$ rpki-client -vvf rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft File: G43u2x08SMwcTCF7lpx5hUGkzHc.mft (raw, json) Hash identifier: mweMq/MHn8vHOwbM1IKFfXjC4e08FswWVn8RQeYT204= Subject key identifier: 9D:B0:03:24:AA:F6:56:D5:BC:82:00:01:2D:C6:E0:DE:8E:5A:D2:97 Authority key identifier: 1B:8D:EE:DB:1D:3C:48:CC:1C:4C:21:7B:96:9C:79:85:41:A4:CC:77 Certificate issuer: /CN=A9124803/serialNumber=1B8DEEDB1D3C48CC1C4C217B969C798541A4CC77 Certificate serial: 06A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft Manifest number: 069A Signing time: Sun 02 Nov 2025 22:19:27 +0000 Manifest this update: Sun 02 Nov 2025 22:19:26 +0000 Manifest next update: Sun 09 Nov 2025 22:19:26 +0000 Files and hashes: 1: G43u2x08SMwcTCF7lpx5hUGkzHc.crl (hash: iweveofRrDN2rsu3ZRo+aCu5FD/acJuHiKw5JwGinlQ=) 2: 62CCFF308C7211EB98A6DD43C4F9AE02.roa (hash: lV/cpNWUCFTUuQ8wWKZTK1Tzrge3tnngMyqR3AbKgb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.crl rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:19:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1697 (0x6a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124803, serialNumber=1B8DEEDB1D3C48CC1C4C217B969C798541A4CC77 Validity Not Before: Nov 2 22:19:26 2025 GMT Not After : Nov 9 22:19:26 2025 GMT Subject: CN=6907d8ef-82ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:4e:f8:be:ad:e4:e5:6e:98:05:75:56:00:54: 88:57:c5:b5:13:86:d3:db:97:2c:4a:24:8c:10:7a: 73:23:af:69:11:4f:6c:53:b4:44:16:1e:f8:e3:3a: b6:14:39:ff:9a:1b:36:a2:fd:c5:4c:21:70:49:66: db:b2:e9:ba:9e:cf:4f:61:1e:c6:5b:4c:f6:0b:4c: d0:b8:fa:aa:50:9e:77:89:6b:90:2b:d9:f3:bb:80: ad:82:85:35:6c:37:e8:8c:3d:52:a9:3b:cc:95:5b: f1:be:a1:4d:f8:b7:ce:0e:5a:1f:4d:54:b2:52:eb: a9:ef:98:53:93:74:04:58:88:ee:f1:87:1b:37:6d: 9b:64:26:45:ac:09:e0:01:75:4e:68:46:72:7a:de: 25:25:42:a4:4c:06:e1:ba:3d:a4:70:7b:05:fe:22: 68:49:44:d6:19:7b:64:61:ab:e6:1d:3a:5f:5b:08: 51:09:34:f2:15:3a:87:df:8d:9c:fe:89:32:6f:9c: c3:c3:c5:62:d2:82:1f:8b:c4:a8:90:c8:60:9e:42: 10:3b:12:15:76:72:1c:ef:be:47:99:d1:c8:99:03: 62:06:10:65:13:d7:cf:b9:db:6b:bf:f3:db:08:20: b8:bc:02:0d:b0:b0:10:85:98:ee:32:0d:c7:9e:0e: f1:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B0:03:24:AA:F6:56:D5:BC:82:00:01:2D:C6:E0:DE:8E:5A:D2:97 X509v3 Authority Key Identifier: keyid:1B:8D:EE:DB:1D:3C:48:CC:1C:4C:21:7B:96:9C:79:85:41:A4:CC:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:d6:d3:91:63:5f:51:ee:ad:53:1b:4e:7c:d6:fd:43:91:fd: 