$ rpki-client -vvf rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft File: epYXaVSeCq0Km_mSVoO673M6Lxo.mft (raw, json) Hash identifier: Tvzr8NTtNcN02IFrPnDgiGuJPhmjLZDq4QXHs/1LaQs= Subject key identifier: C5:12:08:DF:D8:DD:FB:79:D5:33:B9:07:F4:DD:82:CE:0E:69:F6:B0 Authority key identifier: 7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A Certificate issuer: /CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Certificate serial: 354A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft Manifest number: 350F Signing time: Tue 04 Nov 2025 14:22:47 +0000 Manifest this update: Tue 04 Nov 2025 14:22:46 +0000 Manifest next update: Tue 11 Nov 2025 14:22:46 +0000 Files and hashes: 1: epYXaVSeCq0Km_mSVoO673M6Lxo.crl (hash: bFeijbvvAm544wuV1PL14eBdZJHrv/efUts8cP0kbQ0=) 2: A9B6556E064311F0BA61C549C4F9AE02.roa (hash: 0C6TlHkpuDCz4hvNzUcvUCrXDtcFtiPeiunaW4mmmk0=) 3: 1F5CD892C35111EE9D744F36C4F9AE02.roa (hash: 1gkTF4crGWzpTEQnLV3friPjpJHknrP6i19dnfTKZhs=) 4: 1A83389CC35211EE8CE04C38C4F9AE02.roa (hash: wP5Do/J+7GR346S2KVvf1dpQZtkQwT1BPnhQO5L+JJ4=) 5: DA202262C34F11EE93BC8317C4F9AE02.roa (hash: dcDioS0VFo6S9vVwz+paS1zd6YFHx5bsZVN3a7QsfW4=) 6: 61A65BF2C35011EE95366E18C4F9AE02.roa (hash: Q61bbCPssNF62XMkq5QJdqkEtUeKQLsoUnsJMBUa8ZI=) 7: 1EEE3E0AC35111EE9D744F36C4F9AE02.roa (hash: 5YdHJezTTAq6NbRIi4l4/6Fihe+icCcCreH0PZW2XgQ=) 8: A50EE218C34D11EEBC95A913C4F9AE02.roa (hash: 5q/2MUPjpxwhlN6OCcanacRv9yZj3jDJtQjCybC3W8U=) 9: DC67BC1E8E1A11F08364EF73C4F9AE02.roa (hash: n9kveW6T0zGofNIWBVL2lz5XwTYiSjqFUg+Xl3iNCMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:22:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13642 (0x354a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C5B0, serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Validity Not Before: Nov 4 14:22:46 2025 GMT Not After : Nov 11 14:22:46 2025 GMT Subject: CN=690a0c37-8ddb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5a:b7:61:c5:cd:f3:03:84:3b:cd:53:b3:47: 72:a1:09:1d:19:dc:8f:df:cd:d4:b0:1e:22:bc:1e: 97:0d:18:73:59:f1:f1:45:2a:21:3a:ca:04:bf:83: a0:b2:21:16:c1:33:a6:61:dc:57:d1:b1:ac:f9:5b: 46:eb:7e:97:ec:79:c9:36:20:5c:38:a3:79:a3:87: 1a:23:b1:9b:ae:54:16:4a:c5:53:cd:f2:49:bb:d2: ba:dd:61:50:d1:bc:9e:2f:ad:eb:38:30:17:55:42: 44:dd:69:e8:6f:6a:8c:34:e8:e1:f0:0f:8b:8a:5d: ee:93:13:ae:14:51:93:45:08:9d:ac:05:b9:ca:81: 88:61:a5:9d:db:e3:03:58:68:41:69:5c:57:51:02: 4e:23:4d:94:8f:29:2f:1e:24:0e:f5:a1:b8:a1:a9: b9:14:7f:de:9f:79:cd:3c:03:a6:a2:85:a1:79:b7: 7f:ba:66:73:d1:54:02:b7:0c:9a:d3:57:14:5a:be: 15:a3:3b:be:e0:db:e4:60:fb:bf:12:6c:4b:39:95: f3:f0:ee:57:26:32:cd:a8:3a:b9:cd:31:fc:61:e6: cc:74:8f:73:73:ea:89:78:96:aa:7d:60:ba:6a:09: 