$ rpki-client -vvf rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft File: pZmI7E1t1bpqMPhmUatWLBimo04.mft (raw, json) Hash identifier: YOzpb3lnpn2eUUrDtd2v5I54uh3C5b8g9cdx5Lp7GMA= Subject key identifier: 95:96:40:64:91:BF:59:4D:BA:24:C4:93:4C:98:A5:82:67:CD:8C:5D Authority key identifier: A5:99:88:EC:4D:6D:D5:BA:6A:30:F8:66:51:AB:56:2C:18:A6:A3:4E Certificate issuer: /CN=A9143FF5/serialNumber=A59988EC4D6DD5BA6A30F86651AB562C18A6A34E Certificate serial: 0528 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft Manifest number: 0523 Signing time: Tue 04 Nov 2025 23:36:52 +0000 Manifest this update: Tue 04 Nov 2025 23:36:52 +0000 Manifest next update: Tue 11 Nov 2025 23:36:52 +0000 Files and hashes: 1: pZmI7E1t1bpqMPhmUatWLBimo04.crl (hash: bkHIHYLGwzGAcGzZyqYdbyY5z5NU6yOz4zkORk47LrQ=) 2: A027E062300911ECAE581534C4F9AE02.roa (hash: krTyx4GXgFlPzZ2i1hVEEfK54ydEVTwtrf/GVqS5/WA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.crl rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:36:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1320 (0x528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143FF5, serialNumber=A59988EC4D6DD5BA6A30F86651AB562C18A6A34E Validity Not Before: Nov 4 23:36:52 2025 GMT Not After : Nov 11 23:36:52 2025 GMT Subject: CN=690a8e14-80f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1d:1a:0f:b9:29:b9:02:cf:7c:83:1a:03:3b: 68:5c:77:f0:2b:49:73:ea:ab:6e:61:f2:df:25:57: 88:c0:9a:45:55:0e:62:55:cb:44:c2:1e:d6:61:76: d5:fe:64:59:c7:f8:84:a0:40:a2:a3:96:7a:31:9a: f3:29:02:c6:2f:99:92:db:9b:6d:f5:b8:a7:8c:bb: d4:93:9a:77:2c:e7:35:3f:2d:d7:dc:31:c2:66:cc: 33:6a:da:8d:98:4d:df:b7:a0:f2:3e:4b:9e:4a:02: 28:95:4a:71:55:57:62:77:83:36:c0:6e:16:f9:52: c0:47:5b:79:79:fc:4e:41:13:b1:fe:55:63:d6:b4: 2a:ae:9d:13:47:b6:a1:62:54:71:77:71:83:83:81: 2f:ff:9b:5d:08:ed:b9:ad:cb:51:62:31:2a:1a:90: 9a:dc:e6:13:21:76:54:e5:d0:34:ae:41:63:bb:0a: 9f:22:f5:dd:0b:27:15:c4:64:60:b2:1f:1a:77:a5: f2:a2:34:66:97:50:e9:04:b0:3a:72:6e:97:a8:eb: ba:fc:3f:ed:b1:99:4c:bd:de:26:b4:c1:8b:ee:59: 0a:ef:b7:ba:18:03:ca:c2:fe:f8:53:20:31:8a:30: 90:b1:7b:82:cd:23:52:5e:ea:59:cc:92:78:12:78: 39:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:96:40:64:91:BF:59:4D:BA:24:C4:93:4C:98:A5:82:67:CD:8C:5D X509v3 Authority Key Identifier: keyid:A5:99:88:EC:4D:6D:D5:BA:6A:30:F8:66:51:AB:56:2C:18:A6:A3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:4b:93:a4:1a:fc:1c:62:a7:07:fd:cd:17:9b:12:aa:4f:4c: 