$ rpki-client -vvf rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft File: aZoPjRWjT1mVbLSADGxEBNwOvV0.mft (raw, json) Hash identifier: BgyJhrEhyKcDWUq3p4jNmFeFfad3cd693/lWpr9V1P4= Subject key identifier: FF:FA:EB:02:D5:1C:C5:6C:02:73:44:06:D5:E7:3A:58:89:A7:F9:E9 Authority key identifier: 69:9A:0F:8D:15:A3:4F:59:95:6C:B4:80:0C:6C:44:04:DC:0E:BD:5D Certificate issuer: /CN=A915C1FE/serialNumber=699A0F8D15A34F59956CB4800C6C4404DC0EBD5D Certificate serial: 3503 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft Manifest number: 34E4 Signing time: Tue 04 Nov 2025 15:20:45 +0000 Manifest this update: Tue 04 Nov 2025 15:20:44 +0000 Manifest next update: Tue 11 Nov 2025 15:20:44 +0000 Files and hashes: 1: aZoPjRWjT1mVbLSADGxEBNwOvV0.crl (hash: 3QS+7wc7jWEvUKF0jk3wCdFyema+EKaCLvWI0cgE3UY=) 2: 6BC5DC4AB10511E591A3E484C4F9AE02.roa (hash: lhbAPGcQQjVfLeBPPvSfLGakAoAsie+moEAIzx57Z0Y=) 3: 6A9E6940B10511E591A3E484C4F9AE02.roa (hash: 1AXC4CdSqCeZreg7Kdx8zTNNLCij2RY2Acpk7gs3UmA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.crl rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:20:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13571 (0x3503) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C1FE, serialNumber=699A0F8D15A34F59956CB4800C6C4404DC0EBD5D Validity Not Before: Nov 4 15:20:44 2025 GMT Not After : Nov 11 15:20:44 2025 GMT Subject: CN=690a19cc-ed2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:35:73:41:4f:1a:5e:92:1d:2d:06:24:e3:52: a4:0f:9b:82:9a:1c:ba:7c:02:8b:16:10:e2:3f:33: 73:0e:7b:0f:8f:4b:3c:65:5d:d7:1f:ce:aa:76:7f: c9:11:83:17:ad:26:d8:4b:bf:57:c4:1d:65:b3:98: cb:6e:9d:22:d2:e1:05:d0:1c:20:2c:72:5c:ca:bb: e2:b2:42:27:30:0a:71:7b:cf:25:09:23:1f:8a:58: c6:f5:de:6e:9d:0a:48:b2:32:eb:8e:28:42:a9:ca: 7a:0a:8f:4a:76:99:c6:97:92:55:0c:12:ba:d4:cf: c8:39:1e:3e:b0:42:b7:9b:19:2e:6f:4a:d5:55:f1: 6b:cc:aa:3e:3b:b5:23:70:ba:aa:a8:2a:a7:a5:a8: 06:b1:bb:2c:e6:ea:ba:6e:5b:54:cf:23:93:cd:72: c2:ad:ca:bc:6d:c9:f9:f3:11:bc:96:68:47:d5:64: 18:23:87:db:61:3d:0f:c7:98:db:8f:4d:55:30:e4: 71:02:ee:8b:14:0b:76:3f:8f:77:cb:c9:e4:be:8c: b8:c3:e3:ce:80:5b:65:ed:fc:f2:26:9d:13:01:1e: c3:42:85:fc:77:ac:1a:e7:32:48:bf:8b:03:be:2b: 54:d7:6d:17:41:67:f2:91:c7:5e:2c:13:46:43:a6: a6:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:FA:EB:02:D5:1C:C5:6C:02:73:44:06:D5:E7:3A:58:89:A7:F9:E9 X509v3 Authority Key Identifier: keyid:69:9A:0F:8D:15:A3:4F:59:95:6C:B4:80:0C:6C:44:04:DC:0E:BD:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZoPjRWjT1mVbLSADGxEBNwOvV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C1FE/D118AABA1DAA11E2A2ECCAA608B02CD2/aZoPjRWjT1mVbLSADGxEBNwOvV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:30:bb:09:67:62:de:b5:bb:82:fa:a7:9a:a5:a5:2e:6e:3d: d6:6f:8d:e9:6a:45:18:0a:75:59:dc:1a:e0:8a:00:b7:a0:6b: 24:b5:2f:a5:e1:2f:2e:f8:67:9c:6f:37:ad:65:f8:bd:03:af: 93:5e:94:09:14:a7:f8:af:83:74:01:5e:48:21:57:d8:f5:89: 60:22:4b:41:08:7b:7a:ba:99:95:1f:51:40:13:d1:20:99:b6: 51:7e:8d:80:b2:de:e7:6a:6c:38:11:12:83:ea:3e:20:f0:c0: b6:df:bb:26:f8:e5:e3:ea:46:2c:cb:a1:65:e0:6e:9d:96:ea: 0a:e1:05:bf:35:41:90:e3:9c:a0:d7:5e:99:ee:e6:10:d4:87: 29:76:23:9d:83:36:37:50:21:e0:71:5d:76:de:e8:ea:9e:21: 6c:cb:0c:fd:65:02:cb:5a:58:c2:9c:6e:9e:b5:c4:b6:4c:73: 2a:c2:84:c1:a7:20:22:ee:b1:6e:ba:0f:04:70:a3:6f:62:75: 90:2a:eb:1f:a4:86:9e:15:f7:ac:50:16:46:c5:4c:5d:01:42: f8:f4:75:cb:d4:f8:a0:1a:be:fb:df:15:5b:2f:fc:42:0c:67: 33:6d:f1:f9:9a:a3:9e:bf:af:62:ab:41:5f:7a:df:c2:c4:6d: ee:b0:97:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMxRkUxMTAvBgNVBAUTKDY5OUEwRjhEMTVBMzRGNTk5NTZDQjQ4MDBDNkM0NDA0 REMwRUJENUQwHhcNMjUxMTA0MTUyMDQ0WhcNMjUxMTExMTUyMDQ0WjAYMRYwFAYD VQQDEw02OTBhMTljYy1lZDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzVzQU8aXpIdLQYk41KkD5uCmhy6fAKLFhDiPzNzDnsPj0s8ZV3XH86qdn/J EYMXrSbYS79XxB1ls5jLbp0i0uEF0BwgLHJcyrviskInMApxe88lCSMfiljG9d5u nQpIsjLrjihCqcp6Co9KdpnGl5JVDBK61M/IOR4+sEK3mxkub0rVVfFrzKo+O7Uj cLqqqCqnpagGsbss5uq6bltUzyOTzXLCrcq8bcn58xG8lmhH1WQYI4fbYT0Px5jb j01VMORxAu6LFAt2P493y8nkvoy4w+POgFtl7fzyJp0TAR7DQoX8d6wa5zJIv4sD vitU120XQWfykcdeLBNGQ6amywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/66wLV HMVsAnNEBtXnOliJp/npMB8GA1UdIwQYMBaAFGmaD40Vo09ZlWy0gAxsRATcDr1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzFGRS9EMTE4QUFCQTFE QUExMUUyQTJFQ0NBQTYwOEIwMkNEMi9hWm9QalJXalQxbVZiTFNBREd4RUJOd092 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Fab1BqUldqVDFtVmJMU0FER3hFQk53T3ZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzFGRS9EMTE4QUFCQTFEQUExMUUyQTJFQ0NBQTYwOEIwMkNEMi9hWm9QalJXalQx bVZiTFNBREd4RUJOd092VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUMLsJZ2LetbuC+qeapaUubj3Wb43pakUYCnVZ3BrgigC3oGsktS+l 4S8u+GecbzetZfi9A6+TXpQJFKf4r4N0AV5IIVfY9YlgIktBCHt6upmVH1FAE9Eg mbZRfo2Ast7namw4ERKD6j4g8MC237sm+OXj6kYsy6Fl4G6dluoK4QW/NUGQ45yg 116Z7uYQ1IcpdiOdgzY3UCHgcV123ujqniFsywz9ZQLLWljCnG6etcS2THMqwoTB pyAi7rFuug8EcKNvYnWQKusfpIaeFfesUBZGxUxdAUL49HXL1PigGr773xVbL/xC DGczbfH5mqOev69iq0Ffet/CxG3usJf7 -----END CERTIFICATE-----Generated at Wed Nov 5 05:49:16 2025 by rpki-client