$ rpki-client -vvf rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft File: eHZtYCpA71cBQmhKcj6KNAxv84I.mft (raw, json) Hash identifier: S3OG0LTIy2PLzTUVvk065+3NVnYKuopoKmwVj02F7rQ= Subject key identifier: 20:4F:2C:5B:D1:61:E9:4F:90:51:8E:B4:91:00:27:A3:2F:28:04:64 Authority key identifier: 78:76:6D:60:2A:40:EF:57:01:42:68:4A:72:3E:8A:34:0C:6F:F3:82 Certificate issuer: /CN=A912A70D/serialNumber=78766D602A40EF570142684A723E8A340C6FF382 Certificate serial: 0497 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHZtYCpA71cBQmhKcj6KNAxv84I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft Manifest number: 0493 Signing time: Wed 05 Nov 2025 00:06:54 +0000 Manifest this update: Wed 05 Nov 2025 00:06:54 +0000 Manifest next update: Wed 12 Nov 2025 00:06:54 +0000 Files and hashes: 1: eHZtYCpA71cBQmhKcj6KNAxv84I.crl (hash: mLigxqie+GzGRT02ogrvpOZZgyJb0+0e69CGjXAzZEo=) 2: 90AE61AC595711EC8761C361C4F9AE02.roa (hash: xHB6klxUWxKIW0ZETWDrSBAoOokIy/M1aOS9u4crx4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.crl rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHZtYCpA71cBQmhKcj6KNAxv84I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:06:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1175 (0x497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A70D, serialNumber=78766D602A40EF570142684A723E8A340C6FF382 Validity Not Before: Nov 5 00:06:54 2025 GMT Not After : Nov 12 00:06:54 2025 GMT Subject: CN=690a951e-4213 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3a:5f:76:d3:1d:c6:91:a3:d9:89:ab:aa:ec: 80:08:ba:f6:31:29:5f:06:b2:20:1c:95:dd:c1:00: f0:48:97:ba:d7:ea:09:2a:82:cc:88:66:7b:6d:d4: a5:77:1e:ba:0a:72:2f:12:97:ca:f2:a7:de:19:a7: 02:92:d8:91:02:a4:fd:84:e4:ef:e4:d1:0e:2a:f8: 81:d9:c9:aa:01:85:55:fd:32:9a:dd:b7:d5:42:79: 38:d8:72:28:5a:6c:88:f8:b8:73:a4:ce:89:c8:34: 63:be:b7:f3:21:e3:e8:1d:f6:5a:d0:35:8a:66:4d: 4a:ef:0d:17:5d:c0:d0:d6:92:33:51:ed:28:e5:00: 35:bd:fd:bd:78:92:af:e4:1d:49:5e:18:b8:ed:a3: aa:95:b5:f2:df:6e:13:d1:9d:a3:f6:27:74:50:13: ef:d3:5c:ed:47:32:af:10:08:49:45:fc:03:ed:1e: 99:dc:be:10:75:60:ce:03:70:38:75:9e:22:1d:64: 84:dd:45:86:20:55:13:95:01:90:6b:45:ef:11:36: 4b:af:80:09:08:e0:d4:eb:5f:b1:c8:b9:2c:33:cc: ee:ea:69:a6:ec:77:0d:a5:93:00:fb:0d:bf:aa:d9: 8d:7d:bd:56:b0:1e:1a:be:4c:38:35:38:c7:d9:a4: 87:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:4F:2C:5B:D1:61:E9:4F:90:51:8E:B4:91:00:27:A3:2F:28:04:64 X509v3 Authority Key Identifier: keyid:78:76:6D:60:2A:40:EF:57:01:42:68:4A:72:3E:8A:34:0C:6F:F3:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHZtYCpA71cBQmhKcj6KNAxv84I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:11:7e:b3:c8:93:66:be:12:5e:84:f2:53:b0:b0:ca:f4:5b: 18:a5:3a:8f:3d:09:c1:03:46:55:d2:42:90:46:99:7a:99:96: e7:ab:fa:ff:c5:5b:f9:08:c7:1d:02:12:55:23:86:5b:c2:7a: 82:6b:2c:58:f9:87:29:9f:b0:56:e7:47:1c:71:23:61:85:cf: 15:ac:68:d9:9e:27:d9:34:a2:92:5c:4e:1b:b7:c0:6a:d7:c5: 10:23:9b:4a:20:97:2a:65:25:48:c7:7a:0d:c0:84:09:6a:c3: 1e:47:20:c6:d0:ec:03:fb:59:69:f9:cb:71:bd:b8:2d:d6:d6: 51:76:14:73:aa:8d:ff:a6:4d:bd:54:10:85:df:04:52:5b:ed: 81:a4:dd:c3:4c:ac:a4:89:c2:d3:29:9e:a3:2b:33:f7:0a:30: 92:a8:ee:ec:d9:fa:aa:1c:9d:69:a6:7c:6a:cf:96:a6:a1:03: 72:51:2d:01:28:87:2b:71:02:d3:78:90:7f:86:5c:35:89:6e: cc:62:1c:08:ab:78:98:d2:8f:e8:cb:eb:92:57:51:70:a7:d1: 55:76:01:1a:8c:b0:aa:64:29:de:bc:57:c3:97:ec:d1:47:82: 11:88:98:87:d3:db:a9:87:7f:03:8d:01:83:7d:09:26:cf:1e: df:7a:1a:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkE3MEQxMTAvBgNVBAUTKDc4NzY2RDYwMkE0MEVGNTcwMTQyNjg0QTcyM0U4QTM0 MEM2RkYzODIwHhcNMjUxMTA1MDAwNjU0WhcNMjUxMTEyMDAwNjU0WjAYMRYwFAYD VQQDEw02OTBhOTUxZS00MjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTpfdtMdxpGj2YmrquyACLr2MSlfBrIgHJXdwQDwSJe61+oJKoLMiGZ7bdSl dx66CnIvEpfK8qfeGacCktiRAqT9hOTv5NEOKviB2cmqAYVV/TKa3bfVQnk42HIo WmyI+LhzpM6JyDRjvrfzIePoHfZa0DWKZk1K7w0XXcDQ1pIzUe0o5QA1vf29eJKv 5B1JXhi47aOqlbXy324T0Z2j9id0UBPv01ztRzKvEAhJRfwD7R6Z3L4QdWDOA3A4 dZ4iHWSE3UWGIFUTlQGQa0XvETZLr4AJCODU61+xyLksM8zu6mmm7HcNpZMA+w2/ qtmNfb1WsB4avkw4NTjH2aSHWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCBPLFvR YelPkFGOtJEAJ6MvKARkMB8GA1UdIwQYMBaAFHh2bWAqQO9XAUJoSnI+ijQMb/OC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTcwRC8xMTE0QzlCQTU5 NTAxMUVDQUUwOTMyODJDNEY5QUUwMi9lSFp0WUNwQTcxY0JRbWhLY2o2S05BeHY4 NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIWnRZQ3BBNzFjQlFtaEtjajZLTkF4djg0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTcwRC8xMTE0QzlCQTU5NTAxMUVDQUUwOTMyODJDNEY5QUUwMi9lSFp0WUNwQTcx Y0JRbWhLY2o2S05BeHY4NEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGEX6zyJNmvhJehPJTsLDK9FsYpTqPPQnBA0ZV0kKQRpl6mZbnq/r/ xVv5CMcdAhJVI4ZbwnqCayxY+Ycpn7BW50cccSNhhc8VrGjZnifZNKKSXE4bt8Bq 18UQI5tKIJcqZSVIx3oNwIQJasMeRyDG0OwD+1lp+ctxvbgt1tZRdhRzqo3/pk29 VBCF3wRSW+2BpN3DTKykicLTKZ6jKzP3CjCSqO7s2fqqHJ1ppnxqz5amoQNyUS0B KIcrcQLTeJB/hlw1iW7MYhwIq3iY0o/oy+uSV1Fwp9FVdgEajLCqZCnevFfDl+zR R4IRiJiH09uph38DjQGDfQkmzx7fehrY -----END CERTIFICATE-----Generated at Wed Nov 5 13:35:26 2025 by rpki-client