$ rpki-client -vvf rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.mft File: K08yPFindrTnU4be6Dci4EViMsY.mft (raw, json) Hash identifier: ZuYKj911lUmOA+YBIvH0MhXf+3DkrypcUPI2YOTviVI= Subject key identifier: 93:B3:5F:C0:BF:DB:43:2B:5B:06:BA:5F:B4:67:99:B6:70:E6:AE:A6 Authority key identifier: 2B:4F:32:3C:58:A7:76:B4:E7:53:86:DE:E8:37:22:E0:45:62:32:C6 Certificate issuer: /CN=A911BC62/serialNumber=2B4F323C58A776B4E75386DEE83722E0456232C6 Certificate serial: 0E3C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/K08yPFindrTnU4be6Dci4EViMsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.mft Manifest number: 0E2E Signing time: Tue 04 Nov 2025 15:41:57 +0000 Manifest this update: Tue 04 Nov 2025 15:41:56 +0000 Manifest next update: Tue 11 Nov 2025 15:41:56 +0000 Files and hashes: 1: K08yPFindrTnU4be6Dci4EViMsY.crl (hash: Tc/J5Dhc2JYN8TYJtrflCc5KqHLVIPcr0UhdqG5oIjc=) 2: EE1EA292EA6A11E98F16FE30C4F9AE02.roa (hash: Our/a/Q4riPqnap8Bs+iL6aJ7lQ+NPuqmEKv5JVFqNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.crl rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/K08yPFindrTnU4be6Dci4EViMsY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:41:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3644 (0xe3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BC62, serialNumber=2B4F323C58A776B4E75386DEE83722E0456232C6 Validity Not Before: Nov 4 15:41:56 2025 GMT Not After : Nov 11 15:41:56 2025 GMT Subject: CN=690a1ec4-f67f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6e:f0:96:81:37:59:8f:8c:85:44:08:3b:85: 94:bb:08:1a:7f:43:82:f4:af:43:d5:9a:ae:6e:94: 14:f8:72:32:bd:f8:7c:b6:fb:e3:8f:94:3d:f6:c9: b8:6d:ac:8f:0a:1f:bf:8f:8f:35:bd:5e:53:ec:c1: 5b:7d:f6:1d:96:c9:61:b1:4c:4f:46:17:21:f6:cc: 2f:85:4b:c8:96:1f:60:a4:15:86:26:c3:0c:f2:9e: d0:49:d6:c6:d6:e8:27:e4:fc:e4:22:98:a1:6d:16: bd:37:cd:bb:6d:8d:6e:4d:34:ea:65:6e:f2:08:58: 63:ad:fd:c9:21:87:76:27:0a:6f:2b:8b:45:af:b6: 97:da:a0:b0:6b:2c:df:05:fe:5e:e8:e3:b1:89:ee: 44:52:94:6f:73:6a:f1:c6:bb:96:c9:ea:b1:47:38: 71:6f:bc:fc:db:e6:e5:5e:e3:42:12:07:0f:1e:23: dd:10:a7:eb:8c:e4:53:6d:7f:f6:2d:28:0a:9c:23: b4:38:22:26:a4:2f:c7:df:ce:6f:b8:24:cb:f7:2b: 57:92:24:5e:cf:d2:51:b5:a0:72:52:c0:e3:a7:b4: 40:59:14:2b:ed:46:54:1d:9c:5e:ee:58:50:31:60: 36:7f:c0:cd:66:81:f0:ef:3e:d4:1e:f0:96:90:60: 45:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:B3:5F:C0:BF:DB:43:2B:5B:06:BA:5F:B4:67:99:B6:70:E6:AE:A6 X509v3 Authority Key Identifier: