$ rpki-client -vvf rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft File: drnTOfrNYrR-k-iITehQOW2877Q.mft (raw, json) Hash identifier: xUMRUVVu6O7qtUDx+QNhJ/X8cJt5PpAbcFey2zc7dug= Subject key identifier: A1:6E:B9:DF:CE:2E:A6:4A:D1:11:48:FE:B5:31:B0:2C:97:B3:58:95 Authority key identifier: 76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 Certificate issuer: /CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Certificate serial: 0B39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft Manifest number: 0B21 Signing time: Fri 31 Oct 2025 19:30:10 +0000 Manifest this update: Fri 31 Oct 2025 19:30:09 +0000 Manifest next update: Fri 07 Nov 2025 19:30:09 +0000 Files and hashes: 1: drnTOfrNYrR-k-iITehQOW2877Q.crl (hash: 4VXth8IHJgHeWTr1DUyC0By58TZ1WEh3hi/N2cXDuRU=) 2: 83882F7AF83B11ECB4154E31C4F9AE02.roa (hash: YH3lhLXoSVbhjIpXiN2vn5qlApvWo5uVmDvE4K7XYgk=) 3: 4FFC83964CA311EE815AF017C4F9AE02.roa (hash: UA3Z3TNFXnNBwmElq5Ec0QuBLoZlUKqnBYT4/k/3BsY=) 4: AA1ABF0AB20011EA9C0DFB2FC4F9AE02.roa (hash: FcXy6QLc2Tvjs24Fp66P1cwtAXMmWgi5gNPzljev1BY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 19:30:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2873 (0xb39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E6CA, serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Validity Not Before: Oct 31 19:30:09 2025 GMT Not After : Nov 7 19:30:09 2025 GMT Subject: CN=69050e41-70cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2b:a5:63:95:fa:45:f6:62:a7:11:4f:3d:1d: e0:bc:9d:36:d1:06:e9:35:7e:0f:53:2a:c1:72:48: 3b:01:15:c5:b3:1b:26:08:a1:3e:63:b2:dd:4a:a8: 3b:14:e9:20:4c:53:9a:84:84:90:4b:ec:98:1f:0e: 5f:1c:bd:96:87:28:67:ff:67:2a:ea:08:dd:eb:fe: 06:67:37:84:48:86:a5:bf:de:e1:de:d9:f4:2d:0a: e9:27:94:2d:8c:58:3c:25:ce:b3:42:45:ce:f0:50: 19:61:c3:ef:15:d3:fc:83:b3:5a:20:cd:03:5e:1a: 74:6d:27:b1:38:2e:25:68:81:7e:ad:ee:cb:98:ca: 28:a4:d3:ee:b7:51:8f:67:f4:6f:60:67:a4:30:2e: c7:00:dc:06:64:d5:be:d5:d6:8f:0a:0c:d6:52:dd: ea:37:44:c2:bb:8f:a4:18:45:03:a4:1b:eb:02:d5: 3c:1d:ce:dd:3b:61:14:93:0f:6d:e8:a9:bd:f7:7e: 89:42:6f:d8:b0:4f:a2:bb:4b:0b:56:0a:a6:ad:b7: 1e:bf:8a:89:e4:16:62:cd:44:89:4a:38:ef:82:aa: 77:93:8a:2a:3d:49:a4:3c:59:fa:05:6b:d8:2a:93: a3:84:5c:80:df:c8:e8:bc:22:d1:bd:7a:d6:10:03: ab:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:6E:B9:DF:CE:2E:A6:4A:D1:11:48:FE:B5:31:B0:2C:97:B3:58:95 X509v3 Authority Key Identifier: keyid:76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:7a:9f:29:97:9d:9c:09:58:08:17:c6:ae:c2:10:76:38:fa: ae:b0:40:1e:ef:eb:0a:25:8f:11:27:ac:26:a6:87:37:4e:5a: 92:81:92:c5:6e:fc:9f:ef:7a:cc:ae:30:07:be:d7:09:6e:c4: 2f:b0:4b:e0:28:29:05:01:62:d9:1e:3c:4d:d7:7b:b6:9c:8b: 46:b3:64:ec:1f:08:01:f1:07:6f:fd:ff:bc:00:d5:c8:2c:13: f9:2f:a5:0e:42:3c:f0:a3:96:3c:4e:07:d9:ad:2b:3c:3a:a4: ea:97:79:bd:27:7a:26:b4:d6:b5:85:94:a8:e4:54:2f:18:a1: 12:13:1a:88:40:65:91:8f:77:eb:bb:67:a2:f6:5d:ab:4a:c2: b5:a7:54:7d:ef:7f:42:1f:5d:f7:05:5f:51:9b:b5:b6:aa:5c: 7e:fb:4a:5b:66:d1:6f:e8:4c:c0:f8:d0:ef:52:55:da:b1:22: 93:fe:48:23:e6:67:6e:73:37:a3:68:86:21:9b:ab:58:9c:58: 91:09:2b:85:69:64:69:8d:06:c9:91:1f:29:5b:78:fc:ce:50: b9:8c:87:a4:7d:98:ac:f6:0b:bb:6e:28:9c:36:da:89:a8:16: 33:65:24:b6:b3:bf:fd:1b:74:7d:5a:04:83:d6:cb:9d:b8:96: c9:31:22:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2Q0ExMTAvBgNVBAUTKDc2QjlEMzM5RkFDRDYyQjQ3RTkzRTg4ODRERTg1MDM5 NkRCQ0VGQjQwHhcNMjUxMDMxMTkzMDA5WhcNMjUxMTA3MTkzMDA5WjAYMRYwFAYD VQQDEw02OTA1MGU0MS03MGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCulY5X6RfZipxFPPR3gvJ020QbpNX4PUyrBckg7ARXFsxsmCKE+Y7LdSqg7 FOkgTFOahISQS+yYHw5fHL2Whyhn/2cq6gjd6/4GZzeESIalv97h3tn0LQrpJ5Qt jFg8Jc6zQkXO8FAZYcPvFdP8g7NaIM0DXhp0bSexOC4laIF+re7LmMoopNPut1GP Z/RvYGekMC7HANwGZNW+1daPCgzWUt3qN0TCu4+kGEUDpBvrAtU8Hc7dO2EUkw9t 6Km9936JQm/YsE+iu0sLVgqmrbcev4qJ5BZizUSJSjjvgqp3k4oqPUmkPFn6BWvY KpOjhFyA38jovCLRvXrWEAOr1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKFuud/O LqZK0RFI/rUxsCyXs1iVMB8GA1UdIwQYMBaAFHa50zn6zWK0fpPoiE3oUDltvO+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTZDQS83NDA5QjQ3QTRG QzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTllyUi1rLWlJVGVoUU9XMjg3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RyblRPZnJOWXJSLWstaUlUZWhRT1cyODc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTZDQS83NDA5QjQ3QTRGQzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTlly Ui1rLWlJVGVoUU9XMjg3N1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGep8pl52cCVgIF8auwhB2OPqusEAe7+sKJY8RJ6wmpoc3TlqSgZLF bvyf73rMrjAHvtcJbsQvsEvgKCkFAWLZHjxN13u2nItGs2TsHwgB8Qdv/f+8ANXI LBP5L6UOQjzwo5Y8TgfZrSs8OqTql3m9J3omtNa1hZSo5FQvGKESExqIQGWRj3fr u2ei9l2rSsK1p1R9739CH133BV9Rm7W2qlx++0pbZtFv6EzA+NDvUlXasSKT/kgj 5mduczejaIYhm6tYnFiRCSuFaWRpjQbJkR8pW3j8zlC5jIekfZis9gu7biicNtqJ qBYzZSS2s7/9G3R9WgSD1suduJbJMSLQ -----END CERTIFICATE-----Generated at Sat Nov 1 14:13:07 2025 by rpki-client