$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft File: tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft (raw, json) Hash identifier: I29H2ztqtPkEOaqNnhSyjHTl62zi03CFd/PqWl/6K3E= Subject key identifier: 33:FC:4D:11:E6:1D:B1:D7:B8:67:7C:3F:6A:76:81:06:62:B5:3B:01 Authority key identifier: B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C Certificate issuer: /CN=A9131711/serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft Manifest number: 0147 Signing time: Mon 03 Nov 2025 04:21:34 +0000 Manifest this update: Mon 03 Nov 2025 04:21:33 +0000 Manifest next update: Mon 10 Nov 2025 04:21:33 +0000 Files and hashes: 1: tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl (hash: g13v7TJUybxbzhaPpxaPnFRp98OX3ouLmCFFOS6w2fs=) 2: B2B006BAE3E911EEB845B268C4F9AE02.roa (hash: fj5an6uMsWFMPTZr6PrKep91XRX3rQER6UmH0deptJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:21:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Validity Not Before: Nov 3 04:21:33 2025 GMT Not After : Nov 10 04:21:33 2025 GMT Subject: CN=69082dcd-efeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:29:8e:da:51:4e:3e:cb:4e:50:a6:c3:bd:46: 1e:56:3e:6d:cb:a9:8b:8b:db:74:81:88:a3:34:82: b6:f3:af:d8:99:3f:f1:53:01:31:f4:f2:e3:26:49: f0:d7:93:42:b6:43:a9:5a:57:b3:0d:03:ba:f4:81: 52:47:52:f2:9a:9f:67:87:df:c5:d7:72:25:d6:48: 41:3f:d0:d7:41:18:36:e9:91:09:c5:bb:e6:0d:77: 53:ad:7c:a4:c8:67:16:b7:81:2b:97:06:f8:b0:dd: e7:24:b5:ae:62:a5:bb:4b:b1:be:13:c2:71:e7:e9: 97:99:f8:cf:4b:b1:59:23:27:a7:3f:e7:fa:6c:00: cf:43:67:9b:df:bf:41:c3:0e:2c:0c:11:57:17:7e: ab:d2:66:ae:e3:f5:89:7c:a3:15:3e:19:c4:43:e4: e2:f1:9d:96:a7:16:e6:e9:82:c0:f0:c3:71:20:89: 84:e3:6d:5e:4b:41:2c:25:da:73:f0:ab:41:b7:d4: 53:0d:bd:0a:02:3d:5d:2c:3a:9a:d3:ab:13:0a:77: 98:e1:da:c0:5e:ea:da:55:30:51:35:0c:c0:e1:51: 73:05:fc:29:a2:d0:e0:0f:6f:0b:64:7e:6b:a7:b3: 02:13:61:1c:fd:4e:49:8b:eb:1b:71:d7:8f:38:20: c5:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:FC:4D:11:E6:1D:B1:D7:B8:67:7C:3F:6A:76:81:06:62:B5:3B:01 X509v3 Authority Key Identifier: keyid:B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:e0:20:d9:b7:77:f1:a5:c4:a4:ef:28:d6:5e:ed:74:b0:8b: 36:84:81:6d:4e:a0:f3:2a:91:d2:21:97:9d:06:1b:fe:d6:bd: 26:b8:cf:84:67:f0:66:fd:e1:03:d8:f8:1b:22:fe:51:1a:1f: 09:b3:ae:e9:f5:94:79:bf:05:15:73:22:27:78:95:92:03:4a: 4f:f8:d3:84:f2:41:38:9b:0e:f7:e2:d9:4b:17:a5:57:af:63: f7:c9:cb:cf:49:6b:66:09:20:44:49:85:8c:6a:c0:9b:80:f8: 77:d3:1b:69:e4:1b:a8:e0:cd:21:5e:b5:65:72:29:f2:d9:87: 6b:0d:1b:37:c8:89:d8:0f:85:79:4a:1d:ec:2e:56:22:f1:81: 1f:4e:f7:8c:98:67:d0:8d:df:c1:8a:e1:2a:b3:2b:42:aa:97: 62:8b:d1:f4:44:b3:8d:f8:39:2f:44:bf:5e:14:3b:97:6b:8e: 2f:f4:7e:9b:ec:da:a0:a1:f5:97:67:b8:61:28:d0:83:d4:9c: 8e:85:53:66:a1:94:b8:5b:55:5f:7f:57:23:3e:98:e9:be:ee: 2b:e2:92:4b:d9:a2:17:b8:35:ab:92:eb:a0:f7:e1:63:fc:b3: fd:e7:fe:1a:2a:fc:e6:11:b2:55:8e:1c:6f:28:4f:16:ec:91: 77:db:c5:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEI1N0IyMDdGMEUxQzFCQTg3M0EwNzkzNTgyQzdBODEz NDA5ODY3NEMwHhcNMjUxMTAzMDQyMTMzWhcNMjUxMTEwMDQyMTMzWjAYMRYwFAYD VQQDEw02OTA4MmRjZC1lZmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSmO2lFOPstOUKbDvUYeVj5ty6mLi9t0gYijNIK286/YmT/xUwEx9PLjJknw 15NCtkOpWlezDQO69IFSR1Lymp9nh9/F13Il1khBP9DXQRg26ZEJxbvmDXdTrXyk yGcWt4Erlwb4sN3nJLWuYqW7S7G+E8Jx5+mXmfjPS7FZIyenP+f6bADPQ2eb379B ww4sDBFXF36r0mau4/WJfKMVPhnEQ+Ti8Z2Wpxbm6YLA8MNxIImE421eS0EsJdpz 8KtBt9RTDb0KAj1dLDqa06sTCneY4drAXuraVTBRNQzA4VFzBfwpotDgD28LZH5r p7MCE2Ec/U5Ji+sbcdePOCDF4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDP8TRHm HbHXuGd8P2p2gQZitTsBMB8GA1UdIwQYMBaAFLV7IH8OHBuoc6B5NYLHqBNAmGdM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS85RkREMkRBMEM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2aHpvSGsxZ3Nlb0UwQ1la MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RYc2dmdzRjRzZoem9IazFnc2VvRTBDWVowdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS85RkREMkRBMEM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2 aHpvSGsxZ3Nlb0UwQ1laMHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBM4CDZt3fxpcSk7yjWXu10sIs2hIFtTqDzKpHSIZedBhv+1r0muM+E Z/Bm/eED2PgbIv5RGh8Js67p9ZR5vwUVcyIneJWSA0pP+NOE8kE4mw734tlLF6VX r2P3ycvPSWtmCSBESYWMasCbgPh30xtp5Buo4M0hXrVlciny2YdrDRs3yInYD4V5 Sh3sLlYi8YEfTveMmGfQjd/BiuEqsytCqpdii9H0RLON+DkvRL9eFDuXa44v9H6b 7NqgofWXZ7hhKNCD1JyOhVNmoZS4W1Vff1cjPpjpvu4r4pJL2aIXuDWrkuug9+Fj /LP95/4aKvzmEbJVjhxvKE8W7JF328VS -----END CERTIFICATE-----Generated at Tue Nov 4 21:36:56 2025 by rpki-client