$ rpki-client -vvf rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.mft File: mm0VemfN-P9qHM6gPkPkwtlb-G0.mft (raw, json) Hash identifier: //R+NASVCuE6wB627gNqCdviwaYEWjlS/CIm0xPTNKc= Subject key identifier: A2:75:26:3E:3C:CA:EB:44:1C:37:C7:17:13:E4:B4:E4:05:68:A1:E5 Authority key identifier: 9A:6D:15:7A:67:CD:F8:FF:6A:1C:CE:A0:3E:43:E4:C2:D9:5B:F8:6D Certificate issuer: /CN=A915E777/serialNumber=9A6D157A67CDF8FF6A1CCEA03E43E4C2D95BF86D Certificate serial: 0FE4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mm0VemfN-P9qHM6gPkPkwtlb-G0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.mft Manifest number: 0FE4 Signing time: Tue 04 Nov 2025 17:34:21 +0000 Manifest this update: Tue 04 Nov 2025 17:34:20 +0000 Manifest next update: Tue 11 Nov 2025 17:34:20 +0000 Files and hashes: 1: mm0VemfN-P9qHM6gPkPkwtlb-G0.crl (hash: eNXjFoxcOPr9NezIt6apSxoDWiCz8qc35JYGxMg1/2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.crl rsync://rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mm0VemfN-P9qHM6gPkPkwtlb-G0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4068 (0xfe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E777, serialNumber=9A6D157A67CDF8FF6A1CCEA03E43E4C2D95BF86D Validity Not Before: Nov 4 17:34:20 2025 GMT Not After : Nov 11 17:34:20 2025 GMT Subject: CN=690a391d-1d71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:4a:01:4e:dc:7b:48:76:fe:a9:d0:f0:e7:43: 9f:20:fe:c7:8f:04:0c:82:2b:3a:32:ee:65:72:60: 1f:69:55:5d:23:ef:0c:78:fe:a1:46:2f:34:49:aa: e3:0b:43:40:fb:5e:bf:b2:c4:82:46:f4:5d:40:87: 48:4c:9d:24:bc:47:ce:ca:e1:ee:cb:7a:0b:2b:e3: 85:ec:1f:cb:21:51:ec:e7:2b:4d:9e:51:4c:4a:3b: 41:1d:d9:26:74:f1:2b:03:95:66:ca:4a:07:28:53: 4a:6d:7b:e3:c7:56:4f:6e:db:e1:f2:57:bf:89:6e: 70:79:a7:de:2a:59:bf:a8:9c:5b:7f:e8:1b:68:d7: 1f:73:82:55:36:4b:5d:1a:27:1d:60:00:b3:8e:7a: 13:98:db:4e:56:2e:2d:04:1f:30:09:06:8b:09:fd: b2:d4:39:39:c1:a9:3e:81:3a:57:0b:18:e1:ed:c1: 54:bf:8b:dd:f8:ac:a4:29:c9:49:6c:52:6c:11:c4: df:4c:98:1c:17:00:97:b9:c0:39:d5:34:43:31:58: b6:ff:ce:9e:68:4e:c5:46:27:de:db:2f:d4:6b:fc: c5:ae:15:76:4a:db:57:05:a1:88:73:5e:34:3b:97: 8d:5f:99:da:29:e2:93:55:a9:56:ed:fa:0b:2f:29: 8b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:75:26:3E:3C:CA:EB:44:1C:37:C7:17:13:E4:B4:E4:05:68:A1:E5 X509v3 Authority Key Identifier: keyid:9A:6D:15:7A:67:CD:F8:FF:6A:1C:CE:A0:3E:43:E4:C2:D9:5B:F8:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mm0VemfN-P9qHM6gPkPkwtlb-G0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:aa:49:ef:62:24:2a:b8:3c:8e:5c:8f:de:64:3b:c3:d0:4e: 56:14:48:7f:8c:c5:a0:fe:bd:c4:87:17:f0:c9:2f:c2:c6:d0: 4d:d5:dc:53:3b:1a:4a:62:db:e4:41:ef:13:a8:f9:66:37:fe: 0c:cf:ee:e8:04:00:58:50:c3:51:52:f3:b9:c6:af:a5:62:31: bb:ba:5b:6e:a0:12:fb:8a:7a:6b:64:f0:be:88:2b:39:69:c3: 2f:ea:41:12:9c:bc:5a:4e:5c:c5:28:35:07:5d:d7:7b:35:33: d4:b9:4c:1f:b7:44:e2:97:59:3d:55:4c:6b:db:00:a2:ea:79: af:ad:5a:fc:9e:9f:b7:d5:88:81:11:38:cc:b1:64:13:91:79: 62:90:09:fa:73:0f:c0:3c:11:10:9a:45:68:3a:3f:e6:1b:8b: 13:95:30:d8:a3:ce:23:d9:bc:30:1b:fd:0f:b2:74:95:79:cd: d0:d6:8a:ae:66:cb:f9:40:61:0e:ec:33:3a:2c:87:2e:5b:a7: 76:ee:a5:2b:b1:69:9d:6c:b1:2f:2b:25:99:95:ee:40:10:b4: d7:e8:fe:23:3c:08:ad:77:83:f0:e8:12:b0:66:e8:01:ee:b7: 23:1c:27:67:06:cc:5c:5c:b9:ff:6e:04:be:f1:dc:b2:d3:bb: 81:6a:93:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3NzcxMTAvBgNVBAUTKDlBNkQxNTdBNjdDREY4RkY2QTFDQ0VBMDNFNDNFNEMy RDk1QkY4NkQwHhcNMjUxMTA0MTczNDIwWhcNMjUxMTExMTczNDIwWjAYMRYwFAYD VQQDEw02OTBhMzkxZC0xZDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoEoBTtx7SHb+qdDw50OfIP7HjwQMgis6Mu5lcmAfaVVdI+8MeP6hRi80Sarj C0NA+16/ssSCRvRdQIdITJ0kvEfOyuHuy3oLK+OF7B/LIVHs5ytNnlFMSjtBHdkm dPErA5VmykoHKFNKbXvjx1ZPbtvh8le/iW5weafeKlm/qJxbf+gbaNcfc4JVNktd GicdYACzjnoTmNtOVi4tBB8wCQaLCf2y1Dk5wak+gTpXCxjh7cFUv4vd+KykKclJ bFJsEcTfTJgcFwCXucA51TRDMVi2/86eaE7FRife2y/Ua/zFrhV2SttXBaGIc140 O5eNX5naKeKTValW7foLLymLjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJ1Jj48 yutEHDfHFxPktOQFaKHlMB8GA1UdIwQYMBaAFJptFXpnzfj/ahzOoD5D5MLZW/ht MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Ny82NkE0MDM2MjVD RTgxMUU5QTJFREYzMkJDNEY5QUUwMi9tbTBWZW1mTi1QOXFITTZnUGtQa3d0bGIt RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21tMFZlbWZOLVA5cUhNNmdQa1Brd3RsYi1HMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Ny82NkE0MDM2MjVDRTgxMUU5QTJFREYzMkJDNEY5QUUwMi9tbTBWZW1mTi1Q OXFITTZnUGtQa3d0bGItRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmqknvYiQquDyOXI/eZDvD0E5WFEh/jMWg/r3EhxfwyS/CxtBN1dxT OxpKYtvkQe8TqPlmN/4Mz+7oBABYUMNRUvO5xq+lYjG7ultuoBL7inprZPC+iCs5 acMv6kESnLxaTlzFKDUHXdd7NTPUuUwft0Til1k9VUxr2wCi6nmvrVr8np+31YiB ETjMsWQTkXlikAn6cw/APBEQmkVoOj/mG4sTlTDYo84j2bwwG/0PsnSVec3Q1oqu Zsv5QGEO7DM6LIcuW6d27qUrsWmdbLEvKyWZle5AELTX6P4jPAitd4Pw6BKwZugB 7rcjHCdnBsxcXLn/bgS+8dyy07uBapMN -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:05 2025 by rpki-client