$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft File: AiMNlU5PPWqtRJXXTNs-4PKHygc.mft (raw, json) Hash identifier: Skj2XLHHYETLTVflzZx9/TWydiQJmzGq5+2qkFjvgVs= Subject key identifier: A7:91:3E:F0:55:00:38:DC:F5:C4:04:69:97:0C:F3:DD:BA:ED:1F:13 Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 2416 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft Manifest number: 23E7 Signing time: Tue 04 Nov 2025 15:53:06 +0000 Manifest this update: Tue 04 Nov 2025 15:53:06 +0000 Manifest next update: Tue 11 Nov 2025 15:53:06 +0000 Files and hashes: 1: AiMNlU5PPWqtRJXXTNs-4PKHygc.crl (hash: WfZ7OmnINREkOtKCTdj+QYwar+yoF1/qeB6CATm6NrQ=) 2: 32B76C00562411E79589C739C4F9AE02.roa (hash: kqhMnfAhDmR4IZ0Axmi5T1EoQ78FgGAVuc9AOLKd1P0=) 3: 7DBDA87C561A11E79F98831DC4F9AE02.roa (hash: m/PBzrUGWugPaCGagvAaIChjvxuAIIbVmkI5yx8UVT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:53:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9238 (0x2416) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6, serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Validity Not Before: Nov 4 15:53:06 2025 GMT Not After : Nov 11 15:53:06 2025 GMT Subject: CN=690a2162-1f13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a4:ed:8c:d2:e7:a9:73:8a:a1:a4:4c:49:24: c5:18:d1:06:91:1d:1b:8c:b9:22:bf:27:3e:e5:3b: 99:17:31:84:f9:d5:1a:d2:d2:c4:3e:d5:47:1b:a2: c6:98:32:e2:f1:bc:51:d5:9b:a9:70:e2:b3:04:e8: 6e:c8:5c:ec:1f:8a:55:7a:68:6b:2a:a3:b1:9f:80: bd:d6:dd:65:3c:f6:46:74:a0:40:0c:cc:af:a1:87: 31:1c:2d:e7:7d:d1:41:49:91:93:4b:9d:f1:d2:60: 31:6e:fc:60:2d:86:08:13:a8:31:b5:e6:0a:bf:e8: c7:dd:10:82:b5:e0:5c:66:c7:be:e0:df:e0:a9:e9: 2f:89:95:6b:c2:79:64:cc:ea:8a:bd:f6:4b:7e:83: 62:37:9b:0e:1b:cf:ce:44:33:16:ee:23:cf:d7:f3: 78:77:98:92:04:85:e7:1c:f7:49:6f:c1:9d:b9:42: f0:f2:f9:a2:d1:c9:b7:cc:57:db:3b:9b:91:35:49: 54:6d:a0:8a:b5:5b:02:94:cc:69:50:81:ae:21:29: cb:07:2f:f5:b6:38:cb:f6:e4:4c:df:db:40:61:3a: a7:90:04:f2:d3:2d:53:19:f6:fa:75:fc:41:73:02: 22:d4:ff:c7:a1:6f:40:62:0b:ca:0b:d4:21:1c:ef: 46:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:91:3E:F0:55:00:38:DC:F5:C4:04:69:97:0C:F3:DD:BA:ED:1F:13 X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:17:46:00:f3:02:79:14:aa:a6:03:5e:ac:c4:12:c9:d9:b4: 1c:e0:d6:01:2e:b9:71:23:7f:16:64:c1:e0:4f:d4:22:3e:6e: b2:ff:9f:a6:2c:fb:98:94:16:65:e1:61:04:96:5c:2c:db:b7: 39:01:34:28:95:ba:94:f1:a9:e4:6f:f9:93:28:33:1a:04:a3: 93:da:4a:c2:71:ec:12:22:3a:e1:0d:1a:eb:94:a9:5a:85:13: 38:4b:ac:63:92:d6:df:59:8d:58:9a:d4:ee:9b:41:60:e1:df: fe:96:f2:64:d3:b5:8c:94:0c:7e:d6:3d:2d:f7:05:99:92:b9: 72:a6:dd:ea:df:36:b6:c5:8f:b3:6b:0f:5e:3e:f2:85:82:51: 03:f5:ee:5c:ca:4a:ab:1b:16:c1:06:33:91:03:41:d3:dc:fe: 8f:76:8d:6c:7a:fc:e1:ab:05:26:8e:d2:7d:fd:24:11:5a:54: 07:37:03:23:78:2b:49:7f:48:8d:3c:d7:4d:fd:a6:af:f6:a7: 2d:81:8b:00:ce:a4:fe:38:96:f8:d1:ef:b5:1b:bc:ee:2d:b0: 2f:03:04:3a:ea:ab:dd:8c:40:bc:76:d5:00:d0:5f:c9:bd:a5: a7:b2:87:e5:ae:38:65:51:99:e5:1f:c9:12:95:c7:31:07:20: 7e:c8:dd:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjUxMTA0MTU1MzA2WhcNMjUxMTExMTU1MzA2WjAYMRYwFAYD VQQDEw02OTBhMjE2Mi0xZjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6TtjNLnqXOKoaRMSSTFGNEGkR0bjLkivyc+5TuZFzGE+dUa0tLEPtVHG6LG mDLi8bxR1ZupcOKzBOhuyFzsH4pVemhrKqOxn4C91t1lPPZGdKBADMyvoYcxHC3n fdFBSZGTS53x0mAxbvxgLYYIE6gxteYKv+jH3RCCteBcZse+4N/gqekviZVrwnlk zOqKvfZLfoNiN5sOG8/ORDMW7iPP1/N4d5iSBIXnHPdJb8GduULw8vmi0cm3zFfb O5uRNUlUbaCKtVsClMxpUIGuISnLBy/1tjjL9uRM39tAYTqnkATy0y1TGfb6dfxB cwIi1P/HoW9AYgvKC9QhHO9GWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKeRPvBV ADjc9cQEaZcM89267R8TMB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRDNi84REZFNjI4ODc4QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBX cXRSSlhYVE5zLTRQS0h5Z2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAF0YA8wJ5FKqmA16sxBLJ2bQc4NYBLrlxI38WZMHgT9QiPm6y/5+m LPuYlBZl4WEEllws27c5ATQolbqU8ankb/mTKDMaBKOT2krCcewSIjrhDRrrlKla hRM4S6xjktbfWY1YmtTum0Fg4d/+lvJk07WMlAx+1j0t9wWZkrlypt3q3za2xY+z aw9ePvKFglED9e5cykqrGxbBBjORA0HT3P6Pdo1sevzhqwUmjtJ9/SQRWlQHNwMj eCtJf0iNPNdN/aav9qctgYsAzqT+OJb40e+1G7zuLbAvAwQ66qvdjEC8dtUA0F/J vaWnsoflrjhlUZnlH8kSlccxByB+yN2K -----END CERTIFICATE-----Generated at Wed Nov 5 05:26:24 2025 by rpki-client