$ rpki-client -vvf rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft File: sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft (raw, json) Hash identifier: MpBd+MKHR//A/EZljDGUdtVV+1eBB8+2ng1mV3elSMM= Subject key identifier: 1F:5E:7B:74:2D:7B:89:2F:5C:4E:DB:74:38:B8:A2:9D:D2:B1:B8:E6 Authority key identifier: B0:8B:59:E5:D1:07:05:C5:CB:2D:3C:DB:85:65:B3:28:D5:02:F5:50 Certificate issuer: /CN=A911C53A/serialNumber=B08B59E5D10705C5CB2D3CDB8565B328D502F550 Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft Manifest number: 4E Signing time: Mon 03 Nov 2025 07:17:29 +0000 Manifest this update: Mon 03 Nov 2025 07:17:28 +0000 Manifest next update: Mon 10 Nov 2025 07:17:28 +0000 Files and hashes: 1: sItZ5dEHBcXLLTzbhWWzKNUC9VA.crl (hash: 49ibXWoWBQ7nJbg01ACjLc4X19No8xBJ6e9oY/A0kcM=) 2: BDF659C4445111F0945A7E49C4F9AE02.roa (hash: NrM1GT0GOIEPUd0x6/lOomv0lodf7Nxw+vo5Gb1q27Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.crl rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:17:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C53A, serialNumber=B08B59E5D10705C5CB2D3CDB8565B328D502F550 Validity Not Before: Nov 3 07:17:28 2025 GMT Not After : Nov 10 07:17:28 2025 GMT Subject: CN=69085709-18c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2a:04:47:c9:5e:e9:9b:fb:38:65:36:51:80: f8:34:92:e6:37:34:bc:4c:c0:57:11:47:42:2a:8c: f0:23:e0:d3:ab:a2:c5:c1:5e:58:3c:aa:ef:30:2f: 1f:2e:9c:2d:00:1f:6b:a0:2e:3f:9d:e2:82:16:a6: 85:3d:0c:45:73:87:12:59:40:c5:d6:78:e8:ef:dc: c0:5f:71:f7:15:97:16:94:f4:aa:cd:27:e6:cb:70: b1:04:d6:b9:df:9c:f3:31:de:1a:a5:e7:8b:f7:75: c4:f1:8f:51:bf:43:24:e8:fc:e3:e1:52:ff:44:6d: eb:4a:a4:0d:f9:a0:39:c6:0d:fc:cd:26:1a:46:95: 7f:bb:e3:60:f5:cc:0b:a0:f3:09:4d:5e:1f:8a:bc: 03:23:58:d7:7d:89:09:c2:0a:d7:28:ba:fd:22:5a: ce:a0:72:24:a8:36:87:3f:db:3e:35:da:08:7e:fb: 24:21:60:5f:6f:04:4d:b3:de:e8:29:fa:1f:c7:e4: a9:45:81:e6:f3:67:9a:ec:16:4a:81:fd:63:d5:9a: b4:65:a0:db:d2:38:58:a2:92:56:03:23:68:23:b4: 1f:aa:ac:48:15:a3:77:ad:be:d4:17:2c:7b:d1:e6: 18:ae:b1:60:c5:9a:e7:a8:f5:65:02:f7:f5:c3:a2: 38:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:5E:7B:74:2D:7B:89:2F:5C:4E:DB:74:38:B8:A2:9D:D2:B1:B8:E6 X509v3 Authority Key Identifier: keyid:B0:8B:59:E5:D1:07:05:C5:CB:2D:3C:DB:85:65:B3:28:D5:02:F5:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:b9:b9:07:32:6c:fd:66:08:0e:ab:5e:16:51:27:57:c9:9d: 