$ rpki-client -vvf rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.mft File: 28EoRfH6o1sy_s32oO1NFEKSyMw.mft (raw, json) Hash identifier: 773S6bwFZU4tLxYDnbixxz4tL2FD+gC4aT6Yp3pFtsY= Subject key identifier: 98:53:E3:34:91:43:B2:1E:87:DC:12:6B:E2:86:2A:AE:64:E6:6F:03 Authority key identifier: DB:C1:28:45:F1:FA:A3:5B:32:FE:CD:F6:A0:ED:4D:14:42:92:C8:CC Certificate issuer: /CN=A9134790/serialNumber=DBC12845F1FAA35B32FECDF6A0ED4D144292C8CC Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28EoRfH6o1sy_s32oO1NFEKSyMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.mft Manifest number: 4C Signing time: Mon 03 Nov 2025 07:17:46 +0000 Manifest this update: Mon 03 Nov 2025 07:17:46 +0000 Manifest next update: Mon 10 Nov 2025 07:17:46 +0000 Files and hashes: 1: 28EoRfH6o1sy_s32oO1NFEKSyMw.crl (hash: KzVVslLVHeo3WZHYzJhMso8glcJwXxALYvVs6wybwRQ=) 2: 078FA91C44EA11F09EB11858C4F9AE02.roa (hash: 0gESDeiknT1uDimkCFfPCuziTgWG/TNYoJv8MT/MXRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.crl rsync://rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28EoRfH6o1sy_s32oO1NFEKSyMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134790, serialNumber=DBC12845F1FAA35B32FECDF6A0ED4D144292C8CC Validity Not Before: Nov 3 07:17:46 2025 GMT Not After : Nov 10 07:17:46 2025 GMT Subject: CN=6908571a-8b2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e8:54:d1:dd:e8:8d:05:58:79:e8:cf:18:a1: 49:f9:36:e0:97:ad:7b:01:cc:50:6d:8f:5a:43:cb: a2:c4:40:14:56:d6:dd:20:94:a3:e6:f5:4e:7b:de: a3:de:7d:2f:7f:16:7b:13:ec:69:5b:69:00:85:7f: ed:e7:99:4a:b9:3c:b3:96:9c:03:dd:25:52:40:bc: fc:24:71:ed:17:cd:41:73:35:8c:ec:00:43:1b:bb: eb:92:60:00:e2:3d:7b:1c:0b:fe:56:19:a1:70:f9: 3e:c6:88:2e:28:88:91:0d:93:6f:3e:e1:f5:24:a2: 7c:02:f2:83:28:24:5d:4a:59:05:86:22:2f:89:ea: f0:d1:68:c2:23:06:e4:a8:e4:ea:2a:99:9f:06:74: d8:d5:6b:b0:8a:6f:97:e7:b9:54:2b:ca:db:f6:4e: 10:94:2e:c8:e1:e9:cf:2d:74:fa:6c:16:0e:31:d9: cb:1a:43:c4:2e:ea:39:44:c6:85:4d:f2:1c:93:73: 6c:f0:f6:8f:1c:95:4e:a6:d1:2c:7d:5d:06:d7:ab: 75:de:d9:d4:7f:26:47:fa:56:a6:1c:b9:a3:ef:0a: 56:74:e1:46:0e:b4:00:80:20:89:bc:a8:e3:9e:c9: b5:32:91:29:1f:a1:92:51:d8:df:e1:5f:93:95:bb: c1:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:53:E3:34:91:43:B2:1E:87:DC:12:6B:E2:86:2A:AE:64:E6:6F:03 X509v3 Authority Key Identifier: keyid:DB:C1:28:45:F1:FA:A3:5B:32:FE:CD:F6:A0:ED:4D:14:42:92:C8:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28EoRfH6o1sy_s32oO1NFEKSyMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:13:f7:ce:85:7f:a6:ce:ac:74:cc:9f:ce:ea:22:bf:be:fb: 