$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft File: RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft (raw, json) Hash identifier: ISqu5Zp3l+ZguryMswI8eRV/negs6+9stsT5J2SzaCQ= Subject key identifier: 09:E7:28:25:AD:9C:32:6D:EE:40:88:87:3A:65:64:CF:48:47:72:2E Authority key identifier: 47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 Certificate issuer: /CN=A911DD04/serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Certificate serial: 0155 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft Manifest number: 0151 Signing time: Wed 05 Nov 2025 04:23:34 +0000 Manifest this update: Wed 05 Nov 2025 04:23:34 +0000 Manifest next update: Wed 12 Nov 2025 04:23:34 +0000 Files and hashes: 1: RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl (hash: YlR3tQ/YLkkkUPfBXqI5ezoorqWHwjzN7OedXC4grks=) 2: 939790AAB9BD11EEA19BE74DC4F9AE02.roa (hash: usgNeDoGlzZoBDkMS+oNirA/1DpfH4pmT68FwmH4UH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:23:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 341 (0x155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD04, serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Validity Not Before: Nov 5 04:23:34 2025 GMT Not After : Nov 12 04:23:34 2025 GMT Subject: CN=690ad146-89f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:92:76:f3:c7:0b:8d:94:3f:7e:8c:81:0a:8f: cf:85:50:2f:75:98:58:07:b7:ff:52:64:d1:f8:49: 83:c1:55:bd:c4:39:00:aa:8a:0b:5b:c2:1f:2a:25: 52:32:70:ff:fc:08:58:d9:33:46:ec:ee:cd:0a:64: 80:79:83:a6:eb:59:b2:1a:45:4c:3f:a1:24:1e:61: 89:0e:f9:89:cb:42:93:5c:42:f2:5c:87:81:f1:83: 4c:a7:b0:23:db:8f:c0:28:4d:ff:fe:2f:be:e5:31: 51:6f:b9:83:7c:ee:41:45:03:b8:2e:28:1a:47:f6: 83:57:26:14:ee:93:04:0f:64:52:fa:d8:56:67:75: 6c:a5:75:17:4d:fc:7f:2a:9d:0d:70:d4:70:7f:4a: fb:ea:d0:6f:9f:02:96:80:38:20:dc:90:36:f1:8a: 42:ad:12:b5:e1:98:ca:de:18:a7:2e:d5:f4:aa:09: 28:27:b7:0d:99:81:36:57:40:da:2d:c4:a5:dd:a9: 35:d0:b9:33:02:45:ab:a3:b8:42:e2:fa:45:72:38: f9:6e:53:48:5b:34:ed:59:35:fe:ed:d2:a9:ed:df: 0c:30:bb:a9:8f:cd:c2:72:3b:81:0d:44:51:22:35: 8e:28:46:64:24:3f:9f:17:63:01:18:53:cd:13:5c: bd:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:E7:28:25:AD:9C:32:6D:EE:40:88:87:3A:65:64:CF:48:47:72:2E X509v3 Authority Key Identifier: keyid:47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:6b:d3:e8:47:c7:cf:11:0c:0e:52:d8:b9:af:95:aa:56:67: a1:82:79:45:04:b2:04:dc:e2:d0:4c:80:a2:de:f6:cf:c6:c3: 52:ea:47:ba:d6:a2:fe:1c:a8:48:73:6a:10:cb:6a:21:47:35: 72:14:e1:7e:65:83:c2:5d:5c:6d:6a:9a:77:ef:d3:86:84:41: f7:fe:d2:c8:bd:ce:4d:e8:da:86:46:75:d5:4a:26:e7:fc:09: 42:64:c8:70:ad:43:a3:6a:e7:f9:27:42:99:b9:c7:20:6d:1b: 51:06:73:f3:d5:d5:0c:a5:d4:7b:c8:da:25:f6:3a:51:6a:71: 55:40:ca:27:b3:7a:03:d3:e4:2a:a5:86:d2:2d:49:8e:c1:49: 75:87:d7:15:72:6b:e3:85:72:5a:88:41:c1:95:c8:b9:9d:18: 3e:a4:64:7d:79:d2:9a:8b:21:ca:85:e0:8e:d4:58:db:56:d1: 62:86:6c:60:77:64:a6:7e:f2:dc:e4:bf:3c:a5:c9:7a:d9:09: 04:39:fe:bb:1a:f7:f5:93:17:9c:79:bd:b1:3f:18:d5:6f:8d: 2b:13:a2:c7:a1:1c:59:fe:c5:6b:57:13:2e:00:86:58:bc:6f: 03:f2:db:85:80:85:45:c1:4e:76:b7:4d:10:44:06:c1:2d:ae: 5a:03:c4:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDQxMTAvBgNVBAUTKDQ3MzQ2NDg0NzE1OUJCMTUyRkJGRTFEQkI1QTFCMDE1 NDY4MjJGMTcwHhcNMjUxMTA1MDQyMzM0WhcNMjUxMTEyMDQyMzM0WjAYMRYwFAYD VQQDEw02OTBhZDE0Ni04OWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupJ288cLjZQ/foyBCo/PhVAvdZhYB7f/UmTR+EmDwVW9xDkAqooLW8IfKiVS MnD//AhY2TNG7O7NCmSAeYOm61myGkVMP6EkHmGJDvmJy0KTXELyXIeB8YNMp7Aj 24/AKE3//i++5TFRb7mDfO5BRQO4LigaR/aDVyYU7pMED2RS+thWZ3VspXUXTfx/ Kp0NcNRwf0r76tBvnwKWgDgg3JA28YpCrRK14ZjK3hinLtX0qgkoJ7cNmYE2V0Da LcSl3ak10LkzAkWro7hC4vpFcjj5blNIWzTtWTX+7dKp7d8MMLupj83CcjuBDURR IjWOKEZkJD+fF2MBGFPNE1y9nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAnnKCWt nDJt7kCIhzplZM9IR3IuMB8GA1UdIwQYMBaAFEc0ZIRxWbsVL7/h27WhsBVGgi8X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwNC9DM0Q1RkRDNkI5 QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4VXZ2LUhidGFHd0ZVYUNM eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J6UmtoSEZadXhVdnYtSGJ0YUd3RlVhQ0x4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwNC9DM0Q1RkRDNkI5QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4 VXZ2LUhidGFHd0ZVYUNMeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBma9PoR8fPEQwOUti5r5WqVmehgnlFBLIE3OLQTICi3vbPxsNS6ke6 1qL+HKhIc2oQy2ohRzVyFOF+ZYPCXVxtapp379OGhEH3/tLIvc5N6NqGRnXVSibn /AlCZMhwrUOjauf5J0KZuccgbRtRBnPz1dUMpdR7yNol9jpRanFVQMons3oD0+Qq pYbSLUmOwUl1h9cVcmvjhXJaiEHBlci5nRg+pGR9edKaiyHKheCO1FjbVtFihmxg d2SmfvLc5L88pcl62QkEOf67Gvf1kxeceb2xPxjVb40rE6LHoRxZ/sVrVxMuAIZY vG8D8tuFgIVFwU52t00QRAbBLa5aA8QD -----END CERTIFICATE-----Generated at Wed Nov 5 14:55:42 2025 by rpki-client