$ rpki-client -vvf rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft File: Ad9hVyR3ojDnn48oz91tKDd_Iis.mft (raw, json) Hash identifier: t+AFXjoesLuh3Fy6ri6tnJ9N74PrpkmS6r5Q3T6BT0Q= Subject key identifier: 56:2D:EC:EB:F0:F1:2F:10:94:BA:57:99:A5:B5:40:D9:8D:FE:E8:95 Authority key identifier: 01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B Certificate issuer: /CN=A914E5AE/serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Certificate serial: 0568 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft Manifest number: 0561 Signing time: Sun 02 Nov 2025 23:21:54 +0000 Manifest this update: Sun 02 Nov 2025 23:21:54 +0000 Manifest next update: Sun 09 Nov 2025 23:21:53 +0000 Files and hashes: 1: Ad9hVyR3ojDnn48oz91tKDd_Iis.crl (hash: SMbNZyJAD6UV+8bMzfLlm5daeUWlmPInvU15btemYxA=) 2: C847114C07D411ECBF875117C4F9AE02.roa (hash: MMhekj2SFZKQhejre+/ZuSr0R5tKH64F+RFediiHsYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:21:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1384 (0x568) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E5AE, serialNumber=01DF61572477A230E79F8F28CFDD6D28377F222B Validity Not Before: Nov 2 23:21:54 2025 GMT Not After : Nov 9 23:21:53 2025 GMT Subject: CN=6907e792-57b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:84:1e:d7:11:2c:87:19:45:4f:42:c0:7f:db: 54:13:dd:59:ac:b3:11:13:e0:98:1a:f3:e6:7d:f4: 30:99:64:5e:05:7d:9a:57:10:4e:2c:2a:e9:a4:86: 0a:af:5c:6a:3b:0f:39:6b:3b:3f:ad:95:62:b5:fa: 58:b3:27:a5:87:c9:04:a0:ff:c8:c5:17:97:6d:31: f7:ca:05:40:21:d0:a8:14:d2:3a:ee:e1:fb:ca:bc: 42:73:e2:0e:07:71:df:1b:16:a1:eb:88:6d:c9:09: cd:1b:da:64:48:9d:81:ed:25:f7:29:3d:fa:13:89: 59:7a:38:e8:ee:6a:c1:82:4f:3a:d7:93:4b:b5:76: 81:45:e1:eb:71:8a:fa:7a:fa:0a:d9:c6:11:5a:b1: 3f:4b:8c:34:82:04:f7:16:b9:f9:b7:34:b1:df:46: 4f:94:cf:db:bd:95:48:f5:6e:0b:4c:f5:cc:b3:63: 52:0e:7d:f9:5f:c0:d8:bb:3c:2b:10:32:c7:53:f7: 7f:a5:62:38:5e:e7:a2:a9:96:36:9c:b6:1f:9d:18: 5d:bf:ec:e3:cf:12:81:42:ac:92:41:f1:ed:6e:ab: cd:d7:d2:63:38:75:06:54:33:2c:b7:1e:d2:6a:28: 2d:05:96:e4:04:cc:84:6e:6e:02:d3:25:88:e8:0e: a2:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:2D:EC:EB:F0:F1:2F:10:94:BA:57:99:A5:B5:40:D9:8D:FE:E8:95 X509v3 Authority Key Identifier: keyid:01:DF:61:57:24:77:A2:30:E7:9F:8F:28:CF:DD:6D:28:37:7F:22:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ad9hVyR3ojDnn48oz91tKDd_Iis.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E5AE/46D422F007D211ECAA82B611C4F9AE02/Ad9hVyR3ojDnn48oz91tKDd_Iis.