$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft File: RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft (raw, json) Hash identifier: 4NVSxYsMFsefNWkz7tnb+QImxAtg780+QYLPTe29q2o= Subject key identifier: 62:CB:7D:BB:2C:A4:2C:D4:BE:EA:05:B5:E2:16:47:86:30:35:AE:80 Authority key identifier: 47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 Certificate issuer: /CN=A911DD04/serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Certificate serial: 0154 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft Manifest number: 0150 Signing time: Mon 03 Nov 2025 04:14:42 +0000 Manifest this update: Mon 03 Nov 2025 04:14:41 +0000 Manifest next update: Mon 10 Nov 2025 04:14:41 +0000 Files and hashes: 1: RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl (hash: XoM7pbkHrnqjtuI1gFiJjz8LC15j7KUB1of/J0TKPc8=) 2: 939790AAB9BD11EEA19BE74DC4F9AE02.roa (hash: usgNeDoGlzZoBDkMS+oNirA/1DpfH4pmT68FwmH4UH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD04, serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Validity Not Before: Nov 3 04:14:41 2025 GMT Not After : Nov 10 04:14:41 2025 GMT Subject: CN=69082c32-809c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4b:cc:0f:27:73:71:cc:b7:c3:cd:c4:ff:89: 25:c2:27:4c:f0:89:c9:94:02:02:55:3b:d7:bb:c3: 45:51:e3:17:8e:0f:5e:2e:43:99:d0:57:4c:42:c9: 89:eb:60:ae:06:37:ca:1e:68:03:53:db:6b:a4:88: cc:c9:b2:59:a5:2b:a5:70:fb:38:64:c4:fd:28:44: 11:86:a8:d4:af:d2:9d:b2:cb:44:ad:69:4b:f6:da: bd:c0:29:30:0d:97:6c:a7:de:d2:b0:1b:94:bf:c9: 81:b8:6a:d4:d6:11:52:33:e9:af:62:1d:56:fd:ca: 2a:ab:8d:83:38:fb:c3:8e:82:d8:67:10:e7:ff:2e: d0:ee:c0:1c:a5:56:d7:9f:0d:4d:d4:3b:78:18:d0: a5:e0:73:eb:4c:c8:6e:12:29:9c:8f:50:f7:f8:06: df:45:c1:cc:31:bb:76:e4:59:59:39:f4:98:ea:d7: c8:35:d9:c6:55:8c:45:a8:45:a4:a5:9c:9f:00:56: bc:cf:81:11:77:9e:e7:0d:88:8d:0e:bf:33:f8:82: fb:ee:f2:0f:a8:dd:6b:ae:90:59:9e:92:70:5c:3c: 1a:48:50:e8:60:ab:9c:5a:be:cc:fc:cb:7e:5d:93: 53:4b:00:dc:e6:e5:7e:ce:e9:82:92:d8:bf:a4:79: 43:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:CB:7D:BB:2C:A4:2C:D4:BE:EA:05:B5:E2:16:47:86:30:35:AE:80 X509v3 Authority Key Identifier: keyid:47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:f7:ac:1a:ee:a5:cf:42:1f:3d:bf:53:e1:91:da:6b:e4:e2: a2:31:3d:c2:cd:77:67:4b:74:6f:20:7a:d5:46:59:f2:0e:3b: c7:6f:e3:e5:f8:be:06:95:d9:62:e5:fc:e1:de:23:df:43:17: 03:64:6d:96:ba:ab:1a:1a:fb:aa:2d:28:11:e6:d7:86:ce:07: a2:66:f7:5f:fe:69:53:03:b3:a2:ea:3a:77:6a:7d:27:bb:b1: 73:5d:5b:cd:7f:df:af:76:1d:35:93:3c:12:22:54:c0:4a:dd: d7:8b:ee:cd:7d:5c:54:b3:6e:95:8a:5a:ea:43:a8:d3:8f:26: 34:c6:99:e1:eb:7a:ec:9f:a3:ce:66:5a:32:13:2f:1f:23:3f: 2c:05:1d:49:1b:dc:65:bf:2d:6d:e6:9b:e7:84:02:2e:de:d7: 58:c9:16:40:69:98:39:78:7e:0c:da:06:db:f2:3d:cf:3a:68: 44:14:c6:64:32:db:ce:c1:01:bf:b5:e2:49:48:8d:09:cc:cf: e9:97:5a:e6:c0:8a:b0:64:f1:e3:24:90:44:bd:35:74:9f:2b: 60:b3:5d:e4:51:c4:69:a0:06:e1:db:99:67:43:c1:aa:be:5a: 49:59:ea:7d:6a:2d:94:54:85:07:26:93:f9:a9:88:33:e3:52: d9:52:ab:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDQxMTAvBgNVBAUTKDQ3MzQ2NDg0NzE1OUJCMTUyRkJGRTFEQkI1QTFCMDE1 NDY4MjJGMTcwHhcNMjUxMTAzMDQxNDQxWhcNMjUxMTEwMDQxNDQxWjAYMRYwFAYD VQQDEw02OTA4MmMzMi04MDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArUvMDydzccy3w83E/4klwidM8InJlAICVTvXu8NFUeMXjg9eLkOZ0FdMQsmJ 62CuBjfKHmgDU9trpIjMybJZpSulcPs4ZMT9KEQRhqjUr9KdsstErWlL9tq9wCkw DZdsp97SsBuUv8mBuGrU1hFSM+mvYh1W/coqq42DOPvDjoLYZxDn/y7Q7sAcpVbX nw1N1Dt4GNCl4HPrTMhuEimcj1D3+AbfRcHMMbt25FlZOfSY6tfINdnGVYxFqEWk pZyfAFa8z4ERd57nDYiNDr8z+IL77vIPqN1rrpBZnpJwXDwaSFDoYKucWr7M/Mt+ XZNTSwDc5uV+zumCkti/pHlDbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGLLfbss pCzUvuoFteIWR4YwNa6AMB8GA1UdIwQYMBaAFEc0ZIRxWbsVL7/h27WhsBVGgi8X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwNC9DM0Q1RkRDNkI5 QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4VXZ2LUhidGFHd0ZVYUNM eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J6UmtoSEZadXhVdnYtSGJ0YUd3RlVhQ0x4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwNC9DM0Q1RkRDNkI5QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4 VXZ2LUhidGFHd0ZVYUNMeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS96wa7qXPQh89v1Phkdpr5OKiMT3CzXdnS3RvIHrVRlnyDjvHb+Pl +L4Gldli5fzh3iPfQxcDZG2WuqsaGvuqLSgR5teGzgeiZvdf/mlTA7Oi6jp3an0n u7FzXVvNf9+vdh01kzwSIlTASt3Xi+7NfVxUs26VilrqQ6jTjyY0xpnh63rsn6PO ZloyEy8fIz8sBR1JG9xlvy1t5pvnhAIu3tdYyRZAaZg5eH4M2gbb8j3POmhEFMZk MtvOwQG/teJJSI0JzM/pl1rmwIqwZPHjJJBEvTV0nytgs13kUcRpoAbh25lnQ8Gq vlpJWep9ai2UVIUHJpP5qYgz41LZUqtZ -----END CERTIFICATE-----Generated at Mon Nov 3 18:16:37 2025 by rpki-client