$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft File: vHDzdLcox7cRwkpoJ_dHekKyKk0.mft (raw, json) Hash identifier: f1gkugcAHxuIXoR8CK+xuVbLwOwillUS9vY2hBBWYC4= Subject key identifier: EE:B7:4B:BD:56:A7:96:4D:DE:E1:5F:EC:6C:0A:BF:3B:6C:82:67:73 Authority key identifier: BC:70:F3:74:B7:28:C7:B7:11:C2:4A:68:27:F7:47:7A:42:B2:2A:4D Certificate issuer: /CN=A9142A75/serialNumber=BC70F374B728C7B711C24A6827F7477A42B22A4D Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft Manifest number: 81 Signing time: Wed 05 Nov 2025 06:52:57 +0000 Manifest this update: Wed 05 Nov 2025 06:52:57 +0000 Manifest next update: Wed 12 Nov 2025 06:52:57 +0000 Files and hashes: 1: vHDzdLcox7cRwkpoJ_dHekKyKk0.crl (hash: I0r16ZWkGSkZQXwQD0ruWK/BFcwiUEm1Gd6999EmEcM=) 2: 3B69BCFAF53A11EF907A433EC4F9AE02.roa (hash: g53LMcn3iRdJAKtGtiImyfZixGirZg93i3IYIo94JAU=) 3: 6BD4BB16F83111EFBA64911FC4F9AE02.roa (hash: XvWuI1YoEga2y2ypcrjG1/r0tc+yszPXr1W996sUaXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.crl rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:52:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A75, serialNumber=BC70F374B728C7B711C24A6827F7477A42B22A4D Validity Not Before: Nov 5 06:52:57 2025 GMT Not After : Nov 12 06:52:57 2025 GMT Subject: CN=690af449-d682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:99:0e:d4:39:f6:46:86:ea:f4:65:7b:7e:a9: 1d:2c:8e:9a:a4:66:79:ca:25:36:39:0d:50:33:a9: 60:ed:68:2f:24:9d:fb:58:fb:f7:68:72:95:82:29: e2:eb:40:f8:6a:9a:fa:4b:75:96:36:cb:0a:58:40: 90:42:f6:02:3b:16:7e:78:0a:6d:aa:cd:11:42:85: f5:7d:4d:9c:66:68:1d:4a:09:22:81:19:f9:de:59: 56:88:d1:3a:d8:25:df:fc:e7:fe:20:4a:1d:02:9b: 53:3b:98:6c:4e:57:28:86:ce:ab:81:12:50:a1:ac: 9b:a3:db:ca:1f:0f:72:8b:64:26:73:87:35:be:0c: 29:b7:82:5c:19:4e:3c:0c:e0:1b:b8:e8:40:19:74: 1a:1c:85:62:3a:05:b8:6e:78:07:4e:ed:f2:be:9d: 3a:60:8c:97:c5:c8:22:69:15:49:db:18:fe:03:b5: 51:21:a3:5d:5f:19:01:89:1d:d3:2b:09:74:1b:7a: ea:a6:fc:5c:0c:58:5a:38:4a:c4:50:91:97:7d:66: 6b:16:52:22:7b:a2:30:93:81:02:2c:51:03:c5:b4: c6:ad:95:3a:5d:d8:3d:6a:a8:23:44:27:f8:ce:9d: 12:cf:98:39:5d:ff:7b:7d:bc:2b:bb:08:e2:7f:f0: 3a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:B7:4B:BD:56:A7:96:4D:DE:E1:5F:EC:6C:0A:BF:3B:6C:82:67:73 X509v3 Authority Key Identifier: keyid:BC:70:F3:74:B7:28:C7:B7:11:C2:4A:68:27:F7:47:7A:42:B2:2A:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:d9:d9:0a:ae:e5:b9:7e:ab:e7:e1:08:1b:d5:e8:fa:bf:cc: 