$ rpki-client -vvf rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft File: loNUUNMhwefEjKDF3NK6bB0tSPE.mft (raw, json) Hash identifier: MiNhTfunN4lhECVp9drECiNs6YSQA54f2EmjaVBgV+s= Subject key identifier: 9E:22:85:E9:40:A7:60:D0:A8:9B:C9:5E:82:71:8D:12:80:A5:72:65 Authority key identifier: 96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 Certificate issuer: /CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft Manifest number: E7 Signing time: Mon 03 Nov 2025 05:21:44 +0000 Manifest this update: Mon 03 Nov 2025 05:21:43 +0000 Manifest next update: Mon 10 Nov 2025 05:21:43 +0000 Files and hashes: 1: loNUUNMhwefEjKDF3NK6bB0tSPE.crl (hash: 0QukU2KkzxJ3gUp0BHN4lsDwvz7vQt8lJUJpYrPI91g=) 2: 050079585AC911EF9DF4275AC4F9AE02.roa (hash: r3ab2hXEUx4DTxPcSBrvJTxlFoImKdTbWENPYxt4ZVo=) 3: 047C04705AC911EF9DF4275AC4F9AE02.roa (hash: gFJfC0bItrBd113l2fr+RXunsEK2SI34GEF/xaXg74s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:21:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DF25, serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Validity Not Before: Nov 3 05:21:43 2025 GMT Not After : Nov 10 05:21:43 2025 GMT Subject: CN=69083be7-fadd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:16:c6:86:3f:5e:61:9e:27:23:88:b1:54:f9: e6:02:c3:e2:fc:60:5a:58:da:e5:ef:b2:2f:dc:7d: 4a:86:31:62:ae:69:55:7f:a2:c6:23:ca:3e:6d:8a: a1:f2:b1:1d:29:c2:fd:65:18:d2:c6:2c:70:26:da: 60:bf:b7:da:fc:8f:ea:ca:ca:a5:be:e9:48:c1:90: d3:46:64:54:ea:3e:34:4c:1d:2f:f2:3c:d4:67:98: a7:29:c6:c0:d8:3e:a5:f2:1b:05:4d:83:ec:af:70: 6d:30:eb:19:08:12:8f:64:1b:dd:ff:87:1a:27:d6: a3:e1:8f:45:52:83:77:a6:50:41:13:b6:0d:dc:42: 77:1e:c4:20:27:d8:1a:6d:75:f8:ed:a8:74:0f:6a: da:e4:aa:fe:1d:e1:1e:26:58:2a:94:87:5a:8a:d9: 60:70:b0:6a:55:bf:98:3c:65:a8:2a:9c:fc:1d:b4: 19:ff:ff:5c:14:d7:4a:65:b1:8b:01:c2:1d:45:54: 59:53:16:a6:e0:07:45:a4:6d:92:94:59:94:c4:f3: 6f:e8:cf:5c:a0:f1:59:d6:93:a2:5c:61:bc:56:b1: d4:f5:57:ab:c0:38:3c:f9:19:a4:b7:50:9c:47:2b: b8:60:2f:2a:50:f4:24:79:63:d9:f5:9b:4f:ab:d6: ff:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:22:85:E9:40:A7:60:D0:A8:9B:C9:5E:82:71:8D:12:80:A5:72:65 X509v3 Authority Key Identifier: keyid:96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:26:4c:25:60:93:7b:0b:ed:56:41:d5:c9:f6:e7:57:25:ce: 