$ rpki-client -vvf rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft File: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft (raw, json) Hash identifier: aaKCV0geVxBYWEe3yR7KyWiQvtNO1r5tXGiTeuMW5pc= Subject key identifier: BD:DD:26:E4:8A:0E:24:77:8D:3B:46:05:87:12:AF:27:ED:5E:B3:64 Authority key identifier: 0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 Certificate issuer: /CN=A9132AEB/serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Certificate serial: 34FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft Manifest number: 34EB Signing time: Tue 04 Nov 2025 15:08:54 +0000 Manifest this update: Tue 04 Nov 2025 15:08:54 +0000 Manifest next update: Tue 11 Nov 2025 15:08:54 +0000 Files and hashes: 1: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl (hash: TCEYQC17C9jrtsWihC95KCnqud5e/sUCw1LUtBHbYGs=) 2: 514DBDFC98C711EAA0CFE582C4F9AE02.roa (hash: l+r465/YNbsSePCYzOqNrThMuqt7t44YKkUIR4UnTJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:08:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13564 (0x34fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132AEB, serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Validity Not Before: Nov 4 15:08:54 2025 GMT Not After : Nov 11 15:08:54 2025 GMT Subject: CN=690a1706-2318 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:97:48:fd:50:9e:92:15:d0:8d:87:0a:92:69: ae:3d:2d:7b:d5:82:10:a2:1a:7d:4d:ff:dd:07:b9: 69:dc:78:ac:7a:fe:80:f7:1e:42:b9:ee:da:80:1c: 8f:1a:1a:4d:eb:ea:66:7f:d2:55:5a:b2:fc:78:03: 71:f6:f5:fc:b8:72:3f:0c:26:5a:80:23:33:1d:25: 61:3f:39:d2:7e:e8:fd:e3:ac:a8:cf:a4:0b:96:9d: 25:0a:9b:40:92:84:14:f4:64:ee:07:5f:23:7e:af: d5:17:3c:5f:ea:60:75:af:46:42:a6:ce:d4:23:4d: ec:37:ce:b3:2c:25:99:5f:70:46:0c:8a:b4:bc:11: 2e:b1:31:2c:de:76:2b:c8:08:a2:4f:d6:9c:c7:cc: bb:24:4f:37:da:5f:47:4a:4b:51:a2:21:5d:62:91: 6d:5d:43:52:a5:4f:a0:bb:6a:ad:00:55:9e:b7:c7: 6b:c5:3d:20:78:42:0f:6a:7f:88:55:7d:2a:d6:68: 5d:35:a1:47:46:47:ca:3e:8a:11:bb:a7:5a:be:51: 1e:b3:6b:5f:b7:53:09:ca:c3:3a:24:f6:e1:52:e0: 90:18:ea:c2:16:bf:8c:cd:c3:52:de:00:0a:97:4d: 01:e4:a9:19:0d:c6:fc:3c:33:64:28:0f:ea:b7:5c: d5:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:DD:26:E4:8A:0E:24:77:8D:3B:46:05:87:12:AF:27:ED:5E:B3:64 X509v3 Authority Key Identifier: keyid:0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:52:24:bf:16:3a:2f:d9:f7:db:f7:c5:5b:57:ad:4b:fb:9e: 8e:29:fb:f2:1d:6c:e5:f4:96:90:05:53:bb:b0:af:ae:ce:ac: 3e:04:18:51:99:6e:56:df:ce:df:1f:5d:5e:97:d9:f5:15:f5: 09:b1:42:8d:0b:65:81:a3:10:25:c6:a6:db:6e:59:99:a3:a0: e9:bc:ef:b0:1c:42:68:48:4d:51:b9:d8:01:f2:fa:95:1b:f3: 5e:c9:5e:24:c7:27:30:ff:72:40:b9:a6:09:5b:9c:2f:f1:10: fd:99:3f:71:b9:52:b8:78:88:25:1d:df:a6:db:75:37:97:46: 65:cd:c2:6b:59:b9:25:cb:72:dc:3a:f2:5c:76:2f:35:7e:1f: 91:51:5b:ef:07:78:6e:8d:22:62:61:6e:21:ba:06:6e:79:57: 9c:92:25:5b:75:82:40:9e:9c:50:d7:b4:be:c4:5b:cd:26:e7: 8a:c5:fa:4a:53:02:2a:23:6f:d0:83:d9:6a:a6:da:3b:fc:9e: 6e:e3:be:cd:61:96:b2:af:e4:60:8b:29:4c:55:44:08:62:db: e4:65:8d:cf:72:58:40:35:bf:dc:12:76:10:98:55:3e:3e:f8: 4f:f0:28:d9:1e:3b:60:a1:d0:01:f5:06:06:26:16:d1:10:86: 3b:db:fd:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJBRUIxMTAvBgNVBAUTKDBGOTUyQTI3RUYzRUYyN0NFQTA4QzU3RDIwMkEzODA2 OUVDQjU4NDAwHhcNMjUxMTA0MTUwODU0WhcNMjUxMTExMTUwODU0WjAYMRYwFAYD VQQDEw02OTBhMTcwNi0yMzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZdI/VCekhXQjYcKkmmuPS171YIQohp9Tf/dB7lp3Hisev6A9x5Cue7agByP GhpN6+pmf9JVWrL8eANx9vX8uHI/DCZagCMzHSVhPznSfuj946yoz6QLlp0lCptA koQU9GTuB18jfq/VFzxf6mB1r0ZCps7UI03sN86zLCWZX3BGDIq0vBEusTEs3nYr yAiiT9acx8y7JE832l9HSktRoiFdYpFtXUNSpU+gu2qtAFWet8drxT0geEIPan+I VX0q1mhdNaFHRkfKPooRu6davlEes2tft1MJysM6JPbhUuCQGOrCFr+MzcNS3gAK l00B5KkZDcb8PDNkKA/qt1zVoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL3dJuSK DiR3jTtGBYcSryftXrNkMB8GA1UdIwQYMBaAFA+VKifvPvJ86gjFfSAqOAaey1hA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkFFQi9FRjI5QkEyQTFE QTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThuenFDTVY5SUNvNEJwN0xX RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q1VXFKLTgtOG56cUNNVjlJQ280QnA3TFdFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkFFQi9FRjI5QkEyQTFEQTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThu enFDTVY5SUNvNEJwN0xXRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPUiS/Fjov2ffb98VbV61L+56OKfvyHWzl9JaQBVO7sK+uzqw+BBhR mW5W387fH11el9n1FfUJsUKNC2WBoxAlxqbbblmZo6DpvO+wHEJoSE1RudgB8vqV G/NeyV4kxycw/3JAuaYJW5wv8RD9mT9xuVK4eIglHd+m23U3l0ZlzcJrWbkly3Lc OvJcdi81fh+RUVvvB3hujSJiYW4hugZueVeckiVbdYJAnpxQ17S+xFvNJueKxfpK UwIqI2/Qg9lqpto7/J5u477NYZayr+RgiylMVUQIYtvkZY3PclhANb/cEnYQmFU+ PvhP8CjZHjtgodAB9QYGJhbREIY72/0T -----END CERTIFICATE-----Generated at Tue Nov 4 16:33:25 2025 by rpki-client