$ rpki-client -vvf rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft File: Ae2EH7lRqvolkYDvkpnk02_ffD0.mft (raw, json) Hash identifier: 7/9/yRQVmenhUVWXY9VdQIpIHbecPHtPgrTHLppAwg4= Subject key identifier: 1F:5E:48:80:EA:EF:BA:43:AE:E8:FE:CC:28:0D:43:F7:56:49:E9:B6 Authority key identifier: 01:ED:84:1F:B9:51:AA:FA:25:91:80:EF:92:99:E4:D3:6F:DF:7C:3D Certificate issuer: /CN=A913D125/serialNumber=01ED841FB951AAFA259180EF9299E4D36FDF7C3D Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft Manifest number: 9B Signing time: Wed 05 Nov 2025 06:33:27 +0000 Manifest this update: Wed 05 Nov 2025 06:33:26 +0000 Manifest next update: Wed 12 Nov 2025 06:33:26 +0000 Files and hashes: 1: Ae2EH7lRqvolkYDvkpnk02_ffD0.crl (hash: E5FRxTShdduoEqL8rGypUv8Zw0pRqR//1k2DtzMefBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.crl rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:33:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D125, serialNumber=01ED841FB951AAFA259180EF9299E4D36FDF7C3D Validity Not Before: Nov 5 06:33:26 2025 GMT Not After : Nov 12 06:33:26 2025 GMT Subject: CN=690aefb6-43db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ac:4b:9c:f1:7c:86:18:05:a2:6c:f6:ba:1c: 08:5c:be:0b:9e:e8:00:b5:dc:37:45:e1:99:ae:68: a4:38:82:78:70:4a:df:7b:31:c9:8f:05:18:39:97: 37:b0:98:fe:b7:ec:cb:e8:fe:88:cc:46:fa:a7:56: dd:5d:7e:05:25:3c:7f:1c:5d:2e:41:78:bf:72:6a: 9c:c9:36:2b:b1:c3:f2:27:b3:ed:35:46:4d:8b:2c: 14:03:6b:e2:59:ba:95:16:9c:f7:fa:65:72:ad:a9: 1e:a0:b5:24:91:f2:c9:c5:15:8a:99:10:73:32:fa: 77:76:04:19:22:40:3e:15:f0:5a:b1:6c:5d:66:3d: 0b:f1:b3:c4:03:ff:92:a1:80:f5:6a:d1:b6:59:4c: a9:0f:28:a5:be:d4:63:54:ad:2c:e5:0a:13:3d:a3: f4:2b:41:d6:15:7a:93:59:e2:cd:29:6e:54:44:2c: ee:92:a3:0c:db:f9:77:05:20:ee:8b:f1:c3:79:18: 9b:df:bc:43:d6:b5:11:2e:05:43:f3:bc:f9:b0:e3: b5:87:dd:0d:5d:bf:49:7d:b0:dd:cf:7e:0b:97:36: ef:1d:1b:8f:45:25:b9:c0:0c:c8:1b:9a:22:16:70: 19:51:24:cb:e4:75:c7:80:e3:48:db:41:e1:fc:32: 23:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:5E:48:80:EA:EF:BA:43:AE:E8:FE:CC:28:0D:43:F7:56:49:E9:B6 X509v3 Authority Key Identifier: keyid:01:ED:84:1F:B9:51:AA:FA:25:91:80:EF:92:99:E4:D3:6F:DF:7C:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:d9:5d:95:84:79:74:44:ee:65:17:44:0e:23:88:68:2d:dd: ac:d5:d3:ce:53:ce:c8:39:fd:22:34:26:f1:23:e7:e6:aa:fe: c4:e5:30:6f:3e:63:f8:fc:dd:5a:3c:6b:79:39:e3:80:58:fe: 2c:a0:9d:b0:0f:27:37:14:a9:d6:d6:bd:da:fc:23:f9:e7:99: c9:f9:1c:1f:e4:06:ad:e5:08:b0:41:51:54:de:87:92:9d:bd: 40:51:77:26:97:f3:37:a7:41:95:6d:3c:1d:e4:6e:b0:fe:37: b0:1e:75:71:2d:ab:44:5c:b5:ef:0d:e1:15:be:78:d9:32:bf: 03:47:ee:40:20:68:be:e0:ca:e0:87:5d:10:45:3e:8d:c6:4f: 03:f5:68:b0:d1:34:0d:af:cf:7f:ec:ec:47:b0:05:f8:77:94: 53:16:23:25:e0:e4:3f:33:cb:7d:8d:48:33:b0:fe:23:0c:21: 2a:a6:8c:84:f4:c3:bb:fe:99:71:64:86:16:a8:2c:42:84:71: 34:c9:63:20:22:e2:33:2d:ca:54:4a:38:ca:fd:c4:33:55:df: 1e:10:f6:26:32:23:76:1d:46:17:cb:b5:84:fd:ad:c6:2c:02: dd:1a:7c:9d:b0:bc:1c:f0:e7:f9:33:13:82:c6:6b:0f:cd:cc: 98:22:53:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QxMjUxMTAvBgNVBAUTKDAxRUQ4NDFGQjk1MUFBRkEyNTkxODBFRjkyOTlFNEQz NkZERjdDM0QwHhcNMjUxMTA1MDYzMzI2WhcNMjUxMTEyMDYzMzI2WjAYMRYwFAYD VQQDEw02OTBhZWZiNi00M2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6xLnPF8hhgFomz2uhwIXL4LnugAtdw3ReGZrmikOIJ4cErfezHJjwUYOZc3 sJj+t+zL6P6IzEb6p1bdXX4FJTx/HF0uQXi/cmqcyTYrscPyJ7PtNUZNiywUA2vi WbqVFpz3+mVyrakeoLUkkfLJxRWKmRBzMvp3dgQZIkA+FfBasWxdZj0L8bPEA/+S oYD1atG2WUypDyilvtRjVK0s5QoTPaP0K0HWFXqTWeLNKW5URCzukqMM2/l3BSDu i/HDeRib37xD1rURLgVD87z5sOO1h90NXb9JfbDdz34LlzbvHRuPRSW5wAzIG5oi FnAZUSTL5HXHgONI20Hh/DIj+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB9eSIDq 77pDruj+zCgNQ/dWSem2MB8GA1UdIwQYMBaAFAHthB+5Uar6JZGA75KZ5NNv33w9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDEyNS9GRTc3OEVDOEND MTAxMUVGODczOTZBNkVDNEY5QUUwMi9BZTJFSDdsUnF2b2xrWUR2a3BuazAyX2Zm RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlMkVIN2xScXZvbGtZRHZrcG5rMDJfZmZEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDEyNS9GRTc3OEVDOENDMTAxMUVGODczOTZBNkVDNEY5QUUwMi9BZTJFSDdsUnF2 b2xrWUR2a3BuazAyX2ZmRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAd2V2VhHl0RO5lF0QOI4hoLd2s1dPOU87IOf0iNCbxI+fmqv7E5TBv PmP4/N1aPGt5OeOAWP4soJ2wDyc3FKnW1r3a/CP555nJ+Rwf5Aat5QiwQVFU3oeS nb1AUXcml/M3p0GVbTwd5G6w/jewHnVxLatEXLXvDeEVvnjZMr8DR+5AIGi+4Mrg h10QRT6Nxk8D9Wiw0TQNr89/7OxHsAX4d5RTFiMl4OQ/M8t9jUgzsP4jDCEqpoyE 9MO7/plxZIYWqCxChHE0yWMgIuIzLcpUSjjK/cQzVd8eEPYmMiN2HUYXy7WE/a3G LALdGnydsLwc8Of5MxOCxmsPzcyYIlOe -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:33 2025 by rpki-client