$ rpki-client -vvf rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft File: D96C0nlIVMmvzdhe-37-ScR9Lu4.mft (raw, json) Hash identifier: b/6oTxjNEUIn87xkz5Re1j4Tf/Stn+iyZjOkD6AqtmE= Subject key identifier: 42:CA:01:B8:8F:4D:C6:6B:AC:8A:E1:2A:B7:54:48:78:D7:2E:45:1C Authority key identifier: 0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE Certificate issuer: /CN=A914C33A/serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Certificate serial: 0D39 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft Manifest number: 0D2D Signing time: Tue 04 Nov 2025 15:36:41 +0000 Manifest this update: Tue 04 Nov 2025 15:36:41 +0000 Manifest next update: Tue 11 Nov 2025 15:36:41 +0000 Files and hashes: 1: D96C0nlIVMmvzdhe-37-ScR9Lu4.crl (hash: oID/IhQBzgcAEDUjU/FoM7jh2NgB8MS4SYy9+4QagjU=) 2: 0DF331C28F9411EAA5E7B573C4F9AE02.roa (hash: 9uu0uxHIlYAtI54QHWC2LYrc4wDsOXjbCKyh/vuM2qk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:36:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3385 (0xd39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C33A, serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Validity Not Before: Nov 4 15:36:41 2025 GMT Not After : Nov 11 15:36:41 2025 GMT Subject: CN=690a1d89-77f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:56:34:58:9a:59:bb:ce:8a:2f:43:8d:e0:ca: c7:92:f7:4d:51:ce:78:d6:f0:8d:d7:58:2e:d8:48: 61:cb:df:88:06:53:eb:ba:5d:53:44:3e:b8:88:59: 8b:bb:ac:67:64:7c:2d:73:40:80:4b:6b:93:2e:00: e7:1f:9b:bd:ac:91:af:08:ba:90:23:fe:cd:52:04: fd:0d:54:70:63:fd:c1:40:64:b0:19:ed:c2:92:0a: f1:76:dd:6a:cf:6c:3a:b1:d7:35:bc:aa:e4:8b:2e: 00:f2:3e:26:d7:7b:fd:f2:f8:bc:37:e6:e1:64:07: ca:bd:fa:6a:c0:5e:b2:e4:7c:36:79:e7:e7:80:12: 8a:23:b2:e0:6c:9b:c1:7b:0d:0d:f2:a2:9e:ec:53: 12:0e:18:cd:e9:42:51:99:79:20:57:e2:54:5d:a1: 9a:4e:3d:4f:da:18:16:36:4d:7d:f0:54:8d:d6:1d: 08:9a:24:e6:c1:28:92:68:49:b9:f3:cc:aa:0b:81: da:d8:31:45:ea:1f:96:a8:48:13:f9:a0:fd:0d:1d: 3a:1b:aa:fc:6e:92:ca:7f:c0:f3:15:06:5c:08:c6: be:f4:4a:f5:7f:32:32:e7:b9:0d:44:de:2c:6d:2c: eb:0d:3b:c4:62:d9:13:3e:ef:5c:cb:27:25:f2:cd: 30:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:CA:01:B8:8F:4D:C6:6B:AC:8A:E1:2A:B7:54:48:78:D7:2E:45:1C X509v3 Authority Key Identifier: keyid:0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:ba:15:03:d4:95:1b:11:75:54:58:46:5b:3b:4c:be:34:b5: 