$ rpki-client -vvf rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft File: CZJdtntKud9gBue9K8HY7cjMfhk.mft (raw, json) Hash identifier: 1nSVDEVtmm9UQ4Cs+QdVAbwnzLhn9llgeL82IgGYGTw= Subject key identifier: F6:95:21:FC:AB:04:D6:D2:03:2C:46:42:B2:16:FA:92:C3:A1:52:CB Authority key identifier: 09:92:5D:B6:7B:4A:B9:DF:60:06:E7:BD:2B:C1:D8:ED:C8:CC:7E:19 Certificate issuer: /CN=A913B7B2/serialNumber=09925DB67B4AB9DF6006E7BD2BC1D8EDC8CC7E19 Certificate serial: 0B6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft Manifest number: 0B5E Signing time: Sun 02 Nov 2025 19:06:07 +0000 Manifest this update: Sun 02 Nov 2025 19:06:07 +0000 Manifest next update: Sun 09 Nov 2025 19:06:07 +0000 Files and hashes: 1: CZJdtntKud9gBue9K8HY7cjMfhk.crl (hash: in+tv4Ae6H113KEKl/nrykxLUjM1/ui+N/wdhOKh1dQ=) 2: 6808E6322F1C11EDA3E29B09C4F9AE02.roa (hash: vqIiC5denoz8Yiz6UodWvD7t0BBX+gY3rEG+abpRC2o=) 3: 6932258C2F1C11EDA3E29B09C4F9AE02.roa (hash: lSOlJAUUKdf/oxORuEf9BSblv8TlMMz6ihd34X0wQsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.crl rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:06:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2927 (0xb6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B7B2, serialNumber=09925DB67B4AB9DF6006E7BD2BC1D8EDC8CC7E19 Validity Not Before: Nov 2 19:06:07 2025 GMT Not After : Nov 9 19:06:07 2025 GMT Subject: CN=6907ab9f-da04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:95:49:7b:26:06:3f:dc:76:7f:6d:c0:8c:aa: 16:ee:10:c7:d5:33:c2:50:9b:d7:b7:ca:6e:56:80: 5c:ad:95:9a:1c:59:b4:a5:1c:00:45:f0:d6:3c:3e: 1d:c7:5b:7b:4a:17:d5:5f:a7:28:96:5b:00:bf:58: 5c:e6:38:b8:c9:6b:00:f8:ab:3b:86:2c:25:27:7d: 5e:3f:8f:fb:b2:12:bc:76:48:9d:6c:dc:ca:a8:43: 47:92:83:3e:de:b8:8a:80:23:df:ca:61:cc:c5:0b: be:96:52:72:36:9a:6d:10:db:cd:7b:0e:09:07:bb: 13:af:17:2d:fd:00:32:cb:09:c2:f0:61:d0:d1:01: 75:6f:0f:19:3f:a2:d7:3d:68:be:09:1f:67:20:93: cd:1b:52:82:81:b5:e4:e8:56:aa:ea:8f:18:6d:b2: a2:9d:79:a0:28:b3:09:78:14:cd:e5:35:e0:44:b3: 6a:dc:04:97:ce:14:a3:fd:11:62:ac:2e:50:11:09: 34:d7:e7:25:89:ac:fd:c7:fe:f9:10:d9:5d:2f:8b: 6d:34:2f:be:9f:9d:00:d2:3a:00:dd:c2:24:bb:4b: 34:3a:69:7c:fd:d4:21:82:a5:7a:d3:d6:99:ca:75: ed:65:b5:e1:5e:81:ff:8c:62:b9:45:78:0e:fd:f2: 2e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:95:21:FC:AB:04:D6:D2:03:2C:46:42:B2:16:FA:92:C3:A1:52:CB X509v3 Authority Key Identifier: keyid:09:92:5D:B6:7B:4A:B9:DF:60:06:E7:BD:2B:C1:D8:ED:C8:CC:7E:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:f6:4e:bd:68:da:88:db:46:34:c2:6c:19:66:fb:31:6a:3c: c6:d5:6e:73:b1:17:1c:25:2c:fc:17:e0:81:73:1b:d7:75:c6: da:7c:e3:02:37:9f:20:49:6c:1f:aa:97:13:65:a8:4d:d8:ca: b9:58:d0:66:ac:36:12:a2:73:91:84:05:e7:ad:9c:d6:15:b1: cd:a5:f6:1f:e1:35:84:f3:43:42:c1:c7:47:42:3d:f5:95:8b: a1:92:41:2c:ee:ae:4c:a6:4f:61:fc:c8:8d:fc:0f:4c:56:4e: 30:e7:35:51:38:02:8f:52:cb:cf:d4:e6:b8:eb:61:b9:08:7d: ea:11:45:81:cc:64:a1:65:0a:e8:4f:22:28:b0:1e:c2:60:d0: 18:af:b7:9d:c3:24:31:d6:38:e8:d9:9e:42:85:9b:c7:4e:bd: f0:9c:99:ff:f5:db:b2:c1:28:38:9e:2f:10:9d:9e:ef:d7:c0: fc:0e:b9:e5:2b:cf:9e:18:10:e5:14:fd:36:c5:cb:fe:ad:12: f8:ef:72:71:0f:a8:09:72:a8:f7:38:cf:2c:9f:61:0e:d2:3a: ca:ab:0f:f1:a6:9b:79:9e:ea:c6:97:13:c5:06:8b:a0:16:d9: 86:02:a5:7c:1c:f0:41:ab:53:0c:e1:02:f4:55:c8:06:c9:fc: ec:be:f5:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I3QjIxMTAvBgNVBAUTKDA5OTI1REI2N0I0QUI5REY2MDA2RTdCRDJCQzFEOEVE QzhDQzdFMTkwHhcNMjUxMTAyMTkwNjA3WhcNMjUxMTA5MTkwNjA3WjAYMRYwFAYD VQQDEw02OTA3YWI5Zi1kYTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ZVJeyYGP9x2f23AjKoW7hDH1TPCUJvXt8puVoBcrZWaHFm0pRwARfDWPD4d x1t7ShfVX6collsAv1hc5ji4yWsA+Ks7hiwlJ31eP4/7shK8dkidbNzKqENHkoM+ 3riKgCPfymHMxQu+llJyNpptENvNew4JB7sTrxct/QAyywnC8GHQ0QF1bw8ZP6LX PWi+CR9nIJPNG1KCgbXk6Faq6o8YbbKinXmgKLMJeBTN5TXgRLNq3ASXzhSj/RFi rC5QEQk01+cliaz9x/75ENldL4ttNC++n50A0joA3cIku0s0Oml8/dQhgqV609aZ ynXtZbXhXoH/jGK5RXgO/fIuKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPaVIfyr BNbSAyxGQrIW+pLDoVLLMB8GA1UdIwQYMBaAFAmSXbZ7SrnfYAbnvSvB2O3IzH4Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjdCMi80MDY2NTAwODQx NkYxMUVBQjVDN0NBNjVDNEY5QUUwMi9DWkpkdG50S3VkOWdCdWU5SzhIWTdjak1m aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaSmR0bnRLdWQ5Z0J1ZTlLOEhZN2NqTWZoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjdCMi80MDY2NTAwODQxNkYxMUVBQjVDN0NBNjVDNEY5QUUwMi9DWkpkdG50S3Vk OWdCdWU5SzhIWTdjak1maGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu9k69aNqI20Y0wmwZZvsxajzG1W5zsRccJSz8F+CBcxvXdcbafOMC N58gSWwfqpcTZahN2Mq5WNBmrDYSonORhAXnrZzWFbHNpfYf4TWE80NCwcdHQj31 lYuhkkEs7q5Mpk9h/MiN/A9MVk4w5zVROAKPUsvP1Oa462G5CH3qEUWBzGShZQro TyIosB7CYNAYr7edwyQx1jjo2Z5ChZvHTr3wnJn/9duywSg4ni8QnZ7v18D8Drnl K8+eGBDlFP02xcv+rRL473JxD6gJcqj3OM8sn2EO0jrKqw/xppt5nurGlxPFBoug FtmGAqV8HPBBq1MM4QL0VcgGyfzsvvXs -----END CERTIFICATE-----Generated at Tue Nov 4 07:22:37 2025 by rpki-client