$ rpki-client -vvf rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft File: 84XzeRdwIPCIv3TaLANG2HnCKh0.mft (raw, json) Hash identifier: txglcnoWpn2FHiNfgND4rThRpM9oSkoytxMBWAtAXXk= Subject key identifier: CC:E4:C7:6A:15:4F:19:05:97:53:8D:A9:FD:B8:E7:DD:08:2C:F4:9A Authority key identifier: F3:85:F3:79:17:70:20:F0:88:BF:74:DA:2C:03:46:D8:79:C2:2A:1D Certificate issuer: /CN=A9112AD5/serialNumber=F385F379177020F088BF74DA2C0346D879C22A1D Certificate serial: 047B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft Manifest number: 0477 Signing time: Wed 05 Nov 2025 00:13:40 +0000 Manifest this update: Wed 05 Nov 2025 00:13:40 +0000 Manifest next update: Wed 12 Nov 2025 00:13:40 +0000 Files and hashes: 1: 84XzeRdwIPCIv3TaLANG2HnCKh0.crl (hash: 4v0X5FmdaY/BfXxZ/I3+Hva4I6aJ4fro5y8gK11zBDM=) 2: 3C09B1A2640F11ECBC536111C4F9AE02.roa (hash: x1o/7SXGT/4CedCgS5u41onm9GYNi5PSdU5ws280Sfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.crl rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:13:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1147 (0x47b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112AD5, serialNumber=F385F379177020F088BF74DA2C0346D879C22A1D Validity Not Before: Nov 5 00:13:40 2025 GMT Not After : Nov 12 00:13:40 2025 GMT Subject: CN=690a96b4-9733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7f:24:84:23:b4:c0:64:a1:14:90:88:5f:4f: f6:f2:0c:c5:93:84:02:e6:7f:7f:6d:ed:b6:ff:c2: 4a:9d:e0:7a:e1:0d:c0:a7:42:d9:df:a1:85:d5:98: d2:af:9e:99:cc:90:59:60:cd:bf:bb:46:b8:83:66: f3:10:9f:d4:74:36:df:39:a0:9a:25:b6:d1:43:c8: 36:d3:59:80:c7:46:c5:a4:51:0b:50:f4:93:53:74: bf:1c:a9:bc:56:63:b0:e7:86:0b:60:66:b6:b0:d1: 1a:15:36:4e:e4:e7:e6:6f:29:10:d5:33:6d:68:cc: 04:ad:da:19:3c:75:fc:d3:91:aa:93:5a:c7:04:53: 89:b1:aa:00:71:57:c4:03:ca:a9:61:b2:be:7d:f8: bc:50:d4:b9:a9:1c:18:ea:f0:d7:25:c2:9a:f4:dc: c1:a7:cf:f2:82:de:09:a1:1a:82:e9:c4:1e:2a:ed: 8a:ec:e2:24:21:fd:3e:4e:1a:db:1b:a8:4d:bc:59: e6:19:0c:aa:47:13:0f:1d:1b:18:98:7f:ca:2a:eb: 74:2f:00:3d:dd:c0:a9:66:2d:ce:e1:d6:69:d4:83: 01:e6:6b:4f:a4:05:82:ac:a4:d9:3a:d4:7a:24:82: d0:3b:24:22:5b:77:4a:ea:16:ba:ca:03:1c:a7:b5: 8c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:E4:C7:6A:15:4F:19:05:97:53:8D:A9:FD:B8:E7:DD:08:2C:F4:9A X509v3 Authority Key Identifier: keyid:F3:85:F3:79:17:70:20:F0:88:BF:74:DA:2C:03:46:D8:79:C2:2A:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:3e:5f:5d:60:2a:6c:1c:6c:d5:df:b6:ff:75:c9:fb:3e:6b: 