$ rpki-client -vvf rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft File: drnTOfrNYrR-k-iITehQOW2877Q.mft (raw, json) Hash identifier: FuE7SMasyeMwKxN7L6FGuTiQcW+1Ztw8pWoSAOMTa0k= Subject key identifier: 11:CA:6B:88:CD:75:FD:E8:5A:61:EC:37:CE:9A:EC:00:E9:63:3E:CD Authority key identifier: 76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 Certificate issuer: /CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Certificate serial: 0B3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft Manifest number: 0B22 Signing time: Sun 02 Nov 2025 19:17:14 +0000 Manifest this update: Sun 02 Nov 2025 19:17:13 +0000 Manifest next update: Sun 09 Nov 2025 19:17:13 +0000 Files and hashes: 1: drnTOfrNYrR-k-iITehQOW2877Q.crl (hash: JEVhDSkJYmAniVVTr7RvVc4S8YhuDV5LYi8ud/iOntY=) 2: 83882F7AF83B11ECB4154E31C4F9AE02.roa (hash: YH3lhLXoSVbhjIpXiN2vn5qlApvWo5uVmDvE4K7XYgk=) 3: 4FFC83964CA311EE815AF017C4F9AE02.roa (hash: UA3Z3TNFXnNBwmElq5Ec0QuBLoZlUKqnBYT4/k/3BsY=) 4: AA1ABF0AB20011EA9C0DFB2FC4F9AE02.roa (hash: FcXy6QLc2Tvjs24Fp66P1cwtAXMmWgi5gNPzljev1BY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:17:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2874 (0xb3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E6CA, serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Validity Not Before: Nov 2 19:17:13 2025 GMT Not After : Nov 9 19:17:13 2025 GMT Subject: CN=6907ae3a-64e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:48:15:6c:86:55:44:2b:3f:ef:20:9c:df:45: 5f:8b:a5:97:ab:06:8d:ef:3a:43:3a:31:ac:56:fb: 33:a7:9d:2c:b2:61:46:13:e0:b6:f4:42:cb:17:63: 0f:c7:50:ce:aa:63:df:19:5f:80:40:29:d8:04:4c: a0:cf:ad:10:45:bb:6e:6d:60:15:b0:e5:51:bf:55: 20:12:69:ba:79:24:51:67:10:8a:3d:cc:a8:eb:a9: b1:4f:02:92:3d:50:7b:f7:21:e9:c3:7f:ab:2b:7a: f0:e8:60:92:b1:c6:03:53:52:dc:4e:13:34:00:e9: 58:90:56:8e:8e:50:36:8f:94:9d:65:2e:05:41:22: d3:2f:7d:ec:9e:4a:e7:6d:6a:ec:76:22:0d:47:0a: 12:5c:bb:c0:4e:10:dd:c1:60:52:ef:04:2f:75:34: 51:db:ff:b3:32:cb:94:83:1c:01:10:6b:e6:d4:04: 67:f2:9f:d3:9a:9b:79:c2:eb:fd:c7:de:da:d0:90: eb:21:b9:09:7c:8b:ff:a2:eb:99:40:b9:4b:c1:a7: 0f:36:1f:d0:82:58:94:ce:69:04:22:e9:19:46:aa: 1b:44:1c:f5:b4:3a:22:73:1b:da:91:75:63:0b:b3: 45:f1:5b:30:ee:61:7c:60:b3:4f:fc:8a:12:0e:5d: f5:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:CA:6B:88:CD:75:FD:E8:5A:61:EC:37:CE:9A:EC:00:E9:63:3E:CD X509v3 Authority Key Identifier: keyid:76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:c8:ac:f6:11:d3:ec:d3:23:71:7b:3b:e3:fe:9f:0d:1c:95: b2:53:32:18:a4:68:68:b6:91:6c:19:c9:b1:08:4b:6b:81:57: ed:10:04:10:39:14:49:c8:c7:01:a3:d6:77:97:9e:95:53:f8: 63:b2:52:68:19:2f:19:27:e9:38:44:32:71:39:44:e0:9a:37: c8:e4:c5:f2:fa:50:d4:d1:9a:75:0a:04:4d:34:6c:4d:aa:d7: 7e:4d:b5:6c:73:f9:e4:dc:4c:85:bb:18:d2:01:c3:e8:6d:c7: 53:ca:2c:6d:d2:b7:46:b0:7b:e3:52:ba:71:eb:05:86:3c:f5: f6:c9:84:da:0d:b4:2c:54:42:4b:0e:99:45:28:83:52:c8:45: 3f:3f:3d:b4:20:bb:2e:be:28:4e:99:e0:8e:b6:43:ae:89:7f: 84:09:55:d6:a8:0f:2a:f5:27:10:df:2e:a2:43:c0:bc:6a:ca: d9:e0:8e:fa:25:d5:76:89:ed:53:34:b2:00:c6:1f:ae:83:7d: fd:bf:37:73:56:06:46:a7:60:73:dd:68:56:5e:34:e0:8a:d6: 97:bf:9b:e1:6f:c9:bb:46:99:ce:c1:49:0c:b1:af:fc:dd:c4: 92:29:7b:15:74:89:f2:a3:4e:8a:aa:82:d2:44:83:58:33:1e: b5:b4:4d:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2Q0ExMTAvBgNVBAUTKDc2QjlEMzM5RkFDRDYyQjQ3RTkzRTg4ODRERTg1MDM5 NkRCQ0VGQjQwHhcNMjUxMTAyMTkxNzEzWhcNMjUxMTA5MTkxNzEzWjAYMRYwFAYD VQQDEw02OTA3YWUzYS02NGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUgVbIZVRCs/7yCc30Vfi6WXqwaN7zpDOjGsVvszp50ssmFGE+C29ELLF2MP x1DOqmPfGV+AQCnYBEygz60QRbtubWAVsOVRv1UgEmm6eSRRZxCKPcyo66mxTwKS PVB79yHpw3+rK3rw6GCSscYDU1LcThM0AOlYkFaOjlA2j5SdZS4FQSLTL33snkrn bWrsdiINRwoSXLvAThDdwWBS7wQvdTRR2/+zMsuUgxwBEGvm1ARn8p/Tmpt5wuv9 x97a0JDrIbkJfIv/ouuZQLlLwacPNh/QgliUzmkEIukZRqobRBz1tDoicxvakXVj C7NF8Vsw7mF8YLNP/IoSDl31IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBHKa4jN df3oWmHsN86a7ADpYz7NMB8GA1UdIwQYMBaAFHa50zn6zWK0fpPoiE3oUDltvO+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTZDQS83NDA5QjQ3QTRG QzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTllyUi1rLWlJVGVoUU9XMjg3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RyblRPZnJOWXJSLWstaUlUZWhRT1cyODc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTZDQS83NDA5QjQ3QTRGQzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTlly Ui1rLWlJVGVoUU9XMjg3N1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0yKz2EdPs0yNxezvj/p8NHJWyUzIYpGhotpFsGcmxCEtrgVftEAQQ ORRJyMcBo9Z3l56VU/hjslJoGS8ZJ+k4RDJxOUTgmjfI5MXy+lDU0Zp1CgRNNGxN qtd+TbVsc/nk3EyFuxjSAcPobcdTyixt0rdGsHvjUrpx6wWGPPX2yYTaDbQsVEJL DplFKINSyEU/Pz20ILsuvihOmeCOtkOuiX+ECVXWqA8q9ScQ3y6iQ8C8asrZ4I76 JdV2ie1TNLIAxh+ug339vzdzVgZGp2Bz3WhWXjTgitaXv5vhb8m7RpnOwUkMsa/8 3cSSKXsVdInyo06KqoLSRINYMx61tE0b -----END CERTIFICATE-----Generated at Tue Nov 4 12:36:45 2025 by rpki-client