$ rpki-client -vvf rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft File: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft (raw, json) Hash identifier: KJRk6zSHcxuiukWSWMWW/+fE5oNZpqbgTbLNClZ04No= Subject key identifier: 14:E7:AB:63:00:58:20:59:F8:D8:62:EB:76:BA:F2:30:F8:2E:D7:76 Authority key identifier: AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 Certificate issuer: /CN=A913BA97/serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Certificate serial: 022D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft Manifest number: 0217 Signing time: Wed 05 Nov 2025 02:31:01 +0000 Manifest this update: Wed 05 Nov 2025 02:31:01 +0000 Manifest next update: Wed 12 Nov 2025 02:31:01 +0000 Files and hashes: 1: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl (hash: 1P9zyibgUddzWmK6iaqMkiP7918NJBESeiTOGRKIuLs=) 2: 6B4DE806568411EF8FE2C24EC4F9AE02.roa (hash: gio3U9WsxU2OTvZplKV8K5tuXOfWf9W0TdHSTYl7CRI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 557 (0x22d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BA97, serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Validity Not Before: Nov 5 02:31:01 2025 GMT Not After : Nov 12 02:31:01 2025 GMT Subject: CN=690ab6e5-bd7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:20:54:a9:9d:19:96:af:87:6b:a2:b4:5a:4b: a4:ed:84:0f:88:aa:78:fe:a4:4b:c7:94:57:2e:86: 99:1c:e5:ef:e6:00:a1:b0:5e:3f:cc:9a:e1:41:cb: 74:a7:32:d5:0c:e2:e1:7d:2d:17:0a:b3:c0:95:5d: ba:a3:c1:27:93:cb:3d:14:3e:28:50:b1:e5:7e:1e: 84:4f:62:03:08:4e:96:cc:23:9f:51:d8:01:53:ad: ba:c7:30:73:02:0a:32:f3:4f:30:f4:4e:49:8f:25: 27:c8:c8:fb:30:38:46:f2:81:f6:71:53:8d:75:95: 88:f7:6f:1e:04:09:95:0c:ea:57:4d:5b:0a:07:8b: 93:05:6f:ce:56:a5:37:e2:00:4f:0f:05:f1:15:14: 00:96:d2:d1:89:96:f7:eb:4d:5a:2b:ed:28:cc:3f: 5b:81:3d:7f:21:9e:34:6f:03:7d:88:36:e4:89:60: 57:3c:2d:15:a7:a2:78:ed:82:cb:1c:33:57:f7:ce: 5e:6b:90:c2:83:95:82:29:60:05:9b:5d:fc:ff:6f: 1f:e9:d8:a2:f6:7e:02:be:2b:86:63:e9:25:62:9d: 35:62:26:d9:11:18:58:e2:31:d9:6d:32:1d:b6:14: 90:b6:0f:45:5f:b5:7a:e7:99:a6:e5:4f:45:8d:d0: e1:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:E7:AB:63:00:58:20:59:F8:D8:62:EB:76:BA:F2:30:F8:2E:D7:76 X509v3 Authority Key Identifier: keyid:AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:07:bf:53:27:58:29:1a:57:64:8a:9a:1b:b5:68:be:d2:f4: 3f:6d:77:d0:11:81:34:1b:ce:8e:d7:8d:1b:f3:8e:7e:f8:12: cd:0b:67:5a:2e:e0:3d:f4:9c:fa:de:b9:90:f9:85:e4:77:7c: 01:dd:a4:38:b9:f0:36:f7:6b:aa:8c:f9:78:ad:a1:02:41:da: c2:13:84:ac:6f:b4:67:e4:73:0c:8e:82:a1:e1:2c:ea:a7:75: b1:f2:7a:8b:06:ee:5c:b4:39:63:01:c2:20:13:1d:d3:89:c3: ae:22:02:0a:5f:57:72:28:89:c5:e5:bc:c7:e0:c4:b7:81:f0: a6:91:11:4d:33:2d:31:8c:fc:23:c1:f7:f0:11:4c:04:6c:7a: e4:37:45:e7:87:50:b7:02:5f:93:77:25:91:9d:23:98:35:9e: c9:d6:63:b6:2e:1f:9f:1f:fb:01:4c:2e:e9:0f:82:0e:b5:3f: de:9f:62:a6:69:f7:0f:f0:b9:39:13:fb:72:38:3b:d7:00:b4: 0a:97:e0:d6:a6:c4:ed:a6:ec:4a:c5:ab:40:ec:41:43:f6:fb: 7d:a2:89:85:17:60:ea:54:ae:06:b8:24:57:c9:a7:7f:71:4f: c2:2d:c5:02:a7:40:0d:0a:e2:82:a9:67:9d:90:e9:52:cd:28: de:29:2b:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JBOTcxMTAvBgNVBAUTKEFGRDk0M0U0QjE0Mjc2MzY1OUUwOEY4REJGNkNFN0U2 RDgwQ0M1MTcwHhcNMjUxMTA1MDIzMTAxWhcNMjUxMTEyMDIzMTAxWjAYMRYwFAYD VQQDEw02OTBhYjZlNS1iZDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1CBUqZ0Zlq+Ha6K0Wkuk7YQPiKp4/qRLx5RXLoaZHOXv5gChsF4/zJrhQct0 pzLVDOLhfS0XCrPAlV26o8Enk8s9FD4oULHlfh6ET2IDCE6WzCOfUdgBU626xzBz Agoy808w9E5JjyUnyMj7MDhG8oH2cVONdZWI928eBAmVDOpXTVsKB4uTBW/OVqU3 4gBPDwXxFRQAltLRiZb3601aK+0ozD9bgT1/IZ40bwN9iDbkiWBXPC0Vp6J47YLL HDNX985ea5DCg5WCKWAFm138/28f6dii9n4CviuGY+klYp01YibZERhY4jHZbTId thSQtg9FX7V655mm5U9FjdDhdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTnq2MA WCBZ+Nhi63a68jD4Ltd2MB8GA1UdIwQYMBaAFK/ZQ+SxQnY2WeCPjb9s5+bYDMUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkE5Ny9GMUZFQjFGRUFD NEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2RqWlo0SS1OdjJ6bjV0Z014 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I5bEQ1TEZDZGpaWjRJLU52MnpuNXRnTXhSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkE5Ny9GMUZFQjFGRUFDNEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2Rq Wlo0SS1OdjJ6bjV0Z014UmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnB79TJ1gpGldkipobtWi+0vQ/bXfQEYE0G86O140b845++BLNC2da LuA99Jz63rmQ+YXkd3wB3aQ4ufA292uqjPl4raECQdrCE4Ssb7Rn5HMMjoKh4Szq p3Wx8nqLBu5ctDljAcIgEx3TicOuIgIKX1dyKInF5bzH4MS3gfCmkRFNMy0xjPwj wffwEUwEbHrkN0Xnh1C3Al+TdyWRnSOYNZ7J1mO2Lh+fH/sBTC7pD4IOtT/en2Km afcP8Lk5E/tyODvXALQKl+DWpsTtpuxKxatA7EFD9vt9oomFF2DqVK4GuCRXyad/ cU/CLcUCp0ANCuKCqWedkOlSzSjeKSs/ -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:24 2025 by rpki-client