58:93:8a:0a:33:b1:98:28:8d:e2:39:3a:db:ad:fa:b1:0b:3f: fe:ed:a4:6d:1e:9d:e8:67:57:ea:a2:6f:ea:41:e7:32:4e:82: 24:d2:f3:ca:57:e5:5c:57:42:0a:a0:fb:f9:d0:fe:32:20:f1: c4:f5:e3:31:3a:cf:32:26:fc:c4:4f:f3:1e:d8:e9:44:9c:68: 88:3d:21:3c:3a:67:8a:c5:6d:22:c0:b3:89:de:4d:cb:f5:04: d3:0e:bb:a1:4f:be:55:8e:49:7d:9f:75:a4:3e:2a:91:77:88: 3b:47:7a:7c:ef:33:3c:7d:2a:93:3a:bf:eb:ab:7a:63:55:35: af:3a:be:69:df:1c:50:b0:69:33:03:d2:cd:32:b6:03:ac:4b: ca:12:57:81:a8:30:2e:c1:d4:37:ab:41:9f:e1:95:7d:7e:cf: 4a:b4:b0:30:5f:0a:bc:21:4c:be:7c:c1:39:03:6d:7b:d3:b4: e8:17:cd:2b:34:ca:a1:cf:bf:b6:6e:4f:ef:2b:32:bd:29:7c: 39:bb:05:6f:f6:7b:d2:40:7c:13:d0:e9:79:fa:8d:06:cb:58: 7e:05:97:17:c7:f8:ad:66:74:7c:9b:1b:2a:2f:0e:e0:0a:86: ea:92:99:d7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NDc5MDExMC8GA1UEBRMoREJDMTI4NDVGMUZBQTM1QjMyRkVDREY2QTBFRDREMTQ0 MjkyQzhDQzAeFw0yNTExMDMwNzE3NDZaFw0yNTExMTAwNzE3NDZaMBgxFjAUBgNV BAMTDTY5MDg1NzFhLThiMmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDR6FTR3eiNBVh56M8YoUn5NuCXrXsBzFBtj1pDy6LEQBRW1t0glKPm9U573qPe fS9/FnsT7GlbaQCFf+3nmUq5PLOWnAPdJVJAvPwkce0XzUFzNYzsAEMbu+uSYADi PXscC/5WGaFw+T7GiC4oiJENk28+4fUkonwC8oMoJF1KWQWGIi+J6vDRaMIjBuSo 5OoqmZ8GdNjVa7CKb5fnuVQrytv2ThCULsjh6c8tdPpsFg4x2csaQ8Qu6jlExoVN 8hyTc2zw9o8clU6m0Sx9XQbXq3Xe2dR/Jkf6VqYcuaPvClZ04UYOtACAIIm8qOOe ybUykSkfoZJR2N/hX5OVu8FPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmFPjNJFD sh6H3BJr4oYqrmTmbwMwHwYDVR0jBBgwFoAU28EoRfH6o1sy/s32oO1NFEKSyMww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0NzkwLzUxMzNGRUFDNDRF OTExRjA5MUE5NkU1M0M0RjlBRTAyLzI4RW9SZkg2bzFzeV9zMzJvTzFORkVLU3lN dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMjhFb1JmSDZvMXN5X3MzMm9PMU5GRUtTeU13LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0 NzkwLzUxMzNGRUFDNDRFOTExRjA5MUE5NkU1M0M0RjlBRTAyLzI4RW9SZkg2bzFz eV9zMzJvTzFORkVLU3lNdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFYT986Ff6bOrHTMn87qIr+++1iTigozsZgojeI5Otut+rELP/7tpG0e nehnV+qib+pB5zJOgiTS88pX5VxXQgqg+/nQ/jIg8cT14zE6zzIm/MRP8x7Y6USc aIg9ITw6Z4rFbSLAs4neTcv1BNMOu6FPvlWOSX2fdaQ+KpF3iDtHenzvMzx9KpM6 v+uremNVNa86vmnfHFCwaTMD0s0ytgOsS8oSV4GoMC7B1DerQZ/hlX1+z0q0sDBf CrwhTL58wTkDbXvTtOgXzSs0yqHPv7ZuT+8rMr0pfDm7BW/2e9JAfBPQ6Xn6jQbL WH4FlxfH+K1mdHybGyovDuAKhuqSmdc= -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:55 2025 by rpki-client