$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft File: mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft (raw, json) Hash identifier: UE16WxeBnBU62V4oBv+kr0Wux6ZQrBTpyvQ9EgDQeKg= Subject key identifier: B8:E3:99:68:26:87:7B:82:D5:90:BD:0B:BE:EF:80:09:16:69:61:10 Authority key identifier: 99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 Certificate issuer: /CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Certificate serial: 108F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft Manifest number: 1053 Signing time: Sun 02 Nov 2025 17:27:49 +0000 Manifest this update: Sun 02 Nov 2025 17:27:49 +0000 Manifest next update: Sun 09 Nov 2025 17:27:49 +0000 Files and hashes: 1: mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl (hash: syh78hZTs3PiqN9hm1Wij431pcZAV+2MBjY9JkYcmHc=) 2: 64BBCC50909D11ED9EA9867FC4F9AE02.roa (hash: JcjF+/6kCZJ48Z0DWV35F84UCZas+SRfWJwuoffcQww=) 3: EE63EB2A59A611F0959E0C63C4F9AE02.roa (hash: GsLnRLdogxstpaApcoyc6Zg1nnApMAJYYma2C41kKMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:27:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4239 (0x108f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F4B, serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Validity Not Before: Nov 2 17:27:49 2025 GMT Not After : Nov 9 17:27:49 2025 GMT Subject: CN=69079495-f84e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:1d:2a:8c:bf:13:8a:5e:e5:f1:93:0c:35:24: c2:7b:ab:46:fa:6d:c4:3c:81:23:e0:85:55:41:f8: d6:34:14:ed:f0:e3:d8:dd:4c:81:59:bd:1c:f1:28: b6:8a:0a:4b:38:ba:86:50:2b:91:a4:a1:bd:81:39: cb:b8:5d:f7:40:72:2d:8d:d3:98:e2:5a:e5:8a:6f: 31:f0:42:a6:90:86:f8:05:b6:99:fa:2e:c7:28:0f: 49:42:18:37:de:87:0a:5e:1f:4d:7f:f9:6b:d8:d4: 77:12:a6:54:26:b0:5b:94:bb:96:96:4f:27:80:fc: 3d:c7:4d:ca:e5:88:0f:dc:25:75:de:83:f3:be:02: 74:f6:b2:00:da:8b:a6:d6:d7:2f:5c:b4:e3:f4:73: ff:ca:9c:4c:a8:15:1b:90:a3:02:72:ce:3f:ea:e9: 83:eb:c7:ff:c4:b6:f7:e0:d6:e6:36:40:1c:4f:12: 2c:55:91:b4:1e:bf:3b:34:18:d5:33:0a:ef:a2:b7: a7:82:7c:93:b1:c7:e7:8a:6d:64:c8:d2:a3:11:e0: d9:d6:9b:7b:99:9f:8b:7e:ec:7c:4a:0a:8c:32:81: 81:7e:ed:cc:64:fc:29:16:9c:52:c4:63:64:b1:b1: 57:89:de:89:06:b0:11:b9:55:9a:69:12:81:eb:2e: 64:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:E3:99:68:26:87:7B:82:D5:90:BD:0B:BE:EF:80:09:16:69:61:10 X509v3 Authority Key Identifier: keyid:99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:54:14:a6:fa:4f:e4:59:76:e0:ea:5e:cb:6b:e1:ca:0a:e6: 73:af:8e:69:0b:99:5a:e8:16:1b:17:21:64:33:33:3c:69:0b: 33:29:8e:18:cd:94:bd:a7:7b:07:22:33:77:56:59:9a:3f:9d: 6b:57:ad:f6:d5:6b:35:4c:1b:ce:8c:a2:29:75:9d:eb:84:26: c4:21:d5:41:2c:1d:72:e4:60:42:2c:f3:20:37:c5:9f:2a:71: 92:7a:40:7b:50:42:ee:58:d0:4b:5c:ad:d3:ec:28:20:38:b5: 48:3b:1d:6f:41:f6:2f:3e:bd:fb:ff:c3:50:18:b6:d9:d6:08: 45:16:56:d2:0d:2e:ba:84:84:8c:9b:c6:30:f9:8d:cc:d2:13: 07:a5:5c:a0:1d:7a:e5:27:c1:b8:b5:f0:b6:b3:19:84:97:48: 1c:56:41:11:db:41:82:fc:8e:92:c6:8f:f1:c0:2e:13:49:a0: d5:71:76:14:0a:9b:0a:1a:db:00:a9:a1:d3:31:e0:de:89:03: 32:d0:1d:e8:10:46:23:cc:4f:4e:6c:0e:dc:db:c3:18:2e:93: e7:e6:06:02:d9:92:c0:58:13:f9:dc:f2:c4:57:3c:0f:c7:3f: 4a:2b:49:f3:e6:e3:7e:6b:fa:95:7f:55:b8:37:69:55:dd:cc: 6f:ed:20:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGNEIxMTAvBgNVBAUTKDk5MzBEMEZGRUI4NzA3MDFCNEU4RUI0REIzQzA4NjYy MzNGQzVCNTAwHhcNMjUxMTAyMTcyNzQ5WhcNMjUxMTA5MTcyNzQ5WjAYMRYwFAYD VQQDEw02OTA3OTQ5NS1mODRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3R0qjL8Til7l8ZMMNSTCe6tG+m3EPIEj4IVVQfjWNBTt8OPY3UyBWb0c8Si2 igpLOLqGUCuRpKG9gTnLuF33QHItjdOY4lrlim8x8EKmkIb4BbaZ+i7HKA9JQhg3 3ocKXh9Nf/lr2NR3EqZUJrBblLuWlk8ngPw9x03K5YgP3CV13oPzvgJ09rIA2oum 1tcvXLTj9HP/ypxMqBUbkKMCcs4/6umD68f/xLb34NbmNkAcTxIsVZG0Hr87NBjV MwrvorengnyTscfnim1kyNKjEeDZ1pt7mZ+Lfux8SgqMMoGBfu3MZPwpFpxSxGNk sbFXid6JBrARuVWaaRKB6y5kNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLjjmWgm h3uC1ZC9C77vgAkWaWEQMB8GA1UdIwQYMBaAFJkw0P/rhwcBtOjrTbPAhmIz/FtQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY0Qi81NzcyQUEzMDU0 RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3RzA2T3ROczhDR1lqUDhX MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21URFFfLXVIQndHMDZPdE5zOENHWWpQOFcxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEY0Qi81NzcyQUEzMDU0RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3 RzA2T3ROczhDR1lqUDhXMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPVBSm+k/kWXbg6l7La+HKCuZzr45pC5la6BYbFyFkMzM8aQszKY4Y zZS9p3sHIjN3VlmaP51rV6321Ws1TBvOjKIpdZ3rhCbEIdVBLB1y5GBCLPMgN8Wf KnGSekB7UELuWNBLXK3T7CggOLVIOx1vQfYvPr37/8NQGLbZ1ghFFlbSDS66hISM m8Yw+Y3M0hMHpVygHXrlJ8G4tfC2sxmEl0gcVkER20GC/I6Sxo/xwC4TSaDVcXYU CpsKGtsAqaHTMeDeiQMy0B3oEEYjzE9ObA7c28MYLpPn5gYC2ZLAWBP53PLEVzwP xz9KK0nz5uN+a/qVf1W4N2lV3cxv7SCY -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:55 2025 by rpki-client