$ rpki-client -vvf rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft File: Mh0Kt4oavjUafbeTINn_03KgjEU.mft (raw, json) Hash identifier: Sxc8sVgG85QsHfuHERucDr5vg8YBlitu4e4yQqCZaQA= Subject key identifier: CF:F8:54:96:F3:47:0D:FA:C9:01:43:17:09:EF:F1:FF:26:B7:C0:06 Authority key identifier: 32:1D:0A:B7:8A:1A:BE:35:1A:7D:B7:93:20:D9:FF:D3:72:A0:8C:45 Certificate issuer: /CN=A9110FEF/serialNumber=321D0AB78A1ABE351A7DB79320D9FFD372A08C45 Certificate serial: 0247 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft Manifest number: 023C Signing time: Mon 03 Nov 2025 01:55:17 +0000 Manifest this update: Mon 03 Nov 2025 01:55:17 +0000 Manifest next update: Mon 10 Nov 2025 01:55:17 +0000 Files and hashes: 1: Mh0Kt4oavjUafbeTINn_03KgjEU.crl (hash: GOOFogPsvFKkBnHQw2d8UHtJGYI6ZzgVXldiPkugmJA=) 2: 47DA361A3F8F11EF8FA3802DC4F9AE02.roa (hash: kZKPpO1uHctSo/EMrUHJdQ+fm1ea4u/f5P1GBGfWwQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.crl rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:55:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 583 (0x247) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110FEF, serialNumber=321D0AB78A1ABE351A7DB79320D9FFD372A08C45 Validity Not Before: Nov 3 01:55:17 2025 GMT Not After : Nov 10 01:55:17 2025 GMT Subject: CN=69080b85-9d72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ed:06:7c:8f:e0:6d:97:c6:8a:25:c0:f1:e9: f4:09:3d:2a:3d:34:0f:ef:a4:12:8e:00:49:b6:6b: fa:8d:0b:cc:06:29:d5:af:cc:1b:7c:ee:ac:95:14: 59:48:9c:ab:a5:34:ae:c7:95:d0:3d:e2:5c:8a:38: 60:84:fe:e1:52:9e:3c:c8:d7:25:3f:78:f5:61:ed: 07:34:b4:e7:5e:6c:3a:37:42:49:e4:b5:84:fe:4c: 9a:0a:c5:43:de:7d:aa:99:8b:d2:11:6d:e4:06:82: aa:3d:3b:cb:0f:05:54:a6:2c:5b:e3:18:af:19:84: f6:29:aa:68:bc:e0:ec:57:b6:b2:31:55:08:a2:96: bb:91:fb:de:31:13:82:12:33:82:b0:9f:a9:c2:27: 48:b8:2d:92:11:cd:d0:3d:fc:ed:d9:93:bc:a2:23: 58:4f:93:06:98:bf:f5:a0:33:7e:db:ce:42:fa:b4: 2f:37:35:33:55:88:7f:aa:8b:aa:53:65:2a:ed:86: 26:2f:47:db:b5:4a:f4:a4:a5:78:56:f8:12:c1:70: af:c4:10:46:3b:83:0f:9b:3d:d2:85:ad:c9:c1:b8: 57:c9:a4:8d:f7:c3:e0:68:cd:24:35:be:88:b3:03: cd:04:fa:9f:f7:53:83:c0:b0:3f:f7:be:28:47:f8: 00:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:F8:54:96:F3:47:0D:FA:C9:01:43:17:09:EF:F1:FF:26:B7:C0:06 X509v3 Authority Key Identifier: keyid:32:1D:0A:B7:8A:1A:BE:35:1A:7D:B7:93:20:D9:FF:D3:72:A0:8C:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh0Kt4oavjUafbeTINn_03KgjEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110FEF/B0363D6064F511ED82B03C11C4F9AE02/Mh0Kt4oavjUafbeTINn_03KgjEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:37:7c:84:f0:f8:ec:32:fa:2f:e3:d5:0b:ac:ff:dd:3f:1f: