$ rpki-client -vvf rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft File: cL0aXZUSv23gumklPbvwEQPlOkM.mft (raw, json) Hash identifier: BUw4V3dfZut83sftCt0VKXkwcPVU7+BvDGrBnSeVUcQ= Subject key identifier: DB:FC:C7:52:09:08:1A:93:4A:95:60:0A:7F:46:2E:41:22:47:9C:32 Authority key identifier: 70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43 Certificate issuer: /CN=A9129797/serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43 Certificate serial: 1165 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft Manifest number: 1148 Signing time: Sun 02 Nov 2025 17:16:36 +0000 Manifest this update: Sun 02 Nov 2025 17:16:35 +0000 Manifest next update: Sun 09 Nov 2025 17:16:35 +0000 Files and hashes: 1: cL0aXZUSv23gumklPbvwEQPlOkM.crl (hash: 5lIwxPw7xBAWJ7C3ot+E5n+VRIa+EOs/SBwkpQqL5Q0=) 2: 8818EDF88F2C11EDA558DE4DC4F9AE02.roa (hash: b6hr7IhNuFUDMwuO8Nb6ge3GDbb3DEInCX/HHEiFoVM=) 3: E0A2D2B040C811EE90859140C4F9AE02.roa (hash: skRP+9UcVz6p99ItfpkcWdsCVMpTNN+fUT0lptapL6Y=) 4: 6B5A80B80B8211EAAD5B6B4AC4F9AE02.roa (hash: ShmWGPi16fistc8ldhgNj0wn72/E+SCOVnORBpUTPkI=) 5: 595310E440C911EE9F1D5F41C4F9AE02.roa (hash: Z7+3DvwJtElz8GyUhaEbEO58MPBIQdKLUzyM58gm72k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:16:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4453 (0x1165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129797, serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43 Validity Not Before: Nov 2 17:16:35 2025 GMT Not After : Nov 9 17:16:35 2025 GMT Subject: CN=690791f4-9217 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:16:76:f1:42:bb:6b:dd:67:14:e8:3f:d1:e5: e0:b2:8f:13:ab:d6:81:4b:40:2a:34:9d:1f:55:3b: 75:5d:25:88:50:b2:1f:59:6c:6b:ae:56:b8:3e:35: 9d:00:fa:76:89:d5:3a:5e:52:04:c4:a0:63:8d:92: 33:e1:21:1b:8f:3d:bc:45:3b:69:dc:9b:b7:ca:cc: d1:7c:c9:84:17:59:b5:e6:f5:14:d4:af:e9:40:47: 71:ee:2d:bf:a5:fd:89:5d:46:b8:4f:a2:b8:bc:ac: 29:0f:54:38:b5:45:80:9d:2e:aa:61:9c:cb:70:ee: c3:24:9f:41:4c:ef:00:7f:60:c0:b0:89:b2:fc:b7: e0:87:b2:10:62:7f:50:ed:63:8e:86:5a:41:84:eb: 1b:5b:85:28:f9:10:a8:b9:4f:1e:01:e2:78:0a:8f: 15:bc:c7:aa:4b:d5:32:e4:43:57:2d:50:c4:c6:a5: d4:39:ac:d8:24:2e:f0:1b:a0:c4:8b:1d:79:5f:c9: 98:bc:7d:3e:21:e4:89:1b:f3:e7:0b:3d:2b:38:fc: 81:0b:90:3e:60:ec:a3:a5:67:e3:bc:d5:78:3d:ac: 52:3d:06:c8:3b:b6:19:82:37:b1:79:5f:db:c2:55: 92:c0:aa:f1:46:86:95:30:f6:8b:7d:ae:e0:63:e5: 14:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:FC:C7:52:09:08:1A:93:4A:95:60:0A:7F:46:2E:41:22:47:9C:32 