$ rpki-client -vvf rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft File: JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft (raw, json) Hash identifier: FiKsDQ4sZNnpK1kZFTm66CZMn+FERlCgTmYSpS4a0XM= Subject key identifier: D8:21:E5:2B:1E:F3:42:75:22:3D:46:50:AE:D5:4C:D7:00:B5:18:E4 Authority key identifier: 24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4 Certificate issuer: /CN=A911E008/serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4 Certificate serial: 1735 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft Manifest number: 172B Signing time: Sun 02 Nov 2025 16:37:41 +0000 Manifest this update: Sun 02 Nov 2025 16:37:40 +0000 Manifest next update: Sun 09 Nov 2025 16:37:40 +0000 Files and hashes: 1: JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl (hash: DxZJLPGU+VCaBFhh36yM+oWcwCKNrftVf+OsEfOG9Oc=) 2: 04A96D3ADB0511EBB30F6E2EC4F9AE02.roa (hash: 995PegsL3ZUwg9uvRMBU899Zay98EopTGO6qSEJefks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5941 (0x1735) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E008, serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4 Validity Not Before: Nov 2 16:37:40 2025 GMT Not After : Nov 9 16:37:40 2025 GMT Subject: CN=690788d5-8571 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:4f:a8:14:5e:e0:75:9b:75:02:b6:6f:3e:91: 2c:ab:e0:96:79:10:ef:70:f9:5d:60:0e:d5:1d:fc: fc:0b:d7:c5:8f:a7:0a:e6:06:08:92:6e:82:63:74: e2:ec:7a:cd:e7:e0:e9:72:48:72:8d:75:6b:a3:2e: 71:ea:8a:c1:74:8a:c6:60:6e:3c:c9:7e:6d:96:57: b0:58:3b:e5:74:66:1e:03:0d:fe:13:b9:c6:b2:20: b8:85:95:b2:57:b9:fe:b2:e1:bf:83:3a:04:df:b6: 64:67:a8:d0:54:07:92:f5:86:0b:1c:9f:2d:cd:84: 24:48:84:77:43:18:f2:58:5c:b6:bc:db:ca:81:70: f2:b2:42:e5:78:a0:f3:63:24:0e:a9:1e:08:d7:61: 21:1d:6c:6d:99:6d:2b:b0:aa:48:11:78:69:a9:ca: 9b:d0:42:47:d4:c0:7a:c4:30:bd:42:c3:7a:c8:04: 38:c2:2f:27:80:94:bc:8e:de:cd:65:cc:00:66:8f: dd:d3:50:56:f4:0e:8b:42:c2:75:a4:d1:3a:72:a8: fb:48:7f:17:35:59:4a:86:ce:01:eb:50:12:c3:eb: e2:6a:da:cc:3b:df:ec:8d:4c:ca:a1:3e:f8:92:11: 66:8c:05:b3:b6:2b:f1:f8:83:08:ff:f8:05:70:f5: 84:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:21:E5:2B:1E:F3:42:75:22:3D:46:50:AE:D5:4C:D7:00:B5:18:E4 X509v3 Authority Key Identifier: keyid:24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:44:73:3d:4e:38:5a:cd:8b:b9:5c:22:24:a0:73:53:a3:25: e3:f3:d3:25:42:f5:24:c2:8b:c8:3e:e0:9f:2a:75:2e:d2:89: 9e:13:30:38:cd:40:b7:63:2d:4b:d3:47:78:76:0c:3d:b2:5a: 4c:65:bd:61:1b:83:61:73:70:50:31:80:16:c2:4d:1f:fd:05: 3b:cb:84:a7:ad:ec:bf:a9:45:e6:9f:77:b6:58:13:0c:c8:d0: f8:14:25:3a:89:75:86:b2:06:6a:f2:f4:54:f1:f5:07:0c:eb: 84:6a:4b:5c:15:87:d0:c1:43:da:14:6a:1a:4b:3b:c0:ab:29: 3c:de:49:ca:05:d2:67:06:18:fc:df:2a:7c:32:1e:57:17:56: ed:bb:9e:44:33:fb:82:ef:36:99:d0:f3:14:8f:7c:c5:3f:28: 7e:cc:86:b6:a3:f8:66:6e:ff:54:07:9b:f1:60:10:7a:cd:d2: de:7e:98:e2:b7:17:ba:e9:b0:e2:66:38:7d:e1:ca:52:63:7b: 45:fe:ef:6a:8b:5b:d2:0f:75:9e:42:36:5b:79:d6:b0:a6:6d: 4f:0e:f9:b3:e3:a1:b0:b8:bb:07:03:f6:83:85:05:0c:8e:af: 3f:3e:5c:cb:79:3a:58:76:1b:bb:d4:90:70:7c:95:17:c3:ac: 5b:1b:ba:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUwMDgxMTAvBgNVBAUTKDI0OEY1NTg4RUE4RkM3REQwQTNCNERBMUUxNTU4MDMx QzBEOTI3RTQwHhcNMjUxMTAyMTYzNzQwWhcNMjUxMTA5MTYzNzQwWjAYMRYwFAYD VQQDEw02OTA3ODhkNS04NTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8k+oFF7gdZt1ArZvPpEsq+CWeRDvcPldYA7VHfz8C9fFj6cK5gYIkm6CY3Ti 7HrN5+DpckhyjXVroy5x6orBdIrGYG48yX5tllewWDvldGYeAw3+E7nGsiC4hZWy V7n+suG/gzoE37ZkZ6jQVAeS9YYLHJ8tzYQkSIR3QxjyWFy2vNvKgXDyskLleKDz YyQOqR4I12EhHWxtmW0rsKpIEXhpqcqb0EJH1MB6xDC9QsN6yAQ4wi8ngJS8jt7N ZcwAZo/d01BW9A6LQsJ1pNE6cqj7SH8XNVlKhs4B61ASw+viatrMO9/sjUzKoT74 khFmjAWztivx+IMI//gFcPWEFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNgh5Sse 80J1Ij1GUK7VTNcAtRjkMB8GA1UdIwQYMBaAFCSPVYjqj8fdCjtNoeFVgDHA2Sfk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTAwOC9ERDg4QzNBRUYx RDMxMUU3OTdFRDQyNDBDNEY5QUUwMi9KSTlWaU9xUHg5MEtPMDJoNFZXQU1jRFpK LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pJOVZpT3FQeDkwS08wMmg0VldBTWNEWkotUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTAwOC9ERDg4QzNBRUYxRDMxMUU3OTdFRDQyNDBDNEY5QUUwMi9KSTlWaU9xUHg5 MEtPMDJoNFZXQU1jRFpKLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkRHM9TjhazYu5XCIkoHNToyXj89MlQvUkwovIPuCfKnUu0omeEzA4 zUC3Yy1L00d4dgw9slpMZb1hG4Nhc3BQMYAWwk0f/QU7y4Snrey/qUXmn3e2WBMM yND4FCU6iXWGsgZq8vRU8fUHDOuEaktcFYfQwUPaFGoaSzvAqyk83knKBdJnBhj8 3yp8Mh5XF1btu55EM/uC7zaZ0PMUj3zFPyh+zIa2o/hmbv9UB5vxYBB6zdLefpji txe66bDiZjh94cpSY3tF/u9qi1vSD3WeQjZbedawpm1PDvmz46GwuLsHA/aDhQUM jq8/PlzLeTpYdhu71JBwfJUXw6xbG7ou -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:45 2025 by rpki-client