68:d1:c9:6b:2a:87:82:09:cf:a8:5d:8d:b3:99:35:6d:ca:20: 59:e9:b5:b2:71:f7:f3:29:46:58:09:d5:ec:50:1f:bf:f5:35: c8:5d:66:48:8f:e3:ee:1b:a7:2a:d6:c3:1d:26:2e:81:b4:df: 5c:e2:5a:84:35:d3:da:be:3b:fc:bb:df:ff:30:da:73:76:4d: c2:cf:b8:08:98:8f:df:07:2e:d7:cd:71:39:91:d4:27:54:38: 61:75:bf:5e:d9:46:c2:8d:74:a9:37:f3:24:91:37:40:a4:d7: 44:b8:3f:5a:31:46:42:47:b6:22:ce:2c:ff:08:e8:b7:ff:20: db:c6:d1:34:d2:af:2c:35:f7:88:3a:aa:aa:75:15:f7:3c:34: 7f:b5:13:32:92:d8:2d:da:c3:0d:fb:0e:16:9e:ec:e6:28:be: e5:52:29:d4:8c:c2:d1:61:e9:3f:27:86:58:67:c9:f4:0d:a5: 62:52:8a:70:9b:fa:82:df:db:c7:82:97:ed:46:5b:6c:17:e7: 1b:69:2a:b0:7b:1b:a6:dd:e5:bf:d5:ba:80:bf:df:96:d2:c7: 30:60:c9:b6:15:12:bf:07:cb:cd:de:54:90:3c:18:f9:11:9b: 1f:50:f7:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGMjUxMTAvBgNVBAUTKDk2ODM1NDUwRDMyMUMxRTdDNDhDQTBDNURDRDJCQTZD MUQyRDQ4RjEwHhcNMjUxMTAzMDUyMTQzWhcNMjUxMTEwMDUyMTQzWjAYMRYwFAYD VQQDEw02OTA4M2JlNy1mYWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBbGhj9eYZ4nI4ixVPnmAsPi/GBaWNrl77Iv3H1KhjFirmlVf6LGI8o+bYqh 8rEdKcL9ZRjSxixwJtpgv7fa/I/qysqlvulIwZDTRmRU6j40TB0v8jzUZ5inKcbA 2D6l8hsFTYPsr3BtMOsZCBKPZBvd/4caJ9aj4Y9FUoN3plBBE7YN3EJ3HsQgJ9ga bXX47ah0D2ra5Kr+HeEeJlgqlIdaitlgcLBqVb+YPGWoKpz8HbQZ//9cFNdKZbGL AcIdRVRZUxam4AdFpG2SlFmUxPNv6M9coPFZ1pOiXGG8VrHU9VerwDg8+Rmkt1Cc Ryu4YC8qUPQkeWPZ9ZtPq9b/FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4ihelA p2DQqJvJXoJxjRKApXJlMB8GA1UdIwQYMBaAFJaDVFDTIcHnxIygxdzSumwdLUjx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREYyNS83RjdCMURBQzVB QzcxMUVGOTlFQUZDNDNDNEY5QUUwMi9sb05VVU5NaHdlZkVqS0RGM05LNmJCMHRT UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvTlVVTk1od2VmRWpLREYzTks2YkIwdFNQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REYyNS83RjdCMURBQzVBQzcxMUVGOTlFQUZDNDNDNEY5QUUwMi9sb05VVU5NaHdl ZkVqS0RGM05LNmJCMHRTUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqJkwlYJN7C+1WQdXJ9udXJc5o0clrKoeCCc+oXY2zmTVtyiBZ6bWy cffzKUZYCdXsUB+/9TXIXWZIj+PuG6cq1sMdJi6BtN9c4lqENdPavjv8u9//MNpz dk3Cz7gImI/fBy7XzXE5kdQnVDhhdb9e2UbCjXSpN/MkkTdApNdEuD9aMUZCR7Yi ziz/COi3/yDbxtE00q8sNfeIOqqqdRX3PDR/tRMyktgt2sMN+w4WnuzmKL7lUinU jMLRYek/J4ZYZ8n0DaViUopwm/qC39vHgpftRltsF+cbaSqwexum3eW/1bqAv9+W 0scwYMm2FRK/B8vN3lSQPBj5EZsfUPfE -----END CERTIFICATE-----Generated at Wed Nov 5 03:54:04 2025 by rpki-client