$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft File: 8a29DnE5HfIQ3jRh52V4tHoBYko.mft (raw, json) Hash identifier: TYWtLP+/YkEXGXViv3f8MX1Mbylfw0b1IbHvQeT7Cpk= Subject key identifier: D3:D9:60:A8:37:0D:DE:41:B8:04:CD:A9:FB:98:2C:2B:BF:F3:0D:7C Authority key identifier: F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A Certificate issuer: /CN=A9131711/serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft Manifest number: 0142 Signing time: Mon 03 Nov 2025 04:21:36 +0000 Manifest this update: Mon 03 Nov 2025 04:21:35 +0000 Manifest next update: Mon 10 Nov 2025 04:21:35 +0000 Files and hashes: 1: 8a29DnE5HfIQ3jRh52V4tHoBYko.crl (hash: dQMUnEToM1u1IbsCOYdPgKoJ9vUU4aX2cEJEtu4wcVM=) 2: 1D63B4248BB011F0A730E413C4F9AE02.roa (hash: OyE30n/5T2aP2dUzdX/x+6s1iB5G8Z+cghgCmYn5BRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A Validity Not Before: Nov 3 04:21:35 2025 GMT Not After : Nov 10 04:21:35 2025 GMT Subject: CN=69082dd0-dbb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c7:5e:90:94:c7:d7:ef:31:d4:73:0e:e8:c9: 0e:04:5a:25:70:06:b6:3e:32:03:77:1a:ba:13:51: 27:49:6b:e6:99:d0:cc:f0:25:07:20:12:b4:54:6d: ee:12:b1:f6:69:8e:99:fb:34:97:e6:14:47:79:44: 4a:77:ec:41:b3:00:bc:62:c2:66:18:46:67:2d:d3: 79:40:0b:69:fb:b9:c4:a0:48:80:21:f1:86:39:0b: 48:e8:88:e0:54:35:08:f9:68:e1:64:35:40:92:d1: 6c:d6:a6:98:14:ad:26:69:ac:3e:d9:87:64:cc:c6: 16:ee:d4:42:2e:7f:91:fa:b1:42:86:61:24:19:ff: a7:d5:c6:5c:15:08:50:d8:ab:31:37:24:5d:5d:7a: 9f:d8:19:69:5b:26:2d:45:21:a4:63:02:e7:c2:ed: 5c:79:45:4b:1b:4e:ea:e9:e9:c6:74:be:3f:eb:b9: cb:c6:15:2e:5e:b2:95:38:50:2d:3b:e0:4e:76:49: ab:f6:1d:82:e2:11:3c:7d:63:42:fd:de:69:d1:f0: fb:36:31:1d:b1:97:35:b6:a1:84:2c:95:2b:f4:dd: 33:8c:60:f1:c2:d2:06:d6:e2:cc:61:4f:d2:7a:07: 8b:56:72:21:f5:e9:2e:d5:36:14:ff:35:0e:0b:45: 66:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:D9:60:A8:37:0D:DE:41:B8:04:CD:A9:FB:98:2C:2B:BF:F3:0D:7C X509v3 Authority Key Identifier: keyid:F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:fe:8f:5a:07:23:7a:d8:4d:a6:a0:30:d5:e8:07:d6:c4:e4: 12:05:4d:a7:1d:e8:b3:0f:f3:4f:75:ac:0f:35:c3:b2:13:94: 4e:b1:5f:84:bd:d2:ee:c4:5b:4f:8a:7b:a2:6b:ee:d0:2a:e5: a0:cc:c8:3d:04:ee:95:90:dd:d5:6d:73:9c:81:0a:21:54:3f: ac:60:11:43:39:b4:18:0f:8b:74:97:10:49:fa:22:9a:8a:21: df:4f:e7:66:c1:4d:6f:ab:a9:ab:ae:16:8a:b5:6b:9b:50:e2: 30:4d:2c:c5:2f:55:d0:ee:90:a0:53:83:e8:5f:12:95:70:82: c4:3a:b3:33:17:68:29:2d:0c:a4:a5:3a:a5:54:b6:79:61:74: 13:42:36:69:c5:a8:b3:82:c3:df:2e:a4:7f:52:e2:86:1c:5b: 1d:f1:98:ea:3b:46:a9:f4:d2:f3:56:99:22:30:7b:bb:00:6d: b9:c1:8a:68:45:b0:4a:49:45:58:b2:3b:a0:39:19:d4:02:ba: 5d:ad:82:46:da:90:38:c7:3b:61:bf:92:b1:56:5c:14:6a:70: c8:ce:30:5c:f2:81:fa:46:0a:84:fe:af:14:d3:a1:83:f7:7d: 75:63:37:18:e9:f1:9e:96:1f:0b:af:11:73:40:59:75:e0:63: b6:9f:ec:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEYxQURCRDBFNzEzOTFERjIxMERFMzQ2MUU3NjU3OEI0 N0EwMTYyNEEwHhcNMjUxMTAzMDQyMTM1WhcNMjUxMTEwMDQyMTM1WjAYMRYwFAYD VQQDEw02OTA4MmRkMC1kYmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8dekJTH1+8x1HMO6MkOBFolcAa2PjIDdxq6E1EnSWvmmdDM8CUHIBK0VG3u ErH2aY6Z+zSX5hRHeURKd+xBswC8YsJmGEZnLdN5QAtp+7nEoEiAIfGGOQtI6Ijg VDUI+WjhZDVAktFs1qaYFK0maaw+2YdkzMYW7tRCLn+R+rFChmEkGf+n1cZcFQhQ 2KsxNyRdXXqf2BlpWyYtRSGkYwLnwu1ceUVLG07q6enGdL4/67nLxhUuXrKVOFAt O+BOdkmr9h2C4hE8fWNC/d5p0fD7NjEdsZc1tqGELJUr9N0zjGDxwtIG1uLMYU/S egeLVnIh9eku1TYU/zUOC0VmzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNPZYKg3 Dd5BuATNqfuYLCu/8w18MB8GA1UdIwQYMBaAFPGtvQ5xOR3yEN40YedleLR6AWJK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS9BOTUwREZEQUM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi84YTI5RG5FNUhmSVEzalJoNTJWNHRIb0JZ a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhhMjlEbkU1SGZJUTNqUmg1MlY0dEhvQllrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS9BOTUwREZEQUM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi84YTI5RG5FNUhm SVEzalJoNTJWNHRIb0JZa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk/o9aByN62E2moDDV6AfWxOQSBU2nHeizD/NPdawPNcOyE5ROsV+E vdLuxFtPinuia+7QKuWgzMg9BO6VkN3VbXOcgQohVD+sYBFDObQYD4t0lxBJ+iKa iiHfT+dmwU1vq6mrrhaKtWubUOIwTSzFL1XQ7pCgU4PoXxKVcILEOrMzF2gpLQyk pTqlVLZ5YXQTQjZpxaizgsPfLqR/UuKGHFsd8ZjqO0ap9NLzVpkiMHu7AG25wYpo RbBKSUVYsjugORnUArpdrYJG2pA4xzthv5KxVlwUanDIzjBc8oH6RgqE/q8U06GD 9311YzcY6fGelh8LrxFzQFl14GO2n+wc -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:14 2025 by rpki-client