$ rpki-client -vvf rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft File: p0zn2tX7UE2xa75wwvnfCqnwBgk.mft (raw, json) Hash identifier: IJay5HMJyXS6wyH9Zkr9ls/4ZG+2b3W8MzGGWeT+Um0= Subject key identifier: DA:41:9A:1F:98:B7:0A:73:CC:EB:44:FD:83:49:6B:D3:B5:6C:B9:AB Authority key identifier: A7:4C:E7:DA:D5:FB:50:4D:B1:6B:BE:70:C2:F9:DF:0A:A9:F0:06:09 Certificate issuer: /CN=A918D699/serialNumber=A74CE7DAD5FB504DB16BBE70C2F9DF0AA9F00609 Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft Manifest number: 011B Signing time: Wed 05 Nov 2025 05:02:04 +0000 Manifest this update: Wed 05 Nov 2025 05:02:04 +0000 Manifest next update: Wed 12 Nov 2025 05:02:04 +0000 Files and hashes: 1: p0zn2tX7UE2xa75wwvnfCqnwBgk.crl (hash: 4R6rg3y9bgPFh5tmTEvKiR+QXG8fYWiDvpFJV4jxKMU=) 2: C564E80017E911EF9D471E18C4F9AE02.roa (hash: ovencPjh3DETl3TFknJbkwLv9wBQOuWaZf8yT96L04E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.crl rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D699, serialNumber=A74CE7DAD5FB504DB16BBE70C2F9DF0AA9F00609 Validity Not Before: Nov 5 05:02:04 2025 GMT Not After : Nov 12 05:02:04 2025 GMT Subject: CN=690ada4c-8fcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:f0:4e:3b:16:e3:16:1a:fe:7d:39:a3:86:af: e3:62:f4:55:5b:f3:1e:83:9c:ca:02:fd:56:4e:bb: 18:4e:ad:b7:2e:9c:79:b5:cb:d0:2b:6f:a2:95:c9: ae:04:41:b0:d5:04:e6:c2:90:b1:45:75:ca:3d:db: 52:48:79:33:c2:ce:ee:65:93:93:01:c8:75:9c:61: 67:74:cb:59:56:75:f3:79:2d:cb:2f:96:81:8e:43: 7f:8c:ff:9e:fe:7b:eb:e9:1b:86:85:93:44:98:2b: dc:bd:21:ee:f2:a9:ad:6d:77:2a:57:1f:70:35:81: 78:29:e4:78:e1:c3:a2:ec:37:50:06:1f:19:27:f7: 7f:76:e3:d3:89:73:a6:14:60:e6:6f:ad:35:73:2c: 27:9e:e3:e9:9a:1a:cb:d2:64:67:57:c3:5f:2c:1e: 18:12:e8:1d:ec:ca:a4:d0:15:f0:4b:51:e6:13:2e: 53:85:64:0e:e9:5c:83:56:30:23:09:ba:b3:4b:26: e5:f9:15:64:06:58:00:1e:05:b9:62:60:67:73:ed: 10:5e:3f:d5:4f:70:b0:58:1c:df:1c:b0:ed:7f:25: 91:37:71:d1:be:ee:ba:1f:8e:21:f7:4c:33:a5:e1: e2:5d:07:2b:3f:43:b8:c3:a6:08:a9:24:17:d6:e9: 59:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:41:9A:1F:98:B7:0A:73:CC:EB:44:FD:83:49:6B:D3:B5:6C:B9:AB X509v3 Authority Key Identifier: keyid:A7:4C:E7:DA:D5:FB:50:4D:B1:6B:BE:70:C2:F9:DF:0A:A9:F0:06:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:24:da:2a:eb:ba:17:9a:81:1f:9c:4d:ba:df:30:08:ef:a3: 