$ rpki-client -vvf rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft File: 4xZnlgSAzwfjwi15DeTiAe9wQNs.mft (raw, json) Hash identifier: UqMF7YEMjK1cpx0Js2tk/DVz7Br8fyhCpibWBhivu80= Subject key identifier: 99:0C:C3:C8:9A:09:C9:E2:6D:9A:EB:CF:8D:59:69:7B:7B:D1:88:D3 Authority key identifier: E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB Certificate issuer: /CN=A911B310/serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Certificate serial: 0210 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft Manifest number: 0204 Signing time: Wed 05 Nov 2025 02:31:22 +0000 Manifest this update: Wed 05 Nov 2025 02:31:21 +0000 Manifest next update: Wed 12 Nov 2025 02:31:21 +0000 Files and hashes: 1: 4xZnlgSAzwfjwi15DeTiAe9wQNs.crl (hash: lFonGv1B44wFctiZ9GMzp42Qo+sA1R0VO/gXNYQE31w=) 2: 0ADA583C5DB911F0A54D4C6FC4F9AE02.roa (hash: YIHS3PAvaz4V4QmFJCk8b1AkmK5GNgS8/DelBF3BA28=) 3: 0BBC997C5DB911F0A54D4C6FC4F9AE02.roa (hash: g6pquqeh1IhUuquygrP9Vdo65/Zud1vKIjoHKRNQNOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B310, serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Validity Not Before: Nov 5 02:31:21 2025 GMT Not After : Nov 12 02:31:21 2025 GMT Subject: CN=690ab6f9-0c61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:68:a1:51:54:f0:a0:19:30:f1:be:f6:3c:1b: 42:98:b1:5a:c9:4f:ea:e5:9e:9c:35:41:3b:17:e3: 50:e4:c6:71:c5:f5:2f:9b:11:cf:9a:3d:23:6e:db: 97:1d:70:ae:12:e9:ac:f6:d0:3a:d5:ef:25:37:72: 96:fa:40:b0:66:dc:d1:df:2a:a4:9d:e5:2d:11:84: f5:88:54:66:44:58:86:0e:ed:8d:94:45:5a:29:30: f9:57:ee:41:48:1a:ff:2e:b3:fc:d9:d8:ca:74:68: 04:d9:b5:c5:dd:e0:57:95:c8:d9:2b:07:d7:0f:cf: 73:e5:ba:94:26:ee:66:39:8d:70:44:13:0e:95:d1: fa:a6:83:23:cb:75:25:c7:24:01:53:0e:e3:76:6c: 78:05:6a:3a:85:47:41:90:39:8c:40:c2:6b:73:9c: ec:2b:30:42:5e:df:da:98:25:32:70:da:f0:6a:c1: 22:22:a6:7a:c5:a4:03:77:12:f8:f1:8e:d1:52:83: cd:3c:3c:fa:07:48:f9:8e:15:19:fa:3b:07:54:e8: 92:b8:bd:47:89:2a:62:09:68:de:5b:34:cc:bd:36: 27:a7:65:db:4f:1e:01:f2:94:4e:3c:7d:cb:f7:82: 76:bf:22:c8:ec:70:ed:93:31:7f:ba:ed:de:7b:56: 51:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:0C:C3:C8:9A:09:C9:E2:6D:9A:EB:CF:8D:59:69:7B:7B:D1:88:D3 X509v3 Authority Key Identifier: keyid:E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:e3:db:cc:0c:6b:6d:81:a0:ce:a4:1d:73:0a:49:73:93:f1: e4:38:52:3e:3e:87:ce:37:10:c4:51:c6:47:48:40:a9:d7:e0: da:49:12:59:03:e1:29:4d:1c:8c:10:90:b5:57:c6:b7:09:ce: 12:42:e0:95:76:ad:d3:6b:46:2e:58:c9:d4:55:88:95:44:49: f5:82:89:42:2d:44:75:fa:e2:3e:75:b0:ee:81:fb:2c:be:97: f4:83:9b:c8:9a:a5:60:a2:48:ca:8f:b2:ad:97:93:87:fa:60: 1e:61:f4:15:fd:85:ea:ec:f7:76:9f:92:eb:b2:0f:dd:48:52: 2d:dc:5b:46:ad:c7:07:77:23:f8:55:74:58:2f:a4:96:c0:79: 9e:7a:15:51:a0:bc:0c:d1:35:5e:ef:16:5c:97:cd:68:a4:5f: 89:c9:e6:e5:57:99:a2:cc:1c:53:0e:bc:61:83:6e:21:cc:ca: 4a:8d:de:ea:f2:31:37:f6:19:59:65:d0:45:55:fc:a0:95:0f: ec:d1:cf:a2:cc:c8:6e:0d:2d:8c:76:91:83:d3:9f:24:b8:54: d2:c9:57:5d:c9:77:89:82:3b:3a:27:45:3b:f0:85:7a:a9:81: f6:50:c5:58:99:1f:a0:88:2f:01:d9:1e:85:c0:99:c5:b4:88: 17:2c:9d:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIzMTAxMTAvBgNVBAUTKEUzMTY2Nzk2MDQ4MENGMDdFM0MyMkQ3OTBERTRFMjAx RUY3MDQwREIwHhcNMjUxMTA1MDIzMTIxWhcNMjUxMTEyMDIzMTIxWjAYMRYwFAYD VQQDEw02OTBhYjZmOS0wYzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5WihUVTwoBkw8b72PBtCmLFayU/q5Z6cNUE7F+NQ5MZxxfUvmxHPmj0jbtuX HXCuEums9tA61e8lN3KW+kCwZtzR3yqkneUtEYT1iFRmRFiGDu2NlEVaKTD5V+5B SBr/LrP82djKdGgE2bXF3eBXlcjZKwfXD89z5bqUJu5mOY1wRBMOldH6poMjy3Ul xyQBUw7jdmx4BWo6hUdBkDmMQMJrc5zsKzBCXt/amCUycNrwasEiIqZ6xaQDdxL4 8Y7RUoPNPDz6B0j5jhUZ+jsHVOiSuL1HiSpiCWjeWzTMvTYnp2XbTx4B8pROPH3L 94J2vyLI7HDtkzF/uu3ee1ZRkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkMw8ia CcnibZrrz41ZaXt70YjTMB8GA1UdIwQYMBaAFOMWZ5YEgM8H48IteQ3k4gHvcEDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjMxMC8zRUJEMTdDMkFE MTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3Zmp3aTE1RGVUaUFlOXdR TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR4Wm5sZ1NBendmandpMTVEZVRpQWU5d1FOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjMxMC8zRUJEMTdDMkFEMTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3 Zmp3aTE1RGVUaUFlOXdRTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY49vMDGttgaDOpB1zCklzk/HkOFI+PofONxDEUcZHSECp1+DaSRJZ A+EpTRyMEJC1V8a3Cc4SQuCVdq3Ta0YuWMnUVYiVREn1golCLUR1+uI+dbDugfss vpf0g5vImqVgokjKj7Ktl5OH+mAeYfQV/YXq7Pd2n5Lrsg/dSFIt3FtGrccHdyP4 VXRYL6SWwHmeehVRoLwM0TVe7xZcl81opF+JyeblV5mizBxTDrxhg24hzMpKjd7q 8jE39hlZZdBFVfyglQ/s0c+izMhuDS2MdpGD058kuFTSyVddyXeJgjs6J0U78IV6 qYH2UMVYmR+giC8B2R6FwJnFtIgXLJ0k -----END CERTIFICATE-----Generated at Wed Nov 5 21:32:57 2025 by rpki-client