$ rpki-client -vvf rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft File: ajK9E9_Nd-8bXAUr427YmtIScNs.mft (raw, json) Hash identifier: W2dVnqEpa8iisH2VaP4oe9n60qxcq/6Xrd1w7hFGAIs= Subject key identifier: F9:16:9F:44:20:E5:8A:24:A7:02:E2:BF:F6:53:B5:27:AD:B5:0B:F0 Authority key identifier: 6A:32:BD:13:DF:CD:77:EF:1B:5C:05:2B:E3:6E:D8:9A:D2:12:70:DB Certificate issuer: /CN=A911C812/serialNumber=6A32BD13DFCD77EF1B5C052BE36ED89AD21270DB Certificate serial: 0847 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft Manifest number: 0840 Signing time: Tue 04 Nov 2025 20:51:01 +0000 Manifest this update: Tue 04 Nov 2025 20:51:00 +0000 Manifest next update: Tue 11 Nov 2025 20:51:00 +0000 Files and hashes: 1: ajK9E9_Nd-8bXAUr427YmtIScNs.crl (hash: Yj4gFz8McYO3p/tnsC1N0RFzmx6UJHs8vc/kW3bGQGE=) 2: 477192ACF3FA11EAB9D11D26C4F9AE02.roa (hash: fA68vPB23i/OAo2Tlmrq8T3cX2gqQgOTyj+Ul9pJg/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.crl rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:51:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2119 (0x847) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C812, serialNumber=6A32BD13DFCD77EF1B5C052BE36ED89AD21270DB Validity Not Before: Nov 4 20:51:00 2025 GMT Not After : Nov 11 20:51:00 2025 GMT Subject: CN=690a6734-fa91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a5:ad:c1:58:d9:64:d7:f0:9d:85:d2:f3:6a: b0:cc:1c:15:e9:aa:4e:3f:ba:06:8a:c1:0a:8d:b9: 82:b7:ff:22:50:8d:e4:8b:e2:13:3f:56:d6:a9:0d: 1f:ed:fc:d5:87:74:c6:5b:c7:97:27:75:2e:a5:04: 8a:c6:54:74:45:63:6a:44:9a:04:5b:2b:41:69:0c: b7:c1:7a:69:54:13:90:bd:40:a6:f7:4f:d6:c3:43: 0f:22:ad:be:79:ea:ef:bc:9f:85:a2:49:bc:b9:74: 6d:7e:55:ce:f9:3b:65:fc:12:75:10:5f:5e:7b:f3: 87:77:08:ea:b0:09:c5:0a:d8:fe:65:21:1a:da:18: 3f:d3:0a:6c:1c:ee:31:d2:d3:97:ab:23:98:e3:d4: e1:9c:3c:2b:c0:37:26:f9:8d:85:c7:94:31:2d:4f: 82:26:c2:b8:37:13:c2:13:ca:43:e4:65:c0:fa:aa: 75:7d:0b:58:ab:c1:e2:6b:d0:f1:bc:6b:5e:64:17: 9f:5b:f1:a6:c0:65:be:8f:37:90:c1:d1:5d:21:e4: d4:5e:fe:14:9a:fa:e9:f7:8b:ad:15:7f:40:62:32: 65:2c:ce:d1:fa:18:34:70:2c:2d:58:8e:3b:4e:6b: d0:14:4f:11:b0:23:28:52:e0:72:a1:e7:d8:fb:c2: ac:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:16:9F:44:20:E5:8A:24:A7:02:E2:BF:F6:53:B5:27:AD:B5:0B:F0 X509v3 Authority Key Identifier: keyid:6A:32:BD:13:DF:CD:77:EF:1B:5C:05:2B:E3:6E:D8:9A:D2:12:70:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:70:61:ac:ae:e9:53:8f:27:1e:91:cc:a8:a4:be:63:df:d4: 