$ rpki-client -vvf rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft File: loNUUNMhwefEjKDF3NK6bB0tSPE.mft (raw, json) Hash identifier: XEY48/edvzO09g8DzPRrIRMqEplXNcQ2+B0S5tr26qA= Subject key identifier: DF:42:F9:E0:E0:31:A9:1D:7E:AB:15:F0:2E:90:59:66:E6:26:86:D3 Authority key identifier: 96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 Certificate issuer: /CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft Manifest number: E8 Signing time: Wed 05 Nov 2025 05:32:09 +0000 Manifest this update: Wed 05 Nov 2025 05:32:08 +0000 Manifest next update: Wed 12 Nov 2025 05:32:08 +0000 Files and hashes: 1: loNUUNMhwefEjKDF3NK6bB0tSPE.crl (hash: SGi8XF3xaJ8N7ew6D7G3GNNbTZsCePA1wCzjNJdGb9I=) 2: 050079585AC911EF9DF4275AC4F9AE02.roa (hash: r3ab2hXEUx4DTxPcSBrvJTxlFoImKdTbWENPYxt4ZVo=) 3: 047C04705AC911EF9DF4275AC4F9AE02.roa (hash: gFJfC0bItrBd113l2fr+RXunsEK2SI34GEF/xaXg74s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DF25, serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Validity Not Before: Nov 5 05:32:08 2025 GMT Not After : Nov 12 05:32:08 2025 GMT Subject: CN=690ae159-db00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:91:43:8a:a5:66:a7:5c:73:b9:c4:e2:6f:c4: e3:fa:52:b5:1c:97:fc:60:a4:22:d5:4b:e5:87:99: 29:fc:cc:a8:4a:9b:58:c1:8e:a2:84:1e:a0:d8:b5: 34:99:21:09:36:ff:0b:cf:ec:c9:fc:95:6e:19:ce: 01:05:8c:e9:a3:a9:a5:36:83:3b:c7:9f:b2:12:5b: 95:4f:e0:0f:4c:a5:94:fa:77:cd:e9:b1:50:ec:d6: 18:f3:8d:94:ce:de:cc:f3:aa:e7:e6:5e:7c:26:24: 93:af:74:46:61:d7:7d:00:ed:2d:a4:eb:a6:2a:14: 59:5a:ae:99:5d:4e:d4:1e:5a:2c:c6:eb:d5:1e:b6: d3:b9:51:dd:16:ec:80:c0:06:d3:7d:08:2a:45:fa: fa:f1:a0:93:eb:a4:c7:9f:b8:cb:c1:ed:0d:89:69: 01:aa:66:6d:80:73:05:5e:41:99:95:6e:0e:87:91: 52:15:92:49:9f:72:a0:0a:32:73:2d:71:8b:38:3f: ca:a6:dc:fe:79:68:7f:f9:68:8c:e8:69:5e:76:6b: 3b:f1:2d:19:0e:fc:25:ae:e1:92:25:ed:2c:3b:58: e1:23:65:da:d0:5f:8d:93:6c:fb:2f:2f:b3:e3:22: 11:e9:c7:47:1f:25:4d:d4:ab:b3:26:0c:79:f4:37: 6e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:42:F9:E0:E0:31:A9:1D:7E:AB:15:F0:2E:90:59:66:E6:26:86:D3 X509v3 Authority Key Identifier: keyid:96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:f3:b4:17:59:ea:02:c4:d3:bd:05:cc:c0:b0:76:cc:2f:95: 8c:c6:a6:86:9b:ca:34:b0:53:fa:b3:a4:97:15:5c:62:87:de: 