$ rpki-client -vvf rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft File: pN7tlZPlkTA6mwOYBh_o71GGZco.mft (raw, json) Hash identifier: Gc25p965jnkXL7+NruXki/frRd9UuJn+cXcKygGrteE= Subject key identifier: 3C:02:7C:4F:D0:21:26:8D:44:15:CF:3F:9D:8B:D7:CC:D7:B9:2D:FB Authority key identifier: A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA Certificate issuer: /CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Certificate serial: 018A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft Manifest number: 0187 Signing time: Tue 04 Nov 2025 19:16:17 +0000 Manifest this update: Tue 04 Nov 2025 19:16:16 +0000 Manifest next update: Tue 11 Nov 2025 19:16:16 +0000 Files and hashes: 1: pN7tlZPlkTA6mwOYBh_o71GGZco.crl (hash: 2LZNh2by5AJlf64AIQdP7PvlQgwABXFupW/sNLufA7c=) 2: E12607CE6F0411EEA5298939C4F9AE02.roa (hash: 8l049HuRfYTZKVjmyHEuH/syy1lOm3iSGmRbwY8PSnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:39:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 394 (0x18a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CABF, serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Validity Not Before: Nov 4 19:16:16 2025 GMT Not After : Nov 11 19:16:16 2025 GMT Subject: CN=690a5100-9651 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1a:c2:ec:bd:35:a2:32:13:96:95:2d:e0:c7: 3d:3f:95:ba:1c:80:ec:16:37:69:82:93:47:c8:92: ac:e9:bf:8c:18:35:a5:6a:4b:76:a2:57:55:fa:fc: 94:ab:44:b0:2d:27:b2:76:6c:cd:db:a2:fe:f0:a8: 45:5f:79:d6:1c:51:b9:40:81:a2:37:2c:44:1e:07: e2:6f:fc:50:a8:c4:2a:b2:3b:3d:60:00:b5:13:d1: 8b:53:f2:e9:b2:ea:67:e9:c1:ac:a2:db:df:91:61: d4:54:4b:c4:55:62:10:10:d2:89:ee:2f:47:05:20: 97:fc:14:c4:47:6f:3b:f3:71:4e:cf:73:84:f8:27: 1a:ac:de:20:d4:8d:6c:92:0f:de:fe:21:06:d4:ec: 19:72:1c:e7:3a:ac:03:25:8e:e8:1e:55:17:87:34: 1e:28:5f:ab:32:59:78:c2:f8:f8:b5:7b:11:4b:a8: 81:87:c0:a5:2b:cd:97:79:94:b3:91:60:47:c5:e0: ab:7c:49:2c:65:91:82:91:95:4c:6b:08:ca:5d:80: c1:a1:58:82:47:63:f0:95:13:6b:22:16:dd:32:29: 74:8c:1d:42:69:25:e9:ba:7f:22:7d:58:d4:a4:91: 68:26:23:06:00:dd:82:6d:2a:40:e3:8d:14:7e:2e: 13:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:02:7C:4F:D0:21:26:8D:44:15:CF:3F:9D:8B:D7:CC:D7:B9:2D:FB X509v3 Authority Key Identifier: keyid:A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:f4:9c:d6:1c:dd:84:fc:87:11:a2:02:3c:f9:b5:20:a1:98: 3a:8f:af:38:28:09:51:dc:78:4a:eb:04:60:d1:91:d7:10:cc: 4f:8f:00:b2:e2:4e:e7:af:6a:0e:16:8e:a7:eb:0c:d8:95:ff: 11:ed:a0:2b:dd:76:b1:35:77:df:21:df:1a:d7:8e:8a:5b:63: b0:28:77:f7:4a:5f:2e:03:92:cc:0c:6c:6e:36:fc:4d:89:71: d6:65:f4:0e:f8:9e:0b:97:5f:59:4e:f5:c6:fe:14:8a:99:ec: 35:ab:10:49:36:c0:2d:98:99:38:08:f4:b8:af:70:81:99:90: cf:3f:52:02:0f:fe:41:95:24:13:76:93:13:29:32:d2:d2:34: 88:5d:94:6c:bd:b7:ab:2f:54:d4:4d:32:fa:e6:17:f9:fd:de: 78:63:f9:42:8f:42:f8:cc:7e:e3:06:41:1d:86:81:fc:ef:f2: 52:e5:76:28:9d:6f:ec:35:20:90:79:75:e4:97:48:2c:8f:a2: 5b:e2:d4:52:30:c3:39:94:6e:44:7b:78:de:91:7a:6f:45:0a: 55:72:50:2e:d4:ec:dd:18:78:7d:f0:59:70:06:11:cc:91:e0: 7a:24:26:0b:80:75:69:5f:70:f4:a5:f5:e9:b1:ac:03:bf:9d: 72:87:42:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENBQkYxMTAvBgNVBAUTKEE0REVFRDk1OTNFNTkxMzAzQTlCMDM5ODA2MUZFOEVG NTE4NjY1Q0EwHhcNMjUxMTA0MTkxNjE2WhcNMjUxMTExMTkxNjE2WjAYMRYwFAYD VQQDEw02OTBhNTEwMC05NjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhrC7L01ojITlpUt4Mc9P5W6HIDsFjdpgpNHyJKs6b+MGDWlakt2oldV+vyU q0SwLSeydmzN26L+8KhFX3nWHFG5QIGiNyxEHgfib/xQqMQqsjs9YAC1E9GLU/Lp supn6cGsotvfkWHUVEvEVWIQENKJ7i9HBSCX/BTER28783FOz3OE+CcarN4g1I1s kg/e/iEG1OwZchznOqwDJY7oHlUXhzQeKF+rMll4wvj4tXsRS6iBh8ClK82XeZSz kWBHxeCrfEksZZGCkZVMawjKXYDBoViCR2PwlRNrIhbdMil0jB1CaSXpun8ifVjU pJFoJiMGAN2CbSpA440Ufi4T6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDwCfE/Q ISaNRBXPP52L18zXuS37MB8GA1UdIwQYMBaAFKTe7ZWT5ZEwOpsDmAYf6O9RhmXK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0FCRi8xODkxOTVBQzY4 MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtUQTZtd09ZQmhfbzcxR0da Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BON3RsWlBsa1RBNm13T1lCaF9vNzFHR1pjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0FCRi8xODkxOTVBQzY4MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtU QTZtd09ZQmhfbzcxR0daY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY9JzWHN2E/IcRogI8+bUgoZg6j684KAlR3HhK6wRg0ZHXEMxPjwCy 4k7nr2oOFo6n6wzYlf8R7aAr3XaxNXffId8a146KW2OwKHf3Sl8uA5LMDGxuNvxN iXHWZfQO+J4Ll19ZTvXG/hSKmew1qxBJNsAtmJk4CPS4r3CBmZDPP1ICD/5BlSQT dpMTKTLS0jSIXZRsvberL1TUTTL65hf5/d54Y/lCj0L4zH7jBkEdhoH87/JS5XYo nW/sNSCQeXXkl0gsj6Jb4tRSMMM5lG5Ee3jekXpvRQpVclAu1OzdGHh98FlwBhHM keB6JCYLgHVpX3D0pfXpsawDv51yh0Kh -----END CERTIFICATE-----Generated at Tue Nov 4 21:31:48 2025 by rpki-client