$ rpki-client -vvf rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.mft File: mmZSAdYWDzHXa50heh3_6tEsuoI.mft (raw, json) Hash identifier: R5aTCy6trekwFBZ2dpULvKI3jFN0skprxUw106wQ9v8= Subject key identifier: 0C:C0:EA:C1:2D:90:A4:17:C8:23:67:00:44:B3:F5:CB:71:A9:33:35 Authority key identifier: 9A:66:52:01:D6:16:0F:31:D7:6B:9D:21:7A:1D:FF:EA:D1:2C:BA:82 Certificate issuer: /CN=A915180C/serialNumber=9A665201D6160F31D76B9D217A1DFFEAD12CBA82 Certificate serial: 1E23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mmZSAdYWDzHXa50heh3_6tEsuoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.mft Manifest number: 1E15 Signing time: Sun 02 Nov 2025 16:06:31 +0000 Manifest this update: Sun 02 Nov 2025 16:06:30 +0000 Manifest next update: Sun 09 Nov 2025 16:06:30 +0000 Files and hashes: 1: mmZSAdYWDzHXa50heh3_6tEsuoI.crl (hash: LIeYwpUd8BdX9L5ElQsKawRrWaEATyI8O5LEuvmSNaU=) 2: 5F313E6A99D611E6BB89D557C4F9AE02.roa (hash: E6FRFgy91DX39QwXhd6FNmc9ZicG2jWRbQwdVUf8ghA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.crl rsync://rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mmZSAdYWDzHXa50heh3_6tEsuoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:06:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7715 (0x1e23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915180C, serialNumber=9A665201D6160F31D76B9D217A1DFFEAD12CBA82 Validity Not Before: Nov 2 16:06:30 2025 GMT Not After : Nov 9 16:06:30 2025 GMT Subject: CN=69078187-646e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:57:33:25:2c:91:2d:b1:7a:6f:6f:51:c0:da: 49:d6:89:0e:3e:2e:37:6c:df:8b:4a:51:9e:98:8b: 11:d6:67:ab:c0:1f:65:63:d3:ae:25:46:4b:8c:e3: 31:5c:38:5e:ec:00:f3:25:e3:d7:d1:a4:e5:f1:d0: ac:6a:7b:c7:e1:45:7e:7f:61:84:a5:43:70:e8:7a: 05:47:a0:8c:af:f8:c4:10:b2:19:ec:36:8c:9d:1d: 99:36:07:b6:71:8d:b8:ac:1d:72:8f:3f:97:9b:aa: 63:61:47:ba:72:cc:a2:b8:9d:c0:e7:f5:f9:ea:bd: d4:81:a9:88:97:f5:3e:d7:66:db:37:f3:78:40:11: 15:c6:da:21:c6:05:4e:bf:f2:6e:fb:79:0d:c4:5f: 6f:29:b9:e8:4d:3c:8a:26:b0:48:c2:c6:04:6f:91: 5b:6b:41:b9:c0:3b:78:06:fc:45:9a:1f:00:cd:0c: a9:63:60:b2:68:a2:13:9c:bc:a4:c4:53:6e:ae:1f: fa:c2:6f:ca:14:fc:2d:fe:6b:3b:6e:0e:5a:e7:bf: 41:b9:be:f8:c2:bf:93:39:73:24:df:6f:5d:6f:cb: 03:a9:77:a0:fc:d3:2f:0a:0d:98:27:77:53:ef:44: a1:e3:02:fa:4c:ef:c1:80:ba:b7:fc:fc:c3:ff:15: 88:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:C0:EA:C1:2D:90:A4:17:C8:23:67:00:44:B3:F5:CB:71:A9:33:35 X509v3 Authority Key Identifier: