$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft File: ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft (raw, json) Hash identifier: DIJFNlYbPOH2+9PiN0ngofPCdbW+B7vz6De44jPnPVY= Subject key identifier: A8:93:2A:05:83:7E:3C:0D:13:40:FB:44:8E:17:EC:25:DF:03:68:06 Authority key identifier: 72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 Certificate issuer: /CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Certificate serial: 10C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft Manifest number: 10BA Signing time: Tue 04 Nov 2025 17:24:51 +0000 Manifest this update: Tue 04 Nov 2025 17:24:50 +0000 Manifest next update: Tue 11 Nov 2025 17:24:50 +0000 Files and hashes: 1: ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl (hash: ZJSjPSJRpvj+OthVcFMD5UwzBwg+Zu24fMTXrob9a6U=) 2: 39C6EF3688BF11EABC04973FC4F9AE02.roa (hash: yd71n8eugD8WrOND6JHlcb+DlT4vihP97eJVROksTM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4292 (0x10c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C91D, serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Validity Not Before: Nov 4 17:24:50 2025 GMT Not After : Nov 11 17:24:50 2025 GMT Subject: CN=690a36e3-09b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:81:a7:c4:e0:87:b3:4a:3d:e7:64:23:53:0b: 4a:31:50:36:d6:f8:d1:58:5c:24:4f:65:51:d3:27: 2e:a9:6f:a5:6f:9c:c8:1e:af:9e:99:ef:de:47:b6: 4c:c8:94:ab:f2:42:50:d3:c7:7a:69:f1:ef:46:b9: 81:28:b7:54:61:da:9b:84:19:df:27:6b:da:7c:b2: 90:f7:0a:8d:6b:99:7a:aa:f7:81:77:16:be:c0:06: fe:ed:2e:fa:6d:fe:18:b0:1c:eb:2c:17:0c:cd:aa: ac:ef:b3:78:03:89:a6:05:35:28:bd:5d:94:b8:34: 22:b8:61:c0:41:99:43:05:7f:18:34:1d:ed:f7:72: a4:33:ed:49:2f:86:0b:99:2f:63:e6:cd:c3:e4:74: 80:c2:d6:cf:ed:69:ea:ee:8b:8a:0c:9a:6e:d8:65: a6:55:a3:f1:cb:30:76:b3:31:97:af:49:c6:06:f3: 91:08:5a:8d:f4:81:94:e1:ab:36:fd:74:91:e6:0f: c2:e1:68:0b:97:a8:cb:a1:fd:ea:1e:e7:06:c6:02: 4f:0e:24:1b:51:60:d6:a4:db:9a:3e:7c:70:33:2a: d4:4c:8d:eb:6b:02:54:a2:9c:b0:ac:53:df:45:6c: 4e:ea:81:f6:dd:20:ba:d4:35:01:ae:93:b8:6d:0c: 7d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:93:2A:05:83:7E:3C:0D:13:40:FB:44:8E:17:EC:25:DF:03:68:06 X509v3 Authority Key Identifier: keyid:72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:28:92:85:f9:11:39:26:5f:52:d9:8b:f3:44:3d:68:35:b5: 6a:e3:0b:8a:28:de:5d:6a:1c:5d:6b:fe:1c:07:d8:cc:be:b8: 19:df:32:3e:77:f2:9a:be:b4:4d:b2:81:c8:0a:fc:90:8c:80: 89:7c:88:4d:c8:9b:3a:a9:01:ce:f9:96:dc:bc:5a:aa:71:28: 36:ed:5e:f4:4d:80:b6:76:3a:d4:66:fb:1a:e8:be:ba:cc:24: e3:53:26:3c:32:3c:3a:20:73:a7:90:3e:48:4d:40:22:bc:a1: 98:a9:7f:17:7c:7f:df:f9:ec:d3:ae:57:f9:f4:38:f2:33:5a: 22:c3:e9:3e:38:c0:23:74:6f:53:f8:8f:0f:a7:29:f4:28:c3: 1c:2f:ad:48:74:f5:e6:76:0c:91:eb:f9:3f:dd:86:c8:42:9a: e0:21:88:99:49:e8:7d:e2:09:a3:47:6f:69:68:8b:36:d9:c0: a8:a0:d5:03:56:d1:f7:1e:fe:45:81:d4:75:dc:3a:b1:7a:0b: 0a:c6:0f:07:73:b8:aa:34:52:a2:be:0a:63:cf:79:5b:81:11: 58:77:6a:ee:43:8b:da:00:14:e9:89:59:e5:48:6f:7c:de:28: 96:25:95:f5:5f:c9:81:32:0d:19:8f:2e:02:1c:f6:37:25:67: 02:c1:26:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MUQxMTAvBgNVBAUTKDcyRDY1QkIzQ0FENEEwOThGMzZGNDEzNzU5NENDN0ZF QzJGQTI4QTMwHhcNMjUxMTA0MTcyNDUwWhcNMjUxMTExMTcyNDUwWjAYMRYwFAYD VQQDEw02OTBhMzZlMy0wOWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx4GnxOCHs0o952QjUwtKMVA21vjRWFwkT2VR0ycuqW+lb5zIHq+eme/eR7ZM yJSr8kJQ08d6afHvRrmBKLdUYdqbhBnfJ2vafLKQ9wqNa5l6qveBdxa+wAb+7S76 bf4YsBzrLBcMzaqs77N4A4mmBTUovV2UuDQiuGHAQZlDBX8YNB3t93KkM+1JL4YL mS9j5s3D5HSAwtbP7Wnq7ouKDJpu2GWmVaPxyzB2szGXr0nGBvORCFqN9IGU4as2 /XSR5g/C4WgLl6jLof3qHucGxgJPDiQbUWDWpNuaPnxwMyrUTI3rawJUopywrFPf RWxO6oH23SC61DUBrpO4bQx9jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKiTKgWD fjwNE0D7RI4X7CXfA2gGMB8GA1UdIwQYMBaAFHLWW7PK1KCY829BN1lMx/7C+iij MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxRC9EOTBDRDg3NDM1 ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9KanpiMEUzV1V6SF9zTDZL S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0WmJzOHJVb0pqemIwRTNXVXpIX3NMNktLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzkxRC9EOTBDRDg3NDM1ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9K anpiMEUzV1V6SF9zTDZLS00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpKJKF+RE5Jl9S2YvzRD1oNbVq4wuKKN5dahxda/4cB9jMvrgZ3zI+ d/KavrRNsoHICvyQjICJfIhNyJs6qQHO+ZbcvFqqcSg27V70TYC2djrUZvsa6L66 zCTjUyY8Mjw6IHOnkD5ITUAivKGYqX8XfH/f+ezTrlf59DjyM1oiw+k+OMAjdG9T +I8Ppyn0KMMcL61IdPXmdgyR6/k/3YbIQprgIYiZSeh94gmjR29paIs22cCooNUD VtH3Hv5FgdR13DqxegsKxg8Hc7iqNFKivgpjz3lbgRFYd2ruQ4vaABTpiVnlSG98 3iiWJZX1X8mBMg0Zjy4CHPY3JWcCwSZ4 -----END CERTIFICATE-----Generated at Wed Nov 5 16:39:36 2025 by rpki-client