keyid:2B:4F:32:3C:58:A7:76:B4:E7:53:86:DE:E8:37:22:E0:45:62:32:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/K08yPFindrTnU4be6Dci4EViMsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:62:dc:f4:4d:81:be:b9:ab:a0:77:20:22:28:98:56:b4:cd: 40:94:28:d9:c7:eb:d3:b9:cc:d9:26:87:3c:03:b0:43:4b:d2: 8f:49:4e:ca:ce:ce:f8:11:79:1e:fd:4e:eb:95:e6:23:ad:96: a4:e8:e1:1d:de:af:24:ee:9e:11:06:a8:8e:d5:39:b6:65:5d: b3:21:23:58:ca:b1:2b:8e:38:4f:21:d3:20:6a:a6:af:78:5b: 3a:ff:42:7a:30:87:1d:2f:77:76:9a:83:c3:5b:e6:49:db:b2: 2f:5b:21:c5:8c:c0:f6:18:4a:6b:e0:3f:bb:6b:1f:7f:51:3d: 63:8e:a2:49:36:e4:c5:ff:22:e6:65:4b:d5:15:08:ca:b6:f1: 61:67:db:20:f2:13:fe:3a:95:e4:97:96:ad:03:09:5f:b2:73: 0f:fe:b9:f9:49:64:57:5a:35:95:9e:98:df:c0:8c:c6:48:3a: f8:ba:2b:bc:5a:b1:1a:59:2b:fe:aa:08:5d:14:08:c3:39:ff: 9e:e6:ee:a5:ba:60:7e:1c:fa:89:3f:c1:fc:4d:14:16:b6:76: 34:ab:b0:b9:d9:2b:db:15:a7:a6:1e:b9:57:21:4d:8c:41:45: 3a:ad:c0:4e:ae:05:8c:a8:f5:17:8e:9f:bd:6e:2e:86:94:4d: eb:5b:eb:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJDNjIxMTAvBgNVBAUTKDJCNEYzMjNDNThBNzc2QjRFNzUzODZERUU4MzcyMkUw NDU2MjMyQzYwHhcNMjUxMTA0MTU0MTU2WhcNMjUxMTExMTU0MTU2WjAYMRYwFAYD VQQDEw02OTBhMWVjNC1mNjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvm7wloE3WY+MhUQIO4WUuwgaf0OC9K9D1ZqubpQU+HIyvfh8tvvjj5Q99sm4 bayPCh+/j481vV5T7MFbffYdlslhsUxPRhch9swvhUvIlh9gpBWGJsMM8p7QSdbG 1ugn5PzkIpihbRa9N827bY1uTTTqZW7yCFhjrf3JIYd2JwpvK4tFr7aX2qCwayzf Bf5e6OOxie5EUpRvc2rxxruWyeqxRzhxb7z82+blXuNCEgcPHiPdEKfrjORTbX/2 LSgKnCO0OCImpC/H385vuCTL9ytXkiRez9JRtaByUsDjp7RAWRQr7UZUHZxe7lhQ MWA2f8DNZoHw7z7UHvCWkGBF5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOzX8C/ 20MrWwa6X7RnmbZw5q6mMB8GA1UdIwQYMBaAFCtPMjxYp3a051OG3ug3IuBFYjLG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkM2Mi9FRTk1RkQ0MkI3 NjYxMUU5ODZDMEU1MTRDNEY5QUUwMi9LMDh5UEZpbmRyVG5VNGJlNkRjaTRFVmlN c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0swOHlQRmluZHJUblU0YmU2RGNpNEVWaU1zWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkM2Mi9FRTk1RkQ0MkI3NjYxMUU5ODZDMEU1MTRDNEY5QUUwMi9LMDh5UEZpbmRy VG5VNGJlNkRjaTRFVmlNc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKYtz0TYG+uaugdyAiKJhWtM1AlCjZx+vTuczZJoc8A7BDS9KPSU7K zs74EXke/U7rleYjrZak6OEd3q8k7p4RBqiO1Tm2ZV2zISNYyrErjjhPIdMgaqav eFs6/0J6MIcdL3d2moPDW+ZJ27IvWyHFjMD2GEpr4D+7ax9/UT1jjqJJNuTF/yLm ZUvVFQjKtvFhZ9sg8hP+OpXkl5atAwlfsnMP/rn5SWRXWjWVnpjfwIzGSDr4uiu8 WrEaWSv+qghdFAjDOf+e5u6lumB+HPqJP8H8TRQWtnY0q7C52SvbFaemHrlXIU2M QUU6rcBOrgWMqPUXjp+9bi6GlE3rW+uj -----END CERTIFICATE-----Generated at Wed Nov 5 16:18:57 2025 by rpki-client