$ rpki-client -vvf rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft File: D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft (raw, json) Hash identifier: FXQKPTyI8H91bAmwNOPwaiuWtVdzV9u9QKFAdIXKveY= Subject key identifier: AB:E3:2F:30:7D:66:B2:C9:0F:02:F2:45:41:61:CC:A1:EF:48:18:46 Authority key identifier: 0F:54:5E:62:73:D7:C9:7E:99:95:41:1F:76:D5:C4:F0:06:BB:51:86 Certificate issuer: /CN=A918A05D/serialNumber=0F545E6273D7C97E9995411F76D5C4F006BB5186 Certificate serial: 01D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft Manifest number: 01B5 Signing time: Mon 03 Nov 2025 03:25:28 +0000 Manifest this update: Mon 03 Nov 2025 03:25:28 +0000 Manifest next update: Mon 10 Nov 2025 03:25:28 +0000 Files and hashes: 1: D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl (hash: bJHoyz+zdz2ggonsijTtabZlp4PjlbASSEpfztdm9Ko=) 2: 06856B04A5EA11F095618A7CC4F9AE02.roa (hash: TuFTA9EywCFfz3mauYPbCJRfabXsCP/+IjwcQJDFIS8=) 3: E506BE2CF03811EFAD4C2257C4F9AE02.roa (hash: iRxA1ggG5Gg6gMWZuZ8L1lPJN3fft+M4sC43triwT/s=) 4: A045C92CB46611EEAFEE8758C4F9AE02.roa (hash: tbP1wHLZXWdBy80smo7nwsfBeTkYD2DmwbznFImHmJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:25:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 464 (0x1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A05D, serialNumber=0F545E6273D7C97E9995411F76D5C4F006BB5186 Validity Not Before: Nov 3 03:25:28 2025 GMT Not After : Nov 10 03:25:28 2025 GMT Subject: CN=690820a8-b7e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a5:ef:4b:0d:63:f4:f2:13:82:4a:38:68:34: f6:21:6e:5e:e9:1c:48:69:f3:be:2d:c4:94:a7:71: de:89:e4:ee:2f:e6:ba:0e:0b:6e:26:7f:b9:70:48: fe:c7:35:eb:51:bd:41:8f:8e:dd:f7:34:d3:e0:25: 93:ec:a0:03:c5:62:3f:29:8b:a9:49:89:ef:73:22: 02:91:cd:e0:ce:4f:0b:01:72:1e:c3:9a:62:51:80: 28:e0:86:40:0b:d1:5b:a1:f8:b3:ac:58:64:d1:15: 89:f8:ba:69:3c:b9:76:71:a9:eb:21:61:d3:a5:50: b9:e4:37:ad:9e:62:61:80:4c:4c:39:f0:3a:66:94: 5f:35:c3:a5:96:f2:b5:e2:b4:ec:6f:d8:83:a8:61: 07:ef:dc:76:2a:a2:4c:c4:62:7c:e3:c1:ca:70:86: 45:1c:ef:ab:a8:df:0b:a0:3c:00:f1:18:fb:37:00: bd:d1:49:ac:54:fe:d8:de:08:e1:7e:6c:3e:8c:aa: 1c:c6:f1:80:5b:74:a1:9d:b2:6b:39:87:bf:49:15: 78:da:89:9f:8a:84:a4:70:f7:d7:51:0c:17:46:91: 53:50:30:e4:e5:be:d7:1f:61:a1:6f:70:d4:af:a7: 0e:2e:29:31:17:aa:79:1c:49:0e:f6:3b:06:26:95: 64:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:E3:2F:30:7D:66:B2:C9:0F:02:F2:45:41:61:CC:A1:EF:48:18:46 X509v3 Authority Key Identifier: keyid:0F:54:5E:62:73:D7:C9:7E:99:95:41:1F:76:D5:C4:F0:06:BB:51:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:4f:79:12:54:b5:25:39:b7:df:58:3e:d7:2a:3c:6a:5a:9d: de:c0:c5:9d:c3:50:04:31:04:99:3b:47:3f:65:9c:4d:a0:a2: 2e:ce:12:df:b5:e4:4f:85:b4:41:d2:e3:b8:13:90:17:4e:b6: 8c:bb:c9:d0:14:b0:b1:90:2a:93:e1:75:dd:c9:3b:7a:7e:c6: 6f:bd:3e:ef:3d:e8:61:83:76:61:5a:93:e3:93:81:f5:02:5e: 08:2a:8e:4a:a8:c9:42:8a:8a:04:cd:8c:6b:0d:b6:1c:3f:89: 05:8e:7c:41:fb:f9:f5:08:d8:f3:b8:fb:de:93:d5:89:dc:41: 68:3d:e0:67:d0:a4:41:56:b5:41:8b:84:92:2b:34:5d:a8:89: 47:47:11:ec:74:97:64:6f:89:f2:35:76:ab:7c:fa:ec:45:3a: f7:52:02:c2:e1:0e:68:1d:05:b1:6c:a5:84:5f:ac:1f:79:8a: d8:ec:33:da:c9:88:88:4c:c9:a3:5d:68:2d:79:61:de:db:eb: ff:2c:f9:af:a8:28:75:ab:07:64:c4:f9:32:1d:1d:ca:f0:16: ca:c2:fd:1c:e9:67:8f:85:3a:67:56:90:b6:11:67:a2:96:ba: a6:da:cf:1d:a0:e6:ab:ac:c3:2f:80:67:e7:67:b6:b1:bc:b4: 03:d9:9f:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEwNUQxMTAvBgNVBAUTKDBGNTQ1RTYyNzNEN0M5N0U5OTk1NDExRjc2RDVDNEYw MDZCQjUxODYwHhcNMjUxMTAzMDMyNTI4WhcNMjUxMTEwMDMyNTI4WjAYMRYwFAYD VQQDEw02OTA4MjBhOC1iN2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6XvSw1j9PITgko4aDT2IW5e6RxIafO+LcSUp3HeieTuL+a6DgtuJn+5cEj+ xzXrUb1Bj47d9zTT4CWT7KADxWI/KYupSYnvcyICkc3gzk8LAXIew5piUYAo4IZA C9FbofizrFhk0RWJ+LppPLl2canrIWHTpVC55DetnmJhgExMOfA6ZpRfNcOllvK1 4rTsb9iDqGEH79x2KqJMxGJ848HKcIZFHO+rqN8LoDwA8Rj7NwC90UmsVP7Y3gjh fmw+jKocxvGAW3ShnbJrOYe/SRV42omfioSkcPfXUQwXRpFTUDDk5b7XH2Ghb3DU r6cOLikxF6p5HEkO9jsGJpVk6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKvjLzB9 ZrLJDwLyRUFhzKHvSBhGMB8GA1UdIwQYMBaAFA9UXmJz18l+mZVBH3bVxPAGu1GG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTA1RC9DMUVGQjA4MDRF MjUxMUVFQUFBRTZENDlDNEY5QUUwMi9EMVJlWW5QWHlYNlpsVUVmZHRYRThBYTdV WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QxUmVZblBYeVg2WmxVRWZkdFhFOEFhN1VZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTA1RC9DMUVGQjA4MDRFMjUxMUVFQUFBRTZENDlDNEY5QUUwMi9EMVJlWW5QWHlY NlpsVUVmZHRYRThBYTdVWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNT3kSVLUlObffWD7XKjxqWp3ewMWdw1AEMQSZO0c/ZZxNoKIuzhLf teRPhbRB0uO4E5AXTraMu8nQFLCxkCqT4XXdyTt6fsZvvT7vPehhg3ZhWpPjk4H1 Al4IKo5KqMlCiooEzYxrDbYcP4kFjnxB+/n1CNjzuPvek9WJ3EFoPeBn0KRBVrVB i4SSKzRdqIlHRxHsdJdkb4nyNXarfPrsRTr3UgLC4Q5oHQWxbKWEX6wfeYrY7DPa yYiITMmjXWgteWHe2+v/LPmvqCh1qwdkxPkyHR3K8BbKwv0c6WePhTpnVpC2EWei lrqm2s8doOarrMMvgGfnZ7axvLQD2Z+e -----END CERTIFICATE-----Generated at Tue Nov 4 12:34:47 2025 by rpki-client