keyid:9A:66:52:01:D6:16:0F:31:D7:6B:9D:21:7A:1D:FF:EA:D1:2C:BA:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mmZSAdYWDzHXa50heh3_6tEsuoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:9e:33:6f:dd:05:0c:c0:ce:47:43:37:ad:58:49:8c:15:db: 93:16:aa:b9:03:ff:28:75:cb:e5:98:dd:02:ed:7c:59:a3:64: b3:61:8f:06:c7:89:49:7a:46:b3:ef:63:8f:5c:79:05:a4:bd: 91:37:72:5f:dd:fe:b1:2a:47:20:81:6a:96:76:be:ba:18:e0: d7:12:f6:67:05:08:ce:32:bd:fd:7d:68:5a:e0:0c:5e:c6:92: 99:ca:5c:77:7e:cc:2a:d9:1f:11:34:3b:65:db:79:8a:ce:ca: 56:14:83:45:d2:d3:cd:ac:9d:79:dd:dc:8a:eb:11:72:20:e1: 21:96:9f:43:53:db:3b:3c:74:16:90:c0:5c:d6:78:8b:41:40: ef:87:0f:80:1e:bc:c1:25:86:c8:65:7e:60:85:39:a3:44:26: ef:e5:59:3a:7b:e1:63:0e:ff:42:67:ed:c9:15:6f:bb:85:6b: e7:1b:96:a3:ac:da:1e:28:1c:ec:69:e6:5d:af:2f:cf:eb:74: f5:35:2c:16:bf:56:b5:51:9f:cc:37:72:93:b7:ad:6a:39:e0: d5:d3:9d:9f:d7:a5:57:e0:93:3a:34:67:25:72:cd:50:c0:bb: b9:98:9a:c3:39:21:c1:78:46:9b:98:41:6f:06:7c:22:07:47: b6:af:c9:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE4MEMxMTAvBgNVBAUTKDlBNjY1MjAxRDYxNjBGMzFENzZCOUQyMTdBMURGRkVB RDEyQ0JBODIwHhcNMjUxMTAyMTYwNjMwWhcNMjUxMTA5MTYwNjMwWjAYMRYwFAYD VQQDEw02OTA3ODE4Ny02NDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1czJSyRLbF6b29RwNpJ1okOPi43bN+LSlGemIsR1merwB9lY9OuJUZLjOMx XDhe7ADzJePX0aTl8dCsanvH4UV+f2GEpUNw6HoFR6CMr/jEELIZ7DaMnR2ZNge2 cY24rB1yjz+Xm6pjYUe6csyiuJ3A5/X56r3UgamIl/U+12bbN/N4QBEVxtohxgVO v/Ju+3kNxF9vKbnoTTyKJrBIwsYEb5Fba0G5wDt4BvxFmh8AzQypY2CyaKITnLyk xFNurh/6wm/KFPwt/ms7bg5a579Bub74wr+TOXMk329db8sDqXeg/NMvCg2YJ3dT 70Sh4wL6TO/BgLq3/PzD/xWIqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzA6sEt kKQXyCNnAESz9ctxqTM1MB8GA1UdIwQYMBaAFJpmUgHWFg8x12udIXod/+rRLLqC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTgwQy85QTdDRDNFQTk2 QjUxMUU2ODRGNzM0MTFDNEY5QUUwMi9tbVpTQWRZV0R6SFhhNTBoZWgzXzZ0RXN1 b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21tWlNBZFlXRHpIWGE1MGhlaDNfNnRFc3VvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTgwQy85QTdDRDNFQTk2QjUxMUU2ODRGNzM0MTFDNEY5QUUwMi9tbVpTQWRZV0R6 SFhhNTBoZWgzXzZ0RXN1b0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBenjNv3QUMwM5HQzetWEmMFduTFqq5A/8odcvlmN0C7XxZo2SzYY8G x4lJekaz72OPXHkFpL2RN3Jf3f6xKkcggWqWdr66GODXEvZnBQjOMr39fWha4Axe xpKZylx3fswq2R8RNDtl23mKzspWFINF0tPNrJ153dyK6xFyIOEhlp9DU9s7PHQW kMBc1niLQUDvhw+AHrzBJYbIZX5ghTmjRCbv5Vk6e+FjDv9CZ+3JFW+7hWvnG5aj rNoeKBzsaeZdry/P63T1NSwWv1a1UZ/MN3KTt61qOeDV052f16VX4JM6NGclcs1Q wLu5mJrDOSHBeEabmEFvBnwiB0e2r8m0 -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:57 2025 by rpki-client