$ rpki-client -vvf rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.mft File: RCHzqdfkHW9Ht4b90-eojeQrB7k.mft (raw, json) Hash identifier: wS6CK4G/QITlEzUcPtT5/kRx0ILwbmzVuxgXOO4MzDU= Subject key identifier: E6:0D:6E:54:B5:84:B8:1B:03:32:14:C5:4D:7E:BE:3E:05:D3:DB:D5 Authority key identifier: 44:21:F3:A9:D7:E4:1D:6F:47:B7:86:FD:D3:E7:A8:8D:E4:2B:07:B9 Certificate issuer: /CN=A913442A/serialNumber=4421F3A9D7E41D6F47B786FDD3E7A88DE42B07B9 Certificate serial: 02FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RCHzqdfkHW9Ht4b90-eojeQrB7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.mft Manifest number: 02F8 Signing time: Wed 05 Nov 2025 01:18:36 +0000 Manifest this update: Wed 05 Nov 2025 01:18:35 +0000 Manifest next update: Wed 12 Nov 2025 01:18:35 +0000 Files and hashes: 1: RCHzqdfkHW9Ht4b90-eojeQrB7k.crl (hash: OLr6/03UaRYRjSWhhI7oxdKtLGg8O4XDpm74VEd0Zqk=) 2: 0F9DB8E0FC3D11ECAD619C35C4F9AE02.roa (hash: c4/EYmjgVUl4pjL+vaUj1o6O7r/FlcrHh8JpcWomXpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.crl rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RCHzqdfkHW9Ht4b90-eojeQrB7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:18:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 765 (0x2fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913442A, serialNumber=4421F3A9D7E41D6F47B786FDD3E7A88DE42B07B9 Validity Not Before: Nov 5 01:18:35 2025 GMT Not After : Nov 12 01:18:35 2025 GMT Subject: CN=690aa5ec-0863 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b6:d7:b0:b6:7d:ea:69:8d:fb:71:11:76:cf: 6c:91:97:10:c5:4f:3d:15:75:41:7d:3f:8e:bb:09: 8e:77:75:81:c1:33:9f:65:a1:1b:e8:1b:24:3f:d3: f2:2b:34:9f:62:c5:07:90:80:96:f4:a0:b0:a9:ea: 13:1e:30:4c:ab:f0:1a:5c:f5:9c:39:ce:25:a4:a8: 1a:e2:cf:bc:a6:76:2d:ed:bb:50:11:8a:a9:99:86: 26:32:22:84:8d:ff:44:66:ce:15:9f:2f:15:c2:5b: a4:40:b8:e2:29:09:38:68:41:45:f0:93:b0:d2:15: 7f:3f:50:a5:f8:1f:f4:71:33:61:ed:54:ca:5a:18: 71:63:39:f8:b7:94:1a:3b:f5:76:59:db:2a:e6:af: 83:96:9c:c3:15:63:94:8a:71:2b:a0:09:ba:8a:c5: 01:9a:84:ae:b6:2d:eb:cf:f8:73:0b:27:c0:92:a8: cc:a4:1f:85:99:44:aa:3b:0a:1b:a3:be:3c:97:3b: 16:bc:82:ef:3d:ef:4d:6d:f5:f9:14:64:7d:c8:ba: 74:fd:a7:e3:e3:4c:f2:b4:ca:24:f6:93:f9:d9:e7: 12:18:a0:ba:d3:b8:fa:ff:f3:79:72:62:8c:53:f4: 2e:bf:ec:a5:ba:e5:99:f4:a4:1a:cf:56:58:b4:1b: e2:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:0D:6E:54:B5:84:B8:1B:03:32:14:C5:4D:7E:BE:3E:05:D3:DB:D5 X509v3 Authority Key Identifier: keyid:44:21:F3:A9:D7:E4:1D:6F:47:B7:86:FD:D3:E7:A8:8D:E4:2B:07:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RCHzqdfkHW9Ht4b90-eojeQrB7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:4d:0e:42:34:86:58:91:3b:37:41:58:0a:61:42:3d:d7:13: e8:e0:10:2e:b4:e9:18:52:b8:a8:48:91:92:9d:24:f8:8e:f7: f2:cb:0c:74:9b:83:8d:4c:ce:6f:5c:a9:e8:93:f6:95:c2:5f: 21:40:30:74:11:fb:ca:1f:57:fe:c6:e9:c8:fb:1f:a4:be:1f: 87:0f:7f:ee:06:5b:10:65:8a:88:8f:78:cf:33:49:f0:26:00: ca:a2:44:a1:03:35:97:3e:8a:7d:52:ff:12:98:31:64:3a:2e: cd:d7:0e:6f:81:6e:e8:a6:cd:01:d1:4b:78:ec:8c:f1:a7:b5: de:7d:65:5e:32:7e:c9:3c:2e:bf:68:b9:ce:f3:34:33:26:6a: 25:32:6e:fe:d8:07:f1:bb:1d:fd:0f:1d:fa:65:8c:76:67:9f: cc:14:b4:c5:76:39:ea:4a:1c:a1:93:67:f3:60:d6:71:0e:63: 2b:9c:83:13:87:ad:04:38:61:9a:cc:61:e8:0c:1a:f1:01:8f: ed:49:52:6d:f3:bb:a8:a1:7b:2d:43:ca:75:50:37:b9:f2:a1: 0f:39:f1:e8:ea:1c:3f:3b:45:37:74:4f:ef:41:ab:81:87:33: bd:53:1b:1d:d8:af:fc:92:15:00:b0:89:22:aa:54:99:86:bd: 37:45:16:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ0MkExMTAvBgNVBAUTKDQ0MjFGM0E5RDdFNDFENkY0N0I3ODZGREQzRTdBODhE RTQyQjA3QjkwHhcNMjUxMTA1MDExODM1WhcNMjUxMTEyMDExODM1WjAYMRYwFAYD VQQDEw02OTBhYTVlYy0wODYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7bXsLZ96mmN+3ERds9skZcQxU89FXVBfT+OuwmOd3WBwTOfZaEb6BskP9Py KzSfYsUHkICW9KCwqeoTHjBMq/AaXPWcOc4lpKga4s+8pnYt7btQEYqpmYYmMiKE jf9EZs4Vny8VwlukQLjiKQk4aEFF8JOw0hV/P1Cl+B/0cTNh7VTKWhhxYzn4t5Qa O/V2Wdsq5q+DlpzDFWOUinEroAm6isUBmoSuti3rz/hzCyfAkqjMpB+FmUSqOwob o748lzsWvILvPe9NbfX5FGR9yLp0/afj40zytMok9pP52ecSGKC607j6//N5cmKM U/Quv+yluuWZ9KQaz1ZYtBviSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYNblS1 hLgbAzIUxU1+vj4F09vVMB8GA1UdIwQYMBaAFEQh86nX5B1vR7eG/dPnqI3kKwe5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDQyQS9BQjRFNTI0NEZD MzkxMUVDOTVDODEzODdDNEY5QUUwMi9SQ0h6cWRma0hXOUh0NGI5MC1lb2plUXJC N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JDSHpxZGZrSFc5SHQ0YjkwLWVvamVRckI3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDQyQS9BQjRFNTI0NEZDMzkxMUVDOTVDODEzODdDNEY5QUUwMi9SQ0h6cWRma0hX OUh0NGI5MC1lb2plUXJCN2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFTQ5CNIZYkTs3QVgKYUI91xPo4BAutOkYUrioSJGSnST4jvfyywx0 m4ONTM5vXKnok/aVwl8hQDB0EfvKH1f+xunI+x+kvh+HD3/uBlsQZYqIj3jPM0nw JgDKokShAzWXPop9Uv8SmDFkOi7N1w5vgW7ops0B0Ut47Izxp7XefWVeMn7JPC6/ aLnO8zQzJmolMm7+2Afxux39Dx36ZYx2Z5/MFLTFdjnqShyhk2fzYNZxDmMrnIMT h60EOGGazGHoDBrxAY/tSVJt87uooXstQ8p1UDe58qEPOfHo6hw/O0U3dE/vQauB hzO9Uxsd2K/8khUAsIkiqlSZhr03RRa8 -----END CERTIFICATE-----Generated at Wed Nov 5 10:27:56 2025 by rpki-client