$ rpki-client -vvf rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft File: rSHioIh9gBBYg2nxR4WWAoR3zb4.mft (raw, json) Hash identifier: Y9FMd3nqC4XiuZK9hQfoJYine/LAD0pOXbD8Hz7kjFs= Subject key identifier: C3:5C:AB:F5:FF:6B:4A:7C:2A:82:56:2C:27:35:0F:E9:6A:69:E0:80 Authority key identifier: AD:21:E2:A0:88:7D:80:10:58:83:69:F1:47:85:96:02:84:77:CD:BE Certificate issuer: /CN=A913344F/serialNumber=AD21E2A0887D8010588369F1478596028477CDBE Certificate serial: 1112 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHioIh9gBBYg2nxR4WWAoR3zb4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft Manifest number: 110A Signing time: Tue 04 Nov 2025 17:21:42 +0000 Manifest this update: Tue 04 Nov 2025 17:21:41 +0000 Manifest next update: Tue 11 Nov 2025 17:21:41 +0000 Files and hashes: 1: rSHioIh9gBBYg2nxR4WWAoR3zb4.crl (hash: KTTIIsEDI99AeLmOXyYlut0/bF7UUQEiftwQQ5khQbI=) 2: 2CDBC1B0251111E997B74770C4F9AE02.roa (hash: CkHze899oLtDE8NmW64bq/+8jNoI8+T8tB+dRDVhSSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.crl rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHioIh9gBBYg2nxR4WWAoR3zb4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:21:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4370 (0x1112) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913344F, serialNumber=AD21E2A0887D8010588369F1478596028477CDBE Validity Not Before: Nov 4 17:21:41 2025 GMT Not After : Nov 11 17:21:41 2025 GMT Subject: CN=690a3625-0c9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7b:f5:c0:8a:d8:53:83:90:99:d6:15:45:57: ad:f1:fd:46:61:4f:65:51:32:91:a3:9e:76:a9:11: b1:95:9e:62:16:ed:02:73:b2:0a:b8:8d:bc:25:94: 6f:35:16:8f:d5:39:f0:69:76:64:26:b4:d7:07:c4: 22:33:fc:6b:b4:ac:49:d5:d0:92:1d:45:74:02:6d: 60:3a:35:2b:b6:c7:15:27:28:c8:84:b7:e4:62:8b: 21:52:fe:27:70:92:ad:29:87:e4:88:7c:8b:92:b8: 5c:cb:8c:c1:fa:55:25:30:e5:e7:90:ba:b2:5f:66: b5:36:bf:39:52:97:e5:48:3c:86:c8:0d:b9:1a:1b: 41:ad:48:0a:b4:0b:92:30:51:4c:38:82:6f:e5:d6: a8:1a:f4:9f:72:11:38:4b:50:60:d1:d0:ac:ac:b1: 57:0b:0e:dc:34:5a:62:30:6b:9b:da:c6:c6:42:6d: d8:1d:4c:48:44:19:ef:98:4f:52:57:b4:f3:49:c5: a8:0d:56:3c:ac:42:f5:10:29:5b:d8:93:9b:47:8b: 81:4a:3d:7e:22:6a:49:e5:6f:46:91:e1:fc:d1:cf: 64:eb:05:67:d5:ed:6f:d9:58:29:6a:4b:4f:77:78: c1:c0:e4:ac:8a:64:c5:ab:cc:67:15:f2:69:4a:14: ef:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:5C:AB:F5:FF:6B:4A:7C:2A:82:56:2C:27:35:0F:E9:6A:69:E0:80 X509v3 Authority Key Identifier: