$ rpki-client -vvf rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft File: joN3gQz5wgS7ElhPPltfBQNoJG8.mft (raw, json) Hash identifier: SHfCRbMqE0uJd8/V7bqx80MkGv6nRg7PMANK8HqKuKw= Subject key identifier: 12:75:B2:BE:62:C7:F8:4B:DE:FF:5A:01:1A:75:54:06:3B:36:7F:B3 Authority key identifier: 8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F Certificate issuer: /CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Certificate serial: 1F37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft Manifest number: 1F0C Signing time: Tue 04 Nov 2025 16:07:42 +0000 Manifest this update: Tue 04 Nov 2025 16:07:41 +0000 Manifest next update: Tue 11 Nov 2025 16:07:41 +0000 Files and hashes: 1: joN3gQz5wgS7ElhPPltfBQNoJG8.crl (hash: cIZtXDToGAlcKBy0Jv+7WtTWxmQke7XtqRfIXg62M20=) 2: 48BB49E8763A11EFA077F11CC4F9AE02.roa (hash: kbKWOZNJMc5q48ZGAPJwk/No5hClmF4tRx65umSQzAA=) 3: A63484760E7511F0B651A474C4F9AE02.roa (hash: E5E7M+KU38t2hoCZnvux4qAliD8ibl/Vp9X6gykPlbI=) 4: 2D70A1AE0DFE11F087A25C3FC4F9AE02.roa (hash: yrblWteuMzwUMPHL56NEpj1u/5SILXxLN8wP92DwqIY=) 5: 2E2A74580DFE11F087A25C3FC4F9AE02.roa (hash: fmsgiPf9NAexR5vlu7jiK+Ra4ISg07n1PLjbPNsyZNQ=) 6: 31603938763B11EF810E6D1FC4F9AE02.roa (hash: 7bLJ+6dveh56SJZSGgZCe9J26eijaiEXg9KDAFNqlo0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:07:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7991 (0x1f37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F0E3, serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Validity Not Before: Nov 4 16:07:41 2025 GMT Not After : Nov 11 16:07:41 2025 GMT Subject: CN=690a24ce-250b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:62:cd:78:85:fc:06:8a:d1:87:fa:99:ad:28: 2c:29:30:5a:c4:20:71:02:97:c3:52:71:35:ab:b2: 84:fe:44:bb:59:c4:73:27:9b:de:aa:94:73:e0:fa: f4:c6:2d:ca:6e:b0:d5:cc:5a:ba:9e:c3:1d:52:e8: e7:a5:ff:72:44:d7:c4:43:83:19:e9:32:ce:c7:39: 33:24:bb:9d:2d:f0:5a:5b:cd:6e:68:3d:ff:62:0d: 17:ee:e4:97:fe:be:93:9f:7f:02:2f:fe:27:99:4b: ac:3e:e7:1f:f0:33:2c:a4:37:c6:21:d8:52:d1:16: 1b:68:05:df:1f:19:47:ff:7b:0e:c3:f2:fe:a6:ec: b0:08:37:9e:e7:3f:59:82:61:c8:3e:48:67:d2:73: 8c:ea:de:a1:56:ab:1b:69:ca:4d:e6:f8:c7:11:8d: 6c:35:91:1c:ce:b8:cd:4e:2c:67:66:5b:a4:ac:66: 83:ec:42:e9:fd:fd:39:b7:2d:4e:70:48:ae:1c:a7: 1f:d3:dc:83:61:6b:45:9d:67:3e:90:87:8d:dd:e8: d1:f2:3a:81:ae:b3:71:ff:61:07:2f:59:36:6b:11: 04:1d:6e:fd:9a:ea:9d:33:ae:da:1b:e0:2b:53:46: d1:7e:6a:1f:bc:88:de:51:99:df:0d:04:89:74:83: 60:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:75:B2:BE:62:C7:F8:4B:DE:FF:5A:01:1A:75:54:06:3B:36:7F:B3 