$ rpki-client -vvf rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft File: khdBhFmoypIuDWajy6pAZyDLSJA.mft (raw, json) Hash identifier: Dg3bvN7HSTy8rxRqUv6rXZYHIHt358YrgCAojRy/aFg= Subject key identifier: 74:5F:F7:7A:E2:1D:22:B0:02:46:1B:1B:12:98:C4:3C:50:7B:DB:F0 Authority key identifier: 92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 Certificate issuer: /CN=A9137B39/serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Certificate serial: 03F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft Manifest number: 03E9 Signing time: Wed 05 Nov 2025 00:40:35 +0000 Manifest this update: Wed 05 Nov 2025 00:40:34 +0000 Manifest next update: Wed 12 Nov 2025 00:40:34 +0000 Files and hashes: 1: khdBhFmoypIuDWajy6pAZyDLSJA.crl (hash: LVrxUges36EDcBJkOBZK8azsshLXw/CH4SmBTvUQg6w=) 2: EA8F3FAE6F8611F0BA25F244C4F9AE02.roa (hash: YTSXljO/yVhvQBHJezR7ssdww+GXbQn8v2AKybIkw9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:40:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1010 (0x3f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137B39, serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Validity Not Before: Nov 5 00:40:34 2025 GMT Not After : Nov 12 00:40:34 2025 GMT Subject: CN=690a9d03-1514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f5:36:23:1a:18:a6:9d:ec:ac:78:9c:c1:33: d6:91:8a:c4:7f:8e:22:e9:db:eb:7c:f5:a6:f2:f7: a9:ce:23:ef:56:d6:40:94:51:3c:81:c2:8a:83:4d: 91:3f:f8:4f:40:d8:da:ce:83:76:fe:68:f9:9a:2c: 19:bd:16:79:59:e0:54:68:a6:28:1b:92:ff:16:82: 49:82:8e:4b:06:47:15:60:59:5c:9e:7a:95:fc:f4: 80:93:75:61:1d:5c:4b:a6:25:fd:4f:fb:26:d5:06: 5a:71:49:47:70:58:6e:32:79:c3:21:eb:07:52:e5: f0:04:f0:d1:c3:f7:0e:5b:ce:08:0f:ab:2a:9f:43: ff:63:7f:65:5c:de:20:da:88:66:24:d2:6a:d4:69: 4e:fe:e1:81:e2:74:a5:6d:1e:e4:1f:ad:60:9b:16: f7:2d:2e:4f:22:8b:d4:a7:bc:76:5c:84:73:ee:70: f2:e9:7c:87:df:53:4f:00:ce:25:37:f1:ca:d8:2d: e5:92:2c:be:50:78:ba:07:9a:d1:1f:55:bd:e9:ab: c9:0f:92:d6:f2:d3:91:49:79:24:c9:d8:33:25:fa: f4:73:ed:3e:1e:68:57:56:b9:4a:a6:e1:8f:a0:1a: c6:3c:6e:0f:e2:97:4f:81:78:ac:de:10:23:87:29: 39:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:5F:F7:7A:E2:1D:22:B0:02:46:1B:1B:12:98:C4:3C:50:7B:DB:F0 X509v3 Authority Key Identifier: keyid:92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:22:3b:8a:1e:7b:82:15:ac:9c:ea:2b:a8:39:f6:9c:26:47: 43:f5:5f:b5:94:87:47:45:2e:6f:47:b9:29:a6:e5:f6:22:49: 70:2a:cb:c4:6b:65:eb:69:b1:87:6d:f2:98:d1:7b:ce:30:c3: 0e:23:76:d6:21:14:70:62:61:22:e6:93:f5:61:c5:14:c2:b7: 34:ab:3e:e3:60:ee:70:66:96:33:20:65:91:3f:9f:a7:e8:83: 82:b7:17:4e:19:2c:8e:70:6e:0f:4e:6b:59:13:18:a1:c3:a8: 08:5e:7f:c6:8f:d8:60:a3:4a:cd:f5:85:7d:b9:23:6e:f9:b2: 0a:c7:b7:7d:37:d6:3c:4d:41:e2:f2:88:33:eb:a2:3e:68:97: 40:8d:f8:c0:37:44:0d:f2:14:4b:e6:ba:bc:f3:4e:35:5a:14: 4a:36:24:31:e8:ee:7c:34:00:8e:54:70:8b:c7:a3:30:7b:b3: 02:f3:e5:46:3b:ee:a8:4d:c5:06:98:0f:80:bc:d5:2a:7c:47: 19:db:44:3d:27:91:af:e0:8e:37:56:70:cf:83:19:12:cf:4a: e5:7b:06:15:a6:62:52:be:bb:4c:66:6a:48:c2:70:1b:92:e1: 98:e6:22:16:c8:a5:7d:e5:70:42:e2:8f:14:ce:f1:ae:b9:d3: e3:be:01:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdCMzkxMTAvBgNVBAUTKDkyMTc0MTg0NTlBOENBOTIyRTBENjZBM0NCQUE0MDY3 MjBDQjQ4OTAwHhcNMjUxMTA1MDA0MDM0WhcNMjUxMTEyMDA0MDM0WjAYMRYwFAYD VQQDEw02OTBhOWQwMy0xNTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPU2IxoYpp3srHicwTPWkYrEf44i6dvrfPWm8vepziPvVtZAlFE8gcKKg02R P/hPQNjazoN2/mj5miwZvRZ5WeBUaKYoG5L/FoJJgo5LBkcVYFlcnnqV/PSAk3Vh HVxLpiX9T/sm1QZacUlHcFhuMnnDIesHUuXwBPDRw/cOW84ID6sqn0P/Y39lXN4g 2ohmJNJq1GlO/uGB4nSlbR7kH61gmxb3LS5PIovUp7x2XIRz7nDy6XyH31NPAM4l N/HK2C3lkiy+UHi6B5rRH1W96avJD5LW8tORSXkkydgzJfr0c+0+HmhXVrlKpuGP oBrGPG4P4pdPgXis3hAjhyk5+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHRf93ri HSKwAkYbGxKYxDxQe9vwMB8GA1UdIwQYMBaAFJIXQYRZqMqSLg1mo8uqQGcgy0iQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0IzOS9BNzU5OUQ3QUEw MzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lwSXVEV2FqeTZwQVp5RExT SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toZEJoRm1veXBJdURXYWp5NnBBWnlETFNKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0IzOS9BNzU5OUQ3QUEwMzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lw SXVEV2FqeTZwQVp5RExTSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaIjuKHnuCFayc6iuoOfacJkdD9V+1lIdHRS5vR7kppuX2IklwKsvE a2XrabGHbfKY0XvOMMMOI3bWIRRwYmEi5pP1YcUUwrc0qz7jYO5wZpYzIGWRP5+n 6IOCtxdOGSyOcG4PTmtZExihw6gIXn/Gj9hgo0rN9YV9uSNu+bIKx7d9N9Y8TUHi 8ogz66I+aJdAjfjAN0QN8hRL5rq88041WhRKNiQx6O58NACOVHCLx6Mwe7MC8+VG O+6oTcUGmA+AvNUqfEcZ20Q9J5Gv4I43VnDPgxkSz0rlewYVpmJSvrtMZmpIwnAb kuGY5iIWyKV95XBC4o8UzvGuudPjvgHC -----END CERTIFICATE-----Generated at Wed Nov 5 05:27:18 2025 by rpki-client