$ rpki-client -vvf rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft File: 0zOneHph_4bHRbR0CWr2muMaz_E.mft (raw, json) Hash identifier: GOAKrtFPi9UjEFtTjwBwTk4BDocq0qno0GbRoah1leg= Subject key identifier: D2:69:DD:99:84:A7:8B:0E:0B:3E:E8:CD:43:42:BC:D9:FF:1B:52:22 Authority key identifier: D3:33:A7:78:7A:61:FF:86:C7:45:B4:74:09:6A:F6:9A:E3:1A:CF:F1 Certificate issuer: /CN=A911309C/serialNumber=D333A7787A61FF86C745B474096AF69AE31ACFF1 Certificate serial: 0643 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft Manifest number: 063C Signing time: Tue 04 Nov 2025 22:48:13 +0000 Manifest this update: Tue 04 Nov 2025 22:48:12 +0000 Manifest next update: Tue 11 Nov 2025 22:48:12 +0000 Files and hashes: 1: 0zOneHph_4bHRbR0CWr2muMaz_E.crl (hash: 5OZSUo5WDnzVNWOrZl/D/dZEMZp3aTE8rG40aiM01RI=) 2: 4BC6C1AE9CEF11EF82EF5C3FC4F9AE02.roa (hash: H8xIAhw48eYU+2s4QvMDpQyUyWlzmnbyud68jyECAL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.crl rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1603 (0x643) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911309C, serialNumber=D333A7787A61FF86C745B474096AF69AE31ACFF1 Validity Not Before: Nov 4 22:48:12 2025 GMT Not After : Nov 11 22:48:12 2025 GMT Subject: CN=690a82ac-62fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:30:49:c4:c6:c9:33:69:dd:d4:08:35:37:99: 0e:cc:37:8c:c5:d3:88:83:a7:85:db:91:09:54:bd: 6e:47:5b:f0:54:63:1e:f1:94:ef:cf:25:85:df:a0: 94:96:dc:6b:7c:06:09:de:fd:a5:f4:05:a6:42:e5: 22:d9:e7:30:c5:a0:67:e7:79:45:87:3b:c2:dd:d0: 1c:1f:77:c4:f7:b8:60:b2:ba:75:03:c3:5e:e6:82: 1a:43:4f:5f:6c:01:11:69:7f:34:85:bd:3d:d9:d8: ce:2a:ab:5b:64:0b:54:79:65:b9:df:4e:b3:a6:21: 03:e6:80:f2:1b:40:66:40:1a:09:aa:6c:96:89:b4: 43:4d:10:3d:a7:47:d0:b5:e2:02:dc:06:94:81:9d: 14:78:21:70:62:b2:9f:24:be:f2:98:48:e1:df:65: fb:37:24:ab:a6:e6:51:35:e4:27:ab:3a:ae:f9:91: 81:7c:e6:67:92:9e:e7:cb:28:31:f0:db:a6:3a:6e: bb:66:43:21:a7:e1:00:70:4d:0f:c0:a9:80:55:27: 08:6d:15:16:1b:f4:b7:6a:cd:70:b8:ba:f1:02:4a: be:87:3b:32:06:2d:ea:ca:06:a0:ab:db:97:a1:c9: e8:7d:b9:0f:1e:df:16:1b:5b:1d:e3:99:2b:36:c7: df:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:69:DD:99:84:A7:8B:0E:0B:3E:E8:CD:43:42:BC:D9:FF:1B:52:22 X509v3 Authority Key Identifier: keyid:D3:33:A7:78:7A:61:FF:86:C7:45:B4:74:09:6A:F6:9A:E3:1A:CF:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:2f:e0:cc:16:ae:0e:f7:1d:3f:c8:31:90:12:e1:0c:29:b9: 