$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft File: ctH2ecltIFwtRxyUqA3vYNkRJhw.mft (raw, json) Hash identifier: Tq2wLxLGbjFgS4jalZ+M/hByj5QU5d4vDpwPtimhId8= Subject key identifier: FD:DC:EB:EA:DA:0E:73:89:82:A9:36:AA:19:FB:C1:EE:3E:D5:CB:9D Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft Manifest number: 0127 Signing time: Mon 03 Nov 2025 04:37:43 +0000 Manifest this update: Mon 03 Nov 2025 04:37:43 +0000 Manifest next update: Mon 10 Nov 2025 04:37:43 +0000 Files and hashes: 1: ctH2ecltIFwtRxyUqA3vYNkRJhw.crl (hash: WYvX/2GkdHve3aTLIevi+dieEKEwPqn3DAD0ySP7W08=) 2: 255842A2EFF411EE853CC833C4F9AE02.roa (hash: 0a/19rU1zoR8HPG3b9KrbOC4Srzy59tAkTtlFRC+aqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:37:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E, serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Validity Not Before: Nov 3 04:37:43 2025 GMT Not After : Nov 10 04:37:43 2025 GMT Subject: CN=69083197-e308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b8:21:12:42:60:04:c2:5b:5f:46:af:db:c2: bb:7b:15:ed:a1:bd:78:c1:d3:4b:d0:35:40:88:d5: 5d:b8:b0:85:04:60:8e:7d:0f:33:76:ed:89:e2:06: 5c:98:86:8f:84:ac:83:35:b6:fe:06:90:2c:cf:da: d8:67:7f:a6:ad:31:bd:3a:bb:dd:c4:3b:ec:c0:6c: 83:05:3a:aa:50:09:e5:43:9a:ec:5a:98:a3:69:ba: 94:9e:97:69:ce:f6:47:b4:d0:d5:f6:07:9b:fc:42: 25:13:e8:58:85:1d:7b:5e:b6:9b:c5:59:6f:61:7b: b0:1a:16:4c:77:48:c8:25:c9:59:7c:f9:20:94:5f: 77:d1:5c:89:eb:06:c9:f8:0b:a1:9d:c0:94:f1:4d: 00:93:2d:01:ff:e3:c0:65:d5:d4:5d:dd:a5:f6:e8: c4:92:87:fd:4f:f6:87:ec:aa:72:db:ef:d6:34:d5: 12:bb:2b:fe:7e:f0:87:86:0b:b4:82:ac:34:1d:35: 2d:b5:24:39:4b:81:e3:b1:42:06:8b:64:f9:d0:7d: 01:44:49:a8:59:3b:93:1b:a5:d6:ca:00:58:45:ce: 72:bd:3b:e2:52:70:7a:32:73:2d:5f:59:5d:f5:65: 02:e7:aa:8e:2a:70:cd:c2:07:4d:35:b8:f7:e0:bf: 95:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:DC:EB:EA:DA:0E:73:89:82:A9:36:AA:19:FB:C1:EE:3E:D5:CB:9D X509v3 Authority Key Identifier: keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:c6:2a:20:14:fb:54:f8:b8:db:8d:1c:ae:19:08:14:ea:57: 4f:99:81:0c:3b:a9:e7:1e:df:c0:e4:26:b8:be:9c:87:9c:a0: c3:d9:17:b7:86:db:ee:46:f1:39:fb:86:70:9a:3d:b4:60:a1: 29:30:6d:e4:1c:e0:ff:93:7e:f9:04:a0:21:81:39:96:bb:df: bc:6d:da:90:78:3d:39:a0:c0:7e:0a:83:e4:79:f8:51:72:79: 7d:79:f5:5c:ce:f5:24:2f:0e:ac:41:1b:5d:e4:df:5e:b1:d0: e8:15:ad:d9:c6:e5:18:8e:cf:74:b4:48:67:46:03:23:e1:e9: 40:5a:92:b3:a6:96:e2:ad:9f:27:a2:7a:45:0c:cc:a4:0c:2a: df:b9:00:2f:d4:9b:ec:6b:5c:0f:d0:d6:80:ed:ef:6c:87:b4: 22:49:89:56:1a:b4:a5:78:66:cf:d0:fb:36:e2:65:20:ab:b2: ef:98:95:b9:7d:07:43:e2:4d:a2:fe:1b:0b:59:68:eb:a4:73: 58:3b:50:98:f7:01:37:20:34:44:6e:8f:20:4b:d3:03:66:25: 36:23:26:55:dc:17:10:a8:d5:bf:5f:d5:d8:10:31:5b:b7:9f: c4:8d:15:1f:8b:57:15:2c:9a:c1:d7:df:bc:80:18:d0:9c:87: 5d:9f:dc:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKDcyRDFGNjc5Qzk2RDIwNUMyRDQ3MUM5NEE4MERFRjYw RDkxMTI2MUMwHhcNMjUxMTAzMDQzNzQzWhcNMjUxMTEwMDQzNzQzWjAYMRYwFAYD VQQDEw02OTA4MzE5Ny1lMzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7ghEkJgBMJbX0av28K7exXtob14wdNL0DVAiNVduLCFBGCOfQ8zdu2J4gZc mIaPhKyDNbb+BpAsz9rYZ3+mrTG9OrvdxDvswGyDBTqqUAnlQ5rsWpijabqUnpdp zvZHtNDV9geb/EIlE+hYhR17XrabxVlvYXuwGhZMd0jIJclZfPkglF930VyJ6wbJ +AuhncCU8U0Aky0B/+PAZdXUXd2l9ujEkof9T/aH7Kpy2+/WNNUSuyv+fvCHhgu0 gqw0HTUttSQ5S4HjsUIGi2T50H0BREmoWTuTG6XWygBYRc5yvTviUnB6MnMtX1ld 9WUC56qOKnDNwgdNNbj34L+VSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP3c6+ra DnOJgqk2qhn7we4+1cudMB8GA1UdIwQYMBaAFHLR9nnJbSBcLUcclKgN72DZESYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS81QkMxMjY3QUVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElGd3RSeHlVcUEzdllOa1JK aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2N0SDJlY2x0SUZ3dFJ4eVVxQTN2WU5rUkpody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg1RS81QkMxMjY3QUVGRjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElG d3RSeHlVcUEzdllOa1JKaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNxiogFPtU+LjbjRyuGQgU6ldPmYEMO6nnHt/A5Ca4vpyHnKDD2Re3 htvuRvE5+4Zwmj20YKEpMG3kHOD/k375BKAhgTmWu9+8bdqQeD05oMB+CoPkefhR cnl9efVczvUkLw6sQRtd5N9esdDoFa3ZxuUYjs90tEhnRgMj4elAWpKzppbirZ8n onpFDMykDCrfuQAv1Jvsa1wP0NaA7e9sh7QiSYlWGrSleGbP0Ps24mUgq7LvmJW5 fQdD4k2i/hsLWWjrpHNYO1CY9wE3IDREbo8gS9MDZiU2IyZV3BcQqNW/X9XYEDFb t5/EjRUfi1cVLJrB19+8gBjQnIddn9xr -----END CERTIFICATE-----Generated at Wed Nov 5 05:19:04 2025 by rpki-client