$ rpki-client -vvf rpki.apnic.net/member_repository/A918BFB8/AB95B5A877D511E9ABC63A65C4F9AE02/SkTgEhvolIv3vEnLA6Y4F6W60YY.mft File: SkTgEhvolIv3vEnLA6Y4F6W60YY.mft (raw, json) Hash identifier: 55+HnqynLL6XLmQ8OKKYlB9b6B9nUMAyMKFSMgIdDQ4= Subject key identifier: 69:F3:8A:00:76:65:C7:EF:3A:5C:2A:D0:76:4F:69:AB:DD:53:74:DB Authority key identifier: 4A:44:E0:12:1B:E8:94:8B:F7:BC:49:CB:03:A6:38:17:A5:BA:D1:86 Certificate issuer: /CN=A918BFB8/serialNumber=4A44E0121BE8948BF7BC49CB03A63817A5BAD186 Certificate serial: 0F6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SkTgEhvolIv3vEnLA6Y4F6W60YY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BFB8/AB95B5A877D511E9ABC63A65C4F9AE02/SkTgEhvolIv3vEnLA6Y4F6W60YY.mft Manifest number: 0F61 Signing time: Thu 06 Nov 2025 16:57:31 +0000 Manifest this update: Thu 06 Nov 2025 16:57:30 +0000 Manifest next update: Thu 13 Nov 2025 16:57:30 +0000 Files and hashes: 1: SkTgEhvolIv3vEnLA6Y4F6W60YY.crl (hash: 4FTcsDKdojQaomdMKkHLZcPZxNDVexbOn0JqJJSdhuU=) 2: DBB5A81E77D611E98792C466C4F9AE02.roa (hash: l1aL436ui+DSs7MhbbXkGIT5+J+EKVHo8IJU3TtL4kk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BFB8/AB95B5A877D511E9ABC63A65C4F9AE02/SkTgEhvolIv3vEnLA6Y4F6W60YY.crl rsync://rpki.apnic.net/member_repository/A918BFB8/AB95B5A877D511E9ABC63A65C4F9AE02/SkTgEhvolIv3vEnLA6Y4F6W60YY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SkTgEhvolIv3vEnLA6Y4F6W60YY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Nov 2025 16:57:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3946 (0xf6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BFB8, serialNumber=4A44E0121BE8948BF7BC49CB03A63817A5BAD186 Validity Not Before: Nov 6 16:57:30 2025 GMT Not After : Nov 13 16:57:30 2025 GMT Subject: CN=690cd37b-5cdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:c4:5c:3e:45:1f:cc:96:79:94:ee:4a:9d:bb: 4a:26:88:6c:57:96:03:8a:69:50:92:72:04:d7:81: f9:48:b1:c7:18:9d:8b:ea:e2:66:31:b2:b6:dc:e1: ff:fe:9a:00:5e:06:02:f5:eb:9c:13:98:21:f8:c7: dd:0f:32:df:d7:d3:85:ad:7c:6c:ba:b9:fb:ef:b0: ec:9e:a3:d0:3a:fe:34:e0:c7:ef:7a:f6:cb:21:c8: db:71:d3:31:12:6e:13:2e:92:cc:02:0c:c9:99:d2: d2:5b:3f:56:4d:da:c6:7f:f6:3a:6b:e1:6d:f3:ff: 44:da:35:d9:2b:4b:c7:af:62:9d:e4:e8:99:9a:a4: bf:6e:be:05:d2:58:dd:ba:7d:16:b5:30:4a:55:fc: b8:f3:e5:2f:e7:57:6e:ab:92:29:c8:ac:9d:bd:75: 0e:27:6d:2e:d1:46:3e:a8:29:3f:70:64:20:e7:98: 2b:ce:fc:4c:db:e6:48:8f:54:bd:4e:80:da:c7:5d: 0d:66:39:c9:2e:9c:c7:f5:51:da:55:0b:65:1a:c8: f6:68:f7:95:8a:64:6f:53:28:87:e7:46:27:33:39: 1b:ac:54:d3:8b:d7:27:d1:3d:9c:4d:79:21:80:63: 82:db:fa:02:9e:f6:78:69:26:26:17:25:0a:0b:d5: bc:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:F3:8A:00:76:65:C7:EF:3A:5C:2A:D0:76:4F:69:AB:DD:53:74:DB X509v3 Authority Key Identifier: keyid:4A:44:E0:12:1B:E8:94:8B:F7:BC:49:CB:03:A6:38:17:A5:BA:D1:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BFB8/AB95B5A877D511E9ABC63A65C4F9AE02/SkTgEhvolIv3vEnLA6Y4F6W60YY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SkTgEhvolIv3vEnLA6Y4F6W60YY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BFB8/AB95B5A877D511E9ABC63A65C4F9AE02/SkTgEhvolIv3vEnLA6Y4F6W60YY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:94:64:bf:f5:cb:5b:68:3b:48:7b:db:89:30:69:34:57:ce: d7:3e:a7:dc:35:a9:42:3f:00:6c:d4:5a:76:c9:85:74:19:50: 34:2a:9a:0f:f9:43:09:a1:04:e5:0b:77:44:14:81:6c:f3:77: 80:e1:c2:ff:06:d9:82:6c:cc:14:7d:7e:24:88:ca:5f:ed:a8: 12:55:d6:f4:cb:35:8a:50:53:18:ed:01:d0:ec:fc:09:7e:70: a8:83:0c:d8:e3:c8:8d:1c:a3:b6:13:00:b7:fc:21:5c:f1:d8: 7a:ac:55:c5:4d:5a:ef:3c:aa:86:77:b6:2d:a0:35:75:95:61: 2e:34:31:0b:c3:b5:a2:a6:6b:44:f1:fd:62:7d:09:9e:79:f9: 89:b2:06:d8:41:e3:da:68:2e:47:e9:0b:58:ba:9f:42:0a:cf: 39:55:8f:77:d6:ea:34:7d:37:3d:1e:f4:86:ff:43:87:7e:30: 7d:85:f9:97:76:78:06:c3:e9:42:2b:48:87:a6:d3:8c:9c:66: 9b:64:0d:c3:68:f3:ea:86:53:74:50:3e:54:43:68:73:43:17: 92:7c:d2:52:8d:60:6b:87:fd:fd:e2:d9:21:d1:73:26:dc:77: da:8f:10:b2:62:6b:c7:49:5b:21:6d:51:30:06:e3:29:16:c5: d1:9e:f1:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJGQjgxMTAvBgNVBAUTKDRBNDRFMDEyMUJFODk0OEJGN0JDNDlDQjAzQTYzODE3 QTVCQUQxODYwHhcNMjUxMTA2MTY1NzMwWhcNMjUxMTEzMTY1NzMwWjAYMRYwFAYD VQQDEw02OTBjZDM3Yi01Y2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlMRcPkUfzJZ5lO5KnbtKJohsV5YDimlQknIE14H5SLHHGJ2L6uJmMbK23OH/ /poAXgYC9eucE5gh+MfdDzLf19OFrXxsurn777DsnqPQOv404MfvevbLIcjbcdMx Em4TLpLMAgzJmdLSWz9WTdrGf/Y6a+Ft8/9E2jXZK0vHr2Kd5OiZmqS/br4F0ljd un0WtTBKVfy48+Uv51duq5IpyKydvXUOJ20u0UY+qCk/cGQg55grzvxM2+ZIj1S9 ToDax10NZjnJLpzH9VHaVQtlGsj2aPeVimRvUyiH50YnMzkbrFTTi9cn0T2cTXkh gGOC2/oCnvZ4aSYmFyUKC9W8dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGnzigB2 ZcfvOlwq0HZPaavdU3TbMB8GA1UdIwQYMBaAFEpE4BIb6JSL97xJywOmOBelutGG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkZCOC9BQjk1QjVBODc3 RDUxMUU5QUJDNjNBNjVDNEY5QUUwMi9Ta1RnRWh2b2xJdjN2RW5MQTZZNEY2VzYw WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NrVGdFaHZvbEl2M3ZFbkxBNlk0RjZXNjBZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkZCOC9BQjk1QjVBODc3RDUxMUU5QUJDNjNBNjVDNEY5QUUwMi9Ta1RnRWh2b2xJ djN2RW5MQTZZNEY2VzYwWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUlGS/9ctbaDtIe9uJMGk0V87XPqfcNalCPwBs1Fp2yYV0GVA0KpoP +UMJoQTlC3dEFIFs83eA4cL/BtmCbMwUfX4kiMpf7agSVdb0yzWKUFMY7QHQ7PwJ fnCogwzY48iNHKO2EwC3/CFc8dh6rFXFTVrvPKqGd7YtoDV1lWEuNDELw7WipmtE 8f1ifQmeefmJsgbYQePaaC5H6QtYup9CCs85VY931uo0fTc9HvSG/0OHfjB9hfmX dngGw+lCK0iHptOMnGabZA3DaPPqhlN0UD5UQ2hzQxeSfNJSjWBrh/394tkh0XMm 3HfajxCyYmvHSVshbVEwBuMpFsXRnvEg -----END CERTIFICATE-----Generated at Fri Nov 7 16:17:50 2025 by rpki-client