63:e6:84:7d:4a:fc:1a:b9:34:fa:a6:ee:97:85:66:e0:95:a7: f1:84:db:ac:28:af:f1:52:c2:a9:ae:74:59:a5:f0:02:2e:53: cd:51:4a:b0:a3:e5:85:9c:10:ec:65:43:b7:b2:09:e2:82:9f: 5b:bc:0b:fa:6b:3a:19:a7:70:21:69:1c:05:25:98:03:c8:26: 08:53:f5:51:d3:3a:26:d9:84:4b:3c:c4:73:03:3e:35:c4:99: 5f:52:c5:b6:cd:21:ab:b8:40:ca:7e:7e:f4:60:0b:41:40:a6: 31:08:12:7f:79:a4:00:e2:6a:5b:8e:9e:5b:10:5c:02:4a:4b: 9b:54:af:5e:07:fd:4b:0d:af:d9:c8:88:79:80:71:d6:93:26: 1c:20:bc:96:06:dd:da:e4:ed:e1:d5:52:00:af:f9:26:f2:c6: 1d:f6:08:23:30:eb:e9:74:08:2c:b4:0b:d9:f6:03:3a:70:7c: 25:30:4d:d7:88:3c:cb:66:75:36:f9:1f:53:76:c7:45:09:94: 6b:39:a1:1d:39:e7:41:b1:df:21:53:ff:32:41:94:3a:4a:bd: 33:4e:bd:56:0d:39:1e:79:a6:48:af:19:99:4e:74:34:96:1d: f1:f8:15:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNGRjUxMTAvBgNVBAUTKEE1OTk4OEVDNEQ2REQ1QkE2QTMwRjg2NjUxQUI1NjJD MThBNkEzNEUwHhcNMjUxMTA0MjMzNjUyWhcNMjUxMTExMjMzNjUyWjAYMRYwFAYD VQQDEw02OTBhOGUxNC04MGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyh0aD7kpuQLPfIMaAztoXHfwK0lz6qtuYfLfJVeIwJpFVQ5iVctEwh7WYXbV /mRZx/iEoECio5Z6MZrzKQLGL5mS25tt9binjLvUk5p3LOc1Py3X3DHCZswzatqN mE3ft6DyPkueSgIolUpxVVdid4M2wG4W+VLAR1t5efxOQROx/lVj1rQqrp0TR7ah YlRxd3GDg4Ev/5tdCO25rctRYjEqGpCa3OYTIXZU5dA0rkFjuwqfIvXdCycVxGRg sh8ad6XyojRml1DpBLA6cm6XqOu6/D/tsZlMvd4mtMGL7lkK77e6GAPKwv74UyAx ijCQsXuCzSNSXupZzJJ4Eng5UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWWQGSR v1lNuiTEk0yYpYJnzYxdMB8GA1UdIwQYMBaAFKWZiOxNbdW6ajD4ZlGrViwYpqNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0ZGNS8wMTM5NjlCNDIw MUMxMUVDOEExNzNDMkNDNEY5QUUwMi9wWm1JN0UxdDFicHFNUGhtVWF0V0xCaW1v MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BabUk3RTF0MWJwcU1QaG1VYXRXTEJpbW8wNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0ZGNS8wMTM5NjlCNDIwMUMxMUVDOEExNzNDMkNDNEY5QUUwMi9wWm1JN0UxdDFi cHFNUGhtVWF0V0xCaW1vMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiS5OkGvwcYqcH/c0XmxKqT0xj5oR9SvwauTT6pu6XhWbglafxhNus KK/xUsKprnRZpfACLlPNUUqwo+WFnBDsZUO3sgnigp9bvAv6azoZp3AhaRwFJZgD yCYIU/VR0zom2YRLPMRzAz41xJlfUsW2zSGruEDKfn70YAtBQKYxCBJ/eaQA4mpb jp5bEFwCSkubVK9eB/1LDa/ZyIh5gHHWkyYcILyWBt3a5O3h1VIAr/km8sYd9ggj MOvpdAgstAvZ9gM6cHwlME3XiDzLZnU2+R9TdsdFCZRrOaEdOedBsd8hU/8yQZQ6 Sr0zTr1WDTkeeaZIrxmZTnQ0lh3x+BWP -----END CERTIFICATE-----Generated at Wed Nov 5 13:47:16 2025 by rpki-client