$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft File: -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json) Hash identifier: 0kYtrBgiQYdce3F9RMvwAfpJrY2X3JnSTXnKX4R7Qjc= Subject key identifier: F6:CE:45:06:7B:B0:4E:F5:E1:52:AF:EF:F6:D2:B4:9A:54:FD:5B:FB Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 Certificate issuer: /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Certificate serial: 02B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft Manifest number: 02AD Signing time: Wed 05 Nov 2025 01:36:05 +0000 Manifest this update: Wed 05 Nov 2025 01:36:05 +0000 Manifest next update: Wed 12 Nov 2025 01:36:05 +0000 Files and hashes: 1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: fkr3j0hYCwSgQ/ylum0oLXYqtNLmCOtuZgJfcstzzAc=) 2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: sMLXclSpaatsjiefCG2CYL97q01e5mLSlbQCKpyYzHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:36:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 689 (0x2b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135450, serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Validity Not Before: Nov 5 01:36:05 2025 GMT Not After : Nov 12 01:36:05 2025 GMT Subject: CN=690aaa05-8863 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:19:89:e3:52:f0:6a:2d:fd:fe:e2:62:68:b8: 1e:3f:02:3a:80:1b:64:e3:2b:c9:b1:43:e3:18:43: a2:8a:ce:46:c5:dc:44:16:79:ad:de:ec:e5:93:41: d9:9f:9d:e6:bf:1f:45:f3:c3:94:e4:f0:01:68:f2: c7:21:d7:c1:4a:79:37:5e:0b:65:57:0d:a4:e8:f3: 96:dc:79:5a:0a:55:29:be:55:8b:15:54:8c:f6:06: 37:d3:b3:96:0e:08:8a:11:0f:eb:5e:0e:a0:df:d8: e7:4c:ef:ee:7a:3f:57:47:80:42:9e:6d:ab:0f:b8: 8e:a0:42:d1:16:50:e5:de:03:ae:94:7e:4c:02:e6: 52:dc:17:3b:90:1b:79:fa:1c:46:30:3c:b9:36:19: 05:49:9a:be:9f:d1:55:cd:20:1b:19:81:17:2f:c5: 99:38:8d:c3:91:df:35:90:50:be:67:7e:c0:cb:9f: ca:05:ae:90:97:d8:ed:83:96:7a:6b:25:7b:5b:99: e2:81:bc:98:5e:24:53:36:b9:bc:77:88:17:be:0d: 64:51:86:f2:af:1a:f8:e1:03:8b:c2:fe:f2:89:50: ae:95:16:bd:78:6f:c4:f3:ca:92:93:c6:fc:ce:e3: 94:88:82:11:f0:ef:cc:5e:0e:04:bf:54:9d:50:f8: 01:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:CE:45:06:7B:B0:4E:F5:E1:52:AF:EF:F6:D2:B4:9A:54:FD:5B:FB X509v3 Authority Key Identifier: keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:04:48:02:b1:8c:eb:e0:a2:fb:c6:ec:ae:af:43:6a:4d:c0: 03:d4:fa:6e:d4:e7:14:9c:ce:bd:3a:28:9f:9d:1c:c3:90:4b: e6:8d:40:31:56:41:ec:c6:ee:ac:1a:23:c9:d0:b4:45:ed:96: 2e:82:bd:f7:c1:4c:c0:8d:e2:ef:c8:ba:d6:98:4e:09:67:0e: 86:5e:06:0b:43:d6:e5:e9:05:31:7e:c9:57:42:f7:d9:dc:ee: 91:9f:25:9e:ad:a3:4d:5a:13:e8:51:62:a8:dc:47:86:b0:80: 5a:ad:e2:f6:a9:d7:ff:ef:2d:a1:d3:0a:6d:64:6f:cc:13:e9: 92:c2:2e:84:c9:34:3b:a1:6b:1d:62:be:49:52:e9:d4:36:92: 0d:82:43:44:09:1a:cc:bd:cf:4d:a1:46:85:85:25:78:7e:21: 13:be:ed:77:d0:97:4b:a3:f1:30:d4:81:37:d3:25:88:1f:13: 1e:70:ed:bc:31:f3:55:62:32:f7:93:3a:45:07:05:2e:1b:c3: d1:43:8f:9c:0f:3a:d9:a7:07:cd:a3:35:6d:bf:eb:44:79:3b: 78:df:d4:91:22:21:81:87:fb:73:33:62:b5:bc:3f:b4:c2:ad: 09:73:4a:4b:08:f7:5b:0f:c4:65:97:1e:c6:3c:96:74:f3:2b: 94:0b:78:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU0NTAxMTAvBgNVBAUTKEZBOERGNjExODQ1MUJENTMzODcyQUNBMzc2MjJCRjcz QkVEMTk0NDEwHhcNMjUxMTA1MDEzNjA1WhcNMjUxMTEyMDEzNjA1WjAYMRYwFAYD VQQDEw02OTBhYWEwNS04ODYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBmJ41Lwai39/uJiaLgePwI6gBtk4yvJsUPjGEOiis5GxdxEFnmt3uzlk0HZ n53mvx9F88OU5PABaPLHIdfBSnk3XgtlVw2k6POW3HlaClUpvlWLFVSM9gY307OW DgiKEQ/rXg6g39jnTO/uej9XR4BCnm2rD7iOoELRFlDl3gOulH5MAuZS3Bc7kBt5 +hxGMDy5NhkFSZq+n9FVzSAbGYEXL8WZOI3Dkd81kFC+Z37Ay5/KBa6Ql9jtg5Z6 ayV7W5nigbyYXiRTNrm8d4gXvg1kUYbyrxr44QOLwv7yiVCulRa9eG/E88qSk8b8 zuOUiIIR8O/MXg4Ev1SdUPgBtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPbORQZ7 sE714VKv7/bStJpU/Vv7MB8GA1UdIwQYMBaAFPqN9hGEUb1TOHKso3Yiv3O+0ZRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTQ1MC84NDNEQzY5NjE4 QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZWTTRjcXlqZGlLX2M3N1Js RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vMzJFWVJSdlZNNGNxeWpkaUtfYzc3UmxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTQ1MC84NDNEQzY5NjE4QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZW TTRjcXlqZGlLX2M3N1JsRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARBEgCsYzr4KL7xuyur0NqTcAD1Ppu1OcUnM69OiifnRzDkEvmjUAx VkHsxu6sGiPJ0LRF7ZYugr33wUzAjeLvyLrWmE4JZw6GXgYLQ9bl6QUxfslXQvfZ 3O6RnyWeraNNWhPoUWKo3EeGsIBareL2qdf/7y2h0wptZG/ME+mSwi6EyTQ7oWsd Yr5JUunUNpINgkNECRrMvc9NoUaFhSV4fiETvu130JdLo/Ew1IE30yWIHxMecO28 MfNVYjL3kzpFBwUuG8PRQ4+cDzrZpwfNozVtv+tEeTt439SRIiGBh/tzM2K1vD+0 wq0Jc0pLCPdbD8Rllx7GPJZ08yuUC3hf -----END CERTIFICATE-----Generated at Wed Nov 5 21:12:50 2025 by rpki-client