$ rpki-client -vvf rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft File: Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft (raw, json) Hash identifier: s5A6ZIaebMijD1pdBscZRIXsJ5xxJRVnXZDLwqSzE2c= Subject key identifier: DD:7E:82:7B:A6:49:5C:8A:5D:17:41:60:8D:C4:5A:09:8D:C3:E0:C2 Authority key identifier: 2B:3D:21:1F:C9:99:8D:F2:03:5E:20:D9:1A:A5:5E:DE:C6:28:F0:A3 Certificate issuer: /CN=A912B75A/serialNumber=2B3D211FC9998DF2035E20D91AA55EDEC628F0A3 Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft Manifest number: E5 Signing time: Mon 03 Nov 2025 05:24:05 +0000 Manifest this update: Mon 03 Nov 2025 05:24:05 +0000 Manifest next update: Mon 10 Nov 2025 05:24:05 +0000 Files and hashes: 1: Kz0hH8mZjfIDXiDZGqVe3sYo8KM.crl (hash: zQEKH5tVHKnCq+RKScA3N1CE83Gf3eXblEzNvBhiTtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.crl rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B75A, serialNumber=2B3D211FC9998DF2035E20D91AA55EDEC628F0A3 Validity Not Before: Nov 3 05:24:05 2025 GMT Not After : Nov 10 05:24:05 2025 GMT Subject: CN=69083c75-004d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:70:14:e3:07:a6:a9:e9:06:2d:32:85:fa:45: 57:bd:71:4e:22:19:5a:d3:fb:df:7d:37:e9:eb:fd: 5b:5a:cf:7b:b0:00:5f:28:e1:c9:3c:e3:71:13:8c: 1a:8a:1c:bf:20:c8:52:be:6e:8c:f3:f9:bd:56:ac: c0:39:47:76:c7:d4:52:51:34:c2:f2:e3:1f:ba:e1: 4e:58:8c:1d:b6:95:fd:bd:39:51:86:a0:d9:28:7e: 9c:c3:73:6d:0c:60:44:ff:5d:90:96:82:92:05:b4: 23:c8:c8:7c:33:ca:94:44:de:38:ee:e7:23:5e:23: fa:16:97:31:26:53:ac:71:fc:40:c0:4e:43:02:03: fb:38:04:9d:cc:54:6c:58:30:5f:34:4d:59:46:ce: 07:f7:44:c3:d3:64:22:a1:03:2f:93:86:f4:34:f6: 09:9b:5f:1b:f4:44:c0:2b:d9:56:72:98:23:3b:c4: 47:5f:c7:f9:19:42:c7:97:f5:13:1c:31:4b:dd:11: 27:3c:70:4f:e9:bf:f3:c9:b5:37:8a:b1:db:b1:e7: 2e:ad:eb:28:2a:f1:c8:06:70:80:55:53:eb:b1:8a: ab:8f:a9:40:1a:ad:eb:72:34:f9:a3:69:6b:3f:29: e6:ca:99:16:9e:0c:e1:87:91:15:a2:8e:5f:bd:dd: 3c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:7E:82:7B:A6:49:5C:8A:5D:17:41:60:8D:C4:5A:09:8D:C3:E0:C2 X509v3 Authority Key Identifier: keyid:2B:3D:21:1F:C9:99:8D:F2:03:5E:20:D9:1A:A5:5E:DE:C6:28:F0:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:a9:e1:ce:86:cf:64:19:f1:28:8f:18:88:1f:47:fc:52:ae: d3:05:07:8e:6f:f2:42:44:f2:95:2b:8f:14:62:82:da:07:59: 