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:73:2f:cb:9d:3f:af:bb:9b:4b:87:cc:f9:41:1a:d7:50:e1: 54:aa:3a:28:ae:34:56:21:61:d9:74:a5:0a:03:7c:dc:6c:a6: aa:f6:d1:df:19:d0:52:2d:6b:d2:0c:0c:6c:fc:02:4d:08:9f: 5a:82:d9:31:fc:9c:db:79:8c:70:09:d0:38:bf:2e:92:7c:c8: b5:f3:91:21:a2:61:1a:37:8c:6a:61:64:5e:bf:d7:6b:4f:ab: dc:3b:4f:ec:d4:46:e0:a0:c4:c5:1e:32:37:d8:2a:f6:c7:63: c9:51:c6:8c:7c:18:a5:86:66:b6:d0:53:b8:9d:25:46:37:51: 05:6e:e5:d2:24:a8:7a:74:a5:ba:4b:45:2e:22:a3:8d:73:4a: 4e:76:30:55:9d:c7:7b:a1:46:7c:18:9d:a6:3f:8f:48:06:62: 42:f2:a9:93:15:8d:78:68:7a:ab:11:52:61:04:83:97:ac:49: f8:bb:c3:c8:53:1b:ef:02:2e:7c:a8:95:40:1d:65:cf:ac:7c: 8d:12:b8:06:e0:72:7e:db:8c:18:7a:d9:b3:1c:f7:d0:50:54: bb:a6:68:bd:85:0c:d5:2a:6d:18:bc:96:03:ba:6e:89:7b:fb: 38:82:20:b3:49:18:58:e5:14:d3:79:83:f3:56:d1:72:4e:cf: 36:c2:fa:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU1QUUxMTAvBgNVBAUTKDAxREY2MTU3MjQ3N0EyMzBFNzlGOEYyOENGREQ2RDI4 Mzc3RjIyMkIwHhcNMjUxMTAyMjMyMTU0WhcNMjUxMTA5MjMyMTUzWjAYMRYwFAYD VQQDEw02OTA3ZTc5Mi01N2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34Qe1xEshxlFT0LAf9tUE91ZrLMRE+CYGvPmffQwmWReBX2aVxBOLCrppIYK r1xqOw85azs/rZVitfpYsyelh8kEoP/IxReXbTH3ygVAIdCoFNI67uH7yrxCc+IO B3HfGxah64htyQnNG9pkSJ2B7SX3KT36E4lZejjo7mrBgk8615NLtXaBReHrcYr6 evoK2cYRWrE/S4w0ggT3Frn5tzSx30ZPlM/bvZVI9W4LTPXMs2NSDn35X8DYuzwr EDLHU/d/pWI4XueiqZY2nLYfnRhdv+zjzxKBQqySQfHtbqvN19JjOHUGVDMstx7S aigtBZbkBMyEbm4C0yWI6A6i/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFYt7Ovw 8S8QlLpXmaW1QNmN/uiVMB8GA1UdIwQYMBaAFAHfYVckd6Iw55+PKM/dbSg3fyIr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTVBRS80NkQ0MjJGMDA3 RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29qRG5uNDhvejkxdEtEZF9J aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FkOWhWeVIzb2pEbm40OG96OTF0S0RkX0lpcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTVBRS80NkQ0MjJGMDA3RDIxMUVDQUE4MkI2MTFDNEY5QUUwMi9BZDloVnlSM29q RG5uNDhvejkxdEtEZF9JaXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8cy/LnT+vu5tLh8z5QRrXUOFUqjoorjRWIWHZdKUKA3zcbKaq9tHf GdBSLWvSDAxs/AJNCJ9agtkx/JzbeYxwCdA4vy6SfMi185EhomEaN4xqYWRev9dr T6vcO0/s1EbgoMTFHjI32Cr2x2PJUcaMfBilhma20FO4nSVGN1EFbuXSJKh6dKW6 S0UuIqONc0pOdjBVncd7oUZ8GJ2mP49IBmJC8qmTFY14aHqrEVJhBIOXrEn4u8PI UxvvAi58qJVAHWXPrHyNErgG4HJ+24wYetmzHPfQUFS7pmi9hQzVKm0YvJYDum6J e/s4giCzSRhY5RTTeYPzVtFyTs82wvoA -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:46 2025 by rpki-client