$ rpki-client -vvf rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft File: Aonh4IK22hq6VVKEDAyrAsKjt04.mft (raw, json) Hash identifier: eazkeINuYVX9k08y1z1PqNW2IdKdwwOr8TCYQkgLqkY= Subject key identifier: 57:9A:CA:85:69:30:32:22:7A:45:DE:08:04:35:9F:BC:01:0C:2F:CE Authority key identifier: 02:89:E1:E0:82:B6:DA:1A:BA:55:52:84:0C:0C:AB:02:C2:A3:B7:4E Certificate issuer: /CN=A9144C70/serialNumber=0289E1E082B6DA1ABA5552840C0CAB02C2A3B74E Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft Manifest number: 04A5 Signing time: Mon 03 Nov 2025 00:37:07 +0000 Manifest this update: Mon 03 Nov 2025 00:37:07 +0000 Manifest next update: Mon 10 Nov 2025 00:37:07 +0000 Files and hashes: 1: Aonh4IK22hq6VVKEDAyrAsKjt04.crl (hash: cTgLYSsClwuUaS7/Rzt2cxO6DwKXRPUbSmRLfIqohlA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.crl rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:37:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144C70, serialNumber=0289E1E082B6DA1ABA5552840C0CAB02C2A3B74E Validity Not Before: Nov 3 00:37:07 2025 GMT Not After : Nov 10 00:37:07 2025 GMT Subject: CN=6907f933-6db5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c3:1e:b8:df:9b:95:7a:8c:a9:e5:78:82:a2: 86:67:91:75:fe:c0:bf:b6:e8:65:0b:64:14:dd:c7: d0:9a:f8:23:c0:8c:2a:e8:a8:6f:d2:61:1d:61:ad: 32:24:17:7d:ac:b1:7d:70:82:30:1b:33:09:80:62: 4a:5b:81:17:69:63:eb:61:c0:63:a4:83:05:4d:54: 35:90:d7:7d:fe:00:94:14:4f:ee:af:26:2a:30:95: 2c:36:5a:01:b6:2f:c1:74:01:46:57:4c:eb:1a:ca: d2:dd:ed:af:33:50:c5:f2:85:c7:af:94:c1:42:ec: 0d:d2:e3:4e:f6:19:d4:25:6d:1f:a1:68:43:5d:6e: b8:68:27:a0:12:13:76:7c:37:82:b3:21:8a:3d:06: 0e:7f:3a:8d:bd:6a:c2:c7:9d:c1:8e:64:69:65:3f: ed:cb:c9:5f:09:ee:a8:6c:a2:9a:c5:8c:d8:a2:b6: 12:db:84:61:a7:da:3a:28:d7:eb:70:63:1c:45:4e: 2d:26:ae:ed:6c:70:b9:aa:dc:f5:7d:95:39:d9:3a: 75:7b:6c:4a:34:63:a0:0c:96:dc:f6:0f:18:39:55: d7:52:4b:3d:df:c2:1f:d3:86:85:57:00:50:df:d6: a8:4c:3c:aa:6b:86:df:28:44:e7:8e:d5:45:59:8c: 20:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:9A:CA:85:69:30:32:22:7A:45:DE:08:04:35:9F:BC:01:0C:2F:CE X509v3 Authority Key Identifier: keyid:02:89:E1:E0:82:B6:DA:1A:BA:55:52:84:0C:0C:AB:02:C2:A3:B7:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:99:64:96:5b:21:17:73:1b:d5:ad:9a:a6:e8:cf:2d:8c:c4: 3c:ca:06:73:fc:57:24:a8:78:df:0f:2e:0d:80:a6:36:57:a5: 4f:6e:42:59:d0:10:b4:40:ba:2f:53:57:40:7e:71:1c:84:b2: ea:84:02:88:2b:f0:f0:7f:90:51:04:65:b5:80:76:e0:39:60: a4:ec:8d:fb:03:06:17:09:6f:73:af:c7:e6:76:07:b2:57:a4: 9e:ca:3f:06:9b:5b:ef:14:a6:96:fc:e4:7d:35:5a:5e:ec:bf: 90:ca:85:d4:cc:7a:3c:0d:22:95:7e:02:c4:4f:db:0b:ec:37: d7:7a:f2:8f:74:be:a5:c5:7c:77:0a:ce:fa:5c:e1:11:56:c3: 9a:08:af:e7:d7:e6:50:5b:7a:82:19:ce:5b:5a:ab:55:73:50: ca:41:49:0a:14:93:af:4a:a4:e7:3c:d4:69:cf:b1:13:d2:49: d4:e2:2a:4d:be:94:a4:ba:97:f6:49:c3:9f:64:19:8b:6e:54: 1d:79:82:5e:54:5d:a8:9c:97:fe:30:75:7b:f5:c2:55:26:c0: 0b:a7:e0:f0:c9:5d:94:21:57:24:7e:e0:04:b9:77:07:4d:58: ed:94:3a:39:00:a8:60:b2:91:05:c6:c0:ae:5a:ba:ca:c7:52: 5d:8d:02:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRDNