$ rpki-client -vvf rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.mft File: Rm8RJELF0C5g8kaZGTriFRlbO6k.mft (raw, json) Hash identifier: 4IXYI9YlP0Z1rlR1VlmaoQhQggS8lkQ/7LXPae7Ju7o= Subject key identifier: EE:D7:F0:76:8C:9F:8D:7B:7E:5B:92:79:57:5A:AC:7B:A7:F6:1D:E2 Authority key identifier: 46:6F:11:24:42:C5:D0:2E:60:F2:46:99:19:3A:E2:15:19:5B:3B:A9 Certificate issuer: /CN=A915F89C/serialNumber=466F112442C5D02E60F24699193AE215195B3BA9 Certificate serial: 0DF0 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Rm8RJELF0C5g8kaZGTriFRlbO6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.mft Manifest number: 0DCE Signing time: Tue 04 Nov 2025 14:23:02 +0000 Manifest this update: Tue 04 Nov 2025 14:23:02 +0000 Manifest next update: Tue 11 Nov 2025 14:23:02 +0000 Files and hashes: 1: Rm8RJELF0C5g8kaZGTriFRlbO6k.crl (hash: wn79+QBekbdtb/ul8Czdjir4nwKcX7IVMILQ4Obc3vY=) 2: 266ABA161E5811EF89038F3BC4F9AE02.roa (hash: z3Q0XwSryFlf5ykqdN5Y1TdhtSCfR2jxPCzlYL9e1mQ=) 3: 1D3D0DC21E5811EFAC23683BC4F9AE02.roa (hash: VRtnd9Tj1mWAfM/JLgDB4PLLpcyhK2ei01M7Ec3zpI8=) 4: 91CA6CBC740111EFB5E97021C4F9AE02.roa (hash: YgDfwoJsux34uSaM5jXKcO0HoCC5yHWaw8GBRqOn1lo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.crl rsync://rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Rm8RJELF0C5g8kaZGTriFRlbO6k.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:23:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3568 (0xdf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F89C, serialNumber=466F112442C5D02E60F24699193AE215195B3BA9 Validity Not Before: Nov 4 14:23:02 2025 GMT Not After : Nov 11 14:23:02 2025 GMT Subject: CN=690a0c46-6c73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d8:65:d4:26:e6:ff:d3:2f:dc:2a:0b:75:53: 69:cf:04:67:8f:47:f7:de:30:07:31:c8:ef:fe:58: 7b:62:e7:24:fe:56:1a:03:0b:a1:69:f3:24:21:c3: b5:cc:e2:d1:f0:2f:26:db:a5:bf:08:ca:37:10:51: 80:0d:3c:09:55:a0:b6:c3:f3:41:af:fc:8f:52:57: 92:f7:5f:46:68:6c:d5:1e:96:e3:f1:3c:49:58:7e: 53:55:e8:b5:82:9f:2e:f1:09:2f:0d:58:63:ab:01: e5:6a:b8:ab:6d:d3:68:70:a0:24:0e:b0:85:01:21: 81:20:d1:7f:b7:60:cb:a8:fd:16:1f:b6:70:8b:9e: 61:ef:8f:55:ab:ab:39:63:90:68:ed:12:07:93:6e: 04:97:f0:46:61:12:97:f8:c6:b2:eb:e3:8c:64:ac: 01:88:92:ed:ce:78:cd:01:a9:80:cc:71:42:3f:c5: 51:36:ff:96:63:3c:b8:86:6a:79:7c:d7:d3:12:b2: 0e:ab:c3:c1:77:19:f2:fc:14:00:f4:3c:c1:35:61: 13:ec:cd:2f:25:cf:fa:40:ea:51:bf:4e:bf:79:8c: 26:91:23:1e:5f:e0:0b:84:17:1f:45:5c:26:9c:82: a6:1f:81:bc:8d:06:9c:a1:ee:5a:a6:50:17:0c:de: e4:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:D7:F0:76:8C:9F:8D:7B:7E:5B:92:79:57:5A:AC:7B:A7:F6:1D:E2 