$ rpki-client -vvf rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft File: ReDCzhRgM0N0_BWzcEXXajTd7l0.mft (raw, json) Hash identifier: qb8Jl14CiAbOzciFZwbhGvsnewKZAA4/77tAKF1YJ40= Subject key identifier: 0F:BC:03:49:E6:68:37:34:41:08:89:76:B4:BA:CC:71:6D:FD:E8:89 Authority key identifier: 45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D Certificate issuer: /CN=A911465D/serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft Manifest number: 65 Signing time: Mon 03 Nov 2025 07:02:42 +0000 Manifest this update: Mon 03 Nov 2025 07:02:41 +0000 Manifest next update: Mon 10 Nov 2025 07:02:41 +0000 Files and hashes: 1: ReDCzhRgM0N0_BWzcEXXajTd7l0.crl (hash: dFdhESXRZUOcnvX/BOw8dSG+XWEK347wD472sgNh8rM=) 2: 8494A0A8202211F091667E59C4F9AE02.roa (hash: 0td0rYY1sI6ZCcrPq8Ekycn5CSJTuG2FeaNe5fiVsgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:02:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911465D, serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Validity Not Before: Nov 3 07:02:41 2025 GMT Not After : Nov 10 07:02:41 2025 GMT Subject: CN=69085391-7dfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0d:7a:56:9c:dd:74:9a:c7:86:c4:75:28:7d: 5c:b1:1c:4e:0b:0a:72:92:cc:3f:c9:30:e8:a9:32: 5f:ba:ce:1e:37:d8:de:b5:3a:bd:7c:ef:07:f9:b8: ee:07:4b:af:e3:cf:1a:5c:4c:99:a9:33:f4:ca:f8: ba:16:03:86:79:b2:5e:dd:65:0b:4e:06:3a:84:38: 88:88:e2:4f:74:5c:5d:cd:32:d5:e3:d5:fb:4c:2c: 5a:1c:17:5d:46:39:50:e2:37:dc:d2:96:e5:9f:69: 64:72:3c:cf:a3:9a:0e:5d:d8:25:54:13:b2:62:82: a4:cf:8b:4b:91:78:13:a0:97:47:46:91:61:3a:40: 00:3b:42:f2:f5:ed:c7:ad:b2:5c:5f:c0:57:8b:8d: 83:cf:5c:65:1e:60:32:83:fc:cb:02:4e:51:48:a9: 59:0b:bc:6b:e0:78:70:ab:f8:68:95:13:f1:e5:e6: ac:64:96:37:c2:7d:4b:e9:05:7d:05:fe:ae:e3:9b: b6:c1:5c:62:39:78:f8:1a:45:93:9f:94:1c:4f:30: 4c:58:f0:72:05:4d:d3:c0:4e:a2:1f:c1:c5:b0:61: 55:fa:1e:e1:47:7e:d0:a1:19:b2:19:a8:2c:bc:6a: cf:ed:b0:8c:29:69:2c:20:ba:9f:fa:92:52:dc:72: 26:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:BC:03:49:E6:68:37:34:41:08:89:76:B4:BA:CC:71:6D:FD:E8:89 X509v3 Authority Key Identifier: keyid:45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:5a:8b:c6:55:21:e6:4f:0c:f5:7e:ec:31:83:50:c6:dd:d0: 6e:01:9b:cb:ce:71:a1:ac:a3:2a:7b:78:d9:99:01:c9:b3:f5: b6:9a:3c:c0:3f:cd:67:a3:9c:57:05:19:c3:65:a0:74:7e:ec: bd:c9:24:1c:6c:de:57:ae:54:8b:7e:c2:6a:f3:3c:24:da:cb: 5d:d9:17:e6:c5:ae:2b:7d:7e:db:43:89:11:28:22:ed:1d:b2: 06:53:ad:78:ad:78:7d:cc:94:53:8b:d9:d0:93:49:40:75:fb: 0d:86:5a:e6:ed:fa:69:12:58:8f:c9:28:1e:9b:62:ac:b2:19: df:c3:22:8f:56:72:ab:fe:e6:ca:54:0a:af:2a:27:27:59:66: 2c:e9:4a:f4:80:55:0c:f5:46:bc:68:9d:1d:03:d7:fd:a8:88: 37:2f:89:a2:24:98:53:14:29:0d:96:80:c9:94:cf:a8:3d:5e: 45:da:e9:07:f3:4b:e9:07:c8:12:66:06:f6:10:fe:7d:81:2c: b0:db:1a:c8:12:0e:fd:a5:b0:e0:76:21:48:dd:72:88:37:42: 38:76:16:89:ce:b2:ce:bf:1f:09:6b:0b:6f:e9:28:0e:92:08: 38:77:a0:92:af:a2:a5:df:81:18:76:31:cd:de:62:b2:be:5d: 45:93:7b:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDY1RDExMC8GA1UEBRMoNDVFMEMyQ0UxNDYwMzM0Mzc0RkMxNUIzNzA0NUQ3NkEz NERERUU1RDAeFw0yNTExMDMwNzAyNDFaFw0yNTExMTAwNzAyNDFaMBgxFjAUBgNV BAMTDTY5MDg1MzkxLTdkZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdDXpWnN10mseGxHUofVyxHE4LCnKSzD/JMOipMl+6zh432N61Or187wf5uO4H S6/jzxpcTJmpM/TK+LoWA4Z5sl7dZQtOBjqEOIiI4k90XF3NMtXj1ftMLFocF11G OVDiN9zSluWfaWRyPM+jmg5d2CVUE7JigqTPi0uReBOgl0dGkWE6QAA7QvL17cet slxfwFeLjYPPXGUeYDKD/MsCTlFIqVkLvGvgeHCr+GiVE/Hl5qxkljfCfUvpBX0F /q7jm7bBXGI5ePgaRZOflBxPMExY8HIFTdPATqIfwcWwYVX6HuFHftChGbIZqCy8 as/tsIwpaSwgup/6klLcciZdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUD7wDSeZo NzRBCIl2tLrMcW396IkwHwYDVR0jBBgwFoAUReDCzhRgM0N0/BWzcEXXajTd7l0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NjVEL0Q0MTlEQzRBMjAx QTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBOMF9CV3pjRVhYYWpUZDds MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUmVEQ3poUmdNME4wX0JXemNFWFhhalRkN2wwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NjVEL0Q0MTlEQzRBMjAxQTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBO MF9CV3pjRVhYYWpUZDdsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACFai8ZVIeZPDPV+7DGDUMbd0G4Bm8vOcaGsoyp7eNmZAcmz9baaPMA/ zWejnFcFGcNloHR+7L3JJBxs3leuVIt+wmrzPCTay13ZF+bFrit9fttDiREoIu0d sgZTrXiteH3MlFOL2dCTSUB1+w2GWubt+mkSWI/JKB6bYqyyGd/DIo9Wcqv+5spU Cq8qJydZZizpSvSAVQz1RrxonR0D1/2oiDcviaIkmFMUKQ2WgMmUz6g9XkXa6Qfz S+kHyBJmBvYQ/n2BLLDbGsgSDv2lsOB2IUjdcog3Qjh2FonOss6/HwlrC2/pKA6S CDh3oJKvoqXfgRh2Mc3eYrK+XUWTe1E= -----END CERTIFICATE-----Generated at Wed Nov 5 01:57:07 2025 by rpki-client