$ rpki-client -vvf rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft File: 6zLfknQ0rG06hoR937o9LoEAETE.mft (raw, json) Hash identifier: W3kPTBAcCEEomcNUNj3O61QsLCVEHqT1mUfm/bgBvko= Subject key identifier: 33:67:93:02:CD:FE:B1:47:0D:E1:BC:7D:46:DC:E1:FB:3D:21:DC:03 Authority key identifier: EB:32:DF:92:74:34:AC:6D:3A:86:84:7D:DF:BA:3D:2E:81:00:11:31 Certificate issuer: /CN=A911945B/serialNumber=EB32DF927434AC6D3A86847DDFBA3D2E81001131 Certificate serial: 0115 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft Manifest number: 0112 Signing time: Mon 03 Nov 2025 04:53:23 +0000 Manifest this update: Mon 03 Nov 2025 04:53:23 +0000 Manifest next update: Mon 10 Nov 2025 04:53:23 +0000 Files and hashes: 1: 6zLfknQ0rG06hoR937o9LoEAETE.crl (hash: Ldtbz6F8bI4R7gleQcRctxHAs4AFRYDm5OVceN8BbBo=) 2: C562775017FD11EF9A320864C4F9AE02.roa (hash: mT/xhxJVAPolN6BiWxF1pYh0qrq0TTClAYLDrh0UW5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.crl rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 277 (0x115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911945B, serialNumber=EB32DF927434AC6D3A86847DDFBA3D2E81001131 Validity Not Before: Nov 3 04:53:23 2025 GMT Not After : Nov 10 04:53:23 2025 GMT Subject: CN=69083543-04e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f9:b9:17:d8:e3:d4:46:b0:31:9c:ee:43:81: 17:36:4d:58:0c:77:65:8e:16:6e:b8:ca:55:35:7e: 3d:5d:54:42:7d:b6:5f:d8:89:a5:f1:95:ec:c6:d6: fb:5d:9b:6b:8c:02:e2:50:78:31:c7:db:ba:24:06: 8a:a0:a3:d2:68:c7:a4:e1:26:42:d9:de:ef:c6:12: 0c:da:46:e6:d4:0b:48:1e:5c:f2:4f:4b:bd:7f:67: 95:0b:d6:90:d2:ac:4f:d8:33:bf:64:58:5b:75:74: a3:99:c5:a7:7f:cf:a2:f1:29:ee:55:83:48:86:fe: 07:5f:40:6e:90:f4:cf:5b:52:90:26:ec:f8:4e:69: 53:05:1b:8b:d6:e3:7d:e8:2c:bb:65:6d:9f:38:54: a5:9a:3e:cb:b2:ff:06:c6:df:40:15:10:ed:ab:e0: 9b:e7:67:c3:8d:93:b6:dd:7c:30:0a:27:92:9e:bc: ed:0c:e4:ae:d1:8b:de:a7:be:9a:29:41:af:16:ba: 8d:03:b5:f8:b1:d1:e9:10:93:96:be:c4:ad:33:50: fa:64:59:2a:8c:7a:e2:54:af:e7:7a:1f:56:9f:94: 33:30:23:7a:76:0c:18:ef:97:b5:40:56:8c:b3:cc: 61:7a:6e:9a:ef:a4:89:d8:bc:46:a8:d5:1c:75:e1: 3d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:67:93:02:CD:FE:B1:47:0D:E1:BC:7D:46:DC:E1:FB:3D:21:DC:03 X509v3 Authority Key Identifier: keyid:EB:32:DF:92:74:34:AC:6D:3A:86:84:7D:DF:BA:3D:2E:81:00:11:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:6b:3e:3f:2a:ee:c8:42:11:7c:6d:74:b8:9e:fe:3c:29:cd: 