$ rpki-client -vvf rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.mft File: pRz7iig43CPyh2RKRzXvwT2MMRM.mft (raw, json) Hash identifier: CJyuC1q97AMvBKubXM/AVIh8LHYGqEXVfD6ys2PfqyE= Subject key identifier: 1D:F2:96:32:AF:28:16:75:9A:D0:CE:97:D6:5C:5A:D8:07:8E:63:65 Authority key identifier: A5:1C:FB:8A:28:38:DC:23:F2:87:64:4A:47:35:EF:C1:3D:8C:31:13 Certificate issuer: /CN=A9197724/serialNumber=A51CFB8A2838DC23F287644A4735EFC13D8C3113 Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pRz7iig43CPyh2RKRzXvwT2MMRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.mft Manifest number: C5 Signing time: Wed 05 Nov 2025 06:03:14 +0000 Manifest this update: Wed 05 Nov 2025 06:03:13 +0000 Manifest next update: Wed 12 Nov 2025 06:03:13 +0000 Files and hashes: 1: pRz7iig43CPyh2RKRzXvwT2MMRM.crl (hash: DijnfEk2pzo8+aQ5OGmXZsMIlAVNazy4LCBaXhpjB9o=) 2: A2C3AA7E904E11EF9FC6B922C4F9AE02.roa (hash: GgkYKX0rvLLAl9jFjsCJGv7qCn12Qh8j9soV+v0r+iY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.crl rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pRz7iig43CPyh2RKRzXvwT2MMRM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:03:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197724, serialNumber=A51CFB8A2838DC23F287644A4735EFC13D8C3113 Validity Not Before: Nov 5 06:03:13 2025 GMT Not After : Nov 12 06:03:13 2025 GMT Subject: CN=690ae8a2-7cdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ef:2f:cc:49:6d:58:a5:81:5f:df:95:70:54: 86:f5:08:12:2f:34:6b:41:fa:05:0b:8d:95:70:ab: 67:4f:0e:71:41:a5:1b:8c:01:8c:bf:1e:90:02:6f: f0:75:84:1f:3b:bb:55:14:bb:81:c3:c3:6e:a1:af: 25:a9:f6:7e:f2:7c:19:56:e3:bc:22:f4:b4:81:f8: 37:54:ff:a1:8a:64:93:ee:7d:5c:6d:65:15:0a:cf: bc:b9:06:3c:26:1e:fc:91:59:22:1a:2d:84:bc:86: 80:d2:d2:5d:df:b8:05:d1:ea:35:86:66:1f:2e:8f: 32:92:34:c6:34:b5:ae:ec:93:15:21:a2:ef:29:e1: 16:3a:0c:40:da:b8:2d:06:1c:b8:8b:5c:92:82:e1: 6f:bc:45:f7:24:a7:8b:d2:22:d8:07:8e:ee:45:60: d2:9a:76:8f:21:ed:eb:54:1d:fa:6e:e6:6e:96:28: af:4c:c9:ad:a9:86:76:3b:b4:c6:a5:25:c8:d0:64: f0:f9:b2:11:ab:0d:f7:14:e3:98:90:b2:1b:8f:5e: 9d:2b:65:93:b5:ec:fa:7d:b8:c2:ed:3c:a7:ab:ce: 0d:20:4b:93:a9:8f:a5:f0:17:42:49:be:7f:9c:84: 2a:02:08:ae:90:13:bb:82:f7:5f:b7:27:ba:07:46: 3b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:F2:96:32:AF:28:16:75:9A:D0:CE:97:D6:5C:5A:D8:07:8E:63:65 X509v3 Authority Key Identifier: keyid:A5:1C:FB:8A:28:38:DC:23:F2:87:64:4A:47:35:EF:C1:3D:8C:31:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pRz7iig43CPyh2RKRzXvwT2MMRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197724/56C67076904D11EFA1103864C4F9AE02/pRz7iig43CPyh2RKRzXvwT2MMRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:a9:3c:06:f8:b1:bc:b9:f1:59:f5:4b:ed:22:3b:98:4d:6d: bc:9b:c2:4e:55:e5:48:8b:db:ff:14:33:fd:eb:cf:98:fc:66: 06:0c:b2:5d:0c:66:c2:59:49:48:52:c2:53:12:59:12:a9:b1: ee:4a:1b:fe:c2:54:75:d1:41:ca:32:f6:83:7b:cc:10:bf:75: 61:02:c7:e9:02:f9:65:b1:cc:0d:ae:40:a2:7b:10:0b:d4:1f: 1b:e8:2b:1b:e3:6f:e4:d5:fd:52:f8:ba:ed:38:8a:f6:76:58: a9:e7:2f:6f:a7:d3:2a:0d:3d:d3:ce:ff:20:97:f3:38:85:a8: 5d:15:3e:a1:a6:13:ac:4e:99:cb:f4:1a:92:5d:15:32:7e:a1: 31:f3:1f:76:05:f3:50:6d:2d:eb:0c:d1:2c:f8:0f:05:b0:62: 9e:0c:be:7c:51:34:48:d7:e8:86:0f:63:03:9c:2e:81:23:ad: 66:a2:6b:7e:54:d8:f7:51:a9:61:66:03:60:04:cb:8f:a8:ad: e6:e3:df:a6:b8:05:c1:48:e6:c5:da:7f:cd:0c:26:cc:e6:b4: 65:26:cb:15:25:ff:b5:92:9f:6c:0d:44:3e:d6:be:3a:a9:a0: 40:04:71:be:dd:39:de:c7:df:b3:92:84:f0:24:77:af:b6:0e: 8a:bb:21:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc3MjQxMTAvBgNVBAUTKEE1MUNGQjhBMjgzOERDMjNGMjg3NjQ0QTQ3MzVFRkMx M0Q4QzMxMTMwHhcNMjUxMTA1MDYwMzEzWhcNMjUxMTEyMDYwMzEzWjAYMRYwFAYD VQQDEw02OTBhZThhMi03Y2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+8vzEltWKWBX9+VcFSG9QgSLzRrQfoFC42VcKtnTw5xQaUbjAGMvx6QAm/w dYQfO7tVFLuBw8Nuoa8lqfZ+8nwZVuO8IvS0gfg3VP+himST7n1cbWUVCs+8uQY8 Jh78kVkiGi2EvIaA0tJd37gF0eo1hmYfLo8ykjTGNLWu7JMVIaLvKeEWOgxA2rgt Bhy4i1ySguFvvEX3JKeL0iLYB47uRWDSmnaPIe3rVB36buZuliivTMmtqYZ2O7TG pSXI0GTw+bIRqw33FOOYkLIbj16dK2WTtez6fbjC7Tynq84NIEuTqY+l8BdCSb5/ nIQqAgiukBO7gvdftye6B0Y7uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB3yljKv KBZ1mtDOl9ZcWtgHjmNlMB8GA1UdIwQYMBaAFKUc+4ooONwj8odkSkc178E9jDET MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzcyNC81NkM2NzA3Njkw NEQxMUVGQTExMDM4NjRDNEY5QUUwMi9wUno3aWlnNDNDUHloMlJLUnpYdndUMk1N Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BSejdpaWc0M0NQeWgyUktSelh2d1QyTU1STS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzcyNC81NkM2NzA3NjkwNEQxMUVGQTExMDM4NjRDNEY5QUUwMi9wUno3aWlnNDND UHloMlJLUnpYdndUMk1NUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTqTwG+LG8ufFZ9UvtIjuYTW28m8JOVeVIi9v/FDP968+Y/GYGDLJd DGbCWUlIUsJTElkSqbHuShv+wlR10UHKMvaDe8wQv3VhAsfpAvllscwNrkCiexAL 1B8b6Csb42/k1f1S+LrtOIr2dlip5y9vp9MqDT3Tzv8gl/M4hahdFT6hphOsTpnL 9BqSXRUyfqEx8x92BfNQbS3rDNEs+A8FsGKeDL58UTRI1+iGD2MDnC6BI61momt+ VNj3UalhZgNgBMuPqK3m49+muAXBSObF2n/NDCbM5rRlJssVJf+1kp9sDUQ+1r46 qaBABHG+3Tnex9+zkoTwJHevtg6KuyGq -----END CERTIFICATE-----Generated at Wed Nov 5 13:33:46 2025 by rpki-client