keyid:AD:21:E2:A0:88:7D:80:10:58:83:69:F1:47:85:96:02:84:77:CD:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHioIh9gBBYg2nxR4WWAoR3zb4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:a0:19:9a:ab:0d:ef:c5:6b:3d:e2:c0:db:9f:a4:d8:36:56: 52:c6:3d:56:f6:63:92:a9:71:f4:6a:ba:92:08:cb:1f:c7:e0: 0f:c5:51:56:7d:80:d0:dc:76:67:b1:7d:77:08:ba:c2:c9:e2: 29:36:0a:79:ad:09:b9:d7:a1:8c:ec:2f:d3:29:eb:e0:be:ea: a4:44:0f:2f:30:8f:96:45:26:dd:e1:56:ba:5a:31:36:89:ca: 74:d6:87:5d:a2:fb:a6:c6:2b:50:b8:9b:af:3e:df:61:26:50: 1a:70:14:7f:cd:67:5a:58:bf:6a:37:13:d3:03:1b:32:ab:28: ea:ad:5e:17:56:a5:1f:21:83:cb:be:ef:e3:d0:b8:5c:c7:a8: 68:2a:8c:7c:0e:45:8b:f4:f5:08:ef:ee:ac:14:fe:fb:eb:c1: f7:4c:3a:fe:cb:9a:a0:a6:0e:5c:a6:65:49:ad:ab:a2:25:e8: 29:f6:f6:52:f0:5d:13:a0:82:05:3a:97:60:40:f0:35:75:6a: e8:a2:cf:fc:8d:99:50:a4:d4:08:51:77:e3:4d:1b:23:19:cf: 16:eb:de:c1:8b:ba:0e:52:9f:37:85:7f:91:75:b3:54:67:81: c9:0a:8d:f4:52:d7:41:02:84:17:9a:93:ef:c3:01:6f:50:c0: b5:33:f9:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICERIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM0NEYxMTAvBgNVBAUTKEFEMjFFMkEwODg3RDgwMTA1ODgzNjlGMTQ3ODU5NjAy ODQ3N0NEQkUwHhcNMjUxMTA0MTcyMTQxWhcNMjUxMTExMTcyMTQxWjAYMRYwFAYD VQQDEw02OTBhMzYyNS0wYzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsnv1wIrYU4OQmdYVRVet8f1GYU9lUTKRo552qRGxlZ5iFu0Cc7IKuI28JZRv NRaP1TnwaXZkJrTXB8QiM/xrtKxJ1dCSHUV0Am1gOjUrtscVJyjIhLfkYoshUv4n cJKtKYfkiHyLkrhcy4zB+lUlMOXnkLqyX2a1Nr85UpflSDyGyA25GhtBrUgKtAuS MFFMOIJv5daoGvSfchE4S1Bg0dCsrLFXCw7cNFpiMGub2sbGQm3YHUxIRBnvmE9S V7TzScWoDVY8rEL1EClb2JObR4uBSj1+ImpJ5W9GkeH80c9k6wVn1e1v2VgpaktP d3jBwOSsimTFq8xnFfJpShTv7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMNcq/X/ a0p8KoJWLCc1D+lqaeCAMB8GA1UdIwQYMBaAFK0h4qCIfYAQWINp8UeFlgKEd82+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzQ0Ri85NEZGQkFBMDI1 MEYxMUU5OTBEREUzNkNDNEY5QUUwMi9yU0hpb0loOWdCQllnMm54UjRXV0FvUjN6 YjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JTSGlvSWg5Z0JCWWcybnhSNFdXQW9SM3piNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MzQ0Ri85NEZGQkFBMDI1MEYxMUU5OTBEREUzNkNDNEY5QUUwMi9yU0hpb0loOWdC QllnMm54UjRXV0FvUjN6YjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANoBmaqw3vxWs94sDbn6TYNlZSxj1W9mOSqXH0arqSCMsfx+APxVFW fYDQ3HZnsX13CLrCyeIpNgp5rQm516GM7C/TKevgvuqkRA8vMI+WRSbd4Va6WjE2 icp01oddovumxitQuJuvPt9hJlAacBR/zWdaWL9qNxPTAxsyqyjqrV4XVqUfIYPL vu/j0Lhcx6hoKox8DkWL9PUI7+6sFP7768H3TDr+y5qgpg5cpmVJrauiJegp9vZS 8F0ToIIFOpdgQPA1dWroos/8jZlQpNQIUXfjTRsjGc8W697Bi7oOUp83hX+RdbNU Z4HJCo30UtdBAoQXmpPvwwFvUMC1M/nE -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:21 2025 by rpki-client