$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft File: PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json) Hash identifier: UcpWD5PePvch7kM95BvVjRVI2TgVFgOkfnQ9J2mVfqg= Subject key identifier: 12:58:DE:E7:DC:79:A4:67:B7:C9:4A:B5:F4:7D:6F:3A:91:04:B2:91 Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft Manifest number: 01CD Signing time: Tue 04 Nov 2025 19:05:19 +0000 Manifest this update: Tue 04 Nov 2025 19:05:18 +0000 Manifest next update: Tue 11 Nov 2025 19:05:18 +0000 Files and hashes: 1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: XXl1dEpg9Miy2iQD6rbzT0whQFyasKrdI9Tv1kmtAiI=) 2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: 5FCghaTHfjGe3056E9DhPQUiNt12XMkuoaYKrbjkSQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:05:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: Nov 4 19:05:18 2025 GMT Not After : Nov 11 19:05:18 2025 GMT Subject: CN=690a4e6f-d619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6d:ca:66:e6:f2:86:b9:a0:69:93:4c:db:bf: 85:8a:74:b0:ba:7d:0c:24:a9:ad:50:5c:9d:0a:72: 4a:a6:9b:c5:8e:01:68:0e:98:02:55:af:46:72:03: c6:1f:d6:94:bb:ae:47:1b:62:d4:f5:03:69:97:80: 9b:94:86:18:40:4c:76:ac:08:56:70:8f:2f:ab:8b: 06:9c:52:da:d4:37:40:2c:ec:72:df:45:0f:d6:68: 5e:1c:97:db:00:9c:8d:86:ce:89:25:69:ed:47:a2: ff:98:eb:c0:da:5e:9f:ff:27:6e:0b:59:f8:02:6b: ed:6a:35:8b:64:d1:bb:7b:f7:00:75:8c:ba:f1:83: 80:cb:0d:97:4a:35:96:2d:5d:00:be:19:56:47:2c: be:d6:77:c9:c6:00:20:8d:96:08:6c:29:d6:9c:a2: 09:bf:aa:82:51:09:f5:a4:a0:7b:cb:6d:cf:db:c0: 12:54:d9:55:14:9b:54:94:a1:13:94:ab:5a:52:79: db:a6:5f:00:1d:6a:9f:99:80:37:87:f1:6b:e7:5f: 27:ec:a6:f9:83:d0:16:f6:46:1c:94:5f:10:c6:fe: 41:7b:ab:b7:02:4b:ee:4a:13:4b:09:be:50:e3:ab: da:24:8a:d9:84:e7:2e:01:f1:c3:aa:8b:2d:e5:a0: 1e:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:58:DE:E7:DC:79:A4:67:B7:C9:4A:B5:F4:7D:6F:3A:91:04:B2:91 X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:7a:ae:4c:b8:b8:92:0f:bd:2b:32:6c:b5:7b:9c:44:d3:2d: 02:dc:2a:5a:86:2e:d9:03:79:3d:b0:70:5c:35:57:b7:2d:cf: b4:4e:ea:8d:a8:b6:51:40:75:c4:98:a1:03:fb:03:60:3f:93: 11:a5:e9:84:06:02:54:52:3c:09:db:35:d2:ca:1e:a5:3d:b9: f1:e1:43:34:da:bb:9b:93:8a:64:b1:de:1b:88:27:c2:82:7c: 0b:d9:85:10:0e:27:84:30:4b:23:fa:b9:bc:e6:43:ae:4b:03: 8b:f6:ca:f5:54:b1:6a:00:63:af:93:c6:5a:e7:41:09:9a:5e: 57:9d:d0:9d:e6:17:cc:7b:95:bd:03:c9:9b:bc:ae:74:b7:6e: e8:bc:a6:5d:8d:c0:f5:1e:d7:82:4d:fa:b9:af:e2:12:e1:85: c3:ca:0f:ad:8c:f1:a2:e3:4d:25:29:88:84:21:22:4c:bb:6f: 4f:2e:a9:98:b0:a8:72:d4:4f:dc:0c:fc:a6:d2:ff:2a:96:c1: 3c:45:5f:1b:f9:89:97:50:71:23:06:31:1f:6e:45:79:1b:cd: 9c:dc:6c:b6:ee:03:97:5b:f5:9c:e3:31:de:5a:4b:a8:de:0d: 28:e6:cc:be:7f:d4:d5:6e:17:50:6c:ac:59:2a:c7:06:bb:2c: b9:70:30:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjUxMTA0MTkwNTE4WhcNMjUxMTExMTkwNTE4WjAYMRYwFAYD VQQDEw02OTBhNGU2Zi1kNjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1W3KZubyhrmgaZNM27+FinSwun0MJKmtUFydCnJKppvFjgFoDpgCVa9GcgPG H9aUu65HG2LU9QNpl4CblIYYQEx2rAhWcI8vq4sGnFLa1DdALOxy30UP1mheHJfb AJyNhs6JJWntR6L/mOvA2l6f/yduC1n4AmvtajWLZNG7e/cAdYy68YOAyw2XSjWW LV0AvhlWRyy+1nfJxgAgjZYIbCnWnKIJv6qCUQn1pKB7y23P28ASVNlVFJtUlKET lKtaUnnbpl8AHWqfmYA3h/Fr518n7Kb5g9AW9kYclF8Qxv5Be6u3AkvuShNLCb5Q 46vaJIrZhOcuAfHDqost5aAexQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJY3ufc eaRnt8lKtfR9bzqRBLKRMB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC8wMjhGNThGRTE2RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBz YWJxeUpiaWtJaFlFYkJpeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqeq5MuLiSD70rMmy1e5xE0y0C3Cpahi7ZA3k9sHBcNVe3Lc+0TuqN qLZRQHXEmKED+wNgP5MRpemEBgJUUjwJ2zXSyh6lPbnx4UM02rubk4pksd4biCfC gnwL2YUQDieEMEsj+rm85kOuSwOL9sr1VLFqAGOvk8Za50EJml5XndCd5hfMe5W9 A8mbvK50t27ovKZdjcD1HteCTfq5r+IS4YXDyg+tjPGi400lKYiEISJMu29PLqmY sKhy1E/cDPym0v8qlsE8RV8b+YmXUHEjBjEfbkV5G82c3Gy27gOXW/Wc4zHeWkuo 3g0o5sy+f9TVbhdQbKxZKscGuyy5cDDO -----END CERTIFICATE-----Generated at Wed Nov 5 23:48:56 2025 by rpki-client