1b:7e:52:30:e4:c8:bb:9f:c2:f4:a8:dd:2f:44:1e:9d:de:97: 47:9e:3c:e6:76:39:00:7d:87:c8:20:ed:83:54:ca:f1:8c:7b: a3:fa:b6:3e:96:77:be:b0:12:b5:99:cc:56:f1:37:b3:80:b4: a2:01:3d:c0:50:fa:b4:eb:84:fb:f2:c6:68:74:8d:aa:9c:e5: 3a:8a:32:dd:eb:af:7d:3d:db:18:8a:98:f4:4a:3e:de:ff:73: bd:ac:db:83:fa:63:62:15:7b:f5:ca:a6:71:23:ee:26:c9:9b: 0e:d6:94:f1:9b:f8:b2:b6:89:7d:14:f5:18:92:6f:34:60:e7: 81:c0:cc:04:1d:d4:64:7b:47:af:6b:18:fe:4a:5f:a6:d1:8f: 42:d7:d3:d7:00:f1:71:56:e2:c4:97:1f:c1:28:9e:c5:24:7e: 8a:4a:f8:6b:18:23:ac:2f:71:3b:73:3e:05:b9:ce:14:1c:d5: 4f:aa:e4:a3:23:63:80:a8:fc:5c:fe:b7:14:cf:14:93:83:0f: 7a:7b:e6:a5:3a:03:b7:3a:ae:bb:a4:d0:3d:86:c9:e4:89:98: 9c:27:7e:fa:78:de:6f:b2:72:26:6d:e4:55:86:97:24:d5:5c: 8b:f8:81:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJBNzUxMTAvBgNVBAUTKEJDNzBGMzc0QjcyOEM3QjcxMUMyNEE2ODI3Rjc0NzdB NDJCMjJBNEQwHhcNMjUxMTA1MDY1MjU3WhcNMjUxMTEyMDY1MjU3WjAYMRYwFAYD VQQDEw02OTBhZjQ0OS1kNjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZkO1Dn2Robq9GV7fqkdLI6apGZ5yiU2OQ1QM6lg7WgvJJ37WPv3aHKVgini 60D4apr6S3WWNssKWECQQvYCOxZ+eAptqs0RQoX1fU2cZmgdSgkigRn53llWiNE6 2CXf/Of+IEodAptTO5hsTlcohs6rgRJQoaybo9vKHw9yi2Qmc4c1vgwpt4JcGU48 DOAbuOhAGXQaHIViOgW4bngHTu3yvp06YIyXxcgiaRVJ2xj+A7VRIaNdXxkBiR3T Kwl0G3rqpvxcDFhaOErEUJGXfWZrFlIie6Iwk4ECLFEDxbTGrZU6Xdg9aqgjRCf4 zp0Sz5g5Xf97fbwruwjif/A6GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO63S71W p5ZN3uFf7GwKvztsgmdzMB8GA1UdIwQYMBaAFLxw83S3KMe3EcJKaCf3R3pCsipN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkE3NS9FRjVDRDZEQUY1 MzkxMUVGQjA5RkM4M0RDNEY5QUUwMi92SER6ZExjb3g3Y1J3a3BvSl9kSGVrS3lL azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZIRHpkTGNveDdjUndrcG9KX2RIZWtLeUtrMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkE3NS9FRjVDRDZEQUY1MzkxMUVGQjA5RkM4M0RDNEY5QUUwMi92SER6ZExjb3g3 Y1J3a3BvSl9kSGVrS3lLazAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAo2dkKruW5fqvn4Qgb1ej6v8wbflIw5Mi7n8L0qN0vRB6d3pdHnjzm djkAfYfIIO2DVMrxjHuj+rY+lne+sBK1mcxW8TezgLSiAT3AUPq064T78sZodI2q nOU6ijLd6699PdsYipj0Sj7e/3O9rNuD+mNiFXv1yqZxI+4myZsO1pTxm/iytol9 FPUYkm80YOeBwMwEHdRke0evaxj+Sl+m0Y9C19PXAPFxVuLElx/BKJ7FJH6KSvhr GCOsL3E7cz4Fuc4UHNVPquSjI2OAqPxc/rcUzxSTgw96e+alOgO3Oq67pNA9hsnk iZicJ376eN5vsnImbeRVhpck1VyL+IG+ -----END CERTIFICATE-----Generated at Wed Nov 5 12:28:43 2025 by rpki-client