$ rpki-client -vvf rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft File: k0_yOzjsbVimyqtwe3lVUcicMf0.mft (raw, json) Hash identifier: a6FXadhCb06oiISqGUnnDftzV9oQrZJG30/joHYEMSc= Subject key identifier: 8F:D5:E3:71:13:06:96:DC:D4:60:75:4C:22:9B:13:D3:98:FE:96:18 Authority key identifier: 93:4F:F2:3B:38:EC:6D:58:A6:CA:AB:70:7B:79:55:51:C8:9C:31:FD Certificate issuer: /CN=A917392B/serialNumber=934FF23B38EC6D58A6CAAB707B795551C89C31FD Certificate serial: 04C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft Manifest number: 04C1 Signing time: Tue 04 Nov 2025 23:57:37 +0000 Manifest this update: Tue 04 Nov 2025 23:57:37 +0000 Manifest next update: Tue 11 Nov 2025 23:57:37 +0000 Files and hashes: 1: k0_yOzjsbVimyqtwe3lVUcicMf0.crl (hash: B0biEAOo4x6J3kqhKp2CLyG2xe8rk/crrUUgu7G0lD0=) 2: B7BE1DAC482511ECA1A68F13C4F9AE02.roa (hash: QSS01Cht+60Ca3lCH+aUYEQ83cHrjHOe9Xz/oSR4PIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.crl rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:57:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1222 (0x4c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917392B, serialNumber=934FF23B38EC6D58A6CAAB707B795551C89C31FD Validity Not Before: Nov 4 23:57:37 2025 GMT Not After : Nov 11 23:57:37 2025 GMT Subject: CN=690a92f1-c720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:5d:9c:2b:6f:bb:ee:0e:e0:ff:dd:ab:f3:b0: c9:1c:22:3d:a9:ac:ec:c8:7a:b6:97:4e:43:95:2b: 91:bc:9e:67:37:e9:18:51:6f:bb:3f:92:c2:8f:c4: 22:2a:5c:33:4e:b6:9f:bc:c2:f2:3b:3e:ca:c9:d1: 55:e5:55:cd:30:06:f5:87:05:ef:6a:64:27:9a:5a: 8a:1d:b8:3e:c2:91:37:6e:1a:54:20:a4:01:aa:22: d4:85:ad:34:48:3a:6b:33:f2:02:28:05:88:cb:4f: 51:6f:68:20:7c:94:04:dd:18:3e:a1:8b:e2:07:17: 11:eb:73:d3:ee:4a:3e:c5:df:bf:39:60:85:32:27: 88:d0:76:ab:b6:ea:c0:04:7a:18:28:4f:ad:c7:4a: 4c:ae:61:13:2f:04:7e:9a:bf:8b:dd:ba:fd:5f:e3: 8b:04:c3:34:af:52:ff:b5:0e:bd:34:e7:b4:d6:0e: f4:4d:24:fe:ea:00:41:dd:32:63:48:54:57:f0:17: e8:00:89:10:37:a8:71:2b:c0:fd:11:ca:94:f1:73: a7:18:4a:fa:aa:3b:5b:8e:bd:b3:69:fe:c5:f4:f9: e1:de:de:6d:fe:89:ea:0b:3b:c5:55:8e:6e:84:ad: 40:cf:02:cc:b4:23:0f:be:73:42:d5:14:62:60:91: d9:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:D5:E3:71:13:06:96:DC:D4:60:75:4C:22:9B:13:D3:98:FE:96:18 X509v3 Authority Key Identifier: keyid:93:4F:F2:3B:38:EC:6D:58:A6:CA:AB:70:7B:79:55:51:C8:9C:31:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:90:89:17:b4:7e:6c:09:f4:45:7f:3a:85:b9:0a:f9:c6:ba: e2:7d:4a:c5:4e:e4:7c:a3:81:32:1d:6a:0d:69:cd:28:65:c2: 20:71:e5:5a:22:a3:5c:13:e0:dc:2d:27:31:55:5f:5d:83:4c: 8e:59:78:ef:b7:f8:0d:e1:66:6d:35:58:8a:ac:c2:0d:bb:dd: 1c:1d:92:89:6f:c6:dd:55:c6:0b:89:d8:d9:59:0a:fe:29:3c: b4:50:42:36:d9:11:69:16:8e:08:e6:87:e3:b4:62:1d:78:bb: 13:cd:1d:20:35:04:69:a2:01:1d:92:a6:69:42:8d:54:6f:11: 1c:42:b4:15:81:c0:66:8a:0e:81:62:00:c5:1f:0b:75:95:4d: 8b:80:c0:be:84:d8:21:5a:7b:d8:01:dc:36:87:85:3f:21:67: b5:8e:2f:27:ad:5a:00:f1:73:7f:1a:e0:6c:21:7e:0c:02:77: f1:5d:bb:23:6c:01:6c:3c:ba:f3:f0:7f:44:86:61:85:66:3d: be:de:59:0f:7e:5b:e9:e9:25:28:0b:24:18:3d:71:e1:cd:da: 37:2d:5f:a2:ae:7e:0e:a2:37:98:ce:4d:51:27:2a:9f:60:09: 65:4f:35:f5:3e:43:a2:37:56:fe:c9:67:a2:19:60:92:0e:68: a2:a1:91:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM5MkIxMTAvBgNVBAUTKDkzNEZGMjNCMzhFQzZENThBNkNBQUI3MDdCNzk1NTUx Qzg5QzMxRkQwHhcNMjUxMTA0MjM1NzM3WhcNMjUxMTExMjM1NzM3WjAYMRYwFAYD VQQDEw02OTBhOTJmMS1jNzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA512cK2+77g7g/92r87DJHCI9qazsyHq2l05DlSuRvJ5nN+kYUW+7P5LCj8Qi KlwzTrafvMLyOz7KydFV5VXNMAb1hwXvamQnmlqKHbg+wpE3bhpUIKQBqiLUha00 SDprM/ICKAWIy09Rb2ggfJQE3Rg+oYviBxcR63PT7ko+xd+/OWCFMieI0HarturA BHoYKE+tx0pMrmETLwR+mr+L3br9X+OLBMM0r1L/tQ69NOe01g70TST+6gBB3TJj SFRX8BfoAIkQN6hxK8D9EcqU8XOnGEr6qjtbjr2zaf7F9Pnh3t5t/onqCzvFVY5u hK1AzwLMtCMPvnNC1RRiYJHZVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/V43ET Bpbc1GB1TCKbE9OY/pYYMB8GA1UdIwQYMBaAFJNP8js47G1YpsqrcHt5VVHInDH9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzkyQi9CMjBEQUQ2NjQ4 MjMxMUVDOTM3NjgzMTJDNEY5QUUwMi9rMF95T3pqc2JWaW15cXR3ZTNsVlVjaWNN ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2swX3lPempzYlZpbXlxdHdlM2xWVWNpY01mMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzkyQi9CMjBEQUQ2NjQ4MjMxMUVDOTM3NjgzMTJDNEY5QUUwMi9rMF95T3pqc2JW aW15cXR3ZTNsVlVjaWNNZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnkIkXtH5sCfRFfzqFuQr5xrrifUrFTuR8o4EyHWoNac0oZcIgceVa IqNcE+DcLScxVV9dg0yOWXjvt/gN4WZtNViKrMINu90cHZKJb8bdVcYLidjZWQr+ KTy0UEI22RFpFo4I5ofjtGIdeLsTzR0gNQRpogEdkqZpQo1UbxEcQrQVgcBmig6B YgDFHwt1lU2LgMC+hNghWnvYAdw2h4U/IWe1ji8nrVoA8XN/GuBsIX4MAnfxXbsj bAFsPLrz8H9EhmGFZj2+3lkPflvp6SUoCyQYPXHhzdo3LV+irn4OojeYzk1RJyqf YAllTzX1PkOiN1b+yWeiGWCSDmiioZES -----END CERTIFICATE-----Generated at Wed Nov 5 18:09:25 2025 by rpki-client