$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft File: kI54kDTxhBXYdZwmo0brgQ71pBU.mft (raw, json) Hash identifier: gWeg+v+v3ozH3vu64AKcm1lQAaEqEoAtph5WHaYhJc8= Subject key identifier: FA:77:9B:85:82:D0:4A:F4:AE:D5:ED:43:4C:AC:F6:C3:42:CE:95:E7 Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 01C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft Manifest number: 01BE Signing time: Wed 05 Nov 2025 03:08:18 +0000 Manifest this update: Wed 05 Nov 2025 03:08:17 +0000 Manifest next update: Wed 12 Nov 2025 03:08:17 +0000 Files and hashes: 1: kI54kDTxhBXYdZwmo0brgQ71pBU.crl (hash: tMrL12TY7D083QfE37E7T/h/fuPb/Hj5PovMkzuX9Dg=) 2: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (hash: feRFh9Ht2rEY2jS2ePhZA2T4F0vbXp37hvleoPM6Wus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:08:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 450 (0x1c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED, serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: Nov 5 03:08:17 2025 GMT Not After : Nov 12 03:08:17 2025 GMT Subject: CN=690abfa1-9bf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:f1:d7:5a:30:81:44:90:f4:d7:74:dd:c6:86: 81:3e:20:31:b5:7d:65:30:1a:31:83:a5:d9:a8:25: 0f:cc:2d:49:d4:a6:82:c1:da:38:2b:0f:4d:ca:4e: 19:7d:3c:58:9a:51:fd:bd:27:93:ce:b3:83:cc:20: fd:be:47:32:95:29:db:f3:dc:19:2d:5b:3c:2b:55: e0:ad:4d:2b:90:37:35:e3:8f:b2:c2:9d:57:b5:34: 8b:ad:5c:06:85:d2:52:ee:fb:f7:83:30:0c:8f:87: 05:7f:50:10:07:db:9b:41:09:ba:a7:bc:8c:27:e4: 9f:21:96:a2:fe:aa:60:ec:12:6f:0f:09:5a:82:ea: 38:70:bc:70:f2:08:df:0d:aa:12:a2:a5:21:ed:b1: cf:e1:90:4e:93:45:9e:61:1c:ab:4d:1c:bf:a2:1b: 36:64:8f:3a:ac:4d:64:a9:31:f1:bf:9a:99:72:79: 6b:38:bb:d0:c2:3e:49:43:7e:b3:02:86:85:17:78: bb:ff:bf:71:21:ce:ca:63:de:9a:d4:b3:03:3c:78: ad:b3:ba:1e:1d:fc:e5:90:83:70:1b:88:95:6b:8c: 29:ca:bb:4e:58:44:26:42:23:4c:03:42:ba:2e:0f: 95:e1:2d:33:24:a7:7e:69:a2:8f:78:99:3e:0c:2b: 0d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:77:9B:85:82:D0:4A:F4:AE:D5:ED:43:4C:AC:F6:C3:42:CE:95:E7 X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:de:fd:74:00:9b:b1:01:5c:15:8b:0f:70:c4:ad:93:a3:e4: 3e:8e:9b:3d:78:0e:0c:ac:05:aa:e2:76:0a:30:32:00:c2:ad: a4:c1:80:e6:12:a5:69:06:66:95:94:ee:6f:02:7f:5a:26:17: 3a:07:a6:71:1e:60:8a:e3:47:7f:a3:7a:74:14:f0:d8:98:09: be:ed:a6:6a:df:7b:58:5b:ae:0a:6b:a1:1e:e2:89:6a:7f:53: 31:83:36:be:c1:c9:20:85:0b:d6:92:ba:25:9c:a7:72:2b:af: 0b:30:7c:7d:35:e0:7f:e4:a6:aa:32:89:81:71:6a:d6:20:12: 9e:d8:29:3c:4f:c0:80:3a:f9:1c:61:52:fb:c2:1c:41:6a:d2: 3d:5d:da:8d:03:c1:bb:60:a6:94:92:30:04:d0:77:c7:1e:b7: e9:23:d5:c2:d2:3d:21:29:cc:ce:ff:70:5f:a1:2e:eb:6e:2b: a7:57:5f:73:aa:db:0a:09:ed:5c:d0:b7:61:84:87:5c:6d:12: cd:67:0e:69:a6:43:8a:01:55:82:bf:0a:a4:15:56:32:d4:00: 31:9c:cf:77:bf:7e:cf:a1:bd:9a:77:d5:51:c1:49:8d:68:a2: d2:35:1a:7a:7c:7a:6d:09:5b:6d:05:9c:97:8b:00:0c:6b:41: b4:3b:73:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjUxMTA1MDMwODE3WhcNMjUxMTEyMDMwODE3WjAYMRYwFAYD VQQDEw02OTBhYmZhMS05YmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4fHXWjCBRJD013TdxoaBPiAxtX1lMBoxg6XZqCUPzC1J1KaCwdo4Kw9Nyk4Z fTxYmlH9vSeTzrODzCD9vkcylSnb89wZLVs8K1XgrU0rkDc144+ywp1XtTSLrVwG hdJS7vv3gzAMj4cFf1AQB9ubQQm6p7yMJ+SfIZai/qpg7BJvDwlaguo4cLxw8gjf DaoSoqUh7bHP4ZBOk0WeYRyrTRy/ohs2ZI86rE1kqTHxv5qZcnlrOLvQwj5JQ36z AoaFF3i7/79xIc7KY96a1LMDPHits7oeHfzlkINwG4iVa4wpyrtOWEQmQiNMA0K6 Lg+V4S0zJKd+aaKPeJk+DCsNlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPp3m4WC 0Er0rtXtQ0ys9sNCzpXnMB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjRFRC9GQTRCMEFDNDBGMzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhC WFlkWndtbzBicmdRNzFwQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDK3v10AJuxAVwViw9wxK2To+Q+jps9eA4MrAWq4nYKMDIAwq2kwYDm EqVpBmaVlO5vAn9aJhc6B6ZxHmCK40d/o3p0FPDYmAm+7aZq33tYW64Ka6Ee4olq f1Mxgza+wckghQvWkrolnKdyK68LMHx9NeB/5KaqMomBcWrWIBKe2Ck8T8CAOvkc YVL7whxBatI9XdqNA8G7YKaUkjAE0HfHHrfpI9XC0j0hKczO/3BfoS7rbiunV19z qtsKCe1c0LdhhIdcbRLNZw5ppkOKAVWCvwqkFVYy1AAxnM93v37Pob2ad9VRwUmN aKLSNRp6fHptCVttBZyXiwAMa0G0O3Mx -----END CERTIFICATE-----Generated at Wed Nov 5 12:05:36 2025 by rpki-client