$ rpki-client -vvf rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.mft File: phmVDMpkZIerm9RKQff2ybQJs9c.mft (raw, json) Hash identifier: mqkRvb+wkcJn8f+hv6AdEnrkxb1sKaNw9upwxsTVwy8= Subject key identifier: D3:71:CE:D5:98:34:B3:81:9C:54:66:43:B1:42:EC:14:50:46:85:4B Authority key identifier: A6:19:95:0C:CA:64:64:87:AB:9B:D4:4A:41:F7:F6:C9:B4:09:B3:D7 Certificate issuer: /CN=A9138EEB/serialNumber=A619950CCA646487AB9BD44A41F7F6C9B409B3D7 Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phmVDMpkZIerm9RKQff2ybQJs9c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.mft Manifest number: 0107 Signing time: Wed 05 Nov 2025 05:11:54 +0000 Manifest this update: Wed 05 Nov 2025 05:11:54 +0000 Manifest next update: Wed 12 Nov 2025 05:11:54 +0000 Files and hashes: 1: phmVDMpkZIerm9RKQff2ybQJs9c.crl (hash: HW+UWyuzlRqcpxgO1Cir9Of0SErHBMHSPVyLR+zvoQQ=) 2: DBF621F42C7211EF8FB22F85C4F9AE02.roa (hash: RJoaBkivOrsbbGOk4+rF7GV3mPNikd+l5jkX1SaMaN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.crl rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phmVDMpkZIerm9RKQff2ybQJs9c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:11:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138EEB, serialNumber=A619950CCA646487AB9BD44A41F7F6C9B409B3D7 Validity Not Before: Nov 5 05:11:54 2025 GMT Not After : Nov 12 05:11:54 2025 GMT Subject: CN=690adc9a-5586 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:30:3c:69:09:8b:0e:16:4a:c1:dd:da:18:1f: 01:8b:33:cb:11:55:be:e2:ef:a0:13:ed:bc:a5:09: 3e:aa:35:fa:d3:1e:ec:72:be:1e:a0:42:e9:90:c2: 67:09:c5:b4:ff:7b:f0:d3:f5:40:0b:86:1d:82:17: 96:d6:76:ca:d5:b8:46:d1:6f:05:bf:96:e9:3e:ab: eb:c3:f7:c9:a9:e1:98:49:f9:d3:6f:ec:54:1a:2f: 7b:c7:2a:30:79:a2:2b:e9:2e:ae:31:85:a2:94:fb: d1:57:f2:c2:29:90:1b:d1:2c:e8:cc:c6:e9:02:ff: d5:f3:5c:8f:c4:37:91:2f:22:ad:b0:6f:50:a8:22: e0:95:84:14:9f:fc:14:48:77:71:9b:49:19:ee:6b: 52:15:df:0c:08:23:9a:2a:c9:ff:1c:99:89:5c:fa: 19:10:90:b1:63:b1:d3:d8:40:a6:7d:8d:33:48:60: 05:a9:65:33:d0:f7:57:81:30:97:8a:ab:70:20:d3: a7:df:94:94:50:79:c5:9e:8c:a5:2a:d9:b5:a3:07: a2:b8:d2:02:1e:18:bf:b7:18:94:2f:6b:54:ac:ac: 03:db:74:01:ab:04:34:04:bd:65:a5:7d:c0:a2:cd: ba:59:c7:e5:b8:b2:b6:3e:04:5f:54:ef:8a:d3:6a: bd:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:71:CE:D5:98:34:B3:81:9C:54:66:43:B1:42:EC:14:50:46:85:4B X509v3 Authority Key Identifier: