$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.mft File: ifWWEQAwvcmzutds_QXDEkYXyVI.mft (raw, json) Hash identifier: mM32hYevK/qIc08s9zKPx79vJGz0kGyregRJO5Uylb8= Subject key identifier: 14:89:D3:6B:75:19:BB:C9:A2:2A:9E:44:79:98:71:30:09:7A:A5:1F Authority key identifier: 89:F5:96:11:00:30:BD:C9:B3:BA:D7:6C:FD:05:C3:12:46:17:C9:52 Certificate issuer: /CN=A911EA62/serialNumber=89F596110030BDC9B3BAD76CFD05C3124617C952 Certificate serial: 044A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ifWWEQAwvcmzutds_QXDEkYXyVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.mft Manifest number: 043D Signing time: Mon 03 Nov 2025 00:15:57 +0000 Manifest this update: Mon 03 Nov 2025 00:15:57 +0000 Manifest next update: Mon 10 Nov 2025 00:15:57 +0000 Files and hashes: 1: ifWWEQAwvcmzutds_QXDEkYXyVI.crl (hash: 7ZyxaFpaCZ6gnH6MMlmVkMWGkvhmMh88mFKXoIOGmYs=) 2: 969AE080A14211EC8C49D660C4F9AE02.roa (hash: n7VFHzeUDeBuyUWNvkox2wNIAXMws0upgX8rIok/ab4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.crl rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ifWWEQAwvcmzutds_QXDEkYXyVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:15:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1098 (0x44a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA62, serialNumber=89F596110030BDC9B3BAD76CFD05C3124617C952 Validity Not Before: Nov 3 00:15:57 2025 GMT Not After : Nov 10 00:15:57 2025 GMT Subject: CN=6907f43d-7d5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9b:ad:bb:0a:65:f3:b4:9d:46:6e:f1:df:d8: 6f:ca:d8:07:61:72:4c:65:f0:ee:68:7b:61:e9:73: 6b:85:e2:6a:ae:51:0e:bd:8b:96:4a:e8:b5:59:cc: ef:c2:97:e7:93:b3:e7:52:3a:40:59:fc:27:7b:54: f1:2e:1b:10:aa:ee:2f:21:aa:82:67:53:5f:55:89: 1b:86:ac:f6:3b:8e:c3:a2:ab:9c:5f:9b:23:44:1d: 90:46:18:91:e3:11:49:99:a2:23:8c:6e:e1:2c:c7: 0e:de:83:62:3d:7e:46:5c:ae:74:b0:ca:d5:94:b2: 08:c0:fb:92:5f:cb:03:41:d0:18:a6:d6:17:8c:42: 9b:25:71:69:9d:6d:31:77:1e:41:fc:8c:d1:69:1a: 99:1a:d6:6e:af:51:e9:a4:b6:c3:91:48:33:84:fe: fd:10:cf:55:96:b1:92:30:e1:c4:7b:69:f6:bb:f7: d4:01:04:31:53:b3:4b:a3:fd:07:1a:55:6a:fa:3e: eb:92:7d:c3:74:d0:ab:25:5e:cd:a2:a9:22:60:3c: a5:13:90:66:25:61:83:9e:e5:d3:39:3b:dd:3c:31: c9:44:61:31:54:7c:47:c9:a3:f7:df:a6:2c:7e:40: 91:5c:76:e3:d1:74:3a:c9:d3:11:77:18:a5:c3:d6: 2b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:89:D3:6B:75:19:BB:C9:A2:2A:9E:44:79:98:71:30:09:7A:A5:1F X509v3 Authority Key Identifier: keyid:89:F5:96:11:00:30:BD:C9:B3:BA:D7:6C:FD:05:C3:12:46:17:C9:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ifWWEQAwvcmzutds_QXDEkYXyVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:7b:04:81:d7:d0:82:c7:c7:2a:fd:b2:5a:a5:9c:61:96:44: de:45:28:3b:de:c1:31:ea:52:3f:b5:00:ed:f2:6c:20:3f:e8: 26:af:ae:31:98:7e:8f:d2:94:4c:b3:dc:83:48:18:d3:39:7c: 11:a6:d0:48:dd:d0:42:38:ea:c4:4b:fb:92:08:3d:e3:9d:e3: 8c:45:83:68:16:5a:9d:cf:bb:1e:77:bc:09:61:d1:95:6c:14: d3:df:26:ff:62:70:04:e0:e9:b7:d8:dc:47:6e:bd:95:32:ea: 3b:58:ee:72:97:e9:b9:a9:e1:df:fc:00:4f:3a:6e:67:c6:81: e3:a2:e5:77:d3:ec:2c:d5:1f:5d:5b:f5:68:9b:d5:de:ce:77: 7d:ab:f6:25:53:cd:62:14:09:39:69:fd:e6:8a:82:0e:c4:56: c9:b3:3f:f3:81:17:eb:80:56:36:d1:38:c7:ac:1e:a1:53:e4: 8a:7b:79:7a:1a:57:d7:de:01:28:8d:f0:ce:bc:b3:0c:b4:9a: 2c:a2:e0:6e:e6:3c:58:af:e4:82:4f:d6:e2:e7:de:66:0b:82: 35:82:ce:bd:7c:dd:9c:7e:15:4d:03:3a:63:89:a5:ea:0e:27: 65:74:3d:88:83:42:ed:2a:3a:bc:79:47:b7:85:fd:d7:c2:e7: ae:15:73:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVBNjIxMTAvBgNVBAUTKDg5RjU5NjExMDAzMEJEQzlCM0JBRDc2Q0ZEMDVDMzEy NDYxN0M5NTIwHhcNMjUxMTAzMDAxNTU3WhcNMjUxMTEwMDAxNTU3WjAYMRYwFAYD VQQDEw02OTA3ZjQzZC03ZDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzputuwpl87SdRm7x39hvytgHYXJMZfDuaHth6XNrheJqrlEOvYuWSui1Wczv wpfnk7PnUjpAWfwne1TxLhsQqu4vIaqCZ1NfVYkbhqz2O47DoqucX5sjRB2QRhiR 4xFJmaIjjG7hLMcO3oNiPX5GXK50sMrVlLIIwPuSX8sDQdAYptYXjEKbJXFpnW0x dx5B/IzRaRqZGtZur1HppLbDkUgzhP79EM9VlrGSMOHEe2n2u/fUAQQxU7NLo/0H GlVq+j7rkn3DdNCrJV7NoqkiYDylE5BmJWGDnuXTOTvdPDHJRGExVHxHyaP336Ys fkCRXHbj0XQ6ydMRdxilw9YrkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBSJ02t1 GbvJoiqeRHmYcTAJeqUfMB8GA1UdIwQYMBaAFIn1lhEAML3Js7rXbP0FwxJGF8lS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUE2Mi8xMTY4MjExQzgw NkMxMUVDOTJCNTFDNUFDNEY5QUUwMi9pZldXRVFBd3ZjbXp1dGRzX1FYREVrWVh5 VkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lmV1dFUUF3dmNtenV0ZHNfUVhERWtZWHlWSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RUE2Mi8xMTY4MjExQzgwNkMxMUVDOTJCNTFDNUFDNEY5QUUwMi9pZldXRVFBd3Zj bXp1dGRzX1FYREVrWVh5VkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmewSB19CCx8cq/bJapZxhlkTeRSg73sEx6lI/tQDt8mwgP+gmr64x mH6P0pRMs9yDSBjTOXwRptBI3dBCOOrES/uSCD3jneOMRYNoFlqdz7sed7wJYdGV bBTT3yb/YnAE4Om32NxHbr2VMuo7WO5yl+m5qeHf/ABPOm5nxoHjouV30+ws1R9d W/Vom9Xeznd9q/YlU81iFAk5af3mioIOxFbJsz/zgRfrgFY20TjHrB6hU+SKe3l6 GlfX3gEojfDOvLMMtJosouBu5jxYr+SCT9bi595mC4I1gs69fN2cfhVNAzpjiaXq DidldD2Ig0LtKjq8eUe3hf3XwueuFXNU -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:07 2025 by rpki-client