$ rpki-client -vvf rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft File: ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft (raw, json) Hash identifier: ME9Fso78tey98r4YXS6QJoP88qeVVa7eDJYNCmpjTTQ= Subject key identifier: 67:44:00:7E:4B:57:1E:BC:25:16:C8:08:41:D2:D1:1D:1B:39:C1:58 Authority key identifier: 72:21:78:D5:91:D9:85:96:89:E4:B9:2F:2D:0C:87:FA:47:E3:5E:0A Certificate issuer: /CN=A915D010/serialNumber=722178D591D9859689E4B92F2D0C87FA47E35E0A Certificate serial: 0DF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft Manifest number: 0DEE Signing time: Tue 04 Nov 2025 17:56:23 +0000 Manifest this update: Tue 04 Nov 2025 17:56:22 +0000 Manifest next update: Tue 11 Nov 2025 17:56:22 +0000 Files and hashes: 1: ciF41ZHZhZaJ5LkvLQyH-kfjXgo.crl (hash: ym4yDV9sAWjWiMxD1KparWd0GlXNCHOTvguF6tVrenQ=) 2: BB691FBE889111F09BDDFE1FC4F9AE02.roa (hash: aKZ0y3YUDBGFQDJs+f2mX7us+zy68CusueX6j6aIKeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.crl rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:56:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3576 (0xdf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D010, serialNumber=722178D591D9859689E4B92F2D0C87FA47E35E0A Validity Not Before: Nov 4 17:56:22 2025 GMT Not After : Nov 11 17:56:22 2025 GMT Subject: CN=690a3e46-daa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:7f:3d:3b:a1:12:87:1c:6c:f5:16:00:3a:05: d3:87:fc:76:66:7c:87:73:76:84:dc:14:4f:6c:f7: dd:9e:de:3c:e7:46:fb:25:65:57:85:c9:32:15:5d: 23:b7:9e:f5:f4:0f:87:39:02:f9:a7:75:b3:14:0b: 3a:ab:96:93:ab:6c:4d:0a:8f:da:4e:24:3d:78:67: b3:b7:18:e7:ed:d5:cd:16:53:65:a2:7e:b9:89:b7: ea:98:bb:83:4e:0b:7e:5c:24:f7:cf:ba:1a:d0:5b: b0:3b:25:43:14:d1:3d:3c:59:c0:f6:1a:5c:18:fa: ca:d0:dd:99:0f:fa:f9:c4:26:73:2f:1b:27:75:f1: 99:2b:ac:4b:99:cf:bd:b6:62:e1:6e:11:bf:45:bb: f2:85:c0:a0:27:d7:ca:17:37:3c:7e:4c:6f:39:22: 3e:3c:aa:e0:03:a1:a9:2a:4b:c8:15:7a:ce:28:5f: 6c:67:65:45:23:d7:10:ec:e8:2c:19:77:88:3e:a8: fe:5e:d6:4a:16:12:10:85:80:94:09:a3:c5:3d:59: 15:bd:b3:1c:60:15:fb:45:35:88:32:51:15:31:54: 00:3e:9e:f8:c6:7d:a9:ff:4e:5c:3d:e9:5d:ad:71: a0:3a:a0:da:dc:82:ae:79:7b:93:5b:0d:2c:cc:ed: 8d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:44:00:7E:4B:57:1E:BC:25:16:C8:08:41:D2:D1:1D:1B:39:C1:58 X509v3 Authority Key Identifier: