$ rpki-client -vvf rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft File: ReDCzhRgM0N0_BWzcEXXajTd7l0.mft (raw, json) Hash identifier: 6Qs/ljjLTRxGhhKOzoEWY+K8RUp/uDttlroyr50qya0= Subject key identifier: 15:04:A8:02:1B:13:39:A8:8B:8C:83:33:49:67:98:C7:68:4F:3D:F0 Authority key identifier: 45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D Certificate issuer: /CN=A911465D/serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft Manifest number: 66 Signing time: Wed 05 Nov 2025 07:13:59 +0000 Manifest this update: Wed 05 Nov 2025 07:13:58 +0000 Manifest next update: Wed 12 Nov 2025 07:13:58 +0000 Files and hashes: 1: ReDCzhRgM0N0_BWzcEXXajTd7l0.crl (hash: ti9VtH2DixFTmj4qhxC5mr4bOn4cewmagLSEVUD/jAc=) 2: 8494A0A8202211F091667E59C4F9AE02.roa (hash: 0td0rYY1sI6ZCcrPq8Ekycn5CSJTuG2FeaNe5fiVsgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:13:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911465D, serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Validity Not Before: Nov 5 07:13:58 2025 GMT Not After : Nov 12 07:13:58 2025 GMT Subject: CN=690af937-030f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fb:6f:0b:98:83:21:e4:9d:d0:0c:d9:5c:c3: cf:58:c5:9e:90:97:65:fa:b7:79:5e:35:ce:af:1d: 54:e7:b2:79:89:6a:f1:24:b6:52:88:bb:b7:5d:9e: 76:4c:4e:4d:49:80:ba:65:a4:9a:7e:fc:5c:32:b9: ec:10:aa:e1:22:25:c5:c4:b6:83:84:cf:ec:4d:f4: 8c:4c:1c:5c:6b:b5:1c:4d:76:b3:b2:a5:0d:4f:0a: 58:dd:9d:0b:e6:6c:58:90:e3:8a:22:d4:af:b9:a3: 31:cc:f8:da:2e:24:fb:b3:38:6c:83:b2:62:fe:00: 8c:01:8d:63:39:f9:7c:1e:16:4b:58:0f:e7:c2:c3: 7c:c9:55:11:68:1c:0b:e6:56:79:25:68:4d:8d:ab: cb:c1:fc:3b:a2:be:d6:77:3f:23:b5:e3:6c:3f:ba: 98:2f:fa:a0:bf:c0:87:de:0a:49:7f:37:e0:de:c9: b0:15:66:42:8d:48:9d:15:a5:15:c9:57:01:9f:30: 71:10:16:0f:a9:2e:c8:a4:8b:61:42:32:4a:3c:5e: 46:29:8a:15:58:f0:9d:0d:c7:07:89:35:74:de:d8: 2a:5c:01:df:49:ce:c6:24:14:11:2b:4b:ff:45:33: ce:41:2d:f1:f7:05:6f:db:45:64:1a:1c:05:ba:39: 51:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:04:A8:02:1B:13:39:A8:8B:8C:83:33:49:67:98:C7:68:4F:3D:F0 X509v3 Authority Key Identifier: keyid:45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:17:37:35:83:47:14:2f:cd:a3:92:b9:a4:8a:e3:80:c1:93: de:f4:7d:f1:84:bb:63:30:5a:f8:f0:fa:10:86:80:5b:ee:01: c7:e4:b0:01:f0:c0:4a:7d:21:9e:b2:d0:15:35:7e:49:32:2d: 43:29:30:15:58:0f:42:c9:1f:6b:73:86:8f:b4:88:ad:be:c9: 21:81:25:b8:25:f6:f1:3b:67:01:b7:0f:a6:bf:71:96:88:71: 13:33:7e:55:8b:af:14:61:84:16:97:4d:4a:4c:23:a1:b9:74: bc:7d:d1:dd:b3:9a:14:a7:0d:54:71:b3:60:73:e5:ac:4c:a6: 3c:70:13:ff:f6:d2:1d:3a:b6:3a:8d:8f:da:6d:c5:86:da:20: ed:3b:96:14:a4:46:3c:ab:25:80:4c:0d:35:cb:28:2c:8f:8c: a6:1e:d3:52:64:cf:cf:c6:44:9b:13:e5:50:af:7c:b5:2e:1f: 56:ee:e3:f7:b9:13:da:50:fd:1e:09:77:ba:00:eb:63:3f:a1: 07:9d:dc:44:0c:de:52:22:0b:5d:cc:b6:a6:1b:0d:b2:47:45: 15:09:d7:68:5d:72:71:ad:35:03:51:59:55:68:26:1a:f5:09: 41:b0:d1:16:ce:14:0f:01:e9:6e:0b:56:b5:00:05:d4:29:a8: 53:4f:8c:8b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDY1RDExMC8GA1UEBRMoNDVFMEMyQ0UxNDYwMzM0Mzc0RkMxNUIzNzA0NUQ3NkEz NERERUU1RDAeFw0yNTExMDUwNzEzNThaFw0yNTExMTIwNzEzNThaMBgxFjAUBgNV BAMTDTY5MGFmOTM3LTAzMGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7+28LmIMh5J3QDNlcw89YxZ6Ql2X6t3leNc6vHVTnsnmJavEktlKIu7ddnnZM Tk1JgLplpJp+/FwyuewQquEiJcXEtoOEz+xN9IxMHFxrtRxNdrOypQ1PCljdnQvm bFiQ44oi1K+5ozHM+NouJPuzOGyDsmL+AIwBjWM5+XweFktYD+fCw3zJVRFoHAvm VnklaE2Nq8vB/DuivtZ3PyO142w/upgv+qC/wIfeCkl/N+DeybAVZkKNSJ0VpRXJ VwGfMHEQFg+pLsiki2FCMko8XkYpihVY8J0NxweJNXTe2CpcAd9JzsYkFBErS/9F M85BLfH3BW/bRWQaHAW6OVGVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFQSoAhsT OaiLjIMzSWeYx2hPPfAwHwYDVR0jBBgwFoAUReDCzhRgM0N0/BWzcEXXajTd7l0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NjVEL0Q0MTlEQzRBMjAx QTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBOMF9CV3pjRVhYYWpUZDds MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUmVEQ3poUmdNME4wX0JXemNFWFhhalRkN2wwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NjVEL0Q0MTlEQzRBMjAxQTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBO MF9CV3pjRVhYYWpUZDdsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAwXNzWDRxQvzaOSuaSK44DBk970ffGEu2MwWvjw+hCGgFvuAcfksAHw wEp9IZ6y0BU1fkkyLUMpMBVYD0LJH2tzho+0iK2+ySGBJbgl9vE7ZwG3D6a/cZaI cRMzflWLrxRhhBaXTUpMI6G5dLx90d2zmhSnDVRxs2Bz5axMpjxwE//20h06tjqN j9ptxYbaIO07lhSkRjyrJYBMDTXLKCyPjKYe01Jkz8/GRJsT5VCvfLUuH1bu4/e5 E9pQ/R4Jd7oA62M/oQed3EQM3lIiC13MtqYbDbJHRRUJ12hdcnGtNQNRWVVoJhr1 CUGw0RbOFA8B6W4LVrUABdQpqFNPjIs= -----END CERTIFICATE-----Generated at Wed Nov 5 10:07:41 2025 by rpki-client