$ rpki-client -vvf rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft File: mgZOprZttN4gyTzAQbhaFwbIBnI.mft (raw, json) Hash identifier: az+HQsdeVEZU+GbjRPJ+fg+22RRUlBrFDLVPG+QPe/M= Subject key identifier: F0:40:F1:49:98:BC:02:2D:15:AE:1C:7A:C8:24:60:25:68:4E:93:84 Authority key identifier: 9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 Certificate issuer: /CN=A913A5BD/serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Certificate serial: 02A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft Manifest number: 02A2 Signing time: Wed 05 Nov 2025 01:37:39 +0000 Manifest this update: Wed 05 Nov 2025 01:37:39 +0000 Manifest next update: Wed 12 Nov 2025 01:37:39 +0000 Files and hashes: 1: mgZOprZttN4gyTzAQbhaFwbIBnI.crl (hash: Jh0vDUTiWhE1QeSpWBpg7dQkhNtwlMbPqiJrPFTioHQ=) 2: C6B3DBFE1CF911EDBAE62F45C4F9AE02.roa (hash: omp1fXUs+vDBv/MaKIuGTrmCJ5TEGYnfoKG3I8GKsAA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:37:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 679 (0x2a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A5BD, serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Validity Not Before: Nov 5 01:37:39 2025 GMT Not After : Nov 12 01:37:39 2025 GMT Subject: CN=690aaa63-1fec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:83:a1:e2:37:9b:df:18:cd:da:19:c7:9d:b1: 0a:ec:3c:f2:5c:d6:2b:05:e8:2c:5b:78:aa:30:3d: 1c:29:ff:5c:48:f3:81:1e:93:df:a6:ec:88:57:6e: f4:83:62:a9:1f:3e:48:41:65:34:47:79:66:60:09: 1c:ea:6e:49:be:b4:8d:04:00:30:54:74:28:62:f0: 2d:db:20:86:b2:27:e6:96:b9:8b:36:ab:ac:f2:cb: 6e:56:81:14:c8:48:4b:a5:bb:65:6f:f6:3f:0b:8a: 9d:dd:4d:2e:c3:d5:a2:e5:db:19:b3:73:cf:88:93: ea:73:04:65:87:54:44:5e:66:b2:12:23:44:06:66: e4:c6:14:5e:3e:4c:86:77:55:97:10:49:bb:5f:d7: 83:fe:55:26:61:97:71:e5:01:f5:1b:8e:25:98:db: d4:37:76:98:05:38:96:b4:e5:e9:ee:a4:b0:b6:cb: b1:d0:c8:4b:4f:23:98:93:6e:b3:6e:48:9f:b9:34: 26:e8:0a:4a:ff:52:7b:8f:f5:6a:6f:b3:e3:a3:e3: a1:68:73:f4:24:1e:a5:0a:6f:ef:2c:c9:43:18:cf: c9:e4:32:b7:10:a3:80:3f:10:c5:d2:b0:dd:d6:5a: a1:5e:e4:6e:69:a1:2b:4a:32:51:2c:9f:fa:ce:a2: 4f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:40:F1:49:98:BC:02:2D:15:AE:1C:7A:C8:24:60:25:68:4E:93:84 X509v3 Authority Key Identifier: keyid:9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:9c:22:fb:b6:0f:64:43:4a:0c:81:54:da:e6:a2:eb:70:da: 91:19:95:ac:21:64:72:4a:27:9a:e0:28:9b:42:b3:b1:de:22: de:be:2d:cf:be:57:29:2b:30:87:86:01:2b:bf:0c:65:fe:d3: a8:74:f9:fa:78:4b:eb:5f:fe:8a:d4:00:46:ea:48:d4:d0:bf: 47:2c:ae:f6:d3:f5:f1:f3:c4:c5:b2:11:9c:be:ed:d9:d0:a6: 07:a2:92:70:85:06:2e:c7:a6:86:49:ff:d9:45:02:9d:aa:6f: ef:10:19:3c:1a:86:6b:39:89:e3:bb:ad:43:39:84:2c:65:cb: e6:c2:0e:fc:51:89:47:29:d0:04:90:a5:c1:ef:0b:e3:99:fd: 39:34:f4:77:db:75:f0:3c:0c:f4:a1:16:14:c2:7d:9a:69:fe: d6:9a:21:fa:8a:35:f6:a5:11:d9:4f:5a:0e:54:bf:67:d9:bc: 1f:b3:c6:19:47:48:d8:5c:b6:3b:33:6d:26:18:ed:b1:ee:93: 4f:90:a3:7e:28:37:1e:48:84:87:8b:e0:f8:f3:38:cd:67:49: 39:2b:b3:2e:28:5d:14:ca:f3:33:0a:17:f1:9c:7a:a8:27:31: 8e:19:58:46:d3:44:79:c3:5f:dc:af:69:a8:3c:22:ed:2e:e1: 64:07:23:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E1QkQxMTAvBgNVBAUTKDlBMDY0RUE2QjY2REI0REUyMEM5M0NDMDQxQjg1QTE3 MDZDODA2NzIwHhcNMjUxMTA1MDEzNzM5WhcNMjUxMTEyMDEzNzM5WjAYMRYwFAYD VQQDEw02OTBhYWE2My0xZmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlYOh4jeb3xjN2hnHnbEK7DzyXNYrBegsW3iqMD0cKf9cSPOBHpPfpuyIV270 g2KpHz5IQWU0R3lmYAkc6m5JvrSNBAAwVHQoYvAt2yCGsifmlrmLNqus8stuVoEU yEhLpbtlb/Y/C4qd3U0uw9Wi5dsZs3PPiJPqcwRlh1REXmayEiNEBmbkxhRePkyG d1WXEEm7X9eD/lUmYZdx5QH1G44lmNvUN3aYBTiWtOXp7qSwtsux0MhLTyOYk26z bkifuTQm6ApK/1J7j/Vqb7Pjo+OhaHP0JB6lCm/vLMlDGM/J5DK3EKOAPxDF0rDd 1lqhXuRuaaErSjJRLJ/6zqJPeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBA8UmY vAItFa4cesgkYCVoTpOEMB8GA1UdIwQYMBaAFJoGTqa2bbTeIMk8wEG4WhcGyAZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTVCRC81NEVFRjUxNDFD RjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRONGd5VHpBUWJoYUZ3YklC bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21nWk9wclp0dE40Z3lUekFRYmhhRndiSUJuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTVCRC81NEVFRjUxNDFDRjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRO NGd5VHpBUWJoYUZ3YklCbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDXnCL7tg9kQ0oMgVTa5qLrcNqRGZWsIWRySiea4CibQrOx3iLevi3P vlcpKzCHhgErvwxl/tOodPn6eEvrX/6K1ABG6kjU0L9HLK720/Xx88TFshGcvu3Z 0KYHopJwhQYux6aGSf/ZRQKdqm/vEBk8GoZrOYnju61DOYQsZcvmwg78UYlHKdAE kKXB7wvjmf05NPR323XwPAz0oRYUwn2aaf7WmiH6ijX2pRHZT1oOVL9n2bwfs8YZ R0jYXLY7M20mGO2x7pNPkKN+KDceSISHi+D48zjNZ0k5K7MuKF0UyvMzChfxnHqo JzGOGVhG00R5w1/cr2moPCLtLuFkByMM -----END CERTIFICATE-----Generated at Wed Nov 5 05:26:39 2025 by rpki-client