keyid:72:21:78:D5:91:D9:85:96:89:E4:B9:2F:2D:0C:87:FA:47:E3:5E:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:3e:6f:5f:e2:ba:9d:94:10:1f:da:a1:61:af:a0:89:c4:1a: 3c:1f:ef:74:93:f8:3d:a1:2a:13:50:51:49:72:d5:46:35:26: e3:46:af:de:4b:98:a6:5b:b8:41:7e:da:c9:8c:11:a4:e9:1e: 8c:c1:24:5c:d4:37:75:8d:e6:cb:67:c1:23:49:ce:cb:1c:ad: 1a:74:00:c3:da:99:b5:f9:e7:51:ff:03:d2:8d:6a:02:cf:94: 45:c9:30:0f:7d:12:f9:28:93:9f:3f:e5:05:a8:68:52:2d:88: 69:e4:0a:87:3d:8d:bb:56:4d:b2:27:14:b1:58:c6:8e:12:21: 66:09:f4:e3:f3:74:13:97:2e:de:cd:af:02:6b:be:7e:29:48: 25:a4:90:72:46:19:be:1d:c5:f3:d9:78:13:d4:75:ea:a5:cb: 5d:89:e5:b1:9f:68:6e:2b:1c:13:8b:55:cc:7d:7f:71:b5:7e: 52:f8:e7:24:34:bc:9e:81:4c:51:cc:70:4e:78:02:e7:19:51: 3f:ae:7d:1f:36:1f:db:dd:4c:d2:35:15:c6:cf:67:11:9f:eb: 42:d1:98:06:a0:c6:77:9c:bb:bc:90:ca:77:fc:8c:93:21:91: 52:6f:28:be:fc:e6:d7:06:f6:63:fc:db:c8:6d:40:b7:c0:3a: a6:27:0b:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwMTAxMTAvBgNVBAUTKDcyMjE3OEQ1OTFEOTg1OTY4OUU0QjkyRjJEMEM4N0ZB NDdFMzVFMEEwHhcNMjUxMTA0MTc1NjIyWhcNMjUxMTExMTc1NjIyWjAYMRYwFAYD VQQDEw02OTBhM2U0Ni1kYWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7389O6EShxxs9RYAOgXTh/x2ZnyHc3aE3BRPbPfdnt4850b7JWVXhckyFV0j t5719A+HOQL5p3WzFAs6q5aTq2xNCo/aTiQ9eGeztxjn7dXNFlNlon65ibfqmLuD Tgt+XCT3z7oa0FuwOyVDFNE9PFnA9hpcGPrK0N2ZD/r5xCZzLxsndfGZK6xLmc+9 tmLhbhG/RbvyhcCgJ9fKFzc8fkxvOSI+PKrgA6GpKkvIFXrOKF9sZ2VFI9cQ7Ogs GXeIPqj+XtZKFhIQhYCUCaPFPVkVvbMcYBX7RTWIMlEVMVQAPp74xn2p/05cPeld rXGgOqDa3IKueXuTWw0szO2NZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGdEAH5L Vx68JRbICEHS0R0bOcFYMB8GA1UdIwQYMBaAFHIheNWR2YWWieS5Ly0Mh/pH414K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAxMC81N0I3NjcxQUMy MUMxMUU5ODRBMTVEMTJDNEY5QUUwMi9jaUY0MVpIWmhaYUo1TGt2TFF5SC1rZmpY Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NpRjQxWkhaaFphSjVMa3ZMUXlILWtmalhnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDAxMC81N0I3NjcxQUMyMUMxMUU5ODRBMTVEMTJDNEY5QUUwMi9jaUY0MVpIWmha YUo1TGt2TFF5SC1rZmpYZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6Pm9f4rqdlBAf2qFhr6CJxBo8H+90k/g9oSoTUFFJctVGNSbjRq/e S5imW7hBftrJjBGk6R6MwSRc1Dd1jebLZ8EjSc7LHK0adADD2pm1+edR/wPSjWoC z5RFyTAPfRL5KJOfP+UFqGhSLYhp5AqHPY27Vk2yJxSxWMaOEiFmCfTj83QTly7e za8Ca75+KUglpJByRhm+HcXz2XgT1HXqpctdieWxn2huKxwTi1XMfX9xtX5S+Ock NLyegUxRzHBOeALnGVE/rn0fNh/b3UzSNRXGz2cRn+tC0ZgGoMZ3nLu8kMp3/IyT IZFSbyi+/ObXBvZj/NvIbUC3wDqmJwsL -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:05 2025 by rpki-client