22:92:ab:ec:30:64:1a:28:d6:6b:c1:d3:dc:6b:4c:c7:ec:00: d0:93:c0:81:08:8d:ef:4b:8b:91:c8:18:ad:9e:c2:92:ed:82: 21:63:51:c4:ea:d3:b4:ad:16:43:b4:49:78:b8:4c:52:c9:4d: 05:4b:2a:09:e1:56:f7:b1:a5:f0:b3:98:24:80:a0:08:ca:5b: 9b:0c:91:c7:fd:1f:aa:da:ea:34:7a:74:e6:5e:d7:0a:ce:29: 4d:b4:cb:65:99:c3:7d:83:d0:85:95:33:da:64:7e:fa:1e:c9: da:1a:e6:b4:54:b2:98:c4:bf:96:4e:7d:44:e5:e7:dc:7e:71: 48:cd:07:6b:cb:ab:98:07:68:6d:4d:3b:b1:2b:28:63:ef:e6: 8b:54:47:ef:70:37:a8:8d:5b:1b:e6:3d:d6:62:8d:d4:19:e8: 8d:79:3d:79:3e:11:9a:97:1f:93:76:60:4a:39:33:52:7b:76: fc:c5:6b:53:48:5f:36:db:8e:7a:a0:14:81:05:a5:c7:f8:d3: fb:8a:ef:d7:25:7b:f6:df:40:18:0e:5e:3e:6c:e0:23:2b:5d: ee:a2:03:69:20:fe:34:b1:bb:75:25:77:2c:c1:74:2c:02:93: 59:d0:7c:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ2OTkxMTAvBgNVBAUTKEE3NENFN0RBRDVGQjUwNERCMTZCQkU3MEMyRjlERjBB QTlGMDA2MDkwHhcNMjUxMTA1MDUwMjA0WhcNMjUxMTEyMDUwMjA0WjAYMRYwFAYD VQQDEw02OTBhZGE0Yy04ZmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4vBOOxbjFhr+fTmjhq/jYvRVW/Meg5zKAv1WTrsYTq23Lpx5tcvQK2+ilcmu BEGw1QTmwpCxRXXKPdtSSHkzws7uZZOTAch1nGFndMtZVnXzeS3LL5aBjkN/jP+e /nvr6RuGhZNEmCvcvSHu8qmtbXcqVx9wNYF4KeR44cOi7DdQBh8ZJ/d/duPTiXOm FGDmb601cywnnuPpmhrL0mRnV8NfLB4YEugd7Mqk0BXwS1HmEy5ThWQO6VyDVjAj CbqzSybl+RVkBlgAHgW5YmBnc+0QXj/VT3CwWBzfHLDtfyWRN3HRvu66H44h90wz peHiXQcrP0O4w6YIqSQX1ulZkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNpBmh+Y twpzzOtE/YNJa9O1bLmrMB8GA1UdIwQYMBaAFKdM59rV+1BNsWu+cML53wqp8AYJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDY5OS81NTg2RUY2QTE3 RTkxMUVGQTJDRDUwMTdDNEY5QUUwMi9wMHpuMnRYN1VFMnhhNzV3d3ZuZkNxbndC Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Awem4ydFg3VUUyeGE3NXd3dm5mQ3Fud0Jnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDY5OS81NTg2RUY2QTE3RTkxMUVGQTJDRDUwMTdDNEY5QUUwMi9wMHpuMnRYN1VF MnhhNzV3d3ZuZkNxbndCZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeJNoq67oXmoEfnE263zAI76MikqvsMGQaKNZrwdPca0zH7ADQk8CB CI3vS4uRyBitnsKS7YIhY1HE6tO0rRZDtEl4uExSyU0FSyoJ4Vb3saXws5gkgKAI ylubDJHH/R+q2uo0enTmXtcKzilNtMtlmcN9g9CFlTPaZH76HsnaGua0VLKYxL+W Tn1E5efcfnFIzQdry6uYB2htTTuxKyhj7+aLVEfvcDeojVsb5j3WYo3UGeiNeT15 PhGalx+TdmBKOTNSe3b8xWtTSF822456oBSBBaXH+NP7iu/XJXv230AYDl4+bOAj K13uogNpIP40sbt1JXcswXQsApNZ0HyG -----END CERTIFICATE-----Generated at Wed Nov 5 20:09:44 2025 by rpki-client