$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft File: rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft (raw, json) Hash identifier: C83frCsJUQxHBc0CWfQIOqv2NCrbqgpoegql2G99fbM= Subject key identifier: D0:05:01:3D:BA:EB:37:07:76:E5:C8:83:94:F4:44:93:8F:ED:85:DD Authority key identifier: AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD Certificate issuer: /CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Certificate serial: 0804 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft Manifest number: 07F9 Signing time: Sun 02 Nov 2025 20:58:31 +0000 Manifest this update: Sun 02 Nov 2025 20:58:31 +0000 Manifest next update: Sun 09 Nov 2025 20:58:31 +0000 Files and hashes: 1: rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl (hash: 8G6CPIvUrQx6El35lN8BoljWTHBEMQSB+hnIH8QpNvk=) 2: 38502DA2029A11EB85BD7B84C4F9AE02.roa (hash: 3OsuoPomkN3KwD+aF1zCoEkkbIN7dOFAl/woMg+7fcw=) 3: CEA093C66CA311ED9DD6425CC4F9AE02.roa (hash: 3rvQwF7VOidxONOxWbJzlS69h1FDkR177X5kmaAbyhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:58:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2052 (0x804) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFBA, serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Validity Not Before: Nov 2 20:58:31 2025 GMT Not After : Nov 9 20:58:31 2025 GMT Subject: CN=6907c5f7-ceaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b4:c0:ad:1e:04:8b:a7:8b:7b:ec:e2:02:3d: 0a:cc:28:be:af:7f:12:ef:4b:62:b1:b2:16:ed:1f: d9:5f:67:8f:f3:4d:5e:d9:e0:2a:76:ff:81:e5:54: 40:92:31:ca:76:db:a1:eb:5b:e3:72:53:6b:72:e1: d5:ef:14:bb:f6:cf:a4:f0:15:b1:a3:43:38:5a:1a: 21:64:94:05:03:b2:32:9e:c7:ce:79:f6:95:7a:d1: a5:b1:30:ce:92:24:b8:b0:79:e9:90:4e:2e:03:ec: 06:a1:16:b9:0d:b2:42:9a:25:4e:9a:2d:0a:0e:84: a3:b5:75:c3:4b:7a:a4:69:69:b3:c8:6b:59:56:b7: 41:a5:92:b2:27:d9:f8:7b:45:b7:59:3b:e2:28:47: 42:c1:a1:ba:4b:e6:b3:94:2c:39:a0:23:85:0c:55: c0:e1:14:85:c6:00:ae:55:e7:1e:b2:4c:86:16:00: 14:75:40:e0:12:bf:0f:87:d0:19:05:66:ed:bc:01: ae:45:6f:16:3a:51:8e:a1:bd:b5:bb:3d:fd:3d:d1: 3b:2b:fb:a5:be:0d:df:30:25:89:07:cf:5c:85:56: e3:ff:fe:db:bf:f2:d1:49:5f:5b:7c:5d:fa:b8:ec: f0:b8:45:98:02:68:2e:48:16:9e:30:07:d6:b4:c8: c8:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:05:01:3D:BA:EB:37:07:76:E5:C8:83:94:F4:44:93:8F:ED:85:DD X509v3 Authority Key Identifier: keyid:AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:74:21:66:61:93:fa:d8:a7:87:d5:00:a8:a7:e9:61:cd:d4: d6:ff:da:25:fc:97:d2:32:73:31:82:43:8c:0a:25:86:26:17: d2:ec:09:25:7d:de:98:a0:75:9c:8e:31:03:95:5c:bc:37:bf: 25:bf:fb:c5:90:28:fe:52:65:a8:b3:30:ef:02:44:95:70:d4: 4f:b1:de:14:a8:ca:e0:1d:13:26:1b:fa:a5:59:cd:ce:a4:2e: 57:17:7f:a9:61:bc:50:59:61:f4:51:e4:f3:2b:28:31:e6:57: 0b:f3:dd:a2:d0:f5:42:9c:1d:bf:5d:f2:f5:f1:e4:f2:f2:3f: 8a:6d:3d:c7:d1:c0:ff:78:7f:76:c9:2a:6d:0d:c9:63:89:97: e2:6f:c3:98:e3:2a:fa:60:cc:0a:4a:e0:b1:84:47:52:ba:d0: ed:e2:2b:01:22:27:a4:90:37:f6:2a:cf:1b:18:3c:d5:09:95: f2:b5:d2:c3:64:80:b8:e2:18:c0:cd:cf:21:b7:81:5e:99:2f: d9:1d:b0:01:be:d7:e7:d9:0b:22:80:42:73:07:4c:e1:f6:b9: 44:2c:44:ed:f7:3c:65:60:c7:64:e4:42:6a:6b:03:37:b0:88: 74:ec:c3:b7:ea:99:1e:d2:3d:9a:ad:ae:a1:b9:c5:09:28:2f: ac:79:4f:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGQkExMTAvBgNVBAUTKEFFNEUzMENDMEQwNTAxQTVBRTY2NEFEQjE1OTA1M0FD RUNGMEFDRkQwHhcNMjUxMTAyMjA1ODMxWhcNMjUxMTA5MjA1ODMxWjAYMRYwFAYD VQQDEw02OTA3YzVmNy1jZWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuLTArR4Ei6eLe+ziAj0KzCi+r38S70tisbIW7R/ZX2eP801e2eAqdv+B5VRA kjHKdtuh61vjclNrcuHV7xS79s+k8BWxo0M4WhohZJQFA7IynsfOefaVetGlsTDO kiS4sHnpkE4uA+wGoRa5DbJCmiVOmi0KDoSjtXXDS3qkaWmzyGtZVrdBpZKyJ9n4 e0W3WTviKEdCwaG6S+azlCw5oCOFDFXA4RSFxgCuVeceskyGFgAUdUDgEr8Ph9AZ BWbtvAGuRW8WOlGOob21uz39PdE7K/ulvg3fMCWJB89chVbj//7bv/LRSV9bfF36 uOzwuEWYAmguSBaeMAfWtMjIowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNAFAT26 6zcHduXIg5T0RJOP7YXdMB8GA1UdIwQYMBaAFK5OMMwNBQGlrmZK2xWQU6zs8Kz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZCQS9EQjlDRTY3ODAy OTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFhV3Vaa3JiRlpCVHJPendy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JrNHd6QTBGQWFXdVprcmJGWkJUck96d3JQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REZCQS9EQjlDRTY3ODAyOTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFh V3Vaa3JiRlpCVHJPendyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCadCFmYZP62KeH1QCop+lhzdTW/9ol/JfSMnMxgkOMCiWGJhfS7Akl fd6YoHWcjjEDlVy8N78lv/vFkCj+UmWoszDvAkSVcNRPsd4UqMrgHRMmG/qlWc3O pC5XF3+pYbxQWWH0UeTzKygx5lcL892i0PVCnB2/XfL18eTy8j+KbT3H0cD/eH92 ySptDcljiZfib8OY4yr6YMwKSuCxhEdSutDt4isBIiekkDf2Ks8bGDzVCZXytdLD ZIC44hjAzc8ht4FemS/ZHbABvtfn2QsigEJzB0zh9rlELETt9zxlYMdk5EJqawM3 sIh07MO36pke0j2ara6hucUJKC+seU/J -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:20 2025 by rpki-client