$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft File: -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json) Hash identifier: tiC+CZW77cT5AIIM7kZEDWQ9PYUmdkViGRK5fqT9SLw= Subject key identifier: 33:8A:AD:6C:B5:F9:40:C8:82:28:B6:4F:AA:3F:5A:0A:DE:2F:5B:58 Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 Certificate issuer: /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Certificate serial: 02B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft Manifest number: 02AE Signing time: Thu 06 Nov 2025 21:59:32 +0000 Manifest this update: Thu 06 Nov 2025 21:59:31 +0000 Manifest next update: Thu 13 Nov 2025 21:59:31 +0000 Files and hashes: 1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: RD3bAjWazsR7I0dkrJxquvvfROeQ95ScElkpoMeK518=) 2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: sMLXclSpaatsjiefCG2CYL97q01e5mLSlbQCKpyYzHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Nov 2025 21:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 690 (0x2b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135450, serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Validity Not Before: Nov 6 21:59:31 2025 GMT Not After : Nov 13 21:59:31 2025 GMT Subject: CN=690d1a44-e15a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:58:92:53:18:ed:15:57:50:f4:a3:d8:81:2d: 32:09:ba:8c:7c:a6:cd:96:99:97:c6:e1:e1:b3:f6: c9:66:c2:cf:01:b7:aa:d4:ae:f2:a8:cb:d3:85:8a: 5a:45:73:4c:f6:b6:83:60:11:26:80:b3:cd:ba:6d: 67:38:ad:9b:9c:38:10:1a:c1:99:06:24:c3:4d:cb: 80:71:05:48:c1:f4:df:db:14:e9:0b:f4:54:4d:0a: 32:66:cb:fb:67:3f:8f:a8:35:26:02:9b:86:5d:ea: 68:99:d5:d4:df:a2:f9:9f:f5:3d:0e:e0:b7:f9:e5: 95:4f:4f:47:07:dd:df:8c:ec:19:0d:63:60:b7:02: 4a:cf:87:f3:4a:9b:ff:44:99:cd:48:69:ba:ce:03: b4:5f:d2:89:da:7d:12:8e:3c:4d:55:6b:06:c1:5c: 75:5b:fc:13:e0:40:59:66:c8:a9:19:d3:86:1a:fc: 5f:86:44:21:84:6b:e5:fe:ec:92:bd:6b:a2:dc:37: 06:3a:ba:16:4f:0a:d2:de:8c:c8:c0:01:92:a6:f0: dd:ab:0d:31:bc:e2:6f:08:01:28:d6:d4:ab:a3:f2: c7:53:42:ae:92:a4:4d:ad:ee:ff:c8:2d:3a:d4:be: bb:0d:bc:bb:34:55:99:06:1f:d6:b2:58:88:0f:9e: 70:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:8A:AD:6C:B5:F9:40:C8:82:28:B6:4F:AA:3F:5A:0A:DE:2F:5B:58 X509v3 Authority Key Identifier: keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:76:c4:d6:51:65:77:09:8b:ec:f3:7c:5a:b4:33:40:2c:d6: d1:c6:63:7c:81:30:8d:b7:a6:8d:64:f9:d1:fc:be:32:8a:cd: f6:21:2c:29:66:78:42:bb:fe:41:5f:e7:21:64:f2:c6:6b:d5: 9e:ae:2f:6c:84:11:f2:04:f8:5a:cb:25:c1:ad:05:c8:b2:5f: 6a:01:1b:da:0f:c7:0a:dd:1a:a7:bf:0c:70:15:89:23:13:b9: 2d:4a:b8:53:e7:57:f1:77:14:00:0f:47:26:84:d4:8a:b1:24: 31:bb:72:2c:a5:7b:11:7b:6b:a8:8d:e6:a4:06:9d:fe:2f:44: c0:01:19:e0:0a:e3:f1:ab:69:2a:0b:ef:4e:af:ca:6c:d9:c4: 47:34:54:d3:f4:9a:0a:b2:a1:25:c2:88:d1:4e:57:f9:c5:a8: b4:0e:a8:73:75:4e:30:b4:27:2a:2c:f6:ee:87:cc:01:7b:ac: 05:04:7a:8d:52:2c:91:95:51:0c:77:a5:b2:c9:96:1b:50:6a: ae:7c:21:47:79:22:d7:ef:be:f0:a7:66:52:73:ae:b8:b3:f6: 69:27:33:16:ba:4a:e5:84:09:03:1d:ea:61:32:e6:40:c8:c3: 93:23:d1:91:fa:84:d0:7c:8d:e5:6f:db:bd:f7:75:38:34:73: d5:51:1d:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU0NTAxMTAvBgNVBAUTKEZBOERGNjExODQ1MUJENTMzODcyQUNBMzc2MjJCRjcz QkVEMTk0NDEwHhcNMjUxMTA2MjE1OTMxWhcNMjUxMTEzMjE1OTMxWjAYMRYwFAYD VQQDEw02OTBkMWE0NC1lMTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5liSUxjtFVdQ9KPYgS0yCbqMfKbNlpmXxuHhs/bJZsLPAbeq1K7yqMvThYpa RXNM9raDYBEmgLPNum1nOK2bnDgQGsGZBiTDTcuAcQVIwfTf2xTpC/RUTQoyZsv7 Zz+PqDUmApuGXepomdXU36L5n/U9DuC3+eWVT09HB93fjOwZDWNgtwJKz4fzSpv/ RJnNSGm6zgO0X9KJ2n0SjjxNVWsGwVx1W/wT4EBZZsipGdOGGvxfhkQhhGvl/uyS vWui3DcGOroWTwrS3ozIwAGSpvDdqw0xvOJvCAEo1tSro/LHU0KukqRNre7/yC06 1L67Dby7NFWZBh/WsliID55w8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDOKrWy1 +UDIgii2T6o/WgreL1tYMB8GA1UdIwQYMBaAFPqN9hGEUb1TOHKso3Yiv3O+0ZRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTQ1MC84NDNEQzY5NjE4 QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZWTTRjcXlqZGlLX2M3N1Js RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vMzJFWVJSdlZNNGNxeWpkaUtfYzc3UmxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTQ1MC84NDNEQzY5NjE4QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZW TTRjcXlqZGlLX2M3N1JsRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArdsTWUWV3CYvs83xatDNALNbRxmN8gTCNt6aNZPnR/L4yis32ISwp ZnhCu/5BX+chZPLGa9Weri9shBHyBPhayyXBrQXIsl9qARvaD8cK3RqnvwxwFYkj E7ktSrhT51fxdxQAD0cmhNSKsSQxu3IspXsRe2uojeakBp3+L0TAARngCuPxq2kq C+9Or8ps2cRHNFTT9JoKsqElwojRTlf5xai0DqhzdU4wtCcqLPbuh8wBe6wFBHqN UiyRlVEMd6WyyZYbUGqufCFHeSLX777wp2ZSc664s/ZpJzMWukrlhAkDHephMuZA yMOTI9GR+oTQfI3lb9u993U4NHPVUR2C -----END CERTIFICATE-----Generated at Fri Nov 7 16:14:17 2025 by rpki-client