e9:46:a0:d5:6f:5b:72:d5:3b:38:7f:2c:f7:8c:60:12:6e:d9: 8c:4a:ef:51:3b:69:eb:c8:9b:2e:7e:e1:6c:1a:4c:38:b0:cf: b8:7f:90:bb:0c:17:5e:7e:82:85:94:1f:ac:3f:46:74:55:b2: 18:de:b5:d1:97:26:f8:75:86:a6:c2:2f:4d:6a:7a:bf:e5:14: 2f:77:36:13:76:a3:12:79:6f:3c:62:28:02:84:e5:a4:d3:3a: da:7a:8b:1c:73:d9:da:5b:dc:f1:26:23:73:65:6f:55:bf:65: 5c:5c:70:36:96:cc:bc:19:5b:60:f1:aa:50:41:30:5b:8d:70: ce:aa:89:49:26:6a:c5:95:0a:35:a1:e7:b1:e0:30:a8:cd:c7: 4f:8c:ec:7d:79:92:75:f3:6b:7e:6d:79:21:53:2f:18:09:b1: cb:4d:19:17:a9:9a:c4:fe:d5:b7:d0:70:87:63:3b:ab:2f:2b: 6b:74:8e:71:33:50:fa:e4:c8:d5:ba:b5:5c:9b:79:74:98:6f: 76:9c:99:a6:dd:0e:e1:2a:9b:d7:db:1c:1e:a1:f7:66:d3:3e: da:f2:74:ee:11:93:e0:4d:21:fb:c7:53:a3:e8:82:49:b1:51: 28:6e:f6:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBGRUYxMTAvBgNVBAUTKDMyMUQwQUI3OEExQUJFMzUxQTdEQjc5MzIwRDlGRkQz NzJBMDhDNDUwHhcNMjUxMTAzMDE1NTE3WhcNMjUxMTEwMDE1NTE3WjAYMRYwFAYD VQQDEw02OTA4MGI4NS05ZDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtO0GfI/gbZfGiiXA8en0CT0qPTQP76QSjgBJtmv6jQvMBinVr8wbfO6slRRZ SJyrpTSux5XQPeJcijhghP7hUp48yNclP3j1Ye0HNLTnXmw6N0JJ5LWE/kyaCsVD 3n2qmYvSEW3kBoKqPTvLDwVUpixb4xivGYT2KapovODsV7ayMVUIopa7kfveMROC EjOCsJ+pwidIuC2SEc3QPfzt2ZO8oiNYT5MGmL/1oDN+285C+rQvNzUzVYh/qouq U2Uq7YYmL0fbtUr0pKV4VvgSwXCvxBBGO4MPmz3Sha3JwbhXyaSN98PgaM0kNb6I swPNBPqf91ODwLA/974oR/gAGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/4VJbz Rw36yQFDFwnv8f8mt8AGMB8GA1UdIwQYMBaAFDIdCreKGr41Gn23kyDZ/9NyoIxF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEZFRi9CMDM2M0Q2MDY0 RjUxMUVEODJCMDNDMTFDNEY5QUUwMi9NaDBLdDRvYXZqVWFmYmVUSU5uXzAzS2dq RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01oMEt0NG9hdmpVYWZiZVRJTm5fMDNLZ2pFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEZFRi9CMDM2M0Q2MDY0RjUxMUVEODJCMDNDMTFDNEY5QUUwMi9NaDBLdDRvYXZq VWFmYmVUSU5uXzAzS2dqRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAN3yE8PjsMvov49ULrP/dPx/pRqDVb1ty1Ts4fyz3jGASbtmMSu9R O2nryJsufuFsGkw4sM+4f5C7DBdefoKFlB+sP0Z0VbIY3rXRlyb4dYamwi9Nanq/ 5RQvdzYTdqMSeW88YigChOWk0zraeoscc9naW9zxJiNzZW9Vv2VcXHA2lsy8GVtg 8apQQTBbjXDOqolJJmrFlQo1oeex4DCozcdPjOx9eZJ182t+bXkhUy8YCbHLTRkX qZrE/tW30HCHYzurLytrdI5xM1D65MjVurVcm3l0mG92nJmm3Q7hKpvX2xweofdm 0z7a8nTuEZPgTSH7x1Oj6IJJsVEobvZF -----END CERTIFICATE-----Generated at Mon Nov 3 18:16:41 2025 by rpki-client