$ rpki-client -vvf rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft File: WF3cT9n54xQAXzcZj9HiLmgknes.mft (raw, json) Hash identifier: ta10U52rEtRaT7qBQg2XROp3hSpBjQPtT1QvRmPiygw= Subject key identifier: 5F:32:DA:16:32:49:C0:04:A3:46:7C:87:4D:B9:6B:31:6A:CB:D8:6A Authority key identifier: 58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB Certificate issuer: /CN=A912871A/serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Certificate serial: 04AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft Manifest number: 04A7 Signing time: Wed 05 Nov 2025 00:02:17 +0000 Manifest this update: Wed 05 Nov 2025 00:02:17 +0000 Manifest next update: Wed 12 Nov 2025 00:02:17 +0000 Files and hashes: 1: WF3cT9n54xQAXzcZj9HiLmgknes.crl (hash: Iim9jwYwWB8SbIQKAz7B5BwLNXOhYD4GiLMTLz8zZe8=) 2: 5431D022524211ECA52D990FC4F9AE02.roa (hash: ngVDpB9EeVUj1wtwuXlGNZD63XjFCao61CO9K4ARPTk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:02:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1196 (0x4ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912871A, serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Validity Not Before: Nov 5 00:02:17 2025 GMT Not After : Nov 12 00:02:17 2025 GMT Subject: CN=690a9409-29a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fc:74:4b:fb:f0:7c:57:92:84:e3:db:e2:75: ec:13:31:11:11:2e:1c:c7:60:37:16:07:1e:79:9b: 8a:5e:59:57:2f:2e:0a:7d:6f:7c:b4:09:4a:28:26: f3:36:73:b2:5d:26:e4:91:44:48:76:39:79:9f:70: 61:b1:39:f2:92:6c:07:4d:9b:1f:ef:a1:23:f5:58: dd:dd:65:87:1d:d2:ef:7f:4d:94:5c:5d:a6:d0:31: e6:d3:3c:09:3b:0b:55:81:5a:52:2f:80:f8:da:c7: 16:93:c5:30:7a:03:51:2f:9b:05:88:27:8e:f3:57: 3c:87:af:e2:34:a3:53:e5:d8:7c:50:22:0a:a6:e2: 98:78:e6:85:f2:aa:1b:6b:31:33:c8:31:8a:85:e7: c1:97:5a:0c:3f:dd:41:74:f9:af:fa:27:97:fb:fe: da:46:38:65:9b:17:44:3d:c9:00:56:f6:5c:01:ef: 27:24:80:fa:65:88:55:85:34:36:b7:d4:e7:13:71: e0:73:c2:b9:79:e2:b1:be:47:eb:26:ce:7d:d8:ed: 12:7a:7e:7b:9a:4b:4c:c1:a8:c5:ce:32:d7:d6:d6: 0f:b6:87:22:f3:63:b0:9a:64:e4:c3:74:32:14:51: de:4b:6f:ea:33:a4:64:d4:93:37:5c:b0:fc:34:64: 28:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:32:DA:16:32:49:C0:04:A3:46:7C:87:4D:B9:6B:31:6A:CB:D8:6A X509v3 Authority Key Identifier: keyid:58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:a1:f3:3c:75:cb:73:38:ab:18:2d:3e:73:b2:c6:f7:6d:99: 99:07:5c:51:92:05:fa:c2:6d:ff:e1:7c:d1:86:40:7a:7e:e7: ca:e3:a3:1d:20:00:18:2e:77:fd:35:1f:36:f1:7b:5e:9e:a2: ff:4f:b0:2a:32:8a:50:02:64:d8:3b:e8:78:0d:70:43:d4:3a: 21:15:5a:ba:46:37:b9:c3:0f:28:f8:07:d8:af:3a:f7:6a:90: 53:29:1c:29:0f:3b:26:54:2a:53:8b:d0:03:39:58:04:66:14: 12:3e:68:03:ad:50:aa:fc:f9:c3:6b:d1:fc:d2:28:d6:c9:6c: cf:7b:07:8e:ae:83:5c:8b:24:75:32:8a:e9:b7:ba:fa:ae:da: b6:2a:4a:c5:9f:a3:08:69:50:88:66:59:b7:ee:15:98:45:8b: 16:7b:94:e8:99:bf:a8:26:db:c7:4d:78:5e:1a:c3:f7:9a:21: a1:19:d1:b0:13:76:1d:33:71:24:b9:4c:e3:df:27:b7:de:1a: 8d:a5:7d:1b:9d:ae:e0:ea:b2:66:89:a6:72:80:30:75:39:45: 39:29:6b:f2:fc:c1:9f:d0:ae:ca:1d:e4:64:36:b3:e0:a1:25: 00:33:4c:d8:5f:03:27:34:8d:71:64:82:27:93:1d:a7:0c:4e: 6e:c4:e4:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg3MUExMTAvBgNVBAUTKDU4NUREQzRGRDlGOUUzMTQwMDVGMzcxOThGRDFFMjJF NjgyNDlERUIwHhcNMjUxMTA1MDAwMjE3WhcNMjUxMTEyMDAwMjE3WjAYMRYwFAYD VQQDEw02OTBhOTQwOS0yOWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPx0S/vwfFeShOPb4nXsEzERES4cx2A3FgceeZuKXllXLy4KfW98tAlKKCbz NnOyXSbkkURIdjl5n3BhsTnykmwHTZsf76Ej9Vjd3WWHHdLvf02UXF2m0DHm0zwJ OwtVgVpSL4D42scWk8UwegNRL5sFiCeO81c8h6/iNKNT5dh8UCIKpuKYeOaF8qob azEzyDGKhefBl1oMP91BdPmv+ieX+/7aRjhlmxdEPckAVvZcAe8nJID6ZYhVhTQ2 t9TnE3Hgc8K5eeKxvkfrJs592O0Sen57mktMwajFzjLX1tYPtoci82OwmmTkw3Qy FFHeS2/qM6Rk1JM3XLD8NGQoGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF8y2hYy ScAEo0Z8h025azFqy9hqMB8GA1UdIwQYMBaAFFhd3E/Z+eMUAF83GY/R4i5oJJ3r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODcxQS8wNUJEMEYzMDUy NDAxMUVDODY1ODA2MEVDNEY5QUUwMi9XRjNjVDluNTR4UUFYemNaajlIaUxtZ2tu ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dGM2NUOW41NHhRQVh6Y1pqOUhpTG1na25lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODcxQS8wNUJEMEYzMDUyNDAxMUVDODY1ODA2MEVDNEY5QUUwMi9XRjNjVDluNTR4 UUFYemNaajlIaUxtZ2tuZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJofM8dctzOKsYLT5zssb3bZmZB1xRkgX6wm3/4XzRhkB6fufK46Md IAAYLnf9NR828XtenqL/T7AqMopQAmTYO+h4DXBD1DohFVq6Rje5ww8o+AfYrzr3 apBTKRwpDzsmVCpTi9ADOVgEZhQSPmgDrVCq/PnDa9H80ijWyWzPeweOroNciyR1 Morpt7r6rtq2KkrFn6MIaVCIZlm37hWYRYsWe5Tomb+oJtvHTXheGsP3miGhGdGw E3YdM3EkuUzj3ye33hqNpX0bna7g6rJmiaZygDB1OUU5KWvy/MGf0K7KHeRkNrPg oSUAM0zYXwMnNI1xZIInkx2nDE5uxOQ4 -----END CERTIFICATE-----Generated at Wed Nov 5 13:29:43 2025 by rpki-client