4b:61:2a:1e:c8:9c:9b:a9:0d:d0:44:91:85:42:34:15:17:ed: e5:31:d6:ba:f5:e8:08:6e:bd:6b:85:b1:7d:d3:c2:e5:63:ad: 42:27:34:46:d3:56:d1:f8:b3:d7:5b:f8:82:20:8e:35:92:ff: 1d:14:57:f9:dd:c9:f4:75:30:b9:4e:e4:ab:66:ca:1f:52:95: 90:5e:6a:85:6f:30:c1:b3:57:93:06:91:4e:2b:d3:a1:ef:7f: e7:e7:d9:57:a1:fa:72:f3:c4:b1:38:e5:ef:4b:ea:4e:b7:92: 52:77:71:92:83:7c:5e:13:28:b2:a1:5d:00:6c:ec:27:5e:82: 2c:65:03:8f:5b:6a:f2:90:b1:45:b8:b3:23:6a:14:52:33:38: d0:97:7e:e0:85:15:2b:6d:d9:4f:9d:8c:19:ad:8c:a3:b0:e2: aa:ce:40:45:4a:b6:33:dd:85:31:19:55:8c:b1:cf:47:2b:3b: 28:83:ce:f8:34:c2:75:0f:1d:1f:f2:a4:7b:39:0f:b9:7f:9b: db:4f:b0:f2:69:3c:ce:97:3b:8e:b7:48:8c:96:54:da:e5:95: 39:bf:54:b2:e3:e0:e1:9b:76:92:2d:0b:21:67:71:3a:b5:54: 71:7f:6c:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk0NUIxMTAvBgNVBAUTKEVCMzJERjkyNzQzNEFDNkQzQTg2ODQ3RERGQkEzRDJF ODEwMDExMzEwHhcNMjUxMTAzMDQ1MzIzWhcNMjUxMTEwMDQ1MzIzWjAYMRYwFAYD VQQDEw02OTA4MzU0My0wNGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfm5F9jj1EawMZzuQ4EXNk1YDHdljhZuuMpVNX49XVRCfbZf2Iml8ZXsxtb7 XZtrjALiUHgxx9u6JAaKoKPSaMek4SZC2d7vxhIM2kbm1AtIHlzyT0u9f2eVC9aQ 0qxP2DO/ZFhbdXSjmcWnf8+i8SnuVYNIhv4HX0BukPTPW1KQJuz4TmlTBRuL1uN9 6Cy7ZW2fOFSlmj7Lsv8Gxt9AFRDtq+Cb52fDjZO23XwwCieSnrztDOSu0Yvep76a KUGvFrqNA7X4sdHpEJOWvsStM1D6ZFkqjHriVK/neh9Wn5QzMCN6dgwY75e1QFaM s8xhem6a76SJ2LxGqNUcdeE9pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDNnkwLN /rFHDeG8fUbc4fs9IdwDMB8GA1UdIwQYMBaAFOsy35J0NKxtOoaEfd+6PS6BABEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTQ1Qi8zQUNGNzBDMDE3 RkQxMUVGOEMwODMwNjNDNEY5QUUwMi82ekxma25RMHJHMDZob1I5MzdvOUxvRUFF VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6TGZrblEwckcwNmhvUjkzN285TG9FQUVURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTQ1Qi8zQUNGNzBDMDE3RkQxMUVGOEMwODMwNjNDNEY5QUUwMi82ekxma25RMHJH MDZob1I5MzdvOUxvRUFFVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYaz4/Ku7IQhF8bXS4nv48Kc1LYSoeyJybqQ3QRJGFQjQVF+3lMda6 9egIbr1rhbF908LlY61CJzRG01bR+LPXW/iCII41kv8dFFf53cn0dTC5TuSrZsof UpWQXmqFbzDBs1eTBpFOK9Oh73/n59lXofpy88SxOOXvS+pOt5JSd3GSg3xeEyiy oV0AbOwnXoIsZQOPW2rykLFFuLMjahRSMzjQl37ghRUrbdlPnYwZrYyjsOKqzkBF SrYz3YUxGVWMsc9HKzsog874NMJ1Dx0f8qR7OQ+5f5vbT7DyaTzOlzuOt0iMllTa 5ZU5v1Sy4+Dhm3aSLQshZ3E6tVRxf2wP -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:20 2025 by rpki-client