$ rpki-client -vvf rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.mft File: 1pesTITI0RmFX1oM3aY13R44Xuc.mft (raw, json) Hash identifier: Gy3rfM/y78w+8Vn3S+UJNIokXMSLc+Kuh68/rWIo3mk= Subject key identifier: 08:5C:EE:D8:D2:AF:BC:7F:46:B1:61:77:03:3F:50:3A:E3:D1:0B:3C Authority key identifier: D6:97:AC:4C:84:C8:D1:19:85:5F:5A:0C:DD:A6:35:DD:1E:38:5E:E7 Certificate issuer: /CN=A918A9FC/serialNumber=D697AC4C84C8D119855F5A0CDDA635DD1E385EE7 Certificate serial: 34F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pesTITI0RmFX1oM3aY13R44Xuc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.mft Manifest number: 34E4 Signing time: Sun 02 Nov 2025 15:00:44 +0000 Manifest this update: Sun 02 Nov 2025 15:00:44 +0000 Manifest next update: Sun 09 Nov 2025 15:00:44 +0000 Files and hashes: 1: 1pesTITI0RmFX1oM3aY13R44Xuc.crl (hash: VqwKP+UX0r762pJQkIQHlGcTmFE9xwOde6UzOEIX0U8=) 2: 7859AE6A0B5511EABCBC343DC4F9AE02.roa (hash: jWpGewbGAxCVZEy9uZnR7Tfw1mCynOwqfq2TLC2QUUM=) 3: EADCDA1C8D9611EEBE392A3CC4F9AE02.roa (hash: KB0yl0ZQRg2b/pl7UMxerf5AoFGQw8HVHTGUQ+jATl8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.crl rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pesTITI0RmFX1oM3aY13R44Xuc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13553 (0x34f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A9FC, serialNumber=D697AC4C84C8D119855F5A0CDDA635DD1E385EE7 Validity Not Before: Nov 2 15:00:44 2025 GMT Not After : Nov 9 15:00:44 2025 GMT Subject: CN=6907721c-8a39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b7:06:26:11:0a:58:16:67:52:83:ad:42:06: 82:e8:ce:65:16:c6:0c:f9:c4:af:d3:a9:de:4d:fa: ea:7b:fe:39:81:ef:95:6b:b8:86:92:c0:9b:c2:68: 14:30:84:2d:eb:2e:01:54:52:dd:35:1f:0a:d2:2f: 8a:e2:4d:43:bd:4b:d1:60:8a:95:da:5c:bf:6f:7e: 4a:12:e6:26:6c:43:17:c8:c6:2e:34:7a:34:4c:9a: 6f:e8:62:c7:c7:cd:1b:dc:a4:89:71:9b:de:1b:82: dd:f5:bc:c5:54:58:22:cc:8d:02:06:cd:bd:e5:25: 66:62:b7:1a:cb:60:8f:92:da:1b:55:83:f0:95:da: 71:a4:4f:10:aa:44:e9:e5:bd:34:b9:82:f8:18:34: 35:b7:98:50:c9:90:ba:eb:f6:38:b3:a7:b1:ca:d1: c9:91:25:1c:d6:03:ae:8a:8d:a9:9b:d0:91:8b:35: e4:38:e3:68:24:7b:bc:fe:9f:df:78:52:ca:cb:69: 0f:f9:3f:75:6c:eb:a0:71:ec:a1:8f:30:f6:a7:d0: e0:e9:97:ff:1a:af:27:1f:8f:be:bc:5c:1f:03:21: ed:0c:40:66:eb:a3:5f:3f:85:2a:97:3d:80:5b:e2: f6:75:ff:74:3e:8e:f6:99:41:0d:90:16:0d:c5:db: 0f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:5C:EE:D8:D2:AF:BC:7F:46:B1:61:77:03:3F:50:3A:E3:D1:0B:3C X509v3 Authority Key Identifier: