$ rpki-client -vvf rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft File: EW-SD4cwZnR6jO3a_-hLz72wNRo.mft (raw, json) Hash identifier: 6yaAIhYkwiM+Xpt9ApEGZclayCLILDcaiQHrqOcuDl4= Subject key identifier: E9:F4:7C:80:3E:B3:01:80:40:FC:5E:3B:98:9D:50:9C:B1:88:4E:C7 Authority key identifier: 11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A Certificate issuer: /CN=A9120CDE/serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Certificate serial: 11E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft Manifest number: 11DC Signing time: Tue 04 Nov 2025 17:15:39 +0000 Manifest this update: Tue 04 Nov 2025 17:15:39 +0000 Manifest next update: Tue 11 Nov 2025 17:15:39 +0000 Files and hashes: 1: EW-SD4cwZnR6jO3a_-hLz72wNRo.crl (hash: y36V3CcRlSBgnZoxePVMsgADKVBhXe1rLC5Etb+C0BA=) 2: D8D63660B9A811ECB7EE5A71C4F9AE02.roa (hash: DIX09IMqDwhYz9qe1Nv5iQBk3kT+S7TLOQSBMI/PtT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4584 (0x11e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120CDE, serialNumber=116F920F873066747A8CEDDAFFE84BCFBDB0351A Validity Not Before: Nov 4 17:15:39 2025 GMT Not After : Nov 11 17:15:39 2025 GMT Subject: CN=690a34bb-3ef4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2b:cc:ff:a0:4a:63:19:5e:c2:fe:73:dc:b1: 80:df:04:f1:14:d3:47:2a:d3:2f:02:03:dd:a1:6e: d2:cd:c7:bc:4d:b9:63:cc:d7:31:b0:26:fc:6b:aa: c8:c8:7c:19:e0:73:5a:9b:30:75:1c:73:82:33:02: 9f:69:4e:14:47:a4:7e:a7:ef:d2:21:6a:57:d5:16: a3:24:36:85:12:b7:03:03:6d:41:d1:97:2e:b3:d7: ea:b2:a4:81:e8:1f:40:e8:dd:dd:36:98:58:77:ea: f8:08:bd:d6:8c:90:5d:52:14:81:c6:d5:99:f3:2e: 71:c2:77:7e:f1:5d:bd:7e:67:85:f1:a7:84:1d:31: 27:df:30:27:81:05:32:71:6b:aa:9b:8a:72:92:03: 7c:6b:ad:f2:b8:31:c9:ee:4b:30:ad:f4:74:95:88: c9:2c:54:71:c0:82:a8:13:35:ce:c8:b3:a1:82:9f: 66:5d:5f:d5:4d:20:1c:e7:4b:08:98:4d:17:de:6b: ca:2c:48:04:45:a5:e4:41:ce:26:0f:d1:dd:a1:4a: eb:1e:57:78:3e:66:a3:52:da:af:81:74:d4:02:2a: c0:3c:bf:bb:5a:cf:78:c0:05:92:78:3f:4f:81:6f: 64:72:f8:fe:ac:b9:91:98:3c:56:90:43:35:4e:f2: e7:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:F4:7C:80:3E:B3:01:80:40:FC:5E:3B:98:9D:50:9C:B1:88:4E:C7 X509v3 Authority Key Identifier: keyid:11:6F:92:0F:87:30:66:74:7A:8C:ED:DA:FF:E8:4B:CF:BD:B0:35:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EW-SD4cwZnR6jO3a_-hLz72wNRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120CDE/23D8566EFBDB11E8920CB044C4F9AE02/EW-SD4cwZnR6jO3a_-hLz72wNRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:1e:84:32:de:07:55:28:aa:18:56:27:ab:20:50:d3:34:f4: 