$ rpki-client -vvf rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft File: xPfznmL0ydeMXhL9wVGuTjK8mkI.mft (raw, json) Hash identifier: t97CXpN51swCXvUNeQzJ/eL9ApkClFeYoFsAoZilWDM= Subject key identifier: CB:65:25:68:47:E6:F1:E7:D5:43:66:65:33:59:86:77:FB:48:56:AE Authority key identifier: C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 Certificate issuer: /CN=A914B29B/serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft Manifest number: 011C Signing time: Mon 03 Nov 2025 04:50:10 +0000 Manifest this update: Mon 03 Nov 2025 04:50:10 +0000 Manifest next update: Mon 10 Nov 2025 04:50:10 +0000 Files and hashes: 1: xPfznmL0ydeMXhL9wVGuTjK8mkI.crl (hash: rD3cH7ZjAdJVpTfGcHG67DVRo5Gb6UPzbP6I1rsMH78=) 2: 127604E20F8B11EF87FC5918C4F9AE02.roa (hash: Ur2f+2mtS8rG+Wi5lYOAmNS8a2RYYseSRQgStkLqo/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B29B, serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Validity Not Before: Nov 3 04:50:10 2025 GMT Not After : Nov 10 04:50:10 2025 GMT Subject: CN=69083482-c8e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ab:24:07:99:77:0c:1c:38:61:a8:8d:14:aa: 80:5c:db:23:ff:92:f5:3e:67:f7:e9:9b:4f:92:6f: 2f:87:9c:a7:fd:7b:3a:72:96:4d:2a:9a:ef:a5:e1: 00:1b:c7:6e:93:3a:b7:29:5b:e0:64:a8:fa:4a:61: d0:a9:37:ba:8d:ab:13:86:c6:31:f6:ca:57:01:3f: 14:bb:b4:22:c6:69:6f:ed:94:46:72:5f:c8:39:a9: 5d:78:c5:85:a9:a2:0b:6b:72:4d:d9:cd:bb:ff:bc: 92:70:71:01:b5:5c:4b:51:a7:39:d6:51:63:4f:87: f0:29:c8:93:30:2b:af:d1:11:73:05:2d:85:0b:cb: 6a:b8:f3:e8:ac:cf:e9:93:c1:1d:33:03:c9:c2:bc: 27:f6:be:6a:fc:35:45:00:a7:5d:94:72:2c:61:81: 21:38:49:f0:e3:76:4e:3a:c7:95:ed:cd:c1:ea:29: 7f:5d:b3:37:a3:e9:9e:d7:d4:a8:a8:e3:c5:23:96: 63:5e:ad:2c:00:c3:95:b3:85:99:bd:ea:8c:e3:1f: 82:34:20:f4:8b:e4:54:23:97:98:a8:8e:a6:8e:50: 60:fd:8d:24:cc:60:fa:d2:fa:d6:21:0b:c5:4f:0f: 53:72:b6:fa:49:39:94:c2:a4:f5:76:bd:bb:3d:e5: 58:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:65:25:68:47:E6:F1:E7:D5:43:66:65:33:59:86:77:FB:48:56:AE X509v3 Authority Key Identifier: keyid:C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:16:5d:8a:d8:95:90:e1:d3:d0:0d:71:b8:33:f4:fc:5d:54: 86:3e:8b:aa:9a:f4:28:25:d4:2d:bc:cd:68:9f:82:1e:ff:3a: b8:49:6d:56:aa:b5:0b:8b:fb:67:0b:56:3a:cc:1e:81:74:89: 52:49:6c:92:56:72:31:94:c6:c2:10:30:56:d7:ab:1f:db:8b: fd:97:a6:7f:f3:80:10:62:d7:90:16:59:98:22:52:35:9c:d8: c6:80:b2:1f:de:1a:2e:dd:ff:62:51:16:ac:34:00:e8:48:21: b0:f6:1b:b9:45:d9:84:ee:ce:d7:66:50:07:ee:86:8b:e1:5e: 9a:a0:aa:1c:57:b5:70:1d:a7:d9:94:40:a5:e8:f0:52:b2:a6: ba:d2:1f:8f:b5:34:dd:8f:1f:09:2b:d7:16:29:8f:47:f3:1a: fc:a7:d7:69:98:ea:91:b4:33:8f:c9:35:72:f3:ff:0f:21:6c: 54:96:99:82:e1:28:09:46:94:e6:8f:fb:87:43:df:69:87:44: 22:36:66:64:25:07:cf:ca:48:44:e0:76:83:0a:fd:3c:e2:ed: af:5c:9f:2b:dd:a1:3b:d9:3d:88:71:78:eb:06:fd:04:f4:fd: 21:c2:88:9f:11:d5:64:c9:86:44:c7:a3:7c:c5:f3:3e:44:cc: 1b:2e:fc:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIyOUIxMTAvBgNVBAUTKEM0RjdGMzlFNjJGNEM5RDc4QzVFMTJGREMxNTFBRTRF MzJCQzlBNDIwHhcNMjUxMTAzMDQ1MDEwWhcNMjUxMTEwMDQ1MDEwWjAYMRYwFAYD VQQDEw02OTA4MzQ4Mi1jOGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqskB5l3DBw4YaiNFKqAXNsj/5L1Pmf36ZtPkm8vh5yn/Xs6cpZNKprvpeEA G8dukzq3KVvgZKj6SmHQqTe6jasThsYx9spXAT8Uu7Qixmlv7ZRGcl/IOaldeMWF qaILa3JN2c27/7yScHEBtVxLUac51lFjT4fwKciTMCuv0RFzBS2FC8tquPPorM/p k8EdMwPJwrwn9r5q/DVFAKddlHIsYYEhOEnw43ZOOseV7c3B6il/XbM3o+me19So qOPFI5ZjXq0sAMOVs4WZveqM4x+CNCD0i+RUI5eYqI6mjlBg/Y0kzGD60vrWIQvF Tw9Tcrb6STmUwqT1dr27PeVYaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtlJWhH 5vHn1UNmZTNZhnf7SFauMB8GA1UdIwQYMBaAFMT3855i9MnXjF4S/cFRrk4yvJpC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjI5Qi84QTNFMUQxQTBG ODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlkZU1YaEw5d1ZHdVRqSzht a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQZnpubUwweWRlTVhoTDl3Vkd1VGpLOG1rSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjI5Qi84QTNFMUQxQTBGODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlk ZU1YaEw5d1ZHdVRqSzhta0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtFl2K2JWQ4dPQDXG4M/T8XVSGPouqmvQoJdQtvM1on4Ie/zq4SW1W qrULi/tnC1Y6zB6BdIlSSWySVnIxlMbCEDBW16sf24v9l6Z/84AQYteQFlmYIlI1 nNjGgLIf3hou3f9iURasNADoSCGw9hu5RdmE7s7XZlAH7oaL4V6aoKocV7VwHafZ lECl6PBSsqa60h+PtTTdjx8JK9cWKY9H8xr8p9dpmOqRtDOPyTVy8/8PIWxUlpmC 4SgJRpTmj/uHQ99ph0QiNmZkJQfPykhE4HaDCv084u2vXJ8r3aE72T2IcXjrBv0E 9P0hwoifEdVkyYZEx6N8xfM+RMwbLvw8 -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:06 2025 by rpki-client