$ rpki-client -vvf rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.mft File: EEz4cGO16r803k4l_s6ata9zbBQ.mft (raw, json) Hash identifier: MpEojy71kiTAhfqnEd0sfWyzFTVF/X9VG36/9Kbh+tI= Subject key identifier: 0C:A8:29:46:BD:0E:A0:7E:BC:E6:2D:C2:39:5E:8F:3C:A5:FB:09:04 Authority key identifier: 10:4C:F8:70:63:B5:EA:BF:34:DE:4E:25:FE:CE:9A:B5:AF:73:6C:14 Certificate issuer: /CN=A9111FFD/serialNumber=104CF87063B5EABF34DE4E25FECE9AB5AF736C14 Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEz4cGO16r803k4l_s6ata9zbBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.mft Manifest number: 94 Signing time: Mon 03 Nov 2025 06:30:58 +0000 Manifest this update: Mon 03 Nov 2025 06:30:57 +0000 Manifest next update: Mon 10 Nov 2025 06:30:57 +0000 Files and hashes: 1: EEz4cGO16r803k4l_s6ata9zbBQ.crl (hash: /D6kCzPOAt4haxChLFxJyYjmZTbLV7GyFOQrQUsCtAg=) 2: 7BF6BA42E91A11EF804C4B57C4F9AE02.roa (hash: HNlYiglg+bBDY8hf2XbMc61T9NCbbnRV5gfydPimiu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.crl rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEz4cGO16r803k4l_s6ata9zbBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:30:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111FFD, serialNumber=104CF87063B5EABF34DE4E25FECE9AB5AF736C14 Validity Not Before: Nov 3 06:30:57 2025 GMT Not After : Nov 10 06:30:57 2025 GMT Subject: CN=69084c21-2f53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:27:e6:fa:e2:34:b6:b8:b9:fa:c1:65:14:49: 2f:d0:af:9c:08:d2:7d:3a:67:a0:9d:1e:19:57:f4: 7c:36:21:58:86:43:0e:27:0c:19:8f:50:b2:9d:58: bc:e7:1d:b9:9d:57:c9:a1:34:d4:16:41:be:ed:09: 90:1d:78:5a:18:ce:14:bf:89:d9:72:1a:5e:85:05: 83:42:85:9b:27:75:31:36:eb:22:c0:00:c7:b8:aa: 85:8e:ba:80:2f:33:90:e7:82:1c:30:60:75:bd:e5: 77:36:1e:a3:c6:ca:cb:70:da:72:ef:ca:df:b8:5d: 44:fc:60:83:c9:6b:33:ca:e5:f5:e7:8d:3b:d2:dd: 0b:53:c5:00:a5:9f:f7:43:6d:0b:c9:fd:3c:94:55: b8:97:07:1e:09:d1:26:b1:29:c8:ec:7b:e4:f1:a0: 29:b6:6e:58:8c:90:4d:b8:1e:ad:5f:60:c7:dd:47: a1:16:c7:35:97:63:b5:b8:a4:32:12:dc:26:f0:6a: ef:24:b6:c1:ff:f9:d7:81:97:d6:3d:41:20:4e:46: 2b:1e:9f:29:bb:9c:65:8b:b3:a8:ee:21:ae:bf:ad: 85:9d:e2:eb:2f:02:de:09:cb:fc:a0:38:eb:91:d0: ff:fd:ac:f0:32:25:7e:db:2c:a9:0d:1e:6e:08:58: f8:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:A8:29:46:BD:0E:A0:7E:BC:E6:2D:C2:39:5E:8F:3C:A5:FB:09:04 X509v3 Authority Key Identifier: keyid:10:4C:F8:70:63:B5:EA:BF:34:DE:4E:25:FE:CE:9A:B5:AF:73:6C:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEz4cGO16r803k4l_s6ata9zbBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:2b:25:e0:b7:0a:18:e0:62:b8:22:f8:41:17:0c:92:38:86: 18:e5:3b:55:ed:ae:06:10:c6:75:34:4f:82:a9:73:10:a2:fc: f1:aa:47:05:ea:66:f7:71:bd:b5:c6:37:60:a0:6f:98:85:49: 1c:5f:04:50:19:10:23:40:f7:95:74:c3:bd:bb:2a:c8:4f:3f: dc:31:76:96:cf:0c:74:bb:2d:69:24:32:41:9a:93:37:76:d5: cc:12:2c:50:d9:9a:cd:9a:96:c6:3b:10:e8:3f:f9:a1:8f:1a: e5:d1:a0:8d:72:0c:83:a3:63:9f:fc:8d:1e:7b:9c:47:bc:2f: 30:6e:35:5f:43:29:04:c0:37:e4:b2:be:b0:af:b7:cf:9a:98: d1:59:20:ae:24:35:2d:21:c8:13:c7:f2:ef:80:0a:ab:54:2f: 56:8f:30:a2:7a:41:b6:c4:93:fb:29:88:da:34:4f:a5:f4:0e: da:c3:68:4f:e7:e0:b0:93:3a:ae:f7:53:db:f4:37:98:67:ae: 52:17:c3:72:a9:d8:d2:b7:10:cf:6e:44:63:aa:3c:78:09:46: 15:80:51:d5:bc:39:d0:06:95:0e:d4:7d:41:2d:d7:8e:ab:78: 0d:54:ff:5c:99:54:13:b8:a3:ba:27:7a:65:b1:c0:6c:91:6f: d9:c6:9c:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFGRkQxMTAvBgNVBAUTKDEwNENGODcwNjNCNUVBQkYzNERFNEUyNUZFQ0U5QUI1 QUY3MzZDMTQwHhcNMjUxMTAzMDYzMDU3WhcNMjUxMTEwMDYzMDU3WjAYMRYwFAYD VQQDEw02OTA4NGMyMS0yZjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4yfm+uI0tri5+sFlFEkv0K+cCNJ9OmegnR4ZV/R8NiFYhkMOJwwZj1CynVi8 5x25nVfJoTTUFkG+7QmQHXhaGM4Uv4nZchpehQWDQoWbJ3UxNusiwADHuKqFjrqA LzOQ54IcMGB1veV3Nh6jxsrLcNpy78rfuF1E/GCDyWszyuX154070t0LU8UApZ/3 Q20Lyf08lFW4lwceCdEmsSnI7Hvk8aAptm5YjJBNuB6tX2DH3UehFsc1l2O1uKQy Etwm8GrvJLbB//nXgZfWPUEgTkYrHp8pu5xli7Oo7iGuv62FneLrLwLeCcv8oDjr kdD//azwMiV+2yypDR5uCFj4AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAyoKUa9 DqB+vOYtwjlejzyl+wkEMB8GA1UdIwQYMBaAFBBM+HBjteq/NN5OJf7OmrWvc2wU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUZGRC80MkVCMDUzNERE MzgxMUVGOUMzNDY3NDVDNEY5QUUwMi9FRXo0Y0dPMTZyODAzazRsX3M2YXRhOXpi QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VFejRjR08xNnI4MDNrNGxfczZhdGE5emJCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUZGRC80MkVCMDUzNEREMzgxMUVGOUMzNDY3NDVDNEY5QUUwMi9FRXo0Y0dPMTZy ODAzazRsX3M2YXRhOXpiQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8KyXgtwoY4GK4IvhBFwySOIYY5TtV7a4GEMZ1NE+CqXMQovzxqkcF 6mb3cb21xjdgoG+YhUkcXwRQGRAjQPeVdMO9uyrITz/cMXaWzwx0uy1pJDJBmpM3 dtXMEixQ2ZrNmpbGOxDoP/mhjxrl0aCNcgyDo2Of/I0ee5xHvC8wbjVfQykEwDfk sr6wr7fPmpjRWSCuJDUtIcgTx/LvgAqrVC9WjzCiekG2xJP7KYjaNE+l9A7aw2hP 5+Cwkzqu91Pb9DeYZ65SF8NyqdjStxDPbkRjqjx4CUYVgFHVvDnQBpUO1H1BLdeO q3gNVP9cmVQTuKO6J3plscBskW/Zxpzc -----END CERTIFICATE-----Generated at Mon Nov 3 18:20:14 2025 by rpki-client