keyid:A6:19:95:0C:CA:64:64:87:AB:9B:D4:4A:41:F7:F6:C9:B4:09:B3:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phmVDMpkZIerm9RKQff2ybQJs9c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:af:75:ae:93:d5:4a:5f:fa:78:43:ec:0a:d8:01:eb:7b:98: 2b:1c:f5:0c:02:34:8a:df:8f:ac:9f:ed:f4:79:65:ed:f9:b2: a8:a9:ec:7f:9f:a1:7b:2d:4c:d8:46:80:cb:e5:e5:02:78:23: 32:1a:d1:bb:61:e8:dc:4d:b7:66:b8:05:0b:3e:a6:6a:f9:e9: 5f:e9:f4:9f:38:fa:bc:01:62:af:79:2e:66:35:29:91:7f:09: e8:4d:2a:89:39:72:1e:4e:f3:47:45:0e:aa:5e:f4:9e:5d:a9: 22:7d:79:1c:9e:1b:6a:f3:45:8a:50:80:29:0a:0e:c4:98:0b: cc:6b:2d:aa:7f:8b:c2:03:09:f4:99:c5:a5:1f:4b:81:09:06: b7:f5:d1:5a:95:f4:27:97:32:cd:df:51:1f:69:cc:f2:30:01: 61:84:a9:03:eb:6b:a4:3c:1d:3a:40:89:be:ce:79:d6:53:67: c8:03:46:48:2f:b7:88:05:c2:b7:a0:44:d7:03:34:1c:3b:19: e9:da:cf:43:72:4d:0b:1f:bb:9a:c8:e3:ab:e4:9d:8d:2f:07: 19:75:01:ce:25:6a:39:2c:4a:3c:b4:b6:a6:cc:68:19:ed:8e: 1d:96:78:0d:ed:71:43:4f:e8:20:17:3d:f2:94:f7:e7:38:e6: e5:73:2e:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhFRUIxMTAvBgNVBAUTKEE2MTk5NTBDQ0E2NDY0ODdBQjlCRDQ0QTQxRjdGNkM5 QjQwOUIzRDcwHhcNMjUxMTA1MDUxMTU0WhcNMjUxMTEyMDUxMTU0WjAYMRYwFAYD VQQDEw02OTBhZGM5YS01NTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjA8aQmLDhZKwd3aGB8BizPLEVW+4u+gE+28pQk+qjX60x7scr4eoELpkMJn CcW0/3vw0/VAC4YdgheW1nbK1bhG0W8Fv5bpPqvrw/fJqeGYSfnTb+xUGi97xyow eaIr6S6uMYWilPvRV/LCKZAb0SzozMbpAv/V81yPxDeRLyKtsG9QqCLglYQUn/wU SHdxm0kZ7mtSFd8MCCOaKsn/HJmJXPoZEJCxY7HT2ECmfY0zSGAFqWUz0PdXgTCX iqtwINOn35SUUHnFnoylKtm1oweiuNICHhi/txiUL2tUrKwD23QBqwQ0BL1lpX3A os26WcfluLK2PgRfVO+K02q9LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNNxztWY NLOBnFRmQ7FC7BRQRoVLMB8GA1UdIwQYMBaAFKYZlQzKZGSHq5vUSkH39sm0CbPX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEVFQi9GNDkxMTQ4MDJC QzMxMUVGQjg1RkZCNjVDNEY5QUUwMi9waG1WRE1wa1pJZXJtOVJLUWZmMnliUUpz OWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BobVZETXBrWkllcm05UktRZmYyeWJRSnM5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEVFQi9GNDkxMTQ4MDJCQzMxMUVGQjg1RkZCNjVDNEY5QUUwMi9waG1WRE1wa1pJ ZXJtOVJLUWZmMnliUUpzOWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPr3Wuk9VKX/p4Q+wK2AHre5grHPUMAjSK34+sn+30eWXt+bKoqex/ n6F7LUzYRoDL5eUCeCMyGtG7YejcTbdmuAULPqZq+elf6fSfOPq8AWKveS5mNSmR fwnoTSqJOXIeTvNHRQ6qXvSeXakifXkcnhtq80WKUIApCg7EmAvMay2qf4vCAwn0 mcWlH0uBCQa39dFalfQnlzLN31EfaczyMAFhhKkD62ukPB06QIm+znnWU2fIA0ZI L7eIBcK3oETXAzQcOxnp2s9Dck0LH7uayOOr5J2NLwcZdQHOJWo5LEo8tLamzGgZ 7Y4dlngN7XFDT+ggFz3ylPfnOOblcy5Z -----END CERTIFICATE-----Generated at Wed Nov 5 11:57:46 2025 by rpki-client