X509v3 Authority Key Identifier: keyid:8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:72:f4:de:93:a8:9f:61:4b:42:45:5c:25:29:62:53:6f:d2: 6e:54:19:81:52:11:c2:5f:3d:eb:03:e4:23:58:29:a9:11:a0: 57:9a:a1:31:18:f5:e2:53:d8:b0:d3:11:d6:ba:74:19:02:69: 41:e7:0e:00:36:48:59:76:58:b5:80:8a:65:ac:b2:2c:41:7b: 18:89:3c:ad:db:7d:47:3e:31:58:97:70:66:b7:df:6b:92:b7: a4:85:1f:48:54:5e:aa:fa:f5:69:63:b1:28:d0:53:c6:88:18: 46:23:46:47:3b:4c:cf:a0:ac:1d:d9:6f:61:df:11:cd:a9:91: 62:f2:b7:2f:2c:a0:7f:ff:08:8e:50:81:7a:68:29:a8:96:0e: 69:96:3a:c2:b6:77:b9:de:0e:51:ac:3e:9e:76:cd:16:60:24: 0b:ea:48:8c:33:f2:f4:ec:87:66:80:6e:3b:fa:56:e5:9b:4b: e0:dd:a3:b7:63:d0:aa:f8:f5:b8:6f:91:19:8d:e7:05:c3:a5: e1:70:8a:b7:86:6d:5c:29:95:55:ec:28:c1:6d:e3:67:5a:6e: 1d:5b:6f:af:fa:f7:7d:26:f4:a1:40:a6:15:c5:0c:5b:ac:1f: dc:ad:53:d7:f1:89:42:60:75:57:6a:8f:ac:9c:4a:6e:0f:7f: 87:9f:85:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YwRTMxMTAvBgNVBAUTKDhFODM3NzgxMENGOUMyMDRCQjEyNTg0RjNFNUI1RjA1 MDM2ODI0NkYwHhcNMjUxMTA0MTYwNzQxWhcNMjUxMTExMTYwNzQxWjAYMRYwFAYD VQQDEw02OTBhMjRjZS0yNTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5GLNeIX8BorRh/qZrSgsKTBaxCBxApfDUnE1q7KE/kS7WcRzJ5veqpRz4Pr0 xi3KbrDVzFq6nsMdUujnpf9yRNfEQ4MZ6TLOxzkzJLudLfBaW81uaD3/Yg0X7uSX /r6Tn38CL/4nmUusPucf8DMspDfGIdhS0RYbaAXfHxlH/3sOw/L+puywCDee5z9Z gmHIPkhn0nOM6t6hVqsbacpN5vjHEY1sNZEczrjNTixnZlukrGaD7ELp/f05ty1O cEiuHKcf09yDYWtFnWc+kIeN3ejR8jqBrrNx/2EHL1k2axEEHW79muqdM67aG+Ar U0bRfmofvIjeUZnfDQSJdINg6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJ1sr5i x/hL3v9aARp1VAY7Nn+zMB8GA1UdIwQYMBaAFI6Dd4EM+cIEuxJYTz5bXwUDaCRv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjBFMy8yOTE1NzZCRTZC MzQxMUU2OTE4NEI2NkNDNEY5QUUwMi9qb04zZ1F6NXdnUzdFbGhQUGx0ZkJRTm9K RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvTjNnUXo1d2dTN0VsaFBQbHRmQlFOb0pHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjBFMy8yOTE1NzZCRTZCMzQxMUU2OTE4NEI2NkNDNEY5QUUwMi9qb04zZ1F6NXdn UzdFbGhQUGx0ZkJRTm9KRzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5cvTek6ifYUtCRVwlKWJTb9JuVBmBUhHCXz3rA+QjWCmpEaBXmqEx GPXiU9iw0xHWunQZAmlB5w4ANkhZdli1gIplrLIsQXsYiTyt231HPjFYl3Bmt99r krekhR9IVF6q+vVpY7Eo0FPGiBhGI0ZHO0zPoKwd2W9h3xHNqZFi8rcvLKB//wiO UIF6aCmolg5pljrCtne53g5RrD6eds0WYCQL6kiMM/L07IdmgG47+lblm0vg3aO3 Y9Cq+PW4b5EZjecFw6XhcIq3hm1cKZVV7CjBbeNnWm4dW2+v+vd9JvShQKYVxQxb rB/crVPX8YlCYHVXao+snEpuD3+Hn4Vw -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:49 2025 by rpki-client