89:9b:2c:61:12:35:81:cb:f2:a9:35:56:20:80:4e: bd:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:12:08:DF:D8:DD:FB:79:D5:33:B9:07:F4:DD:82:CE:0E:69:F6:B0 X509v3 Authority Key Identifier: keyid:7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:e0:5f:46:87:bc:94:00:d0:62:10:6a:e7:20:8f:c9:ea:6c: bd:be:0f:29:5a:5f:e8:30:e6:6b:c9:d1:76:ea:ab:6e:a0:ce: c4:54:6b:a0:79:4c:19:55:16:e3:da:8a:c1:2a:7f:00:6a:75: 98:a9:0f:bc:e7:d7:18:b2:c2:59:22:e0:b9:49:ac:72:dd:f4: e9:5f:fa:a0:06:1b:d5:f2:61:e7:db:cc:cd:4c:df:31:18:6c: 35:2d:27:ca:3d:ac:52:23:ba:be:ce:db:bb:29:d7:63:6e:55: 1a:89:52:9d:54:5f:cb:28:67:de:0b:6f:17:84:67:53:d4:13: 6d:10:98:fa:aa:bf:b6:39:bf:65:7c:69:9a:42:35:25:54:32: f2:2d:bc:69:ea:b4:59:41:2b:84:dd:2a:37:c3:6d:26:a6:7a: f3:12:e0:90:6f:a0:04:35:0e:6b:c3:75:5d:47:32:00:57:be: c7:ec:c0:4a:3e:39:50:3a:f4:47:cd:e4:4c:c8:aa:8a:46:7c: 59:45:bc:e1:47:74:d8:50:29:b1:86:69:c7:7f:80:0e:30:90: c4:b2:f5:8c:ed:b2:a3:9d:2c:75:5b:f1:74:12:ff:d6:a3:04: 2c:5c:40:46:f1:25:77:aa:c1:52:bc:59:bc:07:89:e8:1f:82: 47:7e:6e:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1QjAxMTAvBgNVBAUTKDdBOTYxNzY5NTQ5RTBBQUQwQTlCRjk5MjU2ODNCQUVG NzMzQTJGMUEwHhcNMjUxMTA0MTQyMjQ2WhcNMjUxMTExMTQyMjQ2WjAYMRYwFAYD VQQDEw02OTBhMGMzNy04ZGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlq3YcXN8wOEO81Ts0dyoQkdGdyP383UsB4ivB6XDRhzWfHxRSohOsoEv4Og siEWwTOmYdxX0bGs+VtG636X7HnJNiBcOKN5o4caI7GbrlQWSsVTzfJJu9K63WFQ 0byeL63rODAXVUJE3Wnob2qMNOjh8A+Lil3ukxOuFFGTRQidrAW5yoGIYaWd2+MD WGhBaVxXUQJOI02UjykvHiQO9aG4oam5FH/en3nNPAOmooWhebd/umZz0VQCtwya 01cUWr4Vozu+4NvkYPu/EmxLOZXz8O5XJjLNqDq5zTH8YebMdI9zc+qJeJaqfWC6 agmJmyxhEjWBy/KpNVYggE69QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMUSCN/Y 3ft51TO5B/Tdgs4OafawMB8GA1UdIwQYMBaAFHqWF2lUngqtCpv5klaDuu9zOi8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzVCMC80MEM4RDVBNjFE ODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNxMEttX21TVm9PNjczTTZM eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwWVhhVlNlQ3EwS21fbVNWb082NzNNNkx4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzVCMC80MEM4RDVBNjFEODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNx MEttX21TVm9PNjczTTZMeG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAD4F9Gh7yUANBiEGrnII/J6my9vg8pWl/oMOZrydF26qtuoM7EVGug eUwZVRbj2orBKn8AanWYqQ+859cYssJZIuC5Saxy3fTpX/qgBhvV8mHn28zNTN8x GGw1LSfKPaxSI7q+ztu7KddjblUaiVKdVF/LKGfeC28XhGdT1BNtEJj6qr+2Ob9l fGmaQjUlVDLyLbxp6rRZQSuE3So3w20mpnrzEuCQb6AENQ5rw3VdRzIAV77H7MBK PjlQOvRHzeRMyKqKRnxZRbzhR3TYUCmxhmnHf4AOMJDEsvWM7bKjnSx1W/F0Ev/W owQsXEBG8SV3qsFSvFm8B4noH4JHfm7D -----END CERTIFICATE-----Generated at Wed Nov 5 16:17:11 2025 by rpki-client