$ rpki-client -vvf rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft File: 32d9hpNHe5Kh6f58IEImls6oYJ0.mft (raw, json) Hash identifier: W883ciOqwei2hSippFbPVardCa61qCOE7NyOlatRQqY= Subject key identifier: 06:24:3B:73:70:C8:DF:C0:E0:26:06:E2:6D:BD:4A:EE:1E:BE:0A:F1 Authority key identifier: DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D Certificate issuer: /CN=A918BDA2/serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Certificate serial: 0369 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft Manifest number: 0363 Signing time: Wed 05 Nov 2025 01:01:16 +0000 Manifest this update: Wed 05 Nov 2025 01:01:16 +0000 Manifest next update: Wed 12 Nov 2025 01:01:16 +0000 Files and hashes: 1: 32d9hpNHe5Kh6f58IEImls6oYJ0.crl (hash: dbtoy/nq5MHfjBYw+76fcZkHIQfJ4C73V7Xku8rj8uw=) 2: 4BBDE05299B011F0B174EC14C4F9AE02.roa (hash: pdXvO5dWNffMF+g7wdheLMnKcr86zZnCCOuGAycJNwg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 873 (0x369) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BDA2, serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Validity Not Before: Nov 5 01:01:16 2025 GMT Not After : Nov 12 01:01:16 2025 GMT Subject: CN=690aa1dc-1264 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3e:24:5d:4b:10:15:5b:f2:34:8e:f4:c9:88: 2f:f1:f0:43:1b:39:0f:7b:d2:dd:28:47:5e:c2:64: 08:1d:c5:2d:dd:20:8d:5a:ad:05:b1:5e:d4:cf:93: 89:4b:4a:82:31:2d:f7:a8:27:a7:8d:9c:b4:9c:35: 96:43:b9:65:14:1f:76:b4:a5:5c:71:43:9e:5d:77: cd:54:1c:69:fe:70:e2:a6:e1:be:89:aa:d5:55:03: 1f:1d:e5:92:10:82:6e:44:9c:55:7f:c0:6f:03:84: 43:5a:81:b6:c9:15:9b:18:7b:fa:34:fb:a7:32:b7: a1:46:20:d1:6f:5b:3e:14:cf:2f:72:a0:99:ff:c3: 86:fe:cb:25:ae:4f:eb:c9:df:cf:78:0a:b5:97:56: aa:d8:60:83:18:c9:6b:ad:f4:b4:6b:d4:3c:98:20: ea:72:b4:e7:e9:4a:d9:0e:02:6c:7b:5d:24:bc:12: 8e:33:2a:14:f7:f6:53:2f:b9:2c:ee:2b:9f:cd:e7: 66:eb:8e:19:3d:95:df:96:9d:ab:8c:74:bc:6f:3d: b0:0c:39:3f:aa:00:1b:91:ab:fd:c3:8d:4c:2c:a0: dc:dc:6f:57:3e:55:7a:e8:61:72:e1:f5:4d:92:2c: 66:eb:6a:69:aa:c4:7d:72:9a:5c:e6:c0:a3:db:c0: cf:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:24:3B:73:70:C8:DF:C0:E0:26:06:E2:6D:BD:4A:EE:1E:BE:0A:F1 X509v3 Authority Key Identifier: keyid:DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:da:86:8c:fb:f5:92:b8:4e:5f:f1:a2:4d:0d:a1:4a:ff:f9: f6:75:b3:4e:bf:a5:91:0c:01:6f:4c:d3:ce:eb:60:ec:ee:a0: 3a:fe:07:1e:9a:04:d4:36:00:99:8d:bd:e3:4c:f3:09:a4:94: 03:8d:20:67:c5:7f:cf:dc:0b:f9:b6:af:0d:88:69:8d:22:e3: f6:fc:06:89:58:fd:00:ba:7e:79:e1:f4:be:7a:02:d6:6f:a4: 9a:d9:a2:f4:ef:66:54:ab:52:90:4c:0a:a9:12:6d:52:4d:30: bc:d6:0f:cb:5c:37:b1:a9:06:39:3f:13:03:66:65:14:ed:14: 0f:42:ce:2a:27:6e:6b:b1:9a:2c:90:53:71:a3:d2:0d:17:81: b9:13:e1:02:98:ae:f3:b2:af:56:1b:07:9d:fa:ff:3e:d6:72: 6e:80:e5:dc:64:8c:fb:87:f9:ce:04:84:d9:dc:97:1e:d0:63: ab:f0:7b:8b:49:9a:11:e8:89:0a:45:3e:a3:c2:ce:96:eb:ba: 96:8d:09:06:fa:55:6b:3d:1a:ea:4a:af:da:d8:14:e4:57:49: 81:3b:32:08:83:55:e7:be:4f:11:ab:ed:35:ac:86:f3:b2:89: 54:5e:6c:02:45:50:e9:fd:5d:87:ec:35:33:b0:d3:9d:b3:8e: 05:83:37:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEQTIxMTAvBgNVBAUTKERGNjc3RDg2OTM0NzdCOTJBMUU5RkU3QzIwNDIyNjk2 Q0VBODYwOUQwHhcNMjUxMTA1MDEwMTE2WhcNMjUxMTEyMDEwMTE2WjAYMRYwFAYD VQQDEw02OTBhYTFkYy0xMjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvz4kXUsQFVvyNI70yYgv8fBDGzkPe9LdKEdewmQIHcUt3SCNWq0FsV7Uz5OJ S0qCMS33qCenjZy0nDWWQ7llFB92tKVccUOeXXfNVBxp/nDipuG+iarVVQMfHeWS EIJuRJxVf8BvA4RDWoG2yRWbGHv6NPunMrehRiDRb1s+FM8vcqCZ/8OG/sslrk/r yd/PeAq1l1aq2GCDGMlrrfS0a9Q8mCDqcrTn6UrZDgJse10kvBKOMyoU9/ZTL7ks 7iufzedm644ZPZXflp2rjHS8bz2wDDk/qgAbkav9w41MLKDc3G9XPlV66GFy4fVN kixm62ppqsR9cppc5sCj28DPywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAYkO3Nw yN/A4CYG4m29Su4evgrxMB8GA1UdIwQYMBaAFN9nfYaTR3uSoen+fCBCJpbOqGCd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkRBMi83MEU2OUMxOEQw RUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1S2g2ZjU4SUVJbWxzNm9Z SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyZDlocE5IZTVLaDZmNThJRUltbHM2b1lKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkRBMi83MEU2OUMxOEQwRUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1 S2g2ZjU4SUVJbWxzNm9ZSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCz2oaM+/WSuE5f8aJNDaFK//n2dbNOv6WRDAFvTNPO62Ds7qA6/gce mgTUNgCZjb3jTPMJpJQDjSBnxX/P3Av5tq8NiGmNIuP2/AaJWP0Aun554fS+egLW b6Sa2aL072ZUq1KQTAqpEm1STTC81g/LXDexqQY5PxMDZmUU7RQPQs4qJ25rsZos kFNxo9INF4G5E+ECmK7zsq9WGwed+v8+1nJugOXcZIz7h/nOBITZ3Jce0GOr8HuL SZoR6IkKRT6jws6W67qWjQkG+lVrPRrqSq/a2BTkV0mBOzIIg1Xnvk8Rq+01rIbz solUXmwCRVDp/V2H7DUzsNOds44FgzeL -----END CERTIFICATE-----Generated at Wed Nov 5 07:49:53 2025 by rpki-client