$ rpki-client -vvf rpki.apnic.net/member_repository/A9134B2D/031F451E837B11ED805D402EC4F9AE02/1rdRTL8L4gRsE8oNf10iNS_aWO4.mft File: 1rdRTL8L4gRsE8oNf10iNS_aWO4.mft (raw, json) Hash identifier: e3xZi1bLCk1xLsRcVktnSsfCWljuzJUPZME8kCfnOAk= Subject key identifier: 91:37:9A:B6:C3:13:15:48:9B:CF:51:56:80:84:09:13:88:B8:74:06 Authority key identifier: D6:B7:51:4C:BF:0B:E2:04:6C:13:CA:0D:7F:5D:22:35:2F:DA:58:EE Certificate issuer: /CN=A9134B2D/serialNumber=D6B7514CBF0BE2046C13CA0D7F5D22352FDA58EE Certificate serial: 021E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1rdRTL8L4gRsE8oNf10iNS_aWO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134B2D/031F451E837B11ED805D402EC4F9AE02/1rdRTL8L4gRsE8oNf10iNS_aWO4.mft Manifest number: 021A Signing time: Wed 05 Nov 2025 02:17:51 +0000 Manifest this update: Wed 05 Nov 2025 02:17:50 +0000 Manifest next update: Wed 12 Nov 2025 02:17:50 +0000 Files and hashes: 1: 1rdRTL8L4gRsE8oNf10iNS_aWO4.crl (hash: 40HLGAjtWq8AHDHhCGZ+GR5DM3i+Nto1JsU5M3SOpMM=) 2: 8E3128B4837D11EDB082012FC4F9AE02.roa (hash: pbCZups9CHpt8yF1jqE6eaTv1T+fEJy3uGbRYPbMwLg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134B2D/031F451E837B11ED805D402EC4F9AE02/1rdRTL8L4gRsE8oNf10iNS_aWO4.crl rsync://rpki.apnic.net/member_repository/A9134B2D/031F451E837B11ED805D402EC4F9AE02/1rdRTL8L4gRsE8oNf10iNS_aWO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1rdRTL8L4gRsE8oNf10iNS_aWO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 542 (0x21e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134B2D, serialNumber=D6B7514CBF0BE2046C13CA0D7F5D22352FDA58EE Validity Not Before: Nov 5 02:17:50 2025 GMT Not After : Nov 12 02:17:50 2025 GMT Subject: CN=690ab3cf-cf90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5c:22:1a:9d:ed:10:a3:c0:4c:08:5c:fe:ac: 29:6d:c1:13:5c:90:8f:c8:47:01:ef:9e:5b:2c:c5: db:29:0d:1e:36:63:2c:e7:18:ab:eb:57:02:c5:94: f5:9e:0c:b1:63:03:56:58:d6:44:86:ee:cb:8b:49: ab:1f:4d:84:85:e9:f3:e1:25:50:21:39:2e:4f:28: 1b:13:0f:1f:5b:28:96:34:df:c5:1a:3c:93:6e:a3: da:0d:03:cc:a2:9c:7f:09:da:3d:84:7f:ca:20:c1: 5a:99:85:6c:a1:e3:1c:c4:29:a1:57:50:67:b6:a2: 77:17:de:e2:ed:b3:0c:e7:0d:ed:a1:ab:8a:15:50: 6f:56:fe:4f:c4:a8:e0:8c:46:66:2b:5a:50:56:39: 5a:82:75:b8:b9:d0:71:d8:77:68:9e:91:3d:10:13: 0b:26:d6:9d:dc:14:e4:2c:a1:81:24:00:4f:b4:44: 11:19:7d:72:1c:2b:37:aa:8d:e9:e3:fc:91:17:86: 51:d8:9c:36:27:be:9b:c8:6b:d5:e4:cb:dd:00:df: 0b:a9:0d:ce:69:4e:10:69:30:36:46:fc:80:2f:35: 7f:b9:01:61:7c:8c:cc:1e:e6:43:42:ab:cd:78:e4: 13:7d:1e:84:fe:74:3d:23:74:47:6e:dd:4b:e7:4c: 9d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:37:9A:B6:C3:13:15:48:9B:CF:51:56:80:84:09:13:88:B8:74:06 X509v3 Authority Key Identifier: keyid:D6:B7:51:4C:BF:0B:E2:04:6C:13:CA:0D:7F:5D:22:35:2F:DA:58:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134B2D/031F451E837B11ED805D402EC4F9AE02/1rdRTL8L4gRsE8oNf10iNS_aWO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1rdRTL8L4gRsE8oNf10iNS_aWO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134B2D/031F451E837B11ED805D402EC4F9AE02/1rdRTL8L4gRsE8oNf10iNS_aWO4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:3d:9b:7e:c7:8b:01:90:92:b4:a8:69:09:ac:b0:37:a6:8b: 88:49:bf:8f:86:e3:b9:cc:7c:9c:49:57:fc:73:6b:c0:eb:94: 97:ab:46:fa:5e:0a:e1:5a:0f:7b:ca:ab:7c:8a:fd:74:ac:0d: 13:37:f4:50:46:58:86:21:72:8c:21:ac:dd:65:78:b7:6b:e9: fe:c5:5e:96:56:51:69:39:72:e8:c4:61:f6:b7:c0:2f:1c:41: 2a:2e:60:9c:29:8d:e4:99:15:21:52:1b:2a:49:16:44:55:cc: c4:37:ea:c2:f5:1f:f3:d6:35:45:f0:ca:ac:a4:ec:59:db:eb: 51:e0:57:16:ed:76:3e:74:e3:67:89:1e:ab:15:46:47:e1:b4: 41:98:71:4c:a8:82:b9:cd:e0:17:56:e5:be:66:68:f6:c2:2f: 96:65:7e:97:ce:13:dc:87:2a:d6:bf:ae:58:47:48:73:87:1b: 1b:bd:69:34:b2:22:fa:3c:e5:fc:d8:52:af:02:88:67:45:e6: eb:91:31:19:67:67:7f:98:88:09:ef:b1:2b:ce:08:f1:92:5e: b4:ec:da:2e:7a:70:a8:3a:5a:03:96:37:2e:55:a2:8e:6f:96: 48:ce:5e:5f:46:69:ee:8c:cd:7e:4b:84:2b:1c:0e:f9:1c:32: dd:b9:1c:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCMkQxMTAvBgNVBAUTKEQ2Qjc1MTRDQkYwQkUyMDQ2QzEzQ0EwRDdGNUQyMjM1 MkZEQTU4RUUwHhcNMjUxMTA1MDIxNzUwWhcNMjUxMTEyMDIxNzUwWjAYMRYwFAYD VQQDEw02OTBhYjNjZi1jZjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFwiGp3tEKPATAhc/qwpbcETXJCPyEcB755bLMXbKQ0eNmMs5xir61cCxZT1 ngyxYwNWWNZEhu7Li0mrH02Ehenz4SVQITkuTygbEw8fWyiWNN/FGjyTbqPaDQPM opx/Cdo9hH/KIMFamYVsoeMcxCmhV1BntqJ3F97i7bMM5w3toauKFVBvVv5PxKjg jEZmK1pQVjlagnW4udBx2HdonpE9EBMLJtad3BTkLKGBJABPtEQRGX1yHCs3qo3p 4/yRF4ZR2Jw2J76byGvV5MvdAN8LqQ3OaU4QaTA2RvyALzV/uQFhfIzMHuZDQqvN eOQTfR6E/nQ9I3RHbt1L50ydEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJE3mrbD ExVIm89RVoCECROIuHQGMB8GA1UdIwQYMBaAFNa3UUy/C+IEbBPKDX9dIjUv2lju MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEIyRC8wMzFGNDUxRTgz N0IxMUVEODA1RDQwMkVDNEY5QUUwMi8xcmRSVEw4TDRnUnNFOG9OZjEwaU5TX2FX TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFyZFJUTDhMNGdSc0U4b05mMTBpTlNfYVdPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEIyRC8wMzFGNDUxRTgzN0IxMUVEODA1RDQwMkVDNEY5QUUwMi8xcmRSVEw4TDRn UnNFOG9OZjEwaU5TX2FXTzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiPZt+x4sBkJK0qGkJrLA3pouISb+PhuO5zHycSVf8c2vA65SXq0b6 XgrhWg97yqt8iv10rA0TN/RQRliGIXKMIazdZXi3a+n+xV6WVlFpOXLoxGH2t8Av HEEqLmCcKY3kmRUhUhsqSRZEVczEN+rC9R/z1jVF8MqspOxZ2+tR4FcW7XY+dONn iR6rFUZH4bRBmHFMqIK5zeAXVuW+Zmj2wi+WZX6XzhPchyrWv65YR0hzhxsbvWk0 siL6POX82FKvAohnRebrkTEZZ2d/mIgJ77Erzgjxkl607NouenCoOloDljcuVaKO b5ZIzl5fRmnujM1+S4QrHA75HDLduRyt -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:19 2025 by rpki-client