$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft File: c0XTOFGViQaITYcWQKS-0shG0U4.mft (raw, json) Hash identifier: vlPA6nsjjVSFI3vj9WvsjX5GJvvyA5G9uhQPq6ka1/0= Subject key identifier: EE:22:99:F6:AA:F1:31:7B:D0:BA:F9:D3:48:36:7B:FE:D7:B6:97:3E Authority key identifier: 73:45:D3:38:51:95:89:06:88:4D:87:16:40:A4:BE:D2:C8:46:D1:4E Certificate issuer: /CN=A912F3B6/serialNumber=7345D33851958906884D871640A4BED2C846D14E Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft Manifest number: EF Signing time: Mon 03 Nov 2025 05:16:53 +0000 Manifest this update: Mon 03 Nov 2025 05:16:53 +0000 Manifest next update: Mon 10 Nov 2025 05:16:53 +0000 Files and hashes: 1: c0XTOFGViQaITYcWQKS-0shG0U4.crl (hash: jUUIh3j5+lYKNkZiJ0Wve0n5tNWdkbkRFi45ZRKJWy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.crl rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:16:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6, serialNumber=7345D33851958906884D871640A4BED2C846D14E Validity Not Before: Nov 3 05:16:53 2025 GMT Not After : Nov 10 05:16:53 2025 GMT Subject: CN=69083ac5-1a0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b4:7b:ce:2a:1a:74:bd:92:84:4f:3f:21:cd: 68:1e:95:87:d6:53:b4:25:81:91:e6:08:9b:67:7c: 61:03:69:14:6d:07:16:7d:8b:12:52:fc:7b:68:b9: 4d:7d:c6:4d:94:c2:88:be:f1:c6:73:7c:44:49:84: cc:b0:0d:f7:64:17:68:5c:28:9a:89:b3:17:c1:32: 71:f1:b2:b8:ba:ad:00:44:bf:9d:eb:7d:b1:4b:2b: 44:b4:d6:ba:e1:f3:fd:a0:f9:f0:e5:66:63:99:47: a8:a1:bf:77:1a:4f:60:ae:d7:2a:69:2d:f1:40:ef: b2:0d:da:78:08:c6:f0:6c:91:09:df:58:e2:9e:43: 48:57:b1:28:64:74:80:68:56:f8:93:b4:64:0b:ad: 75:b2:be:94:79:15:9f:d9:b1:df:46:2b:50:46:fe: 05:ea:81:18:14:5c:db:c3:eb:be:28:9b:dc:4f:31: e2:d1:38:d3:da:99:26:60:82:85:a8:c8:80:b4:6d: 17:dd:67:e4:8c:2a:b7:4a:94:57:40:97:78:24:66: dd:88:8f:ef:fc:99:73:c5:0a:13:68:f4:9c:81:74: 36:39:8d:30:13:11:7d:d8:c7:af:41:04:b3:46:94: 68:7e:60:b9:f7:df:e8:8b:fe:0d:0c:53:d5:c7:79: 61:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:22:99:F6:AA:F1:31:7B:D0:BA:F9:D3:48:36:7B:FE:D7:B6:97:3E X509v3 Authority Key Identifier: keyid:73:45:D3:38:51:95:89:06:88:4D:87:16:40:A4:BE:D2:C8:46:D1:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:bc:59:e3:72:ec:6e:cf:cc:07:86:6f:1b:4b:bb:02:9f:71: 27:f6:a5:d8:4c:f9:98:d0:36:d3:fe:0f:75:79:d4:3b:e2:32: 5f:97:f5:9c:c6:6e:c3:9a:6c:ed:fe:1c:5d:5c:05:b8:33:93: b8:ff:88:82:19:ae:53:4e:8a:ed:27:3b:2c:a1:fd:75:3f:96: 75:f1:8f:38:a9:f2:b4:e4:16:a0:f4:43:38:8a:ee:cc:45:16: 88:3d:ca:c7:58:f5:53:02:d0:26:16:33:35:af:16:4c:65:5c: d7:fd:ff:5c:aa:76:cf:1a:7c:77:ce:a2:ef:cc:b3:b7:2f:dd: a7:8b:b9:67:76:45:64:30:e0:6d:6c:5d:4b:c4:6e:66:ec:9f: e0:93:de:a7:83:0e:21:4a:36:6f:2e:4e:8e:78:6e:1d:44:67: a9:87:18:73:6e:6c:eb:41:ec:42:f5:a8:a5:6b:40:ab:71:ea: 44:99:de:62:8c:e4:fd:bd:c8:24:c7:cb:b4:08:a8:76:8e:fb: 58:5c:21:4b:73:0e:71:a3:71:42:e5:8c:64:98:28:4a:50:c8: 4a:5a:57:8d:dd:0f:34:ae:1a:b2:98:b2:36:0c:5f:6b:6b:fd: e7:2d:ee:b6:a2:d0:a1:46:18:3d:d0:98:53:e2:b6:0d:06:30: a4:31:8c:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzQjYxMTAvBgNVBAUTKDczNDVEMzM4NTE5NTg5MDY4ODREODcxNjQwQTRCRUQy Qzg0NkQxNEUwHhcNMjUxMTAzMDUxNjUzWhcNMjUxMTEwMDUxNjUzWjAYMRYwFAYD VQQDEw02OTA4M2FjNS0xYTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2LR7zioadL2ShE8/Ic1oHpWH1lO0JYGR5gibZ3xhA2kUbQcWfYsSUvx7aLlN fcZNlMKIvvHGc3xESYTMsA33ZBdoXCiaibMXwTJx8bK4uq0ARL+d632xSytEtNa6 4fP9oPnw5WZjmUeoob93Gk9grtcqaS3xQO+yDdp4CMbwbJEJ31jinkNIV7EoZHSA aFb4k7RkC611sr6UeRWf2bHfRitQRv4F6oEYFFzbw+u+KJvcTzHi0TjT2pkmYIKF qMiAtG0X3WfkjCq3SpRXQJd4JGbdiI/v/JlzxQoTaPScgXQ2OY0wExF92MevQQSz RpRofmC599/oi/4NDFPVx3lhfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO4imfaq 8TF70Lr500g2e/7Xtpc+MB8GA1UdIwQYMBaAFHNF0zhRlYkGiE2HFkCkvtLIRtFO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjNCNi81OUM0QUQ0QTQ4 QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9jMFhUT0ZHVmlRYUlUWWNXUUtTLTBzaEcw VTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2MwWFRPRkdWaVFhSVRZY1dRS1MtMHNoRzBVNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjNCNi81OUM0QUQ0QTQ4QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9jMFhUT0ZHVmlR YUlUWWNXUUtTLTBzaEcwVTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQvFnjcuxuz8wHhm8bS7sCn3En9qXYTPmY0DbT/g91edQ74jJfl/Wc xm7Dmmzt/hxdXAW4M5O4/4iCGa5TTortJzssof11P5Z18Y84qfK05Bag9EM4iu7M RRaIPcrHWPVTAtAmFjM1rxZMZVzX/f9cqnbPGnx3zqLvzLO3L92ni7lndkVkMOBt bF1LxG5m7J/gk96ngw4hSjZvLk6OeG4dRGephxhzbmzrQexC9aila0CrcepEmd5i jOT9vcgkx8u0CKh2jvtYXCFLcw5xo3FC5YxkmChKUMhKWleN3Q80rhqymLI2DF9r a/3nLe62otChRhg90JhT4rYNBjCkMYxj -----END CERTIFICATE-----Generated at Tue Nov 4 08:30:16 2025 by rpki-client