$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft File: kI54kDTxhBXYdZwmo0brgQ71pBU.mft (raw, json) Hash identifier: nYuyrTtRUf3L9kk5EyvP1qe0CvFBgSHjAmMVWqIHydY= Subject key identifier: 8C:46:C8:50:76:6C:BC:1E:02:20:90:29:0E:0A:88:29:76:BD:74:DE Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 01C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft Manifest number: 01BD Signing time: Mon 03 Nov 2025 03:01:03 +0000 Manifest this update: Mon 03 Nov 2025 03:01:02 +0000 Manifest next update: Mon 10 Nov 2025 03:01:02 +0000 Files and hashes: 1: kI54kDTxhBXYdZwmo0brgQ71pBU.crl (hash: Y3yjIHiqdDvUXWowyqfVWSRuH9MjO070VjVHyNYM09o=) 2: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (hash: feRFh9Ht2rEY2jS2ePhZA2T4F0vbXp37hvleoPM6Wus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED, serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: Nov 3 03:01:02 2025 GMT Not After : Nov 10 03:01:02 2025 GMT Subject: CN=69081aef-87dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:76:41:45:b5:0b:29:35:87:7f:3a:32:9d:84: c7:8b:18:d4:7e:c5:a5:e6:55:e0:33:40:90:39:07: d8:f9:54:f2:24:1b:c1:9e:15:ad:c7:2c:fd:39:45: 27:6e:7a:b7:9a:8d:f3:c7:1b:5c:de:ca:25:7a:db: 1c:33:74:b4:e1:8b:74:eb:fd:f6:da:ce:eb:88:59: b7:4e:1c:18:3d:fe:2e:bc:2f:b3:2b:b3:ce:45:33: 40:10:a9:ff:5f:67:25:c0:3c:db:58:92:81:20:fe: 60:50:a5:1e:32:9d:4b:ba:3b:28:c7:78:1c:df:2f: 40:f4:e2:b4:8f:c9:da:cf:57:22:5b:f2:30:e9:fe: ac:9a:04:ca:21:0e:01:a6:1f:bd:63:8c:6e:88:2a: 26:dc:33:15:34:95:bd:05:ed:d6:b2:7c:34:54:4e: 65:2a:0d:b7:f2:c2:2a:c7:97:a3:fc:62:c5:4d:ef: 5e:78:6d:c5:4a:72:c3:f4:b9:6d:67:a3:9b:3d:ba: 16:78:eb:6c:cc:fc:7d:3e:ba:5f:c8:45:d0:71:31: 39:df:9f:bd:2f:df:11:90:c3:b8:81:47:be:0c:61: d9:52:70:cc:e5:ad:8a:46:fe:e8:bc:76:aa:f9:e6: 6d:3c:26:f6:5d:6f:93:fd:fa:1a:a6:a7:bd:d8:5b: ac:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:46:C8:50:76:6C:BC:1E:02:20:90:29:0E:0A:88:29:76:BD:74:DE X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:78:f4:aa:35:03:5e:19:55:de:78:c1:81:17:c7:78:90:c6: a5:23:65:0d:63:68:60:16:9b:4f:1a:1e:37:c1:91:80:69:a7: eb:6b:73:b1:95:53:ef:42:c1:7c:55:fd:a7:81:4d:88:c4:8b: 4c:12:bd:32:14:54:6d:ce:61:11:8a:64:d2:8e:bf:37:66:b7: ad:66:1c:87:fb:4c:86:d4:01:66:67:e6:da:8b:89:17:35:b9: 13:3e:90:e5:e1:9f:30:52:a5:b6:5a:de:e0:9a:56:74:27:0d: 18:e7:37:ec:f2:95:1b:10:f3:65:dd:a8:5b:b7:6c:25:db:26: bb:10:05:95:2f:88:f8:6c:d4:4f:1f:22:61:66:83:86:c5:b3: 24:e6:a2:a7:0a:a8:ae:e7:a2:de:94:b3:6f:b8:f5:e0:88:5a: a6:14:f0:c5:93:0d:f0:51:b3:ab:29:d2:7a:1e:99:d3:ad:ab: ab:d4:d3:08:2b:01:9f:84:ef:81:95:72:88:a8:28:81:d7:12: b6:e1:c0:09:35:a7:5b:0b:7c:9c:40:65:ac:36:d6:7b:18:c1: 71:54:84:d9:5f:4c:50:9b:5c:86:73:8c:c4:fc:71:8d:74:54: d7:c4:57:30:8f:d2:4c:39:15:d2:a9:55:6b:7f:0e:2b:be:69: a4:4c:cb:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjUxMTAzMDMwMTAyWhcNMjUxMTEwMDMwMTAyWjAYMRYwFAYD VQQDEw02OTA4MWFlZi04N2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoXZBRbULKTWHfzoynYTHixjUfsWl5lXgM0CQOQfY+VTyJBvBnhWtxyz9OUUn bnq3mo3zxxtc3soletscM3S04Yt06/322s7riFm3ThwYPf4uvC+zK7PORTNAEKn/ X2clwDzbWJKBIP5gUKUeMp1Lujsox3gc3y9A9OK0j8naz1ciW/Iw6f6smgTKIQ4B ph+9Y4xuiCom3DMVNJW9Be3Wsnw0VE5lKg238sIqx5ej/GLFTe9eeG3FSnLD9Llt Z6ObPboWeOtszPx9PrpfyEXQcTE535+9L98RkMO4gUe+DGHZUnDM5a2KRv7ovHaq +eZtPCb2XW+T/foapqe92FusVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIxGyFB2 bLweAiCQKQ4KiCl2vXTeMB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjRFRC9GQTRCMEFDNDBGMzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhC WFlkWndtbzBicmdRNzFwQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyePSqNQNeGVXeeMGBF8d4kMalI2UNY2hgFptPGh43wZGAaafra3Ox lVPvQsF8Vf2ngU2IxItMEr0yFFRtzmERimTSjr83ZretZhyH+0yG1AFmZ+bai4kX NbkTPpDl4Z8wUqW2Wt7gmlZ0Jw0Y5zfs8pUbEPNl3ahbt2wl2ya7EAWVL4j4bNRP HyJhZoOGxbMk5qKnCqiu56LelLNvuPXgiFqmFPDFkw3wUbOrKdJ6HpnTraur1NMI KwGfhO+BlXKIqCiB1xK24cAJNadbC3ycQGWsNtZ7GMFxVITZX0xQm1yGc4zE/HGN dFTXxFcwj9JMORXSqVVrfw4rvmmkTMvK -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:14 2025 by rpki-client