$ rpki-client -vvf rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft File: cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft (raw, json) Hash identifier: znbPnVRQQel4toMlX9CRe4ChrUq3Yvu8ab+LPj7b5mQ= Subject key identifier: D7:37:2F:2D:F9:39:D1:9B:BE:CB:5E:58:EB:04:5A:75:49:9E:CC:73 Authority key identifier: 70:7D:48:60:5A:0D:85:77:2F:90:DC:4B:11:72:BE:F3:02:94:A0:87 Certificate issuer: /CN=A919D49F/serialNumber=707D48605A0D85772F90DC4B1172BEF30294A087 Certificate serial: 10BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cH1IYFoNhXcvkNxLEXK-8wKUoIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft Manifest number: 10B2 Signing time: Tue 04 Nov 2025 17:24:44 +0000 Manifest this update: Tue 04 Nov 2025 17:24:43 +0000 Manifest next update: Tue 11 Nov 2025 17:24:43 +0000 Files and hashes: 1: cH1IYFoNhXcvkNxLEXK-8wKUoIc.crl (hash: y+xpZiG/yKBg/qe6Iy3kjpTphcx/vSnWk1or+iHwhr4=) 2: 74087358355111E99EC82E0AC4F9AE02.roa (hash: PB0EHBaY36YHqHC7V47MMIuYWFc+4JG8rzrltMHOFuA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.crl rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cH1IYFoNhXcvkNxLEXK-8wKUoIc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:24:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4282 (0x10ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D49F, serialNumber=707D48605A0D85772F90DC4B1172BEF30294A087 Validity Not Before: Nov 4 17:24:43 2025 GMT Not After : Nov 11 17:24:43 2025 GMT Subject: CN=690a36db-99f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:4d:3f:ec:b8:95:24:4b:39:f4:3f:4c:8a:aa: a6:07:b1:e8:5d:d2:1c:7f:79:54:c2:0d:2b:1b:59: 2a:d6:42:e8:e2:a2:47:13:1d:ff:ee:a0:00:d8:64: 1b:40:0d:c2:bb:44:cc:dd:88:81:54:d9:56:3f:70: 43:6c:f6:88:ea:8b:e1:48:2e:77:a8:04:64:d0:7c: a4:85:0c:24:77:4d:88:62:96:e7:d3:97:44:4e:45: 36:4b:20:21:55:06:7c:25:ac:ae:4c:80:eb:4c:b1: 7f:44:5d:81:e3:9a:c2:22:c4:eb:de:5b:b0:61:64: eb:7f:d2:22:21:4d:b2:b5:50:15:c5:4b:6b:b0:9b: 8e:3e:e4:9e:1e:cb:5f:bb:06:32:38:74:3f:e1:09: 75:1b:6c:15:cd:49:13:ab:d4:ff:cd:26:88:f3:54: d0:5e:33:76:e9:7e:ae:20:79:67:f6:51:07:97:26: 03:eb:b0:0f:77:2d:e0:a8:dd:dd:9a:25:ca:f5:d7: 20:d9:3c:94:62:a7:c0:2e:e5:37:71:7b:07:f8:f5: 59:5f:65:1d:a9:d6:2d:48:8c:0e:c0:39:4a:4c:98: 5e:7b:a8:9f:d9:85:56:db:5e:e8:60:01:32:76:1b: 48:3f:75:d9:c1:e4:27:9e:15:7f:44:b0:43:84:76: 11:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:37:2F:2D:F9:39:D1:9B:BE:CB:5E:58:EB:04:5A:75:49:9E:CC:73 X509v3 Authority Key Identifier: keyid:70:7D:48:60:5A:0D:85:77:2F:90:DC:4B:11:72:BE:F3:02:94:A0:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cH1IYFoNhXcvkNxLEXK-8wKUoIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:85:06:1e:05:b5:b6:4a:f2:4b:9a:31:48:14:65:a2:15:33: 6e:4f:93:db:a7:6c:14:1f:fa:14:93:a6:76:d9:8e:55:33:0c: f3:95:b6:53:41:26:68:e3:60:d4:27:af:60:19:e9:17:88:ae: a8:08:27:9b:16:42:a7:68:f6:d7:6e:aa:95:d9:cf:93:99:b5: 5a:ff:c8:75:a1:c9:56:3f:b4:fd:a2:3e:2e:cb:4a:dd:43:ea: 42:1b:36:2c:05:49:01:af:5e:16:b8:45:f3:aa:a2:d1:a1:67: 93:4e:28:8e:ed:6f:b7:68:b6:4c:48:09:a1:9f:21:09:dd:8b: 5f:58:e3:61:44:17:7c:19:56:65:0e:ee:62:31:1a:c7:21:b2: a8:21:e0:50:3b:c8:1c:5c:67:6e:f0:66:23:31:c7:a7:a3:29: d2:cc:d0:24:fd:9c:10:10:18:1c:cc:fe:1c:7a:c0:a1:93:0d: 7c:b9:f4:c6:06:bd:1f:aa:e7:37:19:ef:89:cf:4c:8b:31:f1: a3:2d:a8:cf:ad:e1:83:46:ad:11:89:da:b7:e2:c1:4c:da:57: 88:b6:43:3b:ae:f7:11:11:46:3f:ad:30:cd:29:9d:e2:14:e9: 8f:76:31:49:6f:a1:ec:c2:4f:d7:5b:5b:9a:0b:9a:a6:fe:e0: 2d:55:46:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICELowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ0OUYxMTAvBgNVBAUTKDcwN0Q0ODYwNUEwRDg1NzcyRjkwREM0QjExNzJCRUYz MDI5NEEwODcwHhcNMjUxMTA0MTcyNDQzWhcNMjUxMTExMTcyNDQzWjAYMRYwFAYD VQQDEw02OTBhMzZkYi05OWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA800/7LiVJEs59D9MiqqmB7HoXdIcf3lUwg0rG1kq1kLo4qJHEx3/7qAA2GQb QA3Cu0TM3YiBVNlWP3BDbPaI6ovhSC53qARk0HykhQwkd02IYpbn05dETkU2SyAh VQZ8JayuTIDrTLF/RF2B45rCIsTr3luwYWTrf9IiIU2ytVAVxUtrsJuOPuSeHstf uwYyOHQ/4Ql1G2wVzUkTq9T/zSaI81TQXjN26X6uIHln9lEHlyYD67APdy3gqN3d miXK9dcg2TyUYqfALuU3cXsH+PVZX2UdqdYtSIwOwDlKTJhee6if2YVW217oYAEy dhtIP3XZweQnnhV/RLBDhHYRNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNc3Ly35 OdGbvsteWOsEWnVJnsxzMB8GA1UdIwQYMBaAFHB9SGBaDYV3L5DcSxFyvvMClKCH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDQ5Ri8wQkFDODU1NjM1 NTExMUU5OThBNTBBMEFDNEY5QUUwMi9jSDFJWUZvTmhYY3ZrTnhMRVhLLTh3S1Vv SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NIMUlZRm9OaFhjdmtOeExFWEstOHdLVW9JYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDQ5Ri8wQkFDODU1NjM1NTExMUU5OThBNTBBMEFDNEY5QUUwMi9jSDFJWUZvTmhY Y3ZrTnhMRVhLLTh3S1VvSWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBshQYeBbW2SvJLmjFIFGWiFTNuT5Pbp2wUH/oUk6Z22Y5VMwzzlbZT QSZo42DUJ69gGekXiK6oCCebFkKnaPbXbqqV2c+TmbVa/8h1oclWP7T9oj4uy0rd Q+pCGzYsBUkBr14WuEXzqqLRoWeTTiiO7W+3aLZMSAmhnyEJ3YtfWONhRBd8GVZl Du5iMRrHIbKoIeBQO8gcXGdu8GYjMcenoynSzNAk/ZwQEBgczP4cesChkw18ufTG Br0fquc3Ge+Jz0yLMfGjLajPreGDRq0Ridq34sFM2leItkM7rvcREUY/rTDNKZ3i FOmPdjFJb6Hswk/XW1uaC5qm/uAtVUY5 -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:30 2025 by rpki-client