85:54:ed:3d:6c:ef:c5:6c:b1:bc:d7:b0:11:da:e6:db:74:24: 0e:78:39:e1:97:c4:30:bd:eb:84:7c:13:09:d5:82:3f:c3:84: f6:8c:b0:a7:46:50:52:3c:3c:63:2d:66:52:4e:9f:6b:26:d8: bf:9e:bd:a8:b7:ac:a7:68:81:4b:5d:c1:cd:3f:e7:14:b9:64: dc:1c:c2:2f:0b:b6:04:6b:cc:9d:93:4a:2d:91:d5:9d:54:ea: 5c:5e:06:b7:52:c9:f9:05:d4:71:ba:91:fc:9a:f4:dc:74:85: 16:1e:94:32:04:7a:ff:14:fb:a5:71:64:9a:60:c2:79:10:34: 45:d5:69:6a:98:e6:47:de:f5:06:45:4e:82:7b:94:02:89:28: 23:19:dd:a2:24:16:2f:d2:71:f1:a8:da:f9:64:bc:05:ff:71: cc:c0:e5:7a:24:7c:77:45:67:fc:b6:e8:3c:9a:22:4e:f9:d2: b2:8e:f7:ff:d9:a0:50:ea:e1:cf:b3:9c:d4:c0:d7:58:75:8e: be:2f:89:ac:5c:05:1c:aa:36:97:e2:6f:4a:75:8e:88:8b:4c: 52:71:df:f5:e0:e0:a9:3b:cc:92:27:8e:b2:08:59:a6:88:f2: 25:dd:94:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4MTIxMTAvBgNVBAUTKDZBMzJCRDEzREZDRDc3RUYxQjVDMDUyQkUzNkVEODlB RDIxMjcwREIwHhcNMjUxMTA0MjA1MTAwWhcNMjUxMTExMjA1MTAwWjAYMRYwFAYD VQQDEw02OTBhNjczNC1mYTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6WtwVjZZNfwnYXS82qwzBwV6apOP7oGisEKjbmCt/8iUI3ki+ITP1bWqQ0f 7fzVh3TGW8eXJ3UupQSKxlR0RWNqRJoEWytBaQy3wXppVBOQvUCm90/Ww0MPIq2+ eervvJ+Fokm8uXRtflXO+Ttl/BJ1EF9ee/OHdwjqsAnFCtj+ZSEa2hg/0wpsHO4x 0tOXqyOY49ThnDwrwDcm+Y2Fx5QxLU+CJsK4NxPCE8pD5GXA+qp1fQtYq8Hia9Dx vGteZBefW/GmwGW+jzeQwdFdIeTUXv4Umvrp94utFX9AYjJlLM7R+hg0cCwtWI47 TmvQFE8RsCMoUuByoefY+8KsiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkWn0Qg 5YokpwLiv/ZTtSettQvwMB8GA1UdIwQYMBaAFGoyvRPfzXfvG1wFK+Nu2JrSEnDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzgxMi9CMjVFRjk5MEU5 MTYxMUVBQTcwNUQ4NEZDNEY5QUUwMi9haks5RTlfTmQtOGJYQVVyNDI3WW10SVNj TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FqSzlFOV9OZC04YlhBVXI0MjdZbXRJU2NOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzgxMi9CMjVFRjk5MEU5MTYxMUVBQTcwNUQ4NEZDNEY5QUUwMi9haks5RTlfTmQt OGJYQVVyNDI3WW10SVNjTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDcGGsrulTjycekcyopL5j39SFVO09bO/FbLG817AR2ubbdCQOeDnh l8QwveuEfBMJ1YI/w4T2jLCnRlBSPDxjLWZSTp9rJti/nr2ot6ynaIFLXcHNP+cU uWTcHMIvC7YEa8ydk0otkdWdVOpcXga3Usn5BdRxupH8mvTcdIUWHpQyBHr/FPul cWSaYMJ5EDRF1WlqmOZH3vUGRU6Ce5QCiSgjGd2iJBYv0nHxqNr5ZLwF/3HMwOV6 JHx3RWf8tug8miJO+dKyjvf/2aBQ6uHPs5zUwNdYdY6+L4msXAUcqjaX4m9KdY6I i0xScd/14OCpO8ySJ46yCFmmiPIl3ZQx -----END CERTIFICATE-----Generated at Wed Nov 5 17:02:18 2025 by rpki-client