$ rpki-client -vvf rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft File: 1fozYzT5muNj6lhn0o6KUCMeQiA.mft (raw, json) Hash identifier: qAjxoPo8dIOO/m/BJaFXoJRyOuayJ57a4ql0XHidcVI= Subject key identifier: F6:ED:6C:F1:03:3C:1A:8A:6B:0B:E1:99:8E:C6:9D:97:38:C0:A5:6D Authority key identifier: D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 Certificate issuer: /CN=A915F2B8/serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Certificate serial: 01EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft Manifest number: 01E9 Signing time: Wed 05 Nov 2025 02:43:37 +0000 Manifest this update: Wed 05 Nov 2025 02:43:37 +0000 Manifest next update: Wed 12 Nov 2025 02:43:37 +0000 Files and hashes: 1: 1fozYzT5muNj6lhn0o6KUCMeQiA.crl (hash: 1ZZ2Mt5+M8ecdmLZJauaR0eTEkWiyTS1uqkVqSmrECk=) 2: 207C45B0CC2F11EDABE25F72C4F9AE02.roa (hash: 445y7dnFbGIJcED/nA18M8HZ1X9DaCKTToZbs8yrxpI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:43:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F2B8, serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Validity Not Before: Nov 5 02:43:37 2025 GMT Not After : Nov 12 02:43:37 2025 GMT Subject: CN=690ab9d9-1ba8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8e:0c:de:2b:55:c3:4f:28:85:7a:b4:d5:ab: 7e:71:93:d7:d0:4e:ad:11:bf:ec:e3:49:74:29:40: 4b:66:04:2a:02:75:a5:ce:3b:5d:bb:a4:d1:20:1f: 9e:1b:77:1b:bc:8c:9c:0b:e5:92:c5:a1:a3:7f:88: 8c:29:5b:eb:67:64:82:87:a8:93:ff:de:eb:7e:3b: b4:54:ec:3e:ec:e3:78:19:b8:7e:d9:3b:27:74:81: c9:19:16:d1:4f:db:30:40:46:61:4e:b7:cf:d0:5d: 48:93:69:51:a0:dc:46:e3:12:81:4e:1b:05:cd:6e: 61:64:33:7d:f5:ba:81:91:cd:9c:33:2b:c6:c0:d7: c8:f8:9a:70:f4:30:0e:fb:e2:75:05:09:d8:ec:1d: 4b:73:93:5e:ac:b4:93:0c:c6:cb:a7:ae:d3:ee:4d: 7b:68:61:5f:38:90:09:8b:06:a6:35:3a:bc:95:22: ed:5c:14:8c:00:28:df:30:76:13:00:66:fa:ec:51: 42:3a:27:d1:26:3b:87:fc:3f:07:ac:a7:76:d6:b3: 14:97:21:b4:4a:b7:e6:0d:2a:86:b8:0d:92:9d:00: 85:07:60:03:bf:06:e0:89:93:97:94:ad:06:ad:9e: 8f:0b:f5:5b:40:42:d7:d1:d0:1d:3a:18:01:dc:cf: 7d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:ED:6C:F1:03:3C:1A:8A:6B:0B:E1:99:8E:C6:9D:97:38:C0:A5:6D X509v3 Authority Key Identifier: keyid:D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:c2:1c:99:b1:7a:08:7d:28:f5:49:f0:ed:79:be:d1:dc:80: f6:55:45:03:12:f7:6d:51:7f:20:4b:9f:36:cd:e3:b4:fa:17: d4:4f:15:61:d3:53:0e:63:74:28:5f:7d:05:d7:9a:57:e2:8c: 02:50:31:86:2a:d4:33:a5:04:6a:0f:dd:c9:38:32:aa:8e:f4: 04:54:ed:e5:b6:fe:b2:ba:62:af:5f:36:6b:fd:b4:97:b7:32: 91:ad:2a:08:f4:30:02:e1:da:aa:0d:05:41:51:96:65:b1:70: 03:3f:6e:92:0d:fe:3d:b5:16:a6:be:16:ba:bc:90:43:23:04: d6:6d:85:b7:5b:a3:f7:8b:5a:54:39:e9:88:f2:1b:ca:27:e4: 2b:c5:a6:54:48:81:ec:02:d3:97:61:68:bb:c0:47:87:3d:49: d9:d7:09:12:f1:a3:c2:da:2e:91:47:27:eb:3c:bb:b9:21:b2: 13:83:58:a4:48:63:6e:64:b9:25:fe:d7:64:c7:98:11:ae:8a: 8d:71:3f:23:89:e6:4a:e2:40:09:d3:b2:5c:a2:f0:e7:b4:3c: 8e:ba:d5:40:d6:fb:09:8d:78:85:d9:04:cf:c7:b4:2e:9e:2a: 8c:81:6d:5c:4a:79:4a:7c:09:eb:16:f3:3e:29:5e:d5:61:53: 38:cb:6a:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUYyQjgxMTAvBgNVBAUTKEQ1RkEzMzYzMzRGOTlBRTM2M0VBNTg2N0QyOEU4QTUw MjMxRTQyMjAwHhcNMjUxMTA1MDI0MzM3WhcNMjUxMTEyMDI0MzM3WjAYMRYwFAYD VQQDEw02OTBhYjlkOS0xYmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyI4M3itVw08ohXq01at+cZPX0E6tEb/s40l0KUBLZgQqAnWlzjtdu6TRIB+e G3cbvIycC+WSxaGjf4iMKVvrZ2SCh6iT/97rfju0VOw+7ON4Gbh+2TsndIHJGRbR T9swQEZhTrfP0F1Ik2lRoNxG4xKBThsFzW5hZDN99bqBkc2cMyvGwNfI+Jpw9DAO ++J1BQnY7B1Lc5NerLSTDMbLp67T7k17aGFfOJAJiwamNTq8lSLtXBSMACjfMHYT AGb67FFCOifRJjuH/D8HrKd21rMUlyG0SrfmDSqGuA2SnQCFB2ADvwbgiZOXlK0G rZ6PC/VbQELX0dAdOhgB3M99WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPbtbPED PBqKawvhmY7GnZc4wKVtMB8GA1UdIwQYMBaAFNX6M2M0+ZrjY+pYZ9KOilAjHkIg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjJCOC8yRjE3NjA4QUND MkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11Tmo2bGhuMG82S1VDTWVR aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmb3pZelQ1bXVOajZsaG4wbzZLVUNNZVFpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjJCOC8yRjE3NjA4QUNDMkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11 Tmo2bGhuMG82S1VDTWVRaUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPwhyZsXoIfSj1SfDteb7R3ID2VUUDEvdtUX8gS582zeO0+hfUTxVh 01MOY3QoX30F15pX4owCUDGGKtQzpQRqD93JODKqjvQEVO3ltv6yumKvXzZr/bSX tzKRrSoI9DAC4dqqDQVBUZZlsXADP26SDf49tRamvha6vJBDIwTWbYW3W6P3i1pU OemI8hvKJ+QrxaZUSIHsAtOXYWi7wEeHPUnZ1wkS8aPC2i6RRyfrPLu5IbITg1ik SGNuZLkl/tdkx5gRroqNcT8jieZK4kAJ07JcovDntDyOutVA1vsJjXiF2QTPx7Qu niqMgW1cSnlKfAnrFvM+KV7VYVM4y2qm -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:06 2025 by rpki-client