X509v3 Authority Key Identifier: keyid:46:6F:11:24:42:C5:D0:2E:60:F2:46:99:19:3A:E2:15:19:5B:3B:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Rm8RJELF0C5g8kaZGTriFRlbO6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:aa:01:6d:b4:5b:43:cc:25:32:c0:88:00:9a:2b:94:2b:1f: 7a:52:0b:b6:20:bd:a0:dc:fe:22:ca:65:b8:d3:8f:11:53:40: 7b:5d:d0:a5:73:9f:f1:e1:30:e1:1f:6c:3a:27:be:10:a5:5e: 5d:aa:ad:a3:bf:83:31:01:c4:7b:b1:b5:2e:54:03:c5:20:54: be:f3:7c:a4:a8:62:4b:b0:87:37:7a:85:1f:20:6b:b9:80:22: 8b:f9:f1:f4:fa:38:0b:e5:09:2a:e7:f5:65:91:48:3e:ec:f2: 7c:16:2c:34:c0:7b:c7:6f:eb:a8:3b:c1:7d:0d:fc:a8:e6:f5: a9:e3:6a:a4:03:4c:6d:1f:33:ba:ff:b3:13:57:68:b1:78:d2: 82:f4:69:6d:82:9e:d5:b5:ac:aa:e3:0b:9e:84:1d:57:4e:ee: 5f:f6:4f:f6:6b:c3:c2:08:6a:ad:ea:91:d4:25:3a:5c:fe:4e: 94:40:94:52:10:05:a6:9b:95:23:dd:ee:51:8c:4c:82:46:0f: 21:f7:d5:81:70:54:c0:a5:11:28:7d:c7:d7:35:be:98:13:fd: 32:3b:ad:59:00:a5:56:9a:db:fb:85:8e:6d:f9:71:e8:98:f3: cd:42:97:23:8b:62:17:00:0f:22:48:98:8e:3c:05:ef:33:5b: 9d:b4:7c:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY4OUMxMTAvBgNVBAUTKDQ2NkYxMTI0NDJDNUQwMkU2MEYyNDY5OTE5M0FFMjE1 MTk1QjNCQTkwHhcNMjUxMTA0MTQyMzAyWhcNMjUxMTExMTQyMzAyWjAYMRYwFAYD VQQDEw02OTBhMGM0Ni02YzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNhl1Cbm/9Mv3CoLdVNpzwRnj0f33jAHMcjv/lh7Yuck/lYaAwuhafMkIcO1 zOLR8C8m26W/CMo3EFGADTwJVaC2w/NBr/yPUleS919GaGzVHpbj8TxJWH5TVei1 gp8u8QkvDVhjqwHlarirbdNocKAkDrCFASGBINF/t2DLqP0WH7Zwi55h749Vq6s5 Y5Bo7RIHk24El/BGYRKX+May6+OMZKwBiJLtznjNAamAzHFCP8VRNv+WYzy4hmp5 fNfTErIOq8PBdxny/BQA9DzBNWET7M0vJc/6QOpRv06/eYwmkSMeX+ALhBcfRVwm nIKmH4G8jQacoe5aplAXDN7kyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7X8HaM n417fluSeVdarHun9h3iMB8GA1UdIwQYMBaAFEZvESRCxdAuYPJGmRk64hUZWzup MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Rjg5Qy8wMUIwNjlGNkNF QkIxMUU5OUIxRjdEM0VDNEY5QUUwMi9SbThSSkVMRjBDNWc4a2FaR1RyaUZSbGJP NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JtOFJKRUxGMEM1ZzhrYVpHVHJpRlJsYk82ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Rjg5Qy8wMUIwNjlGNkNFQkIxMUU5OUIxRjdEM0VDNEY5QUUwMi9SbThSSkVMRjBD NWc4a2FaR1RyaUZSbGJPNmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXqgFttFtDzCUywIgAmiuUKx96Ugu2IL2g3P4iymW4048RU0B7XdCl c5/x4TDhH2w6J74QpV5dqq2jv4MxAcR7sbUuVAPFIFS+83ykqGJLsIc3eoUfIGu5 gCKL+fH0+jgL5Qkq5/VlkUg+7PJ8Fiw0wHvHb+uoO8F9Dfyo5vWp42qkA0xtHzO6 /7MTV2ixeNKC9Gltgp7Vtayq4wuehB1XTu5f9k/2a8PCCGqt6pHUJTpc/k6UQJRS EAWmm5Uj3e5RjEyCRg8h99WBcFTApREofcfXNb6YE/0yO61ZAKVWmtv7hY5t+XHo mPPNQpcji2IXAA8iSJiOPAXvM1udtHyy -----END CERTIFICATE-----Generated at Wed Nov 5 11:56:04 2025 by rpki-client