$ rpki-client -vvf rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft File: EMpiwqdJv5H1YirewPGWGEk8u6k.mft (raw, json) Hash identifier: ZZOThSsowx6DkR71EV86AJj4xYjDeOTmbn4A+TUn/48= Subject key identifier: E0:F3:9F:1E:8A:F9:53:C5:E7:37:8E:02:15:BE:7F:99:27:DD:FD:BF Authority key identifier: 10:CA:62:C2:A7:49:BF:91:F5:62:2A:DE:C0:F1:96:18:49:3C:BB:A9 Certificate issuer: /CN=A91306B2/serialNumber=10CA62C2A749BF91F5622ADEC0F19618493CBBA9 Certificate serial: 023E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMpiwqdJv5H1YirewPGWGEk8u6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft Manifest number: 0239 Signing time: Wed 05 Nov 2025 01:55:42 +0000 Manifest this update: Wed 05 Nov 2025 01:55:42 +0000 Manifest next update: Wed 12 Nov 2025 01:55:42 +0000 Files and hashes: 1: EMpiwqdJv5H1YirewPGWGEk8u6k.crl (hash: i3F784lhmS6lhcDacdTKXsI1bAHhKI0pIr+AOcyIvCw=) 2: 695CA6D414BF11EEB8B95B7FC4F9AE02.roa (hash: y8u3ZZNWwXMV6EsCoReGtHsNbMX1mb+g+HfYKyQ+Y/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.crl rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMpiwqdJv5H1YirewPGWGEk8u6k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91306B2, serialNumber=10CA62C2A749BF91F5622ADEC0F19618493CBBA9 Validity Not Before: Nov 5 01:55:42 2025 GMT Not After : Nov 12 01:55:42 2025 GMT Subject: CN=690aae9e-82d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:76:9a:50:d6:77:5b:98:40:b5:16:87:0a:e8: fc:25:b1:f4:92:92:b3:6d:9d:32:1d:69:5c:21:d9: 79:d3:d5:e7:12:ec:9c:00:0c:ca:4f:6e:66:e3:08: 4a:90:93:df:f9:e3:4d:0f:0b:61:c3:e2:d0:3c:ea: 1a:6e:5a:b0:38:25:24:54:a3:99:00:0d:f3:0c:1f: 98:3d:68:24:be:d0:04:21:bb:11:42:e4:de:aa:7b: 62:06:87:9f:72:0f:62:c4:0d:85:ba:ba:b7:84:31: ac:da:e4:dc:ae:bf:f0:c9:9a:5e:42:f3:05:ca:36: 0b:3e:02:38:60:59:95:a6:05:df:bf:89:c5:9f:b7: 47:5f:83:ed:0b:f0:7a:08:b5:ba:d8:f7:68:f7:e8: b3:b2:55:24:96:87:e2:ac:98:29:65:1e:1b:3c:35: 92:9d:66:dc:cb:23:f3:6f:b0:b3:dc:72:a0:81:77: 41:fe:fc:d2:5d:ab:16:6f:5d:0a:4d:6a:52:67:81: ee:0f:3d:e9:2f:13:fa:07:2c:10:81:9d:52:0e:56: d5:69:83:ec:d9:0e:0a:5c:74:50:db:32:51:e6:52: 27:a6:bd:93:14:00:a6:bf:a1:0c:dd:c9:aa:73:eb: ce:8b:0f:d2:ad:21:70:e4:ed:77:9f:65:f3:e5:8b: 38:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:F3:9F:1E:8A:F9:53:C5:E7:37:8E:02:15:BE:7F:99:27:DD:FD:BF X509v3 Authority Key Identifier: keyid:10:CA:62:C2:A7:49:BF:91:F5:62:2A:DE:C0:F1:96:18:49:3C:BB:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMpiwqdJv5H1YirewPGWGEk8u6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91306B2/321FDD3E4D8311ED87FB1E6FC4F9AE02/EMpiwqdJv5H1YirewPGWGEk8u6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:cc:50:50:b1:35:ee:e0:f4:66:5f:f0:1e:85:67:51:02:10: 4a:b6:5a:25:02:cf:a4:cd:ad:15:1c:a6:08:20:3a:bd:75:99: c2:a7:51:3e:62:ff:47:71:b7:70:fc:dd:6f:bc:2d:04:dd:98: 4f:d0:a1:0b:3c:11:71:ab:6a:8f:6a:08:63:21:e6:10:95:12: 2e:b1:c5:fa:20:4d:9f:76:6f:5b:9e:56:32:19:df:bf:b0:0d: 76:47:3a:d5:fe:f5:46:8b:9f:f3:23:cb:c6:82:26:4e:73:89: d9:a0:44:2d:19:dc:aa:d1:8f:70:56:19:38:86:16:9e:96:e4: fd:76:22:f0:3b:51:af:19:b6:f9:5b:3b:0f:06:5d:96:be:db: fb:7e:74:4c:0f:24:07:9b:4a:9d:a9:5c:60:05:0f:69:cf:1e: 5c:4b:f2:97:ee:66:e6:40:7e:33:39:7c:8e:15:68:fd:b1:87: b1:c0:95:2a:56:15:ef:4a:f1:d8:d4:49:16:7a:80:b2:d5:e8: 4f:e2:6f:49:19:93:d6:fa:24:bb:7d:64:98:2d:11:fd:90:ec: aa:80:57:88:ad:35:1d:cb:fa:a9:44:fd:d0:68:a8:2c:c7:03: 6c:d3:5d:c8:3f:ea:d5:c1:08:94:89:b6:c4:11:47:50:f5:0a: ad:97:cd:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA2QjIxMTAvBgNVBAUTKDEwQ0E2MkMyQTc0OUJGOTFGNTYyMkFERUMwRjE5NjE4 NDkzQ0JCQTkwHhcNMjUxMTA1MDE1NTQyWhcNMjUxMTEyMDE1NTQyWjAYMRYwFAYD VQQDEw02OTBhYWU5ZS04MmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7HaaUNZ3W5hAtRaHCuj8JbH0kpKzbZ0yHWlcIdl509XnEuycAAzKT25m4whK kJPf+eNNDwthw+LQPOoablqwOCUkVKOZAA3zDB+YPWgkvtAEIbsRQuTeqntiBoef cg9ixA2Furq3hDGs2uTcrr/wyZpeQvMFyjYLPgI4YFmVpgXfv4nFn7dHX4PtC/B6 CLW62Pdo9+izslUklofirJgpZR4bPDWSnWbcyyPzb7Cz3HKggXdB/vzSXasWb10K TWpSZ4HuDz3pLxP6BywQgZ1SDlbVaYPs2Q4KXHRQ2zJR5lInpr2TFACmv6EM3cmq c+vOiw/SrSFw5O13n2Xz5Ys4ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFODznx6K +VPF5zeOAhW+f5kn3f2/MB8GA1UdIwQYMBaAFBDKYsKnSb+R9WIq3sDxlhhJPLup MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDZCMi8zMjFGREQzRTRE ODMxMUVEODdGQjFFNkZDNEY5QUUwMi9FTXBpd3FkSnY1SDFZaXJld1BHV0dFazh1 NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VNcGl3cWRKdjVIMVlpcmV3UEdXR0VrOHU2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDZCMi8zMjFGREQzRTREODMxMUVEODdGQjFFNkZDNEY5QUUwMi9FTXBpd3FkSnY1 SDFZaXJld1BHV0dFazh1NmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByzFBQsTXu4PRmX/AehWdRAhBKtlolAs+kza0VHKYIIDq9dZnCp1E+ Yv9Hcbdw/N1vvC0E3ZhP0KELPBFxq2qPaghjIeYQlRIuscX6IE2fdm9bnlYyGd+/ sA12RzrV/vVGi5/zI8vGgiZOc4nZoEQtGdyq0Y9wVhk4hhaeluT9diLwO1GvGbb5 WzsPBl2Wvtv7fnRMDyQHm0qdqVxgBQ9pzx5cS/KX7mbmQH4zOXyOFWj9sYexwJUq VhXvSvHY1EkWeoCy1ehP4m9JGZPW+iS7fWSYLRH9kOyqgFeIrTUdy/qpRP3QaKgs xwNs013IP+rVwQiUibbEEUdQ9Qqtl82h -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:14 2025 by rpki-client