46:0f:11:f2:7d:71:59:fa:e3:f1:25:20:67:01:3b:d3:c1:93: f8:08:80:4f:8c:69:ca:18:0e:3b:34:0c:48:f0:0a:ba:95:50: 8f:9a:b9:67:7e:b4:3b:43:d2:ce:cd:a0:80:fa:29:5d:77:0d: a7:dd:7a:80:ff:63:93:cc:af:9e:5b:5c:4b:46:83:18:ac:b3: 80:7e:0f:10:0b:73:f9:cc:36:1f:ac:ee:d0:de:2c:f4:ee:3b: 35:ae:d3:aa:c1:3a:6d:9c:cd:fc:16:69:e7:db:24:42:91:b4: 1c:b4:61:8c:ef:73:18:fe:92:16:53:2d:2c:55:db:0b:b5:70: e2:6e:10:94:39:75:f3:70:4f:0d:39:68:5a:d7:55:73:ae:a9: ea:75:98:d0:1a:fa:f9:42:23:a1:24:d8:6b:1a:bd:73:05:0e: 1b:79:da:bd:3a:f6:43:a4:bb:ee:09:a2:c7:29:af:e0:1f:65: cb:a2:28:ac:64:0c:4f:ea:6f:50:b6:7f:3e:aa:8e:0d:fa:f0: 25:31:94:fa:a9:41:11:88:58:1e:df:84:00:48:39:2d:04:72: cb:08:9d:ca:3e:3e:86:cd:54:fb:54:70:4e:85:93:0c:69:d8: 7a:d4:13:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QzUzQTExMC8GA1UEBRMoQjA4QjU5RTVEMTA3MDVDNUNCMkQzQ0RCODU2NUIzMjhE NTAyRjU1MDAeFw0yNTExMDMwNzE3MjhaFw0yNTExMTAwNzE3MjhaMBgxFjAUBgNV BAMTDTY5MDg1NzA5LTE4YzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYKgRHyV7pm/s4ZTZRgPg0kuY3NLxMwFcRR0IqjPAj4NOrosXBXlg8qu8wLx8u nC0AH2ugLj+d4oIWpoU9DEVzhxJZQMXWeOjv3MBfcfcVlxaU9KrNJ+bLcLEE1rnf nPMx3hql54v3dcTxj1G/QyTo/OPhUv9EbetKpA35oDnGDfzNJhpGlX+742D1zAug 8wlNXh+KvAMjWNd9iQnCCtcouv0iWs6gciSoNoc/2z412gh++yQhYF9vBE2z3ugp +h/H5KlFgebzZ5rsFkqB/WPVmrRloNvSOFiiklYDI2gjtB+qrEgVo3etvtQXLHvR 5hiusWDFmueo9WUC9/XDojgNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUH157dC17 iS9cTtt0OLiindKxuOYwHwYDVR0jBBgwFoAUsItZ5dEHBcXLLTzbhWWzKNUC9VAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDNTNBLzQ3NDUwNTZFNDQ1 MTExRjBBMDlFOEEyNEM0RjlBRTAyL3NJdFo1ZEVIQmNYTExUemJoV1d6S05VQzlW QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc0l0WjVkRUhCY1hMTFR6YmhXV3pLTlVDOVZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFD NTNBLzQ3NDUwNTZFNDQ1MTExRjBBMDlFOEEyNEM0RjlBRTAyL3NJdFo1ZEVIQmNY TExUemJoV1d6S05VQzlWQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMa5uQcybP1mCA6rXhZRJ1fJnUYPEfJ9cVn64/ElIGcBO9PBk/gIgE+M acoYDjs0DEjwCrqVUI+auWd+tDtD0s7NoID6KV13DafdeoD/Y5PMr55bXEtGgxis s4B+DxALc/nMNh+s7tDeLPTuOzWu06rBOm2czfwWaefbJEKRtBy0YYzvcxj+khZT LSxV2wu1cOJuEJQ5dfNwTw05aFrXVXOuqep1mNAa+vlCI6Ek2GsavXMFDht52r06 9kOku+4Joscpr+AfZcuiKKxkDE/qb1C2fz6qjg368CUxlPqpQRGIWB7fhABIOS0E cssInco+PobNVPtUcE6Fkwxp2HrUE4c= -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:30 2025 by rpki-client