41:58:26:d6:16:2f:aa:98:0a:20:89:03:bc:01:87:f8:8a:1a: f1:b3:75:78:fd:2b:e3:ff:f9:ad:a2:7b:9f:a8:10:bf:06:5a: cc:8d:3f:a6:48:35:cf:f9:5f:7f:aa:aa:6f:de:5c:9e:59:c7: 24:e4:2b:e5:65:18:34:7a:e5:8f:61:69:a9:77:bf:8a:f8:10: b1:a9:75:3b:e2:20:d8:46:ed:05:3e:66:c2:49:af:4e:85:61: 83:46:f3:53:7d:ac:a4:e2:19:b8:6e:d5:84:2b:9a:e3:29:75: d7:ac:ff:83:a8:b8:5d:8d:f8:67:33:ae:e9:da:50:73:5f:df: b0:06:94:39:a0:2d:de:ae:af:f1:51:38:e7:b2:0b:6f:b7:6f: 0a:a0:33:df:9a:07:06:fc:ec:6f:4c:f2:36:84:ad:0d:6b:2a: 2e:76:54:7c:39:da:04:d3:a0:74:c1:9d:87:a5:15:5a:88:52: 94:c6:74:f4:f2:ca:02:87:1c:ce:be:30:8c:80:8e:dd:50:91: f0:1a:cc:59:94:5f:64:1e:ce:a8:74:0e:f5:ec:6f:3e:5d:ad: a6:e5:f4:45:d9:0d:e2:73:96:01:69:29:d4:27:09:b6:89:3f: e0:0c:4d:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTMwOUMxMTAvBgNVBAUTKEQzMzNBNzc4N0E2MUZGODZDNzQ1QjQ3NDA5NkFGNjlB RTMxQUNGRjEwHhcNMjUxMTA0MjI0ODEyWhcNMjUxMTExMjI0ODEyWjAYMRYwFAYD VQQDEw02OTBhODJhYy02MmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDBJxMbJM2nd1Ag1N5kOzDeMxdOIg6eF25EJVL1uR1vwVGMe8ZTvzyWF36CU ltxrfAYJ3v2l9AWmQuUi2ecwxaBn53lFhzvC3dAcH3fE97hgsrp1A8Ne5oIaQ09f bAERaX80hb092djOKqtbZAtUeWW5306zpiED5oDyG0BmQBoJqmyWibRDTRA9p0fQ teIC3AaUgZ0UeCFwYrKfJL7ymEjh32X7NySrpuZRNeQnqzqu+ZGBfOZnkp7nyygx 8NumOm67ZkMhp+EAcE0PwKmAVScIbRUWG/S3as1wuLrxAkq+hzsyBi3qygagq9uX ocnofbkPHt8WG1sd45krNsffHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJp3ZmE p4sOCz7ozUNCvNn/G1IiMB8GA1UdIwQYMBaAFNMzp3h6Yf+Gx0W0dAlq9prjGs/x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzA5Qy9COTJFMzU0MEIy RTkxMUVCQjREOUNDMzFDNEY5QUUwMi8wek9uZUhwaF80YkhSYlIwQ1dyMm11TWF6 X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB6T25lSHBoXzRiSFJiUjBDV3IybXVNYXpfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzA5Qy9COTJFMzU0MEIyRTkxMUVCQjREOUNDMzFDNEY5QUUwMi8wek9uZUhwaF80 YkhSYlIwQ1dyMm11TWF6X0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZL+DMFq4O9x0/yDGQEuEMKblBWCbWFi+qmAogiQO8AYf4ihrxs3V4 /Svj//mtonufqBC/BlrMjT+mSDXP+V9/qqpv3lyeWcck5CvlZRg0euWPYWmpd7+K +BCxqXU74iDYRu0FPmbCSa9OhWGDRvNTfayk4hm4btWEK5rjKXXXrP+DqLhdjfhn M67p2lBzX9+wBpQ5oC3erq/xUTjnsgtvt28KoDPfmgcG/OxvTPI2hK0NayoudlR8 OdoE06B0wZ2HpRVaiFKUxnT08soChxzOvjCMgI7dUJHwGsxZlF9kHs6odA717G8+ Xa2m5fRF2Q3ic5YBaSnUJwm2iT/gDE20 -----END CERTIFICATE-----Generated at Wed Nov 5 01:42:19 2025 by rpki-client