$ rpki-client -vvf rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft File: A4zy4oB33yytpFdW-12ZpuJA_Qk.mft (raw, json) Hash identifier: Zf7MvURO6amlFQ7M5/uwfFdVJiMnW/WWIJn4pfdlCYA= Subject key identifier: 89:15:A4:F8:91:37:10:CB:02:57:45:B2:F7:53:9A:B3:6D:94:44:29 Authority key identifier: 03:8C:F2:E2:80:77:DF:2C:AD:A4:57:56:FB:5D:99:A6:E2:40:FD:09 Certificate issuer: /CN=A9112CEC/serialNumber=038CF2E28077DF2CADA45756FB5D99A6E240FD09 Certificate serial: 34E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft Manifest number: 34DA Signing time: Sun 02 Nov 2025 15:10:24 +0000 Manifest this update: Sun 02 Nov 2025 15:10:24 +0000 Manifest next update: Sun 09 Nov 2025 15:10:24 +0000 Files and hashes: 1: A4zy4oB33yytpFdW-12ZpuJA_Qk.crl (hash: wbTirLVkYlCgaxnBvIWpv4xQPcysLtdFQucWAKCYNlY=) 2: 55A4C5C004AA11E8935B7021C4F9AE02.roa (hash: kZdCLZLr7MrW3XdEboMd7BRjcidMEtmhtIWvhKUYQqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.crl rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:10:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13541 (0x34e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112CEC, serialNumber=038CF2E28077DF2CADA45756FB5D99A6E240FD09 Validity Not Before: Nov 2 15:10:24 2025 GMT Not After : Nov 9 15:10:24 2025 GMT Subject: CN=69077460-4695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3d:92:da:60:c2:97:a5:05:45:3f:cb:d6:be: e0:3a:8a:4b:d0:70:5f:78:18:35:b7:64:4f:24:60: 9e:80:51:29:95:53:2d:81:de:61:3d:4b:c5:d6:86: 6c:b5:f3:d9:bd:11:d9:61:3a:d8:c7:a6:86:09:b0: 0c:30:68:7f:03:94:b0:44:d2:6a:c5:2b:06:2e:c7: 22:ed:7f:31:f9:a9:4e:c7:5b:8f:7c:18:4c:31:c4: 1c:71:53:08:19:ed:b2:a8:68:65:8c:76:36:20:08: ff:0d:1d:11:43:ce:81:3e:b8:2e:c0:ac:7f:64:34: 07:b3:09:ae:b6:94:af:1f:32:6a:63:5c:30:d5:49: 66:62:ee:81:bc:57:93:c4:bb:c7:2a:40:89:06:a6: e3:80:b2:64:9a:3a:01:5d:f8:90:61:b7:df:09:97: 09:ab:07:cd:3d:22:42:8d:7c:56:87:8c:1f:3a:cb: 46:06:34:d7:ed:bd:2e:2f:ba:79:fb:cf:8a:e8:6a: 8b:07:8f:6c:46:ef:69:32:b5:f9:f6:50:d7:65:67: 76:45:6c:52:4b:e7:48:02:76:ed:74:ec:27:8b:e6: e5:3a:55:2e:34:b8:85:14:d7:5b:aa:00:65:07:0c: 0c:13:1c:dc:98:cc:fd:37:c2:f3:45:4e:e7:79:1b: a1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:15:A4:F8:91:37:10:CB:02:57:45:B2:F7:53:9A:B3:6D:94:44:29 X509v3 Authority Key Identifier: keyid:03:8C:F2:E2:80:77:DF:2C:AD:A4:57:56:FB:5D:99:A6:E2:40:FD:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:c3:5a:e4:5b:51:6a:e1:49:65:05:60:de:b7:f3:c0:79:2f: f2:fb:f5:e7:d6:c6:04:76:50:04:96:d9:70:03:30:1e:53:8a: 4a:a7:2e:10:98:81:3f:f2:4a:f2:39:89:f4:2e:ac:3d:7e:b5: 22:13:65:0a:ed:30:8c:86:18:cf:09:ec:e8:f1:3b:58:22:cf: b1:69:f4:49:6a:be:26:e7:4e:44:6b:a9:fe:ea:fd:a1:21:fb: 82:11:2e:24:84:83:58:fd:36:3e:aa:3b:77:24:6e:1a:99:4e: da:6b:0c:d0:13:9a:48:5d:6c:bd:2f:33:6a:72:c1:28:43:00: 75:fa:24:e8:7e:d5:41:7c:53:7b:a7:d1:ff:1d:d0:2c:f7:51: 20:9d:0a:84:82:6b:23:c7:69:07:7f:21:6d:50:7b:04:c6:0f: 08:d4:7d:4d:73:7e:f5:a9:4d:dc:b1:67:ce:85:e5:c5:ed:84: 29:d1:c9:06:fc:5a:fd:70:95:7f:b9:3f:69:54:7d:3d:91:16: ba:cc:92:e2:6a:1a:f5:19:41:9a:e4:d3:d3:40:5e:93:b6:51: 07:2c:a8:f2:31:81:38:52:07:a3:3b:ba:31:fb:33:01:3b:94: 58:ea:48:99:15:99:a2:5a:38:03:a3:6f:60:8b:aa:1b:a2:29: b9:cc:74:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJDRUMxMTAvBgNVBAUTKDAzOENGMkUyODA3N0RGMkNBREE0NTc1NkZCNUQ5OUE2 RTI0MEZEMDkwHhcNMjUxMTAyMTUxMDI0WhcNMjUxMTA5MTUxMDI0WjAYMRYwFAYD VQQDEw02OTA3NzQ2MC00Njk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArz2S2mDCl6UFRT/L1r7gOopL0HBfeBg1t2RPJGCegFEplVMtgd5hPUvF1oZs tfPZvRHZYTrYx6aGCbAMMGh/A5SwRNJqxSsGLsci7X8x+alOx1uPfBhMMcQccVMI Ge2yqGhljHY2IAj/DR0RQ86BPrguwKx/ZDQHswmutpSvHzJqY1ww1UlmYu6BvFeT xLvHKkCJBqbjgLJkmjoBXfiQYbffCZcJqwfNPSJCjXxWh4wfOstGBjTX7b0uL7p5 +8+K6GqLB49sRu9pMrX59lDXZWd2RWxSS+dIAnbtdOwni+blOlUuNLiFFNdbqgBl BwwMExzcmMz9N8LzRU7neRuh4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkVpPiR NxDLAldFsvdTmrNtlEQpMB8GA1UdIwQYMBaAFAOM8uKAd98sraRXVvtdmabiQP0J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkNFQy9COEIwQzc4ODFE QTQxMUUyOEM5M0U3OUEwOEIwMkNEMi9BNHp5NG9CMzN5eXRwRmRXLTEyWnB1SkFf UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0enk0b0IzM3l5dHBGZFctMTJacHVKQV9Ray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkNFQy9COEIwQzc4ODFEQTQxMUUyOEM5M0U3OUEwOEIwMkNEMi9BNHp5NG9CMzN5 eXRwRmRXLTEyWnB1SkFfUWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBw1rkW1Fq4UllBWDet/PAeS/y+/Xn1sYEdlAEltlwAzAeU4pKpy4Q mIE/8kryOYn0Lqw9frUiE2UK7TCMhhjPCezo8TtYIs+xafRJar4m505Ea6n+6v2h IfuCES4khINY/TY+qjt3JG4amU7aawzQE5pIXWy9LzNqcsEoQwB1+iToftVBfFN7 p9H/HdAs91EgnQqEgmsjx2kHfyFtUHsExg8I1H1Nc371qU3csWfOheXF7YQp0ckG /Fr9cJV/uT9pVH09kRa6zJLiahr1GUGa5NPTQF6TtlEHLKjyMYE4UgejO7ox+zMB O5RY6kiZFZmiWjgDo29gi6oboim5zHQD -----END CERTIFICATE-----Generated at Mon Nov 3 18:15:03 2025 by rpki-client