$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft File: ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft (raw, json) Hash identifier: 0r4julogMm6X/Mz192h+GQzxtGfiQnIUlcwDZ9DhTSE= Subject key identifier: 14:39:81:9E:48:22:97:99:8E:7A:5F:21:CB:3E:0D:F7:AB:34:65:E7 Authority key identifier: 72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 Certificate issuer: /CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Certificate serial: 10C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft Manifest number: 10B9 Signing time: Sun 02 Nov 2025 17:20:45 +0000 Manifest this update: Sun 02 Nov 2025 17:20:45 +0000 Manifest next update: Sun 09 Nov 2025 17:20:45 +0000 Files and hashes: 1: ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl (hash: hBuDzUcM6qeOB2sVdAFs9a773XJ9cKI+Nf1nR7fXSbc=) 2: 39C6EF3688BF11EABC04973FC4F9AE02.roa (hash: yd71n8eugD8WrOND6JHlcb+DlT4vihP97eJVROksTM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:20:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4291 (0x10c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C91D, serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Validity Not Before: Nov 2 17:20:45 2025 GMT Not After : Nov 9 17:20:45 2025 GMT Subject: CN=690792ed-70c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f9:ec:bf:36:cc:66:03:63:83:c9:77:83:64: e3:df:ed:68:55:ef:69:4c:41:f4:1e:26:ca:39:dd: e9:e9:25:86:78:ec:05:2e:8b:b0:2c:ca:74:10:13: 9d:b1:c8:72:13:9e:c8:32:45:db:0f:ab:dc:f8:5d: 71:a5:2c:be:0a:84:4d:b2:87:2a:44:f5:41:17:78: 0e:38:37:34:6b:6b:20:73:68:82:ab:75:62:ad:1f: e6:2a:49:e0:77:f6:76:74:06:56:eb:f9:f2:38:c7: 95:51:71:27:88:ab:be:15:1c:6e:32:5b:f6:f6:57: b3:d8:08:46:27:3e:1a:f2:16:e6:93:5c:3c:b4:a4: 4b:a8:27:0d:b1:19:10:a4:d7:ad:c9:80:51:72:61: c7:ce:cc:b7:6f:fa:5f:0d:50:a4:b2:8d:84:ff:f5: d6:8b:fb:7a:06:e3:da:54:0a:bf:19:be:fb:e1:c9: 05:68:87:b1:d0:05:5c:f0:ae:cb:fa:35:0c:86:7f: 09:e0:c2:e4:14:ce:2d:cc:2e:d8:69:4d:86:20:a2: 26:5f:16:81:b2:b0:15:75:15:ae:51:8a:88:42:b7: c6:95:53:8b:88:60:6c:b3:0d:4c:b5:a2:51:26:a7: fa:3d:c2:9b:89:6e:a4:60:4a:14:57:86:82:20:d8: 2a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:39:81:9E:48:22:97:99:8E:7A:5F:21:CB:3E:0D:F7:AB:34:65:E7 X509v3 Authority Key Identifier: keyid:72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:a6:84:c8:0e:70:d3:9f:d1:de:b0:75:5c:be:6b:6d:c8:69: f4:f5:af:1e:c8:b1:c8:c4:86:8a:8a:80:33:09:d8:a1:65:47: 1d:1f:0e:f8:e2:b9:44:5e:65:5c:0b:4e:10:31:31:78:fd:5c: 67:9d:f4:95:89:e5:a6:e2:c4:bb:8e:59:85:c9:be:23:87:a9: 92:89:e3:a6:6b:93:d5:12:24:44:65:be:dd:5d:c1:9e:e1:c5: 0b:b5:6d:a9:21:58:1f:39:8b:3c:f6:a8:9d:11:f4:0b:19:f2: a9:b3:83:01:b8:a9:3e:fd:3b:84:ba:9b:12:c3:df:45:5b:4b: 6f:cc:73:b0:84:1c:98:90:f0:1a:d4:65:60:f3:28:4d:ed:28: 84:cf:83:4f:f5:a6:48:17:5a:18:60:b0:86:09:69:4e:20:29: e9:7c:7f:dd:39:3e:6e:3b:1e:b0:c1:7e:6d:27:55:84:e3:91: 52:76:3e:b2:00:db:2d:fe:bc:9d:3d:a5:12:91:c3:c5:09:f0: 0b:54:ad:6a:26:0d:2d:a9:bc:70:34:3c:4d:91:b7:bb:27:61: 63:88:e4:3c:e1:0e:5b:90:d8:87:6d:13:b8:ad:e7:7c:70:86: 2a:b6:03:48:dd:25:bd:86:14:1f:17:71:63:0f:08:8c:d8:57: 12:b0:0f:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MUQxMTAvBgNVBAUTKDcyRDY1QkIzQ0FENEEwOThGMzZGNDEzNzU5NENDN0ZF QzJGQTI4QTMwHhcNMjUxMTAyMTcyMDQ1WhcNMjUxMTA5MTcyMDQ1WjAYMRYwFAYD VQQDEw02OTA3OTJlZC03MGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvnsvzbMZgNjg8l3g2Tj3+1oVe9pTEH0HibKOd3p6SWGeOwFLouwLMp0EBOd schyE57IMkXbD6vc+F1xpSy+CoRNsocqRPVBF3gOODc0a2sgc2iCq3VirR/mKkng d/Z2dAZW6/nyOMeVUXEniKu+FRxuMlv29lez2AhGJz4a8hbmk1w8tKRLqCcNsRkQ pNetyYBRcmHHzsy3b/pfDVCkso2E//XWi/t6BuPaVAq/Gb774ckFaIex0AVc8K7L +jUMhn8J4MLkFM4tzC7YaU2GIKImXxaBsrAVdRWuUYqIQrfGlVOLiGBssw1MtaJR Jqf6PcKbiW6kYEoUV4aCINgqIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQ5gZ5I IpeZjnpfIcs+DferNGXnMB8GA1UdIwQYMBaAFHLWW7PK1KCY829BN1lMx/7C+iij MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxRC9EOTBDRDg3NDM1 ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9KanpiMEUzV1V6SF9zTDZL S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0WmJzOHJVb0pqemIwRTNXVXpIX3NMNktLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzkxRC9EOTBDRDg3NDM1ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9K anpiMEUzV1V6SF9zTDZLS00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLpoTIDnDTn9HesHVcvmttyGn09a8eyLHIxIaKioAzCdihZUcdHw74 4rlEXmVcC04QMTF4/VxnnfSVieWm4sS7jlmFyb4jh6mSieOma5PVEiREZb7dXcGe 4cULtW2pIVgfOYs89qidEfQLGfKps4MBuKk+/TuEupsSw99FW0tvzHOwhByYkPAa 1GVg8yhN7SiEz4NP9aZIF1oYYLCGCWlOICnpfH/dOT5uOx6wwX5tJ1WE45FSdj6y ANst/rydPaUSkcPFCfALVK1qJg0tqbxwNDxNkbe7J2FjiOQ84Q5bkNiHbRO4red8 cIYqtgNI3SW9hhQfF3FjDwiM2FcSsA+3 -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:58 2025 by rpki-client