39:dd:0a:37:17:67:d4:e9:90:0d:05:ba:2b:f8:d9:99:7c:9e: 27:56:8f:14:a9:18:6b:53:55:b4:08:ba:3e:31:59:f3:c2:ab: d7:d2:ba:2b:36:b8:07:5f:06:2c:b1:22:89:9d:57:5b:ff:4c: 08:64:ff:28:7f:c6:8f:94:f2:8b:c7:9b:6c:ff:a6:fc:c9:25: 2b:e0:3a:4e:e3:ab:20:fe:13:ff:40:2e:31:4e:3b:20:c7:c8: f5:5e:7e:f8:86:32:40:0a:18:c9:16:d7:47:9a:6c:cf:17:60: dd:c0:21:b0:25:39:24:a5:da:7f:e0:19:f0:bf:5f:d1:68:e3: 30:49:ba:5b:4c:0d:70:9f:50:2a:e8:e8:7c:44:db:cc:f5:01: d1:17:af:b0:a0:c9:56:6a:dd:7f:eb:1c:8e:71:d7:43:bb:0b: 43:47:de:69:af:8b:be:dc:0b:58:75:f2:ad:f1:78:13:22:e8: de:ae:fd:81:d1:4f:bc:77:84:85:50:ff:60:b5:60:89:ed:c3: 32:7a:bd:41:47:5d:ce:24:e4:9b:1c:35:3e:ac:3e:c9:21:11: 48:9e:ce:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI3NUExMTAvBgNVBAUTKDJCM0QyMTFGQzk5OThERjIwMzVFMjBEOTFBQTU1RURF QzYyOEYwQTMwHhcNMjUxMTAzMDUyNDA1WhcNMjUxMTEwMDUyNDA1WjAYMRYwFAYD VQQDEw02OTA4M2M3NS0wMDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXAU4wemqekGLTKF+kVXvXFOIhla0/vffTfp6/1bWs97sABfKOHJPONxE4wa ihy/IMhSvm6M8/m9VqzAOUd2x9RSUTTC8uMfuuFOWIwdtpX9vTlRhqDZKH6cw3Nt DGBE/12QloKSBbQjyMh8M8qURN447ucjXiP6FpcxJlOscfxAwE5DAgP7OASdzFRs WDBfNE1ZRs4H90TD02QioQMvk4b0NPYJm18b9ETAK9lWcpgjO8RHX8f5GULHl/UT HDFL3REnPHBP6b/zybU3irHbsecuresoKvHIBnCAVVPrsYqrj6lAGq3rcjT5o2lr PynmypkWngzhh5EVoo5fvd08SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN1+gnum SVyKXRdBYI3EWgmNw+DCMB8GA1UdIwQYMBaAFCs9IR/JmY3yA14g2RqlXt7GKPCj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjc1QS8xQjIyRTFGRTVC OUExMUVGODIwMjc2NDBDNEY5QUUwMi9LejBoSDhtWmpmSURYaURaR3FWZTNzWW84 S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6MGhIOG1aamZJRFhpRFpHcVZlM3NZbzhLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Qjc1QS8xQjIyRTFGRTVCOUExMUVGODIwMjc2NDBDNEY5QUUwMi9LejBoSDhtWmpm SURYaURaR3FWZTNzWW84S00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJqeHOhs9kGfEojxiIH0f8Uq7TBQeOb/JCRPKVK48UYoLaB1k53Qo3 F2fU6ZANBbor+NmZfJ4nVo8UqRhrU1W0CLo+MVnzwqvX0rorNrgHXwYssSKJnVdb /0wIZP8of8aPlPKLx5ts/6b8ySUr4DpO46sg/hP/QC4xTjsgx8j1Xn74hjJAChjJ FtdHmmzPF2DdwCGwJTkkpdp/4Bnwv1/RaOMwSbpbTA1wn1Aq6Oh8RNvM9QHRF6+w oMlWat1/6xyOcddDuwtDR95pr4u+3AtYdfKt8XgTIujerv2B0U+8d4SFUP9gtWCJ 7cMyer1BR13OJOSbHDU+rD7JIRFIns6K -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:42 2025 by rpki-client