73:f9:3e:e3:0d:8b:b7:3b:e0:80:4c:9e:8b:b8:d7:33:88:44: 6a:c9:f7:3a:4b:e2:56:8b:48:f3:67:48:eb:25:75:73:c2:8b: 45:a9:90:bc:15:2b:95:5b:1b:ea:cb:42:21:9b:9f:a4:47:2a: 52:e2:02:22:c0:8a:47:35:2d:90:d3:57:a5:f5:8d:f5:02:3a: 57:7d:c2:c5:0e:d3:97:ba:40:76:76:61:d4:a5:d9:2f:dc:21: 93:a6:9c:2f:6c:85:4a:0e:f1:3f:1c:dc:9b:8b:f3:13:29:09: a7:ca:2d:de:bb:0f:cf:09:16:e6:13:fa:af:fa:18:18:9d:d6: cb:39:0c:db:24:ed:2c:00:56:c2:4e:2c:8a:b5:36:48:b4:fd: ad:5c:3a:42:7d:2a:84:f5:88:4c:81:f3:94:cd:63:7c:d6:54: 5c:f8:b2:98:f0:bd:a1:c7:c5:b3:a0:fb:78:82:1e:c9:84:13: 84:b7:af:47:88:e1:be:19:1b:01:f0:2a:de:23:06:9c:5d:71: b3:ed:00:56:a9:05:7a:38:24:2d:25:e3:3b:09:22:d6:87:55: 5d:f0:c6:20:43:80:5f:68:68:fb:2e:7f:01:d5:dd:42:71:87: 1f:3b:35:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBDREUxMTAvBgNVBAUTKDExNkY5MjBGODczMDY2NzQ3QThDRUREQUZGRTg0QkNG QkRCMDM1MUEwHhcNMjUxMTA0MTcxNTM5WhcNMjUxMTExMTcxNTM5WjAYMRYwFAYD VQQDEw02OTBhMzRiYi0zZWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArivM/6BKYxlewv5z3LGA3wTxFNNHKtMvAgPdoW7Szce8TbljzNcxsCb8a6rI yHwZ4HNamzB1HHOCMwKfaU4UR6R+p+/SIWpX1RajJDaFErcDA21B0Zcus9fqsqSB 6B9A6N3dNphYd+r4CL3WjJBdUhSBxtWZ8y5xwnd+8V29fmeF8aeEHTEn3zAngQUy cWuqm4pykgN8a63yuDHJ7kswrfR0lYjJLFRxwIKoEzXOyLOhgp9mXV/VTSAc50sI mE0X3mvKLEgERaXkQc4mD9HdoUrrHld4PmajUtqvgXTUAirAPL+7Ws94wAWSeD9P gW9kcvj+rLmRmDxWkEM1TvLnIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOn0fIA+ swGAQPxeO5idUJyxiE7HMB8GA1UdIwQYMBaAFBFvkg+HMGZ0eozt2v/oS8+9sDUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMENERS8yM0Q4NTY2RUZC REIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1puUjZqTzNhXy1oTHo3MndO Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXLVNENGN3Wm5SNmpPM2FfLWhMejcyd05Sby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MENERS8yM0Q4NTY2RUZCREIxMUU4OTIwQ0IwNDRDNEY5QUUwMi9FVy1TRDRjd1pu UjZqTzNhXy1oTHo3MndOUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUHoQy3gdVKKoYVierIFDTNPRz+T7jDYu3O+CATJ6LuNcziERqyfc6 S+JWi0jzZ0jrJXVzwotFqZC8FSuVWxvqy0Ihm5+kRypS4gIiwIpHNS2Q01el9Y31 AjpXfcLFDtOXukB2dmHUpdkv3CGTppwvbIVKDvE/HNybi/MTKQmnyi3euw/PCRbm E/qv+hgYndbLOQzbJO0sAFbCTiyKtTZItP2tXDpCfSqE9YhMgfOUzWN81lRc+LKY 8L2hx8WzoPt4gh7JhBOEt69HiOG+GRsB8CreIwacXXGz7QBWqQV6OCQtJeM7CSLW h1Vd8MYgQ4BfaGj7Ln8B1d1CcYcfOzXG -----END CERTIFICATE-----Generated at Wed Nov 5 19:48:12 2025 by rpki-client