$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: Era9W+CDHziVgXlTxAERVt7iXmBYHzMmb1BperUh6kM= Subject key identifier: B2:D1:58:7A:8C:EB:7F:0A:95:80:91:E4:3B:42:44:C8:FF:93:31:C1 Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 0233 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 022B Signing time: Mon 03 Nov 2025 02:06:02 +0000 Manifest this update: Mon 03 Nov 2025 02:06:01 +0000 Manifest next update: Mon 10 Nov 2025 02:06:01 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: 2UKG7XkgX2pvkHqqxa68V8J2pYO7564TFD/aZWTxokY=) 2: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: /aLZRZnVDc3gbgHvgjjTVhimEYu2WCp9inOhdZerK9k=) 3: 1376B9341FAE11F0B3E41E84C4F9AE02.roa (hash: 046Nkak/mvU2MIy/D/sQyHF4+9Nf/OVFcgvY3OIqwCQ=) 4: 130A89761FAE11F0B3E41E84C4F9AE02.roa (hash: 7uR7mk8CLJJlZZvBz+Qm2/sDak7TWidIc0rXMu5Xnkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:06:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 563 (0x233) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: Nov 3 02:06:01 2025 GMT Not After : Nov 10 02:06:01 2025 GMT Subject: CN=69080e09-105b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:0f:39:58:e6:0d:92:11:af:96:1b:2c:e9:4a: e0:18:58:f5:af:e6:23:33:30:7c:d1:18:2f:88:e6: f2:a9:da:df:3b:19:a0:66:63:ed:96:f3:26:04:f8: b3:b3:03:24:f5:c9:f6:1b:01:6f:84:0c:7e:91:9c: dd:68:eb:aa:de:f5:7e:43:99:89:a3:01:e8:36:33: ad:93:18:6c:b0:c7:92:82:16:29:96:19:70:a0:15: f7:9d:8b:e5:9f:7c:d3:53:b7:f9:dd:11:c3:6c:2a: 3e:6e:b8:1c:db:85:cc:42:a1:e4:75:9b:43:0e:01: 15:52:71:d9:55:9c:ec:13:03:74:fa:c9:22:31:b3: f6:55:5e:e2:e3:f8:dc:2d:94:e8:ae:e4:83:f2:6d: 33:9e:5f:8b:fc:23:ec:00:18:7d:fd:a1:30:34:0e: 39:c5:51:f3:f6:bc:cc:a2:4c:cb:3b:e3:2c:a1:66: d1:2d:70:51:d8:c8:0d:99:19:e0:e3:20:2a:c0:1b: f9:2d:75:eb:3e:5a:bb:5b:32:a8:a2:b1:ba:66:d4: 18:a9:d6:7b:c6:5d:c2:f8:bf:6c:3b:36:98:2c:c8: 36:40:08:2e:06:0d:03:1e:76:00:ff:d6:47:22:9e: 22:4e:93:4a:42:b3:85:23:b1:80:19:bf:af:34:ee: ed:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:D1:58:7A:8C:EB:7F:0A:95:80:91:E4:3B:42:44:C8:FF:93:31:C1 X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:0c:0f:31:3b:2b:d3:8d:f9:ba:c1:69:2d:50:ec:dc:f7:71: 93:9f:50:37:e5:71:04:c7:ad:4f:39:03:d5:8c:4b:f4:4d:6d: c6:e1:65:aa:a3:c9:3a:23:d3:df:ca:c9:c0:61:58:59:6f:a9: 8e:7b:1c:31:33:f2:c1:11:e3:b6:0e:5a:4c:2b:55:42:bc:2c: 55:4f:b9:26:6e:45:76:ac:9b:90:b0:96:55:07:ee:fc:b5:22: 49:d5:7d:d7:b7:06:21:1e:9a:2f:92:ca:1e:bf:10:24:4f:4a: f6:e7:c4:e1:0f:b7:b4:84:c3:7d:8f:37:02:dc:30:9d:a2:19: 7e:7f:44:3d:cc:a8:68:a6:ae:59:e3:89:dc:33:e7:4f:96:21: f2:cd:3a:04:e6:ed:15:32:d7:e8:0e:b4:f2:99:0f:8f:91:b2: bc:84:1d:49:ea:c7:87:1f:dd:75:4a:6a:72:d9:cc:e2:e0:94: 76:6b:eb:7f:b3:eb:40:de:9a:04:a0:e8:3a:c9:5e:1d:f3:c6: 4c:b0:86:ea:8a:65:ca:ad:21:46:bd:83:5f:1d:ab:e5:98:7d: 5f:ef:3c:ba:48:65:0b:ed:d1:c8:87:20:ba:7d:0b:da:93:3f: 13:6a:59:9b:df:19:b3:9b:22:67:8d:00:c4:63:fa:d0:db:23: 72:94:be:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjUxMTAzMDIwNjAxWhcNMjUxMTEwMDIwNjAxWjAYMRYwFAYD VQQDEw02OTA4MGUwOS0xMDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Q85WOYNkhGvlhss6UrgGFj1r+YjMzB80RgviObyqdrfOxmgZmPtlvMmBPiz swMk9cn2GwFvhAx+kZzdaOuq3vV+Q5mJowHoNjOtkxhssMeSghYplhlwoBX3nYvl n3zTU7f53RHDbCo+brgc24XMQqHkdZtDDgEVUnHZVZzsEwN0+skiMbP2VV7i4/jc LZToruSD8m0znl+L/CPsABh9/aEwNA45xVHz9rzMokzLO+MsoWbRLXBR2MgNmRng 4yAqwBv5LXXrPlq7WzKoorG6ZtQYqdZ7xl3C+L9sOzaYLMg2QAguBg0DHnYA/9ZH Ip4iTpNKQrOFI7GAGb+vNO7t/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLLRWHqM 638KlYCR5DtCRMj/kzHBMB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCADA8xOyvTjfm6wWktUOzc93GTn1A35XEEx61POQPVjEv0TW3G4WWq o8k6I9PfysnAYVhZb6mOexwxM/LBEeO2DlpMK1VCvCxVT7kmbkV2rJuQsJZVB+78 tSJJ1X3XtwYhHpovksoevxAkT0r258ThD7e0hMN9jzcC3DCdohl+f0Q9zKhopq5Z 44ncM+dPliHyzToE5u0VMtfoDrTymQ+PkbK8hB1J6seHH911Smpy2czi4JR2a+t/ s+tA3poEoOg6yV4d88ZMsIbqimXKrSFGvYNfHavlmH1f7zy6SGUL7dHIhyC6fQva kz8Talmb3xmzmyJnjQDEY/rQ2yNylL42 -----END CERTIFICATE-----Generated at Tue Nov 4 16:03:41 2025 by rpki-client