$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft File: 1jZSRQ6nVZE88xr8-popIaSK4aQ.mft (raw, json) Hash identifier: beBfGLvWLBRtmMiNtCimbzavuSQe92vdO04LO6yCTsI= Subject key identifier: FE:A2:A5:3A:CE:AB:D3:53:2E:7E:3D:50:93:06:64:A6:28:67:AD:60 Authority key identifier: D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 Certificate issuer: /CN=A917BB1B/serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Certificate serial: 043D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft Manifest number: 0436 Signing time: Mon 03 Nov 2025 00:15:12 +0000 Manifest this update: Mon 03 Nov 2025 00:15:11 +0000 Manifest next update: Mon 10 Nov 2025 00:15:11 +0000 Files and hashes: 1: 1jZSRQ6nVZE88xr8-popIaSK4aQ.crl (hash: tLQKV3wQC/H90peZT//BjUx4i3OzKUkh9a3xObu3//c=) 2: E69DB7E67F7911EC86DE4B56C4F9AE02.roa (hash: SCsr6a/OxC+h0TbqqqQWA1WP6sx9Kte4TE8O/kgTqE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:15:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1085 (0x43d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB1B, serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Validity Not Before: Nov 3 00:15:11 2025 GMT Not After : Nov 10 00:15:11 2025 GMT Subject: CN=6907f410-556a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b5:69:e0:c9:ef:92:d2:e9:4b:8d:b1:7b:12: b1:2c:5a:94:eb:5b:dd:92:56:3c:78:29:82:2c:17: fb:a4:ce:0f:44:59:2e:16:8e:fe:98:d4:a5:56:8c: fd:47:20:4b:23:3c:9b:b9:5f:f4:49:c3:3e:bd:7b: c1:6f:cf:15:74:f5:a6:e7:8b:8f:b0:46:71:c5:d7: 68:ac:28:ed:b2:1f:81:28:6f:41:1e:bd:f8:22:9a: ae:ec:57:20:b8:10:4d:0d:a7:e9:59:e7:13:d4:76: c8:29:cb:e2:ba:22:4a:c1:a3:9f:28:17:89:c8:2a: 50:2c:d7:91:92:cb:a5:fa:1e:8c:7b:94:9f:1d:1c: 6b:8c:3a:1a:e9:24:5a:b9:e3:7e:df:a7:c3:73:bb: ae:75:a9:45:0e:91:0b:1d:2e:e6:53:61:9e:d8:54: 4e:b9:f5:41:23:88:81:c0:3f:15:57:2a:16:5b:f3: fe:d5:04:1a:6f:ea:ab:f0:5a:1d:7c:e1:1d:cf:75: 87:9a:5c:b2:ca:f8:8a:e7:35:b5:03:71:38:f2:32: d5:85:4f:a8:92:89:40:1d:e7:34:ed:23:3b:bb:43: 1a:f5:71:23:f5:ec:1a:ed:b8:ef:99:ec:9a:88:e6: 51:59:14:0f:cb:8e:5c:17:d5:d7:31:22:a5:1c:50: ed:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:A2:A5:3A:CE:AB:D3:53:2E:7E:3D:50:93:06:64:A6:28:67:AD:60 X509v3 Authority Key Identifier: keyid:D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:de:d4:7d:99:76:cb:57:4a:15:bc:c8:97:b6:c9:0a:42:1e: 1d:20:15:c0:e4:0e:41:0a:49:d4:b9:2f:01:e6:d8:90:bf:34: 99:c1:28:95:40:91:32:c9:58:57:73:aa:d4:e3:9d:2a:0c:68: 1a:32:fd:ac:b0:52:be:5b:7b:01:1d:48:b4:fa:3c:e2:01:48: c4:8f:02:74:e1:01:87:d0:fd:a5:c2:8e:05:1f:d2:65:68:8c: 58:26:24:eb:a7:88:36:bd:6e:7b:38:ef:fc:46:68:28:18:55: 23:c2:5d:a9:02:c3:f0:3a:03:8a:c4:7d:86:8f:16:89:03:9e: 73:2e:3a:8c:17:c2:86:46:be:29:b4:24:22:a2:57:39:d0:d5: 4b:15:6b:39:5d:d1:40:0c:35:42:99:ff:15:ca:a2:1c:33:67: 7e:21:61:63:d8:d7:96:ea:7b:ba:71:60:8c:2b:fe:c1:21:f3: 25:64:cd:e3:bb:09:2d:35:4c:43:cc:8f:e7:a6:0d:4b:1e:20: da:e8:a8:54:51:e9:c1:62:de:07:29:56:f1:4d:86:d8:d7:66: 63:32:6a:78:ce:a5:64:62:1c:c2:75:9e:76:38:60:32:1c:55: a8:68:32:b8:a8:73:7d:5c:33:ce:cd:cd:e9:d5:71:bd:80:27: a8:95:40:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBD0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCMUIxMTAvBgNVBAUTKEQ2MzY1MjQ1MEVBNzU1OTEzQ0YzMUFGQ0ZBOUEyOTIx QTQ4QUUxQTQwHhcNMjUxMTAzMDAxNTExWhcNMjUxMTEwMDAxNTExWjAYMRYwFAYD VQQDEw02OTA3ZjQxMC01NTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsLVp4MnvktLpS42xexKxLFqU61vdklY8eCmCLBf7pM4PRFkuFo7+mNSlVoz9 RyBLIzybuV/0ScM+vXvBb88VdPWm54uPsEZxxddorCjtsh+BKG9BHr34Ipqu7Fcg uBBNDafpWecT1HbIKcviuiJKwaOfKBeJyCpQLNeRksul+h6Me5SfHRxrjDoa6SRa ueN+36fDc7uudalFDpELHS7mU2Ge2FROufVBI4iBwD8VVyoWW/P+1QQab+qr8Fod fOEdz3WHmlyyyviK5zW1A3E48jLVhU+okolAHec07SM7u0Ma9XEj9ewa7bjvmeya iOZRWRQPy45cF9XXMSKlHFDtDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP6ipTrO q9NTLn49UJMGZKYoZ61gMB8GA1UdIwQYMBaAFNY2UkUOp1WRPPMa/PqaKSGkiuGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkIxQi9EOUI5Qzg4QzdG MzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZaRTg4eHI4LXBvcElhU0s0 YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFqWlNSUTZuVlpFODh4cjgtcG9wSWFTSzRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkIxQi9EOUI5Qzg4QzdGMzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZa RTg4eHI4LXBvcElhU0s0YVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD3tR9mXbLV0oVvMiXtskKQh4dIBXA5A5BCknUuS8B5tiQvzSZwSiV QJEyyVhXc6rU450qDGgaMv2ssFK+W3sBHUi0+jziAUjEjwJ04QGH0P2lwo4FH9Jl aIxYJiTrp4g2vW57OO/8RmgoGFUjwl2pAsPwOgOKxH2GjxaJA55zLjqMF8KGRr4p tCQiolc50NVLFWs5XdFADDVCmf8VyqIcM2d+IWFj2NeW6nu6cWCMK/7BIfMlZM3j uwktNUxDzI/npg1LHiDa6KhUUenBYt4HKVbxTYbY12ZjMmp4zqVkYhzCdZ52OGAy HFWoaDK4qHN9XDPOzc3p1XG9gCeolUCk -----END CERTIFICATE-----Generated at Mon Nov 3 18:20:13 2025 by rpki-client