69:f0:8c:9a:b4:e5:8d:51:67:69:e2:0c:99:7d:56:9b:ee:53: 44:47:4e:49:3f:01:d7:c5:0f:8d:31:4e:51:29:a2:03:dc:b3: df:af:44:9e:e6:58:b5:7e:4b:91:10:02:63:34:25:f0:03:4f: be:b4:5d:a8:32:91:97:b3:79:07:91:e5:ed:6a:6e:b8:f2:db: cd:76:fa:59:85:3b:ef:5a:b7:31:cb:7a:a4:1f:e0:2d:bb:8c: 25:8e:62:fe:b4:35:dd:d5:4f:a3:52:79:b7:95:da:9b:de:26: 58:28:3d:20:17:2e:1d:64:24:c1:78:d8:22:e5:ef:0a:a5:fd: db:12:44:b9:4b:b7:8b:3b:1d:7b:8e:e8:93:40:21:b3:26:2b: 63:45:56:92:aa:0c:3a:ab:90:58:5e:b7:ed:ee:2b:57:74:3f: a0:f7:b3:a7:a1:68:c0:d1:b8:c9:bc:40:20:e2:44:f2:1d:05: 03:0a:8a:8d:78:0e:ae:04:f8:d8:50:c0:35:b9:ed:ba:34:c0: bc:78:99:ca:b4:13:b5:24:85:dc:22:57:9d:8d:6b:41:97:88: bd:d7:7e:88:94:d6:d7:b8:21:80:7a:08:ae:a8:e0:1f:b7:f1: da:3f:b4:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJBRDUxMTAvBgNVBAUTKEYzODVGMzc5MTc3MDIwRjA4OEJGNzREQTJDMDM0NkQ4 NzlDMjJBMUQwHhcNMjUxMTA1MDAxMzQwWhcNMjUxMTEyMDAxMzQwWjAYMRYwFAYD VQQDEw02OTBhOTZiNC05NzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx38khCO0wGShFJCIX0/28gzFk4QC5n9/be22/8JKneB64Q3Ap0LZ36GF1ZjS r56ZzJBZYM2/u0a4g2bzEJ/UdDbfOaCaJbbRQ8g201mAx0bFpFELUPSTU3S/HKm8 VmOw54YLYGa2sNEaFTZO5OfmbykQ1TNtaMwErdoZPHX805Gqk1rHBFOJsaoAcVfE A8qpYbK+ffi8UNS5qRwY6vDXJcKa9NzBp8/ygt4JoRqC6cQeKu2K7OIkIf0+Thrb G6hNvFnmGQyqRxMPHRsYmH/KKut0LwA93cCpZi3O4dZp1IMB5mtPpAWCrKTZOtR6 JILQOyQiW3dK6ha6ygMcp7WMUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMzkx2oV TxkFl1ONqf24590ILPSaMB8GA1UdIwQYMBaAFPOF83kXcCDwiL902iwDRth5wiod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkFENS9GNDc5NTgwRTY0 MEIxMUVDQUEyMjEwMEJDNEY5QUUwMi84NFh6ZVJkd0lQQ0l2M1RhTEFORzJIbkNL aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg0WHplUmR3SVBDSXYzVGFMQU5HMkhuQ0toMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkFENS9GNDc5NTgwRTY0MEIxMUVDQUEyMjEwMEJDNEY5QUUwMi84NFh6ZVJkd0lQ Q0l2M1RhTEFORzJIbkNLaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYPl9dYCpsHGzV37b/dcn7Pmtp8IyatOWNUWdp4gyZfVab7lNER05J PwHXxQ+NMU5RKaID3LPfr0Se5li1fkuREAJjNCXwA0++tF2oMpGXs3kHkeXtam64 8tvNdvpZhTvvWrcxy3qkH+Atu4wljmL+tDXd1U+jUnm3ldqb3iZYKD0gFy4dZCTB eNgi5e8Kpf3bEkS5S7eLOx17juiTQCGzJitjRVaSqgw6q5BYXrft7itXdD+g97On oWjA0bjJvEAg4kTyHQUDCoqNeA6uBPjYUMA1ue26NMC8eJnKtBO1JIXcIledjWtB l4i9136IlNbXuCGAegiuqOAft/HaP7S3 -----END CERTIFICATE-----Generated at Wed Nov 5 05:47:50 2025 by rpki-client