55:40:d1:f5:f4:ca:48:c9: 33:c2:b3:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U4MzIxMTAvBgNVBAUTKDIwM0QxRTJEQTg1MkJFNUI2NDNBOTlCRUY1NjRENzc0 QkREQ0M3RjQwHhcNMjUxMTAyMTkxNzIxWhcNMjUxMTA5MTkxNzIxWjAYMRYwFAYD VQQDEw02OTA3YWU0MS1hY2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRkPD2o8aTTT0QSlEgnTDQSarxWYSWPhs85huGox6fP0XenuUXeOF6Huiq3H WbGDZiSNyNuLZ24TkG3EOAfCbsEF1KFoH6ybOy20Ohf3vzQFwS0Rc3o0/LScQ7mi D4oOQIxH2O+l8bZnNwntuGIjA2adGiWbmj/9KBuzI3K4MF+hCoe+hSMOApsNYtYs hQSqCMZ6P1F67MprqxIqkA0YNKEhd13QPXimxUbzCVNcxtT1siK2NLov5VqWEt+1 ghAoN9L1yn8esjOijM4UyyXpLXyHrM+LJGHnsc/j8n20l2Xyc3k4eRIy3mCDfKV6 MEkYd0rv6puNXfYY2TBJD7RSrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxV82kt sLJtG9+u+Crvcmid9U3bMB8GA1UdIwQYMBaAFCA9Hi2oUr5bZDqZvvVk13S93Mf0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTgzMi8zQjQ3MTA4QzUw MDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3ZsdGtPcG0tOVdUWGRMM2N4 X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lEMGVMYWhTdmx0a09wbS05V1RYZEwzY3hfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTgzMi8zQjQ3MTA4QzUwMDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3Zs dGtPcG0tOVdUWGRMM2N4X1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVtgIG+Ocag/BVb1mR2N9ZN+Bed10x3SJtgk2eIU2RY27UL5/7Ew7V PQJIoZ7I3Qe7TpyxZF2UAOfcmWVgqjgV6y2snGAUlz1o10IDwIGFSVJYcYa3V5iG WI8aa6+SLyUYt0O47/IAYTtytBLpgs+UEEQc2df2AP/wsM0lYnQdIQgNVkMEDtpG tD3gSWHUkzli/4BvqpRY3ygcLbbxINrrod6OgqzOWWvpzw0WDcZcNDIRBEn+XvZB 6v/lEOYRjbrsCofG77qsZoGkebZOSNTaBhfZsRGR+0ShI8L3F1u+npA+8Ca1xsl5 LTPL+0bDBNZMXPMmVUDR9fTKSMkzwrMg -----END CERTIFICATE-----Generated at Tue Nov 4 12:41:03 2025 by rpki-client