$ rpki-client -vvf rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft File: 07chXhZgoZ79Lncvm6envcbuDSg.mft (raw, json) Hash identifier: pp9+APlmoevRaBMa1SZhGS6BsY01BnZ9Sfaasp67kpk= Subject key identifier: DE:E3:3F:D0:79:BE:22:BE:35:EF:F1:D3:26:4F:92:8A:2F:C2:16:1D Authority key identifier: D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28 Certificate issuer: /CN=A912BBC9/serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28 Certificate serial: 0987 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft Manifest number: 096A Signing time: Tue 04 Nov 2025 20:16:26 +0000 Manifest this update: Tue 04 Nov 2025 20:16:26 +0000 Manifest next update: Tue 11 Nov 2025 20:16:26 +0000 Files and hashes: 1: 07chXhZgoZ79Lncvm6envcbuDSg.crl (hash: CC6q/Fxzf2S3Qyw9EsZumCpr7qq8DROEzkI7ZDFBZ1s=) 2: 42B13940C3C011EE86C2C317C4F9AE02.roa (hash: ohub1su2eLkcxe2mnfMUSQeEjo+GPwYrkG+K0CsdsDY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:16:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2439 (0x987) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BBC9, serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28 Validity Not Before: Nov 4 20:16:26 2025 GMT Not After : Nov 11 20:16:26 2025 GMT Subject: CN=690a5f1a-1c0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:63:4e:0d:c5:42:58:c3:98:88:75:0d:fe:7a: c6:b8:cb:b2:69:73:29:0a:67:d3:8f:b5:69:f6:99: 7a:21:4b:c2:4e:51:b5:66:39:29:cd:6a:53:8b:c4: df:5e:b7:ac:42:62:68:bc:8b:ef:77:a5:dd:22:3a: b0:72:2b:5e:7c:b8:b9:d1:e8:8a:0c:36:bf:3b:6f: ac:15:40:2f:bf:d8:25:87:8f:0c:81:d4:95:55:e7: b4:9c:31:cc:67:71:96:50:b7:81:d0:e5:01:e6:de: 01:dd:c3:a5:ff:39:d7:7c:4e:cc:32:fc:3c:2b:c7: c4:d9:71:9d:37:9d:6b:9a:51:30:25:6f:2e:5b:10: ea:26:16:e8:80:ed:00:2e:dc:95:dd:c2:91:a2:6e: 8c:28:80:c5:58:fe:b8:58:17:2f:37:cd:9f:b0:21: 17:81:a0:03:54:c5:6c:5e:c9:b4:2a:ca:a7:b3:b0: 5a:1b:ac:60:a7:f9:17:66:1d:82:25:55:73:56:94: 1c:2c:1b:4a:51:a8:14:05:3a:0c:11:14:ab:12:4f: 6f:a3:73:bf:5c:35:b7:37:43:96:3d:c8:ce:bf:09: f3:48:fb:3c:02:dd:8b:05:c2:13:62:86:62:1e:a3: c3:52:b8:83:0a:90:a2:c8:c8:f8:8d:d0:5c:5a:69: 51:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E3:3F:D0:79:BE:22:BE:35:EF:F1:D3:26:4F:92:8A:2F:C2:16:1D X509v3 Authority Key Identifier: keyid:D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:49:68:1c:82:30:aa:a6:9a:b2:9c:f5:d4:1f:41:cd:d6:c3: c0:a6:f3:e5:20:ca:dc:da:97:95:8c:fb:6b:48:ca:b4:f5:51: 9c:92:e4:07:f3:08:de:e6:aa:cf:a7:68:90:ac:05:50:22:08: 4c:e0:62:bc:ec:6b:1f:8f:cc:ba:fb:9d:16:4c:4e:91:89:f5: 99:34:87:cd:76:0d:4c:9e:8f:a4:47:f2:b3:d5:df:3c:22:a2: d0:1e:bd:99:1d:85:c9:bd:43:f6:a2:21:e1:65:6f:7a:e8:ec: 86:86:9b:7e:bd:ef:63:f6:da:d9:0c:68:e8:75:80:cd:2f:77: 34:f0:93:a9:ed:c3:05:34:b9:a1:68:88:02:8e:c2:54:48:86: b1:12:ea:29:42:16:58:bb:9b:1a:3b:1c:9d:a5:c5:7a:42:62: a6:59:7d:42:02:22:d5:09:25:dd:60:ca:1c:6c:da:a0:fd:56: f4:9d:06:fd:91:33:fd:04:a7:b0:9a:89:46:c0:04:bd:72:14: d4:d7:27:1b:b8:f5:26:0d:90:c7:71:10:d6:0d:5b:cc:fd:0c: ac:4c:73:6d:cf:a4:ea:b9:5a:d5:ea:2f:cf:1c:0a:8d:6b:1a: df:5f:a2:b8:14:fd:34:7e:39:df:a1:bd:54:0b:ec:f3:f6:f9: b2:4e:f5:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJCQzkxMTAvBgNVBAUTKEQzQjcyMTVFMTY2MEExOUVGRDJFNzcyRjlCQTdBN0JE QzZFRTBEMjgwHhcNMjUxMTA0MjAxNjI2WhcNMjUxMTExMjAxNjI2WjAYMRYwFAYD VQQDEw02OTBhNWYxYS0xYzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5WNODcVCWMOYiHUN/nrGuMuyaXMpCmfTj7Vp9pl6IUvCTlG1ZjkpzWpTi8Tf XresQmJovIvvd6XdIjqwcitefLi50eiKDDa/O2+sFUAvv9glh48MgdSVVee0nDHM Z3GWULeB0OUB5t4B3cOl/znXfE7MMvw8K8fE2XGdN51rmlEwJW8uWxDqJhbogO0A LtyV3cKRom6MKIDFWP64WBcvN82fsCEXgaADVMVsXsm0Ksqns7BaG6xgp/kXZh2C JVVzVpQcLBtKUagUBToMERSrEk9vo3O/XDW3N0OWPcjOvwnzSPs8At2LBcITYoZi HqPDUriDCpCiyMj4jdBcWmlRXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7jP9B5 viK+Ne/x0yZPkoovwhYdMB8GA1UdIwQYMBaAFNO3IV4WYKGe/S53L5unp73G7g0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkJDOS84M0ZGOUZFQ0FB ODExMUVBQjQyQTA0MzNDNEY5QUUwMi8wN2NoWGhaZ29aNzlMbmN2bTZlbnZjYnVE U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA3Y2hYaFpnb1o3OUxuY3ZtNmVudmNidURTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkJDOS84M0ZGOUZFQ0FBODExMUVBQjQyQTA0MzNDNEY5QUUwMi8wN2NoWGhaZ29a NzlMbmN2bTZlbnZjYnVEU2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgSWgcgjCqppqynPXUH0HN1sPApvPlIMrc2peVjPtrSMq09VGckuQH 8wje5qrPp2iQrAVQIghM4GK87Gsfj8y6+50WTE6RifWZNIfNdg1Mno+kR/Kz1d88 IqLQHr2ZHYXJvUP2oiHhZW966OyGhpt+ve9j9trZDGjodYDNL3c08JOp7cMFNLmh aIgCjsJUSIaxEuopQhZYu5saOxydpcV6QmKmWX1CAiLVCSXdYMocbNqg/Vb0nQb9 kTP9BKewmolGwAS9chTU1ycbuPUmDZDHcRDWDVvM/QysTHNtz6TquVrV6i/PHAqN axrfX6K4FP00fjnfob1UC+zz9vmyTvWk -----END CERTIFICATE-----Generated at Wed Nov 5 05:40:54 2025 by rpki-client