$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft File: 28byJW3eXCxGqA6yQy8lcu3FN9Y.mft (raw, json) Hash identifier: Aw7RgrBPjdPvAQJxeCOnCTA9nLIsOpQEDRXwdgJg6/Y= Subject key identifier: C8:8B:FC:68:12:D8:B6:A0:C3:A5:14:BE:E4:72:18:7A:34:E6:16:65 Authority key identifier: DB:C6:F2:25:6D:DE:5C:2C:46:A8:0E:B2:43:2F:25:72:ED:C5:37:D6 Certificate issuer: /CN=A914D0E3/serialNumber=DBC6F2256DDE5C2C46A80EB2432F2572EDC537D6 Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft Manifest number: C5 Signing time: Mon 03 Nov 2025 05:51:02 +0000 Manifest this update: Mon 03 Nov 2025 05:51:01 +0000 Manifest next update: Mon 10 Nov 2025 05:51:01 +0000 Files and hashes: 1: 28byJW3eXCxGqA6yQy8lcu3FN9Y.crl (hash: 0zdWgKTOnAqKBA1nIbJZyN89ExxwcNHWo0SoHaGiAUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.crl rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:51:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0E3, serialNumber=DBC6F2256DDE5C2C46A80EB2432F2572EDC537D6 Validity Not Before: Nov 3 05:51:01 2025 GMT Not After : Nov 10 05:51:01 2025 GMT Subject: CN=690842c5-377b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ef:b7:d4:e0:c3:e9:43:d2:4e:73:a2:f1:32: 88:63:5c:9f:67:27:b5:f9:b7:dd:a9:94:2e:ad:58: 4e:74:64:37:65:37:81:4a:20:a1:aa:5e:9b:48:e5: bd:52:3e:3a:5e:30:12:a2:d1:96:25:70:92:15:39: 5e:22:47:2e:6b:0f:e9:55:3c:14:76:80:34:71:c0: 75:2f:93:f1:25:56:35:bb:a0:f0:be:9f:14:10:14: 13:5f:45:f0:2f:3c:7b:8a:bb:75:bc:1f:84:07:a9: 39:7e:56:f8:aa:2c:30:b5:de:88:2a:8b:49:31:f8: 88:82:f4:92:66:fc:63:df:95:17:b1:fd:f3:39:bb: 75:8c:a4:f7:f9:12:a0:81:a1:87:78:c5:29:f9:18: 2d:21:9a:0c:3f:d0:3b:a8:42:76:85:05:35:43:11: 90:b7:29:fb:6f:57:5b:fc:2c:94:ed:ac:ca:d9:6f: 08:be:2a:70:5d:f4:73:6e:ff:b3:a2:0a:4c:33:ee: 8a:9a:ad:93:ba:48:70:5e:d5:38:52:fc:39:ac:7a: 42:6b:0e:07:39:3d:83:b4:89:a2:76:9b:12:a3:83: 95:59:5d:35:cd:d8:4c:ef:e5:45:7e:71:94:c7:c3: 2c:6b:03:73:d3:d7:46:3d:44:1a:b5:75:43:9c:c9: f1:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:8B:FC:68:12:D8:B6:A0:C3:A5:14:BE:E4:72:18:7A:34:E6:16:65 X509v3 Authority Key Identifier: keyid:DB:C6:F2:25:6D:DE:5C:2C:46:A8:0E:B2:43:2F:25:72:ED:C5:37:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:82:23:ae:71:bd:0f:dc:f6:5a:4f:67:d4:6b:df:02:6f:58: 2a:75:e5:2c:18:dc:ad:8a:a2:27:e3:27:ae:91:60:11:80:35: a3:76:22:fa:5d:2d:d3:fc:9c:36:50:72:22:2a:23:6d:3c:ad: fb:89:3b:db:1e:b7:c9:31:82:44:a0:20:a3:dd:36:c2:ad:42: 0f:a7:ff:c4:41:88:02:ee:12:c6:dc:e7:01:fb:4c:bd:b4:d2: af:5b:ef:6e:0a:1c:fd:7e:50:e4:ba:fb:ce:78:21:83:a4:b5: 95:01:c5:dc:67:9f:c7:31:a5:85:29:70:24:be:80:f3:aa:96: 26:9b:b2:7e:e2:2d:45:11:52:5d:c2:f4:b4:37:c3:4c:ee:af: 6f:cc:8c:4c:c8:37:de:6c:e6:0c:fe:6c:9a:7f:c8:45:dd:d9: 82:59:8a:9b:5b:72:9b:eb:f0:8c:0a:97:e8:18:6a:6c:6a:33: d2:4c:42:b3:f5:82:ac:2f:f1:c9:80:34:2f:e4:69:a8:9f:14: fc:8f:d2:3f:48:1b:58:56:69:20:dd:73:50:1f:bc:66:5b:8d: 2f:9d:0f:9c:63:c5:9c:49:c2:55:50:df:27:95:54:b9:6a:92: 0e:9a:59:22:c3:5d:8f:1b:57:94:11:c3:bb:b8:cd:ea:4a:c4: 52:64:9a:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwRTMxMTAvBgNVBAUTKERCQzZGMjI1NkRERTVDMkM0NkE4MEVCMjQzMkYyNTcy RURDNTM3RDYwHhcNMjUxMTAzMDU1MTAxWhcNMjUxMTEwMDU1MTAxWjAYMRYwFAYD VQQDEw02OTA4NDJjNS0zNzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsu+31ODD6UPSTnOi8TKIY1yfZye1+bfdqZQurVhOdGQ3ZTeBSiChql6bSOW9 Uj46XjASotGWJXCSFTleIkcuaw/pVTwUdoA0ccB1L5PxJVY1u6Dwvp8UEBQTX0Xw Lzx7irt1vB+EB6k5flb4qiwwtd6IKotJMfiIgvSSZvxj35UXsf3zObt1jKT3+RKg gaGHeMUp+RgtIZoMP9A7qEJ2hQU1QxGQtyn7b1db/CyU7azK2W8IvipwXfRzbv+z ogpMM+6Kmq2TukhwXtU4Uvw5rHpCaw4HOT2DtImidpsSo4OVWV01zdhM7+VFfnGU x8MsawNz09dGPUQatXVDnMnxtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMiL/GgS 2Lagw6UUvuRyGHo05hZlMB8GA1UdIwQYMBaAFNvG8iVt3lwsRqgOskMvJXLtxTfW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDBFMy9CMzVBQjlGQThD N0UxMUVGOEU5MkU3MUJDNEY5QUUwMi8yOGJ5SlczZVhDeEdxQTZ5UXk4bGN1M0ZO OVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI4YnlKVzNlWEN4R3FBNnlReThsY3UzRk45WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDBFMy9CMzVBQjlGQThDN0UxMUVGOEU5MkU3MUJDNEY5QUUwMi8yOGJ5SlczZVhD eEdxQTZ5UXk4bGN1M0ZOOVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTgiOucb0P3PZaT2fUa98Cb1gqdeUsGNytiqIn4yeukWARgDWjdiL6 XS3T/Jw2UHIiKiNtPK37iTvbHrfJMYJEoCCj3TbCrUIPp//EQYgC7hLG3OcB+0y9 tNKvW+9uChz9flDkuvvOeCGDpLWVAcXcZ5/HMaWFKXAkvoDzqpYmm7J+4i1FEVJd wvS0N8NM7q9vzIxMyDfebOYM/myaf8hF3dmCWYqbW3Kb6/CMCpfoGGpsajPSTEKz 9YKsL/HJgDQv5GmonxT8j9I/SBtYVmkg3XNQH7xmW40vnQ+cY8WcScJVUN8nlVS5 apIOmlkiw12PG1eUEcO7uM3qSsRSZJpg -----END CERTIFICATE-----Generated at Mon Nov 3 18:08:07 2025 by rpki-client