90:c2:ba:7e:7a:f5:13:0a:1d:1a:06:16:5c:e8:ff:c6:6d:7c: 24:05:1b:82:87:d8:21:b1:a0:ec:38:77:be:be:14:78:fc:e0: 82:bb:8e:a3:39:af:2b:e3:06:f0:7d:91:bd:c7:da:2e:a1:9e: 58:af:26:0b:5f:db:a8:4d:c2:6c:00:90:c3:91:50:9e:4f:f4: 66:ce:74:e4:2d:d8:65:39:41:0d:57:70:41:60:72:40:87:47: 36:cb:5c:6f:8c:93:7f:d4:e1:99:bf:58:89:24:5f:12:2b:c9: be:c0:dd:76:d9:8e:33:bb:79:5c:b9:43:39:46:92:43:66:c0: 09:df:0b:6f:95:59:1b:bc:2a:6a:a5:e2:d7:f8:11:d2:f7:c3: 10:12:92:99:b5:f7:2e:3e:67:47:cb:f9:3d:63:00:1c:bf:ba: 71:29:95:dd:7d:38:2b:53:59:52:68:c9:bd:ad:d3:53:96:b1: 9e:da:c1:5d:e7:89:aa:d2:ab:14:e6:dc:f3:d2:45:49:6b:14: 8f:46:29:29:e2:57:1c:53:3d:09:6b:08:06:f7:75:7b:10:ba: 9b:7b:ec:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGMjUxMTAvBgNVBAUTKDk2ODM1NDUwRDMyMUMxRTdDNDhDQTBDNURDRDJCQTZD MUQyRDQ4RjEwHhcNMjUxMTA1MDUzMjA4WhcNMjUxMTEyMDUzMjA4WjAYMRYwFAYD VQQDEw02OTBhZTE1OS1kYjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3pFDiqVmp1xzucTib8Tj+lK1HJf8YKQi1Uvlh5kp/MyoSptYwY6ihB6g2LU0 mSEJNv8Lz+zJ/JVuGc4BBYzpo6mlNoM7x5+yEluVT+APTKWU+nfN6bFQ7NYY842U zt7M86rn5l58JiSTr3RGYdd9AO0tpOumKhRZWq6ZXU7UHlosxuvVHrbTuVHdFuyA wAbTfQgqRfr68aCT66THn7jLwe0NiWkBqmZtgHMFXkGZlW4Oh5FSFZJJn3KgCjJz LXGLOD/Kptz+eWh/+WiM6Gledms78S0ZDvwlruGSJe0sO1jhI2Xa0F+Nk2z7Ly+z 4yIR6cdHHyVN1KuzJgx59DduAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9C+eDg MakdfqsV8C6QWWbmJobTMB8GA1UdIwQYMBaAFJaDVFDTIcHnxIygxdzSumwdLUjx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREYyNS83RjdCMURBQzVB QzcxMUVGOTlFQUZDNDNDNEY5QUUwMi9sb05VVU5NaHdlZkVqS0RGM05LNmJCMHRT UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvTlVVTk1od2VmRWpLREYzTks2YkIwdFNQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REYyNS83RjdCMURBQzVBQzcxMUVGOTlFQUZDNDNDNEY5QUUwMi9sb05VVU5NaHdl ZkVqS0RGM05LNmJCMHRTUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAH87QXWeoCxNO9BczAsHbML5WMxqaGm8o0sFP6s6SXFVxih96Qwrp+ evUTCh0aBhZc6P/GbXwkBRuCh9ghsaDsOHe+vhR4/OCCu46jOa8r4wbwfZG9x9ou oZ5YryYLX9uoTcJsAJDDkVCeT/RmznTkLdhlOUENV3BBYHJAh0c2y1xvjJN/1OGZ v1iJJF8SK8m+wN122Y4zu3lcuUM5RpJDZsAJ3wtvlVkbvCpqpeLX+BHS98MQEpKZ tfcuPmdHy/k9YwAcv7pxKZXdfTgrU1lSaMm9rdNTlrGe2sFd54mq0qsU5tzz0kVJ axSPRikp4lccUz0JawgG93V7ELqbe+zb -----END CERTIFICATE-----Generated at Wed Nov 5 09:40:17 2025 by rpki-client