71:3a:a6:39:8f:a2:70:c1:ba:e7:10:28:7a:8f:ca:bb:dc:91: d0:05:cc:57:e1:49:c5:df:c3:09:7d:54:fc:75:43:bf:9b:2a: ba:71:9f:d2:6f:e8:06:4c:f5:5b:18:37:df:5d:9d:ca:82:46: 42:ba:6d:c9:d3:bc:cc:ee:6b:4e:85:65:81:36:00:c3:b3:75: ef:89:d1:ec:9e:86:34:0e:bb:82:d0:fe:0e:54:31:ff:01:d7: ae:e8:24:7c:a5:93:ac:8b:96:72:57:a2:85:4b:69:5b:00:8a: 14:3d:05:97:20:7e:1b:a9:0a:d6:07:78:82:80:c5:62:96:a8: e3:f3:b2:0f:31:ac:b8:04:e8:6c:27:a8:86:a8:cb:2d:6b:c9: f4:c7:12:4f:f4:e4:20:df:2e:72:43:a8:a7:fc:55:0a:7f:08: 44:d2:a6:67:09:82:64:6b:c3:14:d0:ab:87:6c:f9:f2:da:ed: c6:ee:16:da:60:03:fd:f4:39:6e:4c:50:e4:0a:48:c9:c7:31: 7c:6e:8d:87:28:be:27:02:80:15:15:9b:c8:c5:80:46:65:43: d9:39:35:6c:85:71:fc:2c:ab:96:2a:ad:2c:0b:86:68:83:33: 39:f2:3d:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMzM0ExMTAvBgNVBAUTKDBGREU4MkQyNzk0ODU0QzlBRkNERDg1RUZCN0VGRTQ5 QzQ3RDJFRUUwHhcNMjUxMTA0MTUzNjQxWhcNMjUxMTExMTUzNjQxWjAYMRYwFAYD VQQDEw02OTBhMWQ4OS03N2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5FY0WJpZu86KL0ON4MrHkvdNUc541vCN11gu2Ehhy9+IBlPrul1TRD64iFmL u6xnZHwtc0CAS2uTLgDnH5u9rJGvCLqQI/7NUgT9DVRwY/3BQGSwGe3Ckgrxdt1q z2w6sdc1vKrkiy4A8j4m13v98vi8N+bhZAfKvfpqwF6y5Hw2eefngBKKI7LgbJvB ew0N8qKe7FMSDhjN6UJRmXkgV+JUXaGaTj1P2hgWNk198FSN1h0ImiTmwSiSaEm5 88yqC4Ha2DFF6h+WqEgT+aD9DR06G6r8bpLKf8DzFQZcCMa+9Er1fzIy57kNRN4s bSzrDTvEYtkTPu9cyycl8s0wswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELKAbiP TcZrrIrhKrdUSHjXLkUcMB8GA1UdIwQYMBaAFA/egtJ5SFTJr83YXvt+/knEfS7u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzMzQS84RjQ3QTlGQUU5 N0QxMUU5QTlEQjVFNTJDNEY5QUUwMi9EOTZDMG5sSVZNbXZ6ZGhlLTM3LVNjUjlM dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0Q5NkMwbmxJVk1tdnpkaGUtMzctU2NSOUx1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzMzQS84RjQ3QTlGQUU5N0QxMUU5QTlEQjVFNTJDNEY5QUUwMi9EOTZDMG5sSVZN bXZ6ZGhlLTM3LVNjUjlMdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFuhUD1JUbEXVUWEZbO0y+NLVxOqY5j6JwwbrnECh6j8q73JHQBcxX 4UnF38MJfVT8dUO/myq6cZ/Sb+gGTPVbGDffXZ3KgkZCum3J07zM7mtOhWWBNgDD s3XvidHsnoY0DruC0P4OVDH/Adeu6CR8pZOsi5ZyV6KFS2lbAIoUPQWXIH4bqQrW B3iCgMVilqjj87IPMay4BOhsJ6iGqMsta8n0xxJP9OQg3y5yQ6in/FUKfwhE0qZn CYJka8MU0KuHbPny2u3G7hbaYAP99DluTFDkCkjJxzF8bo2HKL4nAoAVFZvIxYBG ZUPZOTVshXH8LKuWKq0sC4ZogzM58j1j -----END CERTIFICATE-----Generated at Wed Nov 5 20:48:09 2025 by rpki-client