22:c6:7d:9b:aa:ff:50:4e:32:3e:fb:f4:8b:ef:6e:f0:d0:78: 81:2e:65:96:0e:bc:c9:32:d6:66:ac:27:70:6f:ad:c4:89:44: bb:99:ac:65:65:3b:9c:d6:e4:7e:cd:f3:83:38:01:52:b0:2e: 22:2c:7a:2b:27:e5:e4:d1:ff:53:4b:55:c1:38:da:83:a3:bd: 54:9b:61:d2:ca:f6:9d:2d:e3:db:a1:3c:f0:83:25:14:95:a1: 9d:86:89:ed:ce:8d:07:8d:7e:ed:c1:f4:0d:b9:ea:3d:a6:b5: e6:a6:4c:6e:02:6d:9b:a3:d6:b8:f6:a6:11:60:63:b5:1a:88: 3d:a7:3c:0c:a6:3a:9d:f4:5a:dc:49:4a:03:d6:81:03:bf:95: 75:f8:c1:43:27:4f:63:d7:92:d5:9f:2e:aa:d9:54:97:59:0c: 65:e4:72:87:3a:94:45:c6:a9:04:2c:8e:5d:0b:f5:69:59:79: 41:60:88:ec:12:85:92:7d:88:b9:48:8c:af:89:d8:59:a4:95: 5e:6a:df:65:4e:63:a0:0d:05:3e:2e:20:3a:74:d9:1d:b0:94: b3:20:a2:ff:36:b0:b8:f5:59:42:a1:48:e6:49:6d:96:42:15: 4e:c6:c8:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ4MDMxMTAvBgNVBAUTKDFCOERFRURCMUQzQzQ4Q0MxQzRDMjE3Qjk2OUM3OTg1 NDFBNENDNzcwHhcNMjUxMTAyMjIxOTI2WhcNMjUxMTA5MjIxOTI2WjAYMRYwFAYD VQQDEw02OTA3ZDhlZi04MmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6U74vq3k5W6YBXVWAFSIV8W1E4bT25csSiSMEHpzI69pEU9sU7REFh744zq2 FDn/mhs2ov3FTCFwSWbbsum6ns9PYR7GW0z2C0zQuPqqUJ53iWuQK9nzu4CtgoU1 bDfojD1SqTvMlVvxvqFN+LfODlofTVSyUuup75hTk3QEWIju8YcbN22bZCZFrAng AXVOaEZyet4lJUKkTAbhuj2kcHsF/iJoSUTWGXtkYavmHTpfWwhRCTTyFTqH342c /okyb5zDw8Vi0oIfi8SokMhgnkIQOxIVdnIc775HmdHImQNiBhBlE9fPudtrv/Pb CCC4vAINsLAQhZjuMg3Hng7xZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ2wAySq 9lbVvIIAAS3G4N6OWtKXMB8GA1UdIwQYMBaAFBuN7tsdPEjMHEwhe5aceYVBpMx3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDgwMy85NzdENzM2MDhD NzAxMUVCQUVBMTEzNDFDNEY5QUUwMi9HNDN1MngwOFNNd2NUQ0Y3bHB4NWhVR2t6 SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0M3UyeDA4U013Y1RDRjdscHg1aFVHa3pIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDgwMy85NzdENzM2MDhDNzAxMUVCQUVBMTEzNDFDNEY5QUUwMi9HNDN1MngwOFNN d2NUQ0Y3bHB4NWhVR2t6SGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl1tORY19R7q1TG0581v1Dkf0ixn2bqv9QTjI++/SL727w0HiBLmWW DrzJMtZmrCdwb63EiUS7maxlZTuc1uR+zfODOAFSsC4iLHorJ+Xk0f9TS1XBONqD o71Um2HSyvadLePboTzwgyUUlaGdhontzo0HjX7twfQNueo9prXmpkxuAm2bo9a4 9qYRYGO1Gog9pzwMpjqd9FrcSUoD1oEDv5V1+MFDJ09j15LVny6q2VSXWQxl5HKH OpRFxqkELI5dC/VpWXlBYIjsEoWSfYi5SIyvidhZpJVeat9lTmOgDQU+LiA6dNkd sJSzIKL/NrC49VlCoUjmSW2WQhVOxsg+ -----END CERTIFICATE-----Generated at Mon Nov 3 18:20:12 2025 by rpki-client