$ rpki-client -vvf rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft File: rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft (raw, json) Hash identifier: S4cCsJ1h8oEmZZ9RLxeIXdJ6z+wIN/qe42o+6J2/eek= Subject key identifier: C5:5C:86:46:F2:B8:0B:9E:76:AA:27:BA:43:77:07:BB:F3:65:03:2A Authority key identifier: AE:65:8E:A3:77:EA:11:84:0B:08:EA:6C:88:D9:09:0E:8B:6C:52:04 Certificate issuer: /CN=A911A69A/serialNumber=AE658EA377EA11840B08EA6C88D9090E8B6C5204 Certificate serial: F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft Manifest number: EC Signing time: Wed 05 Nov 2025 05:30:56 +0000 Manifest this update: Wed 05 Nov 2025 05:30:55 +0000 Manifest next update: Wed 12 Nov 2025 05:30:55 +0000 Files and hashes: 1: rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl (hash: /9XpO1i1pYIE9rxYwoGqEvyYXv1mx87Be3lCMv8v0WY=) 2: 39E76DD0589311EF88BF4665C4F9AE02.roa (hash: t3nWUOarrxhEFD60ip2NaXslcMEcqGLVxqGfot6fF3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A69A, serialNumber=AE658EA377EA11840B08EA6C88D9090E8B6C5204 Validity Not Before: Nov 5 05:30:55 2025 GMT Not After : Nov 12 05:30:55 2025 GMT Subject: CN=690ae10f-4fe6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:2a:37:37:a2:32:2e:60:e7:2c:ee:45:ad:68: 80:ef:f9:59:98:71:d9:79:74:da:8d:51:85:50:75: e0:dc:7a:b5:50:c2:ca:e4:a4:22:49:0f:be:ea:40: c7:16:12:6b:42:99:44:19:b4:d2:d0:9f:45:8c:37: 45:e4:f0:16:c7:b5:07:74:d0:59:23:c4:f2:26:85: 98:e9:a6:55:93:71:80:4b:d3:a3:f6:be:73:01:05: c1:fe:07:5a:bb:77:3e:be:19:06:b3:e3:5d:c8:fa: fc:72:4b:ca:79:12:42:17:ef:f4:c0:90:45:43:84: f7:1e:26:ed:67:bc:91:33:1c:b3:00:d2:8a:13:a3: 0c:33:8d:e5:39:a5:bb:11:24:c9:b5:cc:4f:38:b4: d3:89:01:d1:96:15:14:c8:5f:a1:00:f8:4c:ea:d2: 84:69:76:d4:4a:6b:be:81:6d:e4:96:e3:81:58:b3: db:3d:ee:1c:9f:cc:b7:36:19:c0:c0:8c:dc:8f:dc: 3e:2e:5a:da:8f:15:21:7b:58:b1:32:c2:c3:20:be: 07:39:5d:5b:a6:9b:9e:40:de:91:17:a8:83:4b:07: ef:2f:08:ad:20:87:a4:31:0f:ec:77:30:f4:9a:1b: d0:b6:ab:a4:d9:35:41:4c:b6:0d:a7:e4:4b:17:bc: 26:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:5C:86:46:F2:B8:0B:9E:76:AA:27:BA:43:77:07:BB:F3:65:03:2A X509v3 Authority Key Identifier: keyid:AE:65:8E:A3:77:EA:11:84:0B:08:EA:6C:88:D9:09:0E:8B:6C:52:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:7a:f4:d9:59:e8:fa:d4:b0:51:01:51:6a:83:e3:b2:e1:d1: 