$ rpki-client -vvf rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/enhVXghERXV_vNAN3R10w2nLoLA.mft File: enhVXghERXV_vNAN3R10w2nLoLA.mft (raw, json) Hash identifier: 4BlnvrZ7LkyOhNMU+d/97/XeW/73B4ywRaR+DUbbH0Y= Subject key identifier: 5C:5B:DC:9A:51:49:27:FD:4E:85:9F:0C:1A:A8:44:D5:8D:9C:2B:52 Authority key identifier: 7A:78:55:5E:08:44:45:75:7F:BC:D0:0D:DD:1D:74:C3:69:CB:A0:B0 Certificate issuer: /CN=A914E6AA/serialNumber=7A78555E084445757FBCD00DDD1D74C369CBA0B0 Certificate serial: 019B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/enhVXghERXV_vNAN3R10w2nLoLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/enhVXghERXV_vNAN3R10w2nLoLA.mft Manifest number: 0A1B Signing time: Tue 04 Nov 2025 22:45:45 +0000 Manifest this update: Tue 04 Nov 2025 22:45:45 +0000 Manifest next update: Tue 11 Nov 2025 22:45:45 +0000 Files and hashes: 1: enhVXghERXV_vNAN3R10w2nLoLA.crl (hash: WyiM0uM2fmQSH5O1WDsq7541t3pyVxTbvc+FH0uUZn4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/enhVXghERXV_vNAN3R10w2nLoLA.crl rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/enhVXghERXV_vNAN3R10w2nLoLA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/enhVXghERXV_vNAN3R10w2nLoLA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:45:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E6AA, serialNumber=7A78555E084445757FBCD00DDD1D74C369CBA0B0 Validity Not Before: Nov 4 22:45:45 2025 GMT Not After : Nov 11 22:45:45 2025 GMT Subject: CN=690a8219-27a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:aa:1f:8d:4e:ad:b4:a3:f0:29:61:74:31:25: 30:05:c8:e9:25:2c:f5:f2:dd:38:eb:b1:60:a7:12: 86:2c:14:2b:ef:52:01:89:78:f9:7d:ca:11:13:e6: ff:76:57:35:95:28:75:03:8d:94:7e:59:c6:28:5f: 8b:37:06:f4:28:29:d8:ed:70:41:90:75:40:4b:0d: a6:45:11:71:a5:81:6e:03:e5:f2:7d:64:e7:bf:f7: 34:28:24:61:01:99:dc:a1:b8:fe:db:f9:2f:2f:42: 25:86:70:d8:7f:81:04:56:ee:16:0f:b1:d5:a4:8a: 67:21:2d:d0:d7:5f:59:97:be:97:4b:8e:e7:70:fe: 44:3b:75:dc:0f:59:63:9d:27:f7:1f:69:78:09:6c: 18:41:6b:87:08:cb:02:16:b6:35:84:69:29:0a:33: 15:9b:9f:74:95:a4:1d:a7:0d:73:14:6c:f2:22:18: 83:7f:6d:d5:3a:e7:c0:b7:97:a4:73:8a:b1:26:0d: 20:19:ad:6c:08:f5:95:7d:1b:93:55:98:48:98:f2: 76:cc:bf:15:fb:f1:e2:73:7a:d2:c1:1d:09:fb:86: 29:37:1c:4f:f4:38:fd:b1:f6:b0:83:f4:1c:0d:97: 6e:e3:68:4c:e0:34:39:d3:5c:ed:08:47:34:aa:61: 05:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:5B:DC:9A:51:49:27:FD:4E:85:9F:0C:1A:A8:44:D5:8D:9C:2B:52 X509v3 Authority Key Identifier: