$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft File: FOZzxKcds0p1aBNYfkghLaLnczA.mft (raw, json) Hash identifier: /nndFFy7AXmIIhHmHYZzDSGl9FMRvVzZemWx/lbcOSY= Subject key identifier: 58:5A:AD:84:10:A0:7D:77:14:99:A4:8F:6E:5E:98:AA:1E:2A:A7:45 Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 0A4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft Manifest number: 0A34 Signing time: Tue 04 Nov 2025 19:52:45 +0000 Manifest this update: Tue 04 Nov 2025 19:52:44 +0000 Manifest next update: Tue 11 Nov 2025 19:52:44 +0000 Files and hashes: 1: FOZzxKcds0p1aBNYfkghLaLnczA.crl (hash: a5dNpqLBgyX/tUA/7TMa61Dmd0Mft1/IRl8YbTE258I=) 2: 344644CC1DC511EF95607948C4F9AE02.roa (hash: rkDHfwPM1DT0Lu0jNtn8nf16whUr6uH9MCf0inhJdfs=) 3: ED99CAA81DC411EF9E620C48C4F9AE02.roa (hash: p62MlJx+4H10Goj45fvAZ4d/rgVHWdc/FettBrr2SX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:52:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2638 (0xa4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33, serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: Nov 4 19:52:44 2025 GMT Not After : Nov 11 19:52:44 2025 GMT Subject: CN=690a598c-d1e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:49:f0:2f:0e:0e:50:a7:9a:f0:6b:b6:de:73: 19:a4:da:1f:30:bf:c3:36:7e:94:ec:62:cd:17:f9: a1:ea:e4:82:81:5b:45:35:b6:1b:f5:15:51:69:b4: bb:e9:fb:da:1a:72:4b:b7:be:18:c2:13:c8:76:e7: de:31:a2:db:f4:8f:63:48:ef:2f:fa:c2:a9:13:42: ae:e5:4f:a8:52:3b:ae:ce:08:49:e8:66:99:4e:7b: 1c:c1:dc:4f:e8:3c:05:ef:23:5b:7d:75:5d:93:5a: 2a:ea:a0:89:89:82:5c:11:3c:b6:ee:30:eb:f8:90: 9c:5f:53:2f:f2:66:5c:53:ca:36:8d:7d:1a:16:08: 03:13:56:40:f4:3a:4c:2f:da:a0:9e:38:8d:cc:c0: f0:49:f6:36:40:25:90:63:e7:ed:03:29:3b:9d:75: 5f:61:a9:7f:1c:63:9a:00:e1:a9:f7:3b:81:27:93: 3e:5c:65:0b:0f:24:ab:4b:00:7e:5e:ff:4c:e2:5c: bf:b7:55:e8:1a:fa:ca:96:32:9b:0a:2b:bc:a4:f7: d5:30:a8:01:6b:99:54:0f:5d:3d:69:1d:75:ff:23: a0:58:62:8f:5a:7f:ea:a1:03:69:e0:44:54:c2:29: c6:32:82:20:d3:f2:41:4a:7b:a4:b6:39:f0:24:63: 14:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:5A:AD:84:10:A0:7D:77:14:99:A4:8F:6E:5E:98:AA:1E:2A:A7:45 X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:9c:82:b9:5e:06:85:49:a6:22:64:98:aa:56:1b:bc:1b:87: b5:f8:66:84:80:c1:0e:2b:e4:1d:cb:b5:41:a9:9a:da:df:c9: ae:96:c8:f3:42:fb:fd:d9:68:ce:3a:17:17:49:40:56:14:ab: 02:ce:34:b0:a3:27:81:72:a5:38:d5:86:a5:ca:d0:49:49:e0: fe:41:c5:07:e2:e7:4b:04:3e:97:35:f2:18:7f:c3:26:aa:fb: 4e:ba:3b:00:d4:65:f6:27:a6:fd:dd:c3:1f:77:4e:ec:18:79: af:d1:7d:c2:f5:7a:71:78:26:36:d8:8c:9f:95:14:fd:8b:01: 6b:e2:dc:71:38:2e:60:ec:17:5a:1a:ce:f5:70:cc:91:7d:3b: 59:e7:d9:a7:f2:87:0e:23:b4:d0:e2:cc:f4:77:69:e8:dc:cc: 2e:01:18:da:d0:43:49:a4:92:c9:27:1d:27:af:e9:ea:24:ca: 4e:0d:50:76:4c:df:52:ba:3c:92:a4:20:fc:86:10:cc:96:c0: 2a:e4:1f:37:c6:d8:9d:3f:f7:bf:8d:db:eb:77:fa:03:14:1d: e9:97:da:48:23:50:7b:a1:f1:21:ba:dd:84:75:cb:3a:28:ee: c8:0e:2a:32:ac:50:43:58:c9:47:1b:d4:96:ca:d7:dd:58:9d: ec:be:ba:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjUxMTA0MTk1MjQ0WhcNMjUxMTExMTk1MjQ0WjAYMRYwFAYD VQQDEw02OTBhNTk4Yy1kMWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtknwLw4OUKea8Gu23nMZpNofML/DNn6U7GLNF/mh6uSCgVtFNbYb9RVRabS7 6fvaGnJLt74YwhPIdufeMaLb9I9jSO8v+sKpE0Ku5U+oUjuuzghJ6GaZTnscwdxP 6DwF7yNbfXVdk1oq6qCJiYJcETy27jDr+JCcX1Mv8mZcU8o2jX0aFggDE1ZA9DpM L9qgnjiNzMDwSfY2QCWQY+ftAyk7nXVfYal/HGOaAOGp9zuBJ5M+XGULDySrSwB+ Xv9M4ly/t1XoGvrKljKbCiu8pPfVMKgBa5lUD109aR11/yOgWGKPWn/qoQNp4ERU winGMoIg0/JBSnuktjnwJGMUxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFharYQQ oH13FJmkj25emKoeKqdFMB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkYzMy9FNkVDMkQ5MjgwOTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMw cDFhQk5ZZmtnaExhTG5jekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqnIK5XgaFSaYiZJiqVhu8G4e1+GaEgMEOK+Qdy7VBqZra38mulsjz Qvv92WjOOhcXSUBWFKsCzjSwoyeBcqU41YalytBJSeD+QcUH4udLBD6XNfIYf8Mm qvtOujsA1GX2J6b93cMfd07sGHmv0X3C9XpxeCY22IyflRT9iwFr4txxOC5g7Bda Gs71cMyRfTtZ59mn8ocOI7TQ4sz0d2no3MwuARja0ENJpJLJJx0nr+nqJMpODVB2 TN9SujySpCD8hhDMlsAq5B83xtidP/e/jdvrd/oDFB3pl9pII1B7ofEhut2Edcs6 KO7IDioyrFBDWMlHG9SWytfdWJ3svrqx -----END CERTIFICATE-----Generated at Wed Nov 5 15:02:55 2025 by rpki-client