$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft File: rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft (raw, json) Hash identifier: zoOy/7RdOAfDSpRVCc5Yyon9t7FN4+OFDW1YTRUi7tQ= Subject key identifier: 7E:33:0E:0B:F3:6B:AE:37:29:FE:E1:87:58:4C:0B:B6:0A:E8:1F:51 Authority key identifier: AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD Certificate issuer: /CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Certificate serial: 0805 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft Manifest number: 07FA Signing time: Tue 04 Nov 2025 21:05:17 +0000 Manifest this update: Tue 04 Nov 2025 21:05:16 +0000 Manifest next update: Tue 11 Nov 2025 21:05:16 +0000 Files and hashes: 1: rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl (hash: tIxSYMTB9WSKe6YhTo+Psl9mYKyubqo7HKJ1J4fW6Do=) 2: 38502DA2029A11EB85BD7B84C4F9AE02.roa (hash: 3OsuoPomkN3KwD+aF1zCoEkkbIN7dOFAl/woMg+7fcw=) 3: CEA093C66CA311ED9DD6425CC4F9AE02.roa (hash: 3rvQwF7VOidxONOxWbJzlS69h1FDkR177X5kmaAbyhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:05:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2053 (0x805) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFBA, serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Validity Not Before: Nov 4 21:05:16 2025 GMT Not After : Nov 11 21:05:16 2025 GMT Subject: CN=690a6a8d-376f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0b:15:f1:26:87:b6:b5:6f:58:b5:01:9e:12: 45:4d:80:95:b5:fb:07:1d:60:9e:1a:98:a7:94:60: 46:62:ea:82:15:eb:77:db:47:75:27:90:9c:5c:ee: 86:88:34:5f:97:4d:ca:13:4e:42:ad:40:c3:59:39: a5:cd:99:b5:d8:48:13:79:2b:c3:01:8b:d7:48:d7: 4d:0f:bb:d1:80:7f:ba:74:7e:66:da:90:4e:a5:e6: c0:e6:55:17:22:74:49:8b:eb:0b:8c:1a:b6:e2:c0: 3a:ca:c4:b4:f6:72:1d:2f:06:3e:48:7d:a5:a8:43: f3:aa:3f:75:4d:5e:8e:9d:e8:56:a0:a3:e2:15:45: 96:c5:9d:68:3e:15:dc:f6:39:f2:a0:ec:f5:9c:17: 86:2e:3b:4b:08:4c:ff:18:bb:ef:fa:f2:39:ad:79: 76:9b:98:e5:0b:9a:d1:73:d0:9a:37:9a:b4:63:02: fc:93:fe:45:9e:ce:66:0a:54:45:00:43:8b:8e:af: 28:87:d4:a1:d9:70:fa:69:6e:c9:c6:bf:e5:8f:1c: f7:86:3a:35:6c:9e:2a:24:4f:7b:d8:12:56:68:85: 39:d3:d3:73:cc:01:3d:f6:d7:85:7a:2c:89:26:da: bf:5f:77:53:e6:6f:9c:1f:69:8d:c6:15:ae:87:6a: 33:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:33:0E:0B:F3:6B:AE:37:29:FE:E1:87:58:4C:0B:B6:0A:E8:1F:51 X509v3 Authority Key Identifier: keyid:AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:55:32:dc:6e:3c:6c:1e:24:54:50:50:7a:23:ca:d5:10:b2: 24:89:81:57:b0:ed:a2:dc:a8:36:55:db:60:25:a0:46:c5:e8: 4f:1a:6a:60:6a:52:88:52:b9:c5:66:c8:a1:15:84:8a:53:ab: 85:4f:e2:62:bd:a4:9b:99:09:04:6f:dc:b2:58:6e:41:b0:54: 8a:62:7d:0d:31:88:7d:c0:0a:8f:47:07:49:d8:90:dd:2f:11: 7b:1f:83:00:1f:62:92:66:eb:e4:65:7d:a5:4b:47:25:f3:69: 2f:c1:3a:97:bf:29:e3:34:5d:73:b5:1f:c6:e3:cf:d0:56:60: 9e:aa:d6:24:64:5d:17:d8:1d:b5:73:e8:ae:92:53:2e:c0:71: 2d:da:43:89:a6:fb:07:42:eb:fd:8c:5d:16:85:cb:54:be:59: 15:25:da:a8:81:73:0f:b4:2e:10:b3:b2:42:4b:9c:14:a6:c3: 06:60:5b:84:66:58:86:8e:2f:27:63:13:33:31:ac:9a:d0:95: 8a:1f:76:99:47:63:94:e1:0c:f8:3e:e7:44:ba:97:93:a4:8b: 46:02:49:82:23:97:1a:ca:e4:11:8c:dd:ae:7d:66:bb:28:d1: 4d:9b:68:a8:53:fa:da:9b:db:f0:f0:3b:ca:34:eb:01:49:a5: 59:d6:d1:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGQkExMTAvBgNVBAUTKEFFNEUzMENDMEQwNTAxQTVBRTY2NEFEQjE1OTA1M0FD RUNGMEFDRkQwHhcNMjUxMTA0MjEwNTE2WhcNMjUxMTExMjEwNTE2WjAYMRYwFAYD VQQDEw02OTBhNmE4ZC0zNzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygsV8SaHtrVvWLUBnhJFTYCVtfsHHWCeGpinlGBGYuqCFet320d1J5CcXO6G iDRfl03KE05CrUDDWTmlzZm12EgTeSvDAYvXSNdND7vRgH+6dH5m2pBOpebA5lUX InRJi+sLjBq24sA6ysS09nIdLwY+SH2lqEPzqj91TV6OnehWoKPiFUWWxZ1oPhXc 9jnyoOz1nBeGLjtLCEz/GLvv+vI5rXl2m5jlC5rRc9CaN5q0YwL8k/5Fns5mClRF AEOLjq8oh9Sh2XD6aW7Jxr/ljxz3hjo1bJ4qJE972BJWaIU509NzzAE99teFeiyJ Jtq/X3dT5m+cH2mNxhWuh2oz+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH4zDgvz a643Kf7hh1hMC7YK6B9RMB8GA1UdIwQYMBaAFK5OMMwNBQGlrmZK2xWQU6zs8Kz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZCQS9EQjlDRTY3ODAy OTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFhV3Vaa3JiRlpCVHJPendy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JrNHd6QTBGQWFXdVprcmJGWkJUck96d3JQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REZCQS9EQjlDRTY3ODAyOTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFh V3Vaa3JiRlpCVHJPendyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTVTLcbjxsHiRUUFB6I8rVELIkiYFXsO2i3Kg2VdtgJaBGxehPGmpg alKIUrnFZsihFYSKU6uFT+JivaSbmQkEb9yyWG5BsFSKYn0NMYh9wAqPRwdJ2JDd LxF7H4MAH2KSZuvkZX2lS0cl82kvwTqXvynjNF1ztR/G48/QVmCeqtYkZF0X2B21 c+iuklMuwHEt2kOJpvsHQuv9jF0WhctUvlkVJdqogXMPtC4Qs7JCS5wUpsMGYFuE ZliGji8nYxMzMaya0JWKH3aZR2OU4Qz4PudEupeTpItGAkmCI5cayuQRjN2ufWa7 KNFNm2ioU/ram9vw8DvKNOsBSaVZ1tET -----END CERTIFICATE-----Generated at Wed Nov 5 11:04:32 2025 by rpki-client