keyid:7A:78:55:5E:08:44:45:75:7F:BC:D0:0D:DD:1D:74:C3:69:CB:A0:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/enhVXghERXV_vNAN3R10w2nLoLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/enhVXghERXV_vNAN3R10w2nLoLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/enhVXghERXV_vNAN3R10w2nLoLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:b3:26:06:8c:75:3e:cc:12:16:8d:83:53:f9:d6:f5:d7:57: f2:a0:74:d9:69:76:28:e3:db:c5:7a:22:7a:1e:97:29:b0:bd: 6c:ad:d6:71:00:a0:71:8d:5b:85:ca:ed:1b:3b:48:d3:a7:bd: 56:2e:b2:f1:c8:f5:d5:ea:c2:c4:dd:8a:06:9f:52:a7:0b:3e: bd:f2:40:46:eb:03:ea:02:ca:da:73:fa:c1:7a:ec:8f:92:89: 53:94:58:7e:ba:8e:21:ef:15:75:66:a0:cf:7b:1c:91:e8:76: 6e:61:ad:a5:33:84:16:14:09:f9:4f:a2:57:f1:2a:af:8e:47: a7:be:97:bb:0d:4a:98:5a:e4:a0:ac:df:b9:00:e5:67:58:41: be:5a:d3:eb:f9:70:73:7a:b8:22:c5:b3:ed:68:e7:33:72:64: b4:0d:54:2d:36:42:4c:b9:76:fd:b7:cb:bd:d7:35:42:c1:ae: 1f:e4:01:e4:66:d8:33:fa:09:a4:81:5c:6d:76:08:0c:c1:57: 0b:f3:5d:3f:52:56:f9:a7:47:6a:61:44:09:65:bc:5a:f3:72: 9e:2b:46:6b:76:8e:6d:1a:c4:b1:2a:2d:9c:06:1a:7a:a5:e6: 15:dc:5e:59:23:2c:e3:92:e1:68:31:77:40:61:e5:ae:6f:3f: c2:9a:ff:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU2QUExMTAvBgNVBAUTKDdBNzg1NTVFMDg0NDQ1NzU3RkJDRDAwREREMUQ3NEMz NjlDQkEwQjAwHhcNMjUxMTA0MjI0NTQ1WhcNMjUxMTExMjI0NTQ1WjAYMRYwFAYD VQQDEw02OTBhODIxOS0yN2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoaofjU6ttKPwKWF0MSUwBcjpJSz18t0467FgpxKGLBQr71IBiXj5fcoRE+b/ dlc1lSh1A42UflnGKF+LNwb0KCnY7XBBkHVASw2mRRFxpYFuA+XyfWTnv/c0KCRh AZncobj+2/kvL0IlhnDYf4EEVu4WD7HVpIpnIS3Q119Zl76XS47ncP5EO3XcD1lj nSf3H2l4CWwYQWuHCMsCFrY1hGkpCjMVm590laQdpw1zFGzyIhiDf23VOufAt5ek c4qxJg0gGa1sCPWVfRuTVZhImPJ2zL8V+/Hic3rSwR0J+4YpNxxP9Dj9sfawg/Qc DZdu42hM4DQ501ztCEc0qmEFNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFxb3JpR SSf9ToWfDBqoRNWNnCtSMB8GA1UdIwQYMBaAFHp4VV4IREV1f7zQDd0ddMNpy6Cw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTZBQS84RURCMTA3RUFE QTgxMUVCQTdDOUY1NjdDNEY5QUUwMi9lbmhWWGdoRVJYVl92TkFOM1IxMHcybkxv TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VuaFZYZ2hFUlhWX3ZOQU4zUjEwdzJuTG9MQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTZBQS84RURCMTA3RUFEQTgxMUVCQTdDOUY1NjdDNEY5QUUwMi9lbmhWWGdoRVJY Vl92TkFOM1IxMHcybkxvTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjsyYGjHU+zBIWjYNT+db111fyoHTZaXYo49vFeiJ6HpcpsL1srdZx AKBxjVuFyu0bO0jTp71WLrLxyPXV6sLE3YoGn1KnCz698kBG6wPqAsrac/rBeuyP kolTlFh+uo4h7xV1ZqDPexyR6HZuYa2lM4QWFAn5T6JX8Sqvjkenvpe7DUqYWuSg rN+5AOVnWEG+WtPr+XBzergixbPtaOczcmS0DVQtNkJMuXb9t8u91zVCwa4f5AHk Ztgz+gmkgVxtdggMwVcL810/Ulb5p0dqYUQJZbxa83KeK0Zrdo5tGsSxKi2cBhp6 peYV3F5ZIyzjkuFoMXdAYeWubz/Cmv9S -----END CERTIFICATE-----Generated at Wed Nov 5 10:07:16 2025 by rpki-client