X509v3 Authority Key Identifier: keyid:70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:8c:d3:82:42:6d:2b:86:7c:17:eb:91:a6:86:72:5a:55:c9: c7:86:8c:08:6a:fd:05:c2:dd:5b:99:dd:3e:74:d9:52:05:f4: b4:d4:16:8e:fb:02:ad:00:a0:34:7e:67:29:87:f8:9a:0e:25: ed:f4:74:bc:8e:3d:e6:33:9a:0e:9f:ac:26:ec:2e:84:ac:38: 0e:f4:a5:2b:14:25:0f:0d:13:10:67:34:a0:74:8c:05:c7:35: a6:e9:32:57:8e:30:f0:a3:e0:fd:49:55:95:0e:38:4d:19:35: 99:5f:b6:e8:0f:6c:14:ae:bb:53:15:4d:79:a1:b1:b6:80:c0: 1d:b0:41:07:55:e4:27:fc:9d:66:c4:fc:8d:b0:fe:3e:c2:a2: 1f:d1:57:76:ab:2c:8c:b2:49:e7:f5:7e:4e:27:8d:ca:79:f3: a5:2e:96:cf:85:f1:4b:e3:45:42:be:3b:ea:11:a5:9c:01:64: 4c:b2:a1:14:42:ea:97:22:8a:3e:a4:5a:24:49:5b:4b:92:b4: 40:32:ee:95:61:fb:60:ed:5d:a3:f9:e6:2e:90:d2:8a:73:55: 0d:34:0d:38:9f:0c:3e:8a:0d:0c:f4:7f:b4:02:56:eb:1d:98: 21:34:1c:0e:05:a8:db:25:d8:c0:70:ea:24:fd:32:8d:10:11: 1e:5a:02:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3OTcxMTAvBgNVBAUTKDcwQkQxQTVEOTUxMkJGNkRFMEJBNjkyNTNEQkJGMDEx MDNFNTNBNDMwHhcNMjUxMTAyMTcxNjM1WhcNMjUxMTA5MTcxNjM1WjAYMRYwFAYD VQQDEw02OTA3OTFmNC05MjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphZ28UK7a91nFOg/0eXgso8Tq9aBS0AqNJ0fVTt1XSWIULIfWWxrrla4PjWd APp2idU6XlIExKBjjZIz4SEbjz28RTtp3Ju3yszRfMmEF1m15vUU1K/pQEdx7i2/ pf2JXUa4T6K4vKwpD1Q4tUWAnS6qYZzLcO7DJJ9BTO8Af2DAsImy/Lfgh7IQYn9Q 7WOOhlpBhOsbW4Uo+RCouU8eAeJ4Co8VvMeqS9Uy5ENXLVDExqXUOazYJC7wG6DE ix15X8mYvH0+IeSJG/PnCz0rOPyBC5A+YOyjpWfjvNV4PaxSPQbIO7YZgjexeV/b wlWSwKrxRoaVMPaLfa7gY+UU+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNv8x1IJ CBqTSpVgCn9GLkEiR5wyMB8GA1UdIwQYMBaAFHC9Gl2VEr9t4LppJT278BED5TpD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTc5Ny8wOUYyRDk5NDFB MjIxMUU5QkMwNkQzMEFDNEY5QUUwMi9jTDBhWFpVU3YyM2d1bWtsUGJ2d0VRUGxP a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMMGFYWlVTdjIzZ3Vta2xQYnZ3RVFQbE9rTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTc5Ny8wOUYyRDk5NDFBMjIxMUU5QkMwNkQzMEFDNEY5QUUwMi9jTDBhWFpVU3Yy M2d1bWtsUGJ2d0VRUGxPa00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBojNOCQm0rhnwX65GmhnJaVcnHhowIav0Fwt1bmd0+dNlSBfS01BaO +wKtAKA0fmcph/iaDiXt9HS8jj3mM5oOn6wm7C6ErDgO9KUrFCUPDRMQZzSgdIwF xzWm6TJXjjDwo+D9SVWVDjhNGTWZX7boD2wUrrtTFU15obG2gMAdsEEHVeQn/J1m xPyNsP4+wqIf0Vd2qyyMsknn9X5OJ43KefOlLpbPhfFL40VCvjvqEaWcAWRMsqEU QuqXIoo+pFokSVtLkrRAMu6VYftg7V2j+eYukNKKc1UNNA04nww+ig0M9H+0Albr HZghNBwOBajbJdjAcOok/TKNEBEeWgIq -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:13 2025 by rpki-client