$ rpki-client -vvf rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft File: aFlbmOTCezC6ozHOqscmF2fLkus.mft (raw, json) Hash identifier: BlFT2lufzAjsIKLk85IRecwMblWpITPoQ8ulsVh+k28= Subject key identifier: 32:32:AA:F7:0A:F0:A7:0D:BB:27:6B:6D:1D:CB:B1:64:D8:DF:67:B7 Authority key identifier: 68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB Certificate issuer: /CN=A9119AE2/serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Certificate serial: 06B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft Manifest number: 06A6 Signing time: Sun 02 Nov 2025 22:17:01 +0000 Manifest this update: Sun 02 Nov 2025 22:17:01 +0000 Manifest next update: Sun 09 Nov 2025 22:17:01 +0000 Files and hashes: 1: aFlbmOTCezC6ozHOqscmF2fLkus.crl (hash: PCRhbYC/31PJTQD+wRb8dyKwynL04HnrJI8qBFaKhOc=) 2: 8D20F290411811ECA0929516C4F9AE02.roa (hash: RzJGgawBbn3xUezpVG2c9suPVgigMwJa0fSwMeigVU8=) 3: 8D23BDE287C611EB8C8DDB70C4F9AE02.roa (hash: dsN/B56rqWk3m7WjQOyUkNCCDpI9L9GI0dqzzx2vJVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1716 (0x6b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119AE2, serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Validity Not Before: Nov 2 22:17:01 2025 GMT Not After : Nov 9 22:17:01 2025 GMT Subject: CN=6907d85d-09c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3e:d4:f3:ca:c5:df:41:0e:8a:f9:7d:4b:16: 76:df:19:2c:7a:d4:e1:e1:cb:b2:39:ae:02:22:b3: 62:47:26:a3:de:29:fd:7b:ce:7e:78:29:c9:85:2b: 2c:d1:db:9e:8c:6b:a8:62:e7:86:4c:09:cb:68:e8: 32:38:c7:cd:9c:fb:41:1a:29:b3:0a:a0:6b:e5:45: 21:e8:b2:d7:ba:13:db:89:1e:8a:5e:ad:33:0a:50: 69:5e:da:c5:cd:52:be:43:9e:26:f6:39:18:8c:72: 10:f1:8e:6f:fe:20:be:58:fe:90:78:af:35:9b:5f: cf:6e:14:2d:4c:17:29:01:0a:af:10:2d:b6:9c:fc: 25:f5:a2:96:78:90:f3:79:85:8e:4b:14:77:c1:30: ca:6b:3c:c4:21:43:fd:76:92:98:5a:1b:b4:2c:10: fb:5f:3c:0f:a0:aa:20:d3:ea:44:14:b0:1e:d9:a9: d2:97:cf:55:0c:25:4c:2f:90:73:9d:ec:01:d4:87: ce:b8:3b:f9:ed:5e:91:2e:ea:53:85:33:e2:3f:39: be:12:ec:20:cb:1d:8a:84:08:a0:0b:f0:53:79:11: f0:bf:c7:6f:f1:4b:ae:14:f8:1b:b9:f2:89:0e:3f: d7:5b:65:bc:01:84:10:1f:22:b4:c1:96:4a:12:1c: 0a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:32:AA:F7:0A:F0:A7:0D:BB:27:6B:6D:1D:CB:B1:64:D8:DF:67:B7 X509v3 Authority Key Identifier: keyid:68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:28:4c:3d:a9:ad:68:87:98:82:fb:7d:f6:9e:a3:2e:09:1b: d0:a7:a6:eb:9e:57:c2:4c:41:d2:c2:ad:85:65:e3:a0:9e:0a: c4:a3:9d:d2:e5:02:17:13:47:29:26:db:6d:ad:ce:2e:54:c6: 60:fd:cb:59:8a:2b:9b:c3:f5:c2:cc:4f:2f:02:26:cd:f2:f4: 3c:9e:af:9b:05:c0:42:20:b2:02:8e:4d:92:95:b8:3f:ae:44: 61:d5:0d:b4:5d:4c:c3:3d:a6:49:01:c5:94:8e:10:3a:96:83: 44:2b:6b:de:fa:fc:a0:3f:b7:1c:ed:aa:3f:9c:ff:22:98:38: 42:e8:c2:0b:85:17:21:ff:66:99:81:9f:6b:14:71:ce:8b:08: fe:6e:51:25:4c:48:97:1c:b4:c8:ba:5f:c9:f6:0e:00:25:20: e2:0a:0e:b0:c5:91:99:2c:c1:3a:76:97:04:0a:ea:a4:c6:7e: 28:ce:e5:be:ef:ca:e7:21:e8:0f:01:78:a2:8f:c6:de:d7:6b: 1f:69:f3:c0:cd:3b:30:9a:dd:57:97:1b:e7:b7:e9:28:51:ed: 36:f1:0c:9e:90:57:96:b8:43:d3:05:b5:aa:2b:8a:04:2e:1e: a4:6e:69:ad:e1:97:a4:5f:90:02:f9:33:30:53:23:f9:65:a4: 17:39:eb:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlBRTIxMTAvBgNVBAUTKDY4NTk1Qjk4RTRDMjdCMzBCQUEzMzFDRUFBQzcyNjE3 NjdDQjkyRUIwHhcNMjUxMTAyMjIxNzAxWhcNMjUxMTA5MjIxNzAxWjAYMRYwFAYD VQQDEw02OTA3ZDg1ZC0wOWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxD7U88rF30EOivl9SxZ23xksetTh4cuyOa4CIrNiRyaj3in9e85+eCnJhSss 0duejGuoYueGTAnLaOgyOMfNnPtBGimzCqBr5UUh6LLXuhPbiR6KXq0zClBpXtrF zVK+Q54m9jkYjHIQ8Y5v/iC+WP6QeK81m1/PbhQtTBcpAQqvEC22nPwl9aKWeJDz eYWOSxR3wTDKazzEIUP9dpKYWhu0LBD7XzwPoKog0+pEFLAe2anSl89VDCVML5Bz newB1IfOuDv57V6RLupThTPiPzm+Euwgyx2KhAigC/BTeRHwv8dv8UuuFPgbufKJ Dj/XW2W8AYQQHyK0wZZKEhwKxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIyqvcK 8KcNuydrbR3LsWTY32e3MB8GA1UdIwQYMBaAFGhZW5jkwnswuqMxzqrHJhdny5Lr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUFFMi84QUI4QzE4QTg3 QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6QzZvekhPcXNjbUYyZkxr dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGbGJtT1RDZXpDNm96SE9xc2NtRjJmTGt1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUFFMi84QUI4QzE4QTg3QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6 QzZvekhPcXNjbUYyZkxrdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMKEw9qa1oh5iC+332nqMuCRvQp6brnlfCTEHSwq2FZeOgngrEo53S 5QIXE0cpJtttrc4uVMZg/ctZiiubw/XCzE8vAibN8vQ8nq+bBcBCILICjk2Slbg/ rkRh1Q20XUzDPaZJAcWUjhA6loNEK2ve+vygP7cc7ao/nP8imDhC6MILhRch/2aZ gZ9rFHHOiwj+blElTEiXHLTIul/J9g4AJSDiCg6wxZGZLME6dpcECuqkxn4ozuW+ 78rnIegPAXiij8be12sfafPAzTswmt1Xlxvnt+koUe028QyekFeWuEPTBbWqK4oE Lh6kbmmt4ZekX5AC+TMwUyP5ZaQXOet9 -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:57 2025 by rpki-client