26:77:b4:19:06:78:44:08:a5:07:ac:3a:39:f1:c1:46:7c:e2: e0:18:f6:23:17:a0:c8:ec:4e:a5:71:6c:34:31:92:bf:2d:96: 9f:54:25:6f:fd:3e:20:50:26:12:44:a6:f4:e7:b3:03:d3:f8: e7:ad:38:1a:02:2b:f5:74:a2:64:97:79:d3:cc:2c:4e:4b:05: 4c:03:ca:ce:18:54:6c:eb:ce:df:a3:b4:1e:78:cc:dc:12:ed: 08:2e:86:c5:86:9d:a4:b1:54:98:49:27:13:30:ea:05:26:43: 22:a8:9d:8d:23:86:58:f4:d8:cb:f7:47:47:71:3a:03:c2:48: f7:b0:80:58:e3:7a:cb:5b:51:82:c8:9d:6d:15:0b:75:4e:ab: 92:b6:08:80:31:fc:38:0f:b2:35:65:6c:dd:81:10:84:54:00: 17:e4:7e:95:66:b5:92:b8:91:db:48:c3:7f:b3:d3:41:38:77: 24:ad:82:21:34:63:18:48:77:9c:6f:d6:4f:01:fe:2d:d5:08: 3b:50:42:41:92:27:7c:7b:40:cc:ca:f3:33:a6:c2:b5:b6:c1: ea:8c:d4:29:e0:34:42:65:2a:f5:40:aa:77:5b:f9:6d:de:11: f8:f1:ea:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE2OUExMTAvBgNVBAUTKEFFNjU4RUEzNzdFQTExODQwQjA4RUE2Qzg4RDkwOTBF OEI2QzUyMDQwHhcNMjUxMTA1MDUzMDU1WhcNMjUxMTEyMDUzMDU1WjAYMRYwFAYD VQQDEw02OTBhZTEwZi00ZmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2So3N6IyLmDnLO5FrWiA7/lZmHHZeXTajVGFUHXg3Hq1UMLK5KQiSQ++6kDH FhJrQplEGbTS0J9FjDdF5PAWx7UHdNBZI8TyJoWY6aZVk3GAS9Oj9r5zAQXB/gda u3c+vhkGs+NdyPr8ckvKeRJCF+/0wJBFQ4T3HibtZ7yRMxyzANKKE6MMM43lOaW7 ESTJtcxPOLTTiQHRlhUUyF+hAPhM6tKEaXbUSmu+gW3kluOBWLPbPe4cn8y3NhnA wIzcj9w+LlrajxUhe1ixMsLDIL4HOV1bppueQN6RF6iDSwfvLwitIIekMQ/sdzD0 mhvQtquk2TVBTLYNp+RLF7wm4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMVchkby uAuedqonukN3B7vzZQMqMB8GA1UdIwQYMBaAFK5ljqN36hGECwjqbIjZCQ6LbFIE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTY5QS84QjBFNzM4MDU4 OTIxMUVGODZCMTI1NjRDNEY5QUUwMi9ybVdPbzNmcUVZUUxDT3BzaU5rSkRvdHNV Z1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JtV09vM2ZxRVlRTENPcHNpTmtKRG90c1VnUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTY5QS84QjBFNzM4MDU4OTIxMUVGODZCMTI1NjRDNEY5QUUwMi9ybVdPbzNmcUVZ UUxDT3BzaU5rSkRvdHNVZ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwevTZWej61LBRAVFqg+Oy4dEmd7QZBnhECKUHrDo58cFGfOLgGPYj F6DI7E6lcWw0MZK/LZafVCVv/T4gUCYSRKb057MD0/jnrTgaAiv1dKJkl3nTzCxO SwVMA8rOGFRs687fo7QeeMzcEu0ILobFhp2ksVSYSScTMOoFJkMiqJ2NI4ZY9NjL 90dHcToDwkj3sIBY43rLW1GCyJ1tFQt1TquStgiAMfw4D7I1ZWzdgRCEVAAX5H6V ZrWSuJHbSMN/s9NBOHckrYIhNGMYSHecb9ZPAf4t1Qg7UEJBkid8e0DMyvMzpsK1 tsHqjNQp4DRCZSr1QKp3W/lt3hH48ep9 -----END CERTIFICATE-----Generated at Wed Nov 5 11:38:05 2025 by rpki-client