keyid:D6:97:AC:4C:84:C8:D1:19:85:5F:5A:0C:DD:A6:35:DD:1E:38:5E:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pesTITI0RmFX1oM3aY13R44Xuc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:f8:40:19:46:b2:a5:70:c0:01:e3:17:e2:1f:57:0c:38:f7: 0a:34:cb:91:1e:97:cc:fe:43:e7:e9:69:59:04:d5:fe:dd:4e: e0:c8:03:82:d2:4c:72:fa:70:f9:ff:9b:f0:ca:89:cd:c0:51: 3c:66:a3:f0:a5:63:e4:f1:0a:07:4d:9c:12:aa:e3:02:2d:45: 9f:d2:9a:58:31:c2:d4:0d:47:3a:18:fa:70:0b:51:d7:ec:b2: ad:4a:bc:19:b5:40:fe:4f:a3:ac:90:38:ca:10:97:e2:7f:64: 1f:0a:a5:22:f0:d9:7d:be:a5:df:1f:e6:2e:98:b3:21:57:87: 70:07:1b:96:e6:3b:04:10:2d:44:b3:55:86:2c:3e:19:69:f3: c4:5e:56:08:0a:46:39:1a:4b:6a:16:af:ec:f4:d0:99:dc:91: 45:87:26:3a:46:0c:7a:fd:f4:94:07:28:40:7f:cd:a8:73:da: 82:85:95:32:aa:6e:3b:18:6a:46:a7:0b:dd:00:44:87:b8:3f: f3:ff:ed:42:a8:da:b3:08:b3:98:dc:6c:ec:89:79:16:43:ff: 20:37:0b:59:5b:9b:2e:7e:df:02:23:16:30:cf:50:de:da:33: 6a:37:4d:18:1f:1e:ac:7c:7d:0c:d7:b9:d9:3a:a9:9e:fe:c6: e6:46:d1:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE5RkMxMTAvBgNVBAUTKEQ2OTdBQzRDODRDOEQxMTk4NTVGNUEwQ0REQTYzNURE MUUzODVFRTcwHhcNMjUxMTAyMTUwMDQ0WhcNMjUxMTA5MTUwMDQ0WjAYMRYwFAYD VQQDEw02OTA3NzIxYy04YTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07cGJhEKWBZnUoOtQgaC6M5lFsYM+cSv06neTfrqe/45ge+Va7iGksCbwmgU MIQt6y4BVFLdNR8K0i+K4k1DvUvRYIqV2ly/b35KEuYmbEMXyMYuNHo0TJpv6GLH x80b3KSJcZveG4Ld9bzFVFgizI0CBs295SVmYrcay2CPktobVYPwldpxpE8QqkTp 5b00uYL4GDQ1t5hQyZC66/Y4s6exytHJkSUc1gOuio2pm9CRizXkOONoJHu8/p/f eFLKy2kP+T91bOugceyhjzD2p9Dg6Zf/Gq8nH4++vFwfAyHtDEBm66NfP4Uqlz2A W+L2df90Po72mUENkBYNxdsPlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAhc7tjS r7x/RrFhdwM/UDrj0Qs8MB8GA1UdIwQYMBaAFNaXrEyEyNEZhV9aDN2mNd0eOF7n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTlGQy8zMTkzMzdBQTFE OUUxMUUyODZFOUQxOEQwOEIwMkNEMi8xcGVzVElUSTBSbUZYMW9NM2FZMTNSNDRY dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwZXNUSVRJMFJtRlgxb00zYVkxM1I0NFh1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTlGQy8zMTkzMzdBQTFEOUUxMUUyODZFOUQxOEQwOEIwMkNEMi8xcGVzVElUSTBS bUZYMW9NM2FZMTNSNDRYdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAA+EAZRrKlcMAB4xfiH1cMOPcKNMuRHpfM/kPn6WlZBNX+3U7gyAOC 0kxy+nD5/5vwyonNwFE8ZqPwpWPk8QoHTZwSquMCLUWf0ppYMcLUDUc6GPpwC1HX 7LKtSrwZtUD+T6OskDjKEJfif2QfCqUi8Nl9vqXfH+YumLMhV4dwBxuW5jsEEC1E s1WGLD4ZafPEXlYICkY5GktqFq/s9NCZ3JFFhyY6Rgx6/fSUByhAf82oc9qChZUy qm47GGpGpwvdAESHuD/z/+1CqNqzCLOY3GzsiXkWQ/8gNwtZW5suft8CIxYwz1De 2jNqN00YHx6sfH0M17nZOqme/sbmRtES -----END CERTIFICATE-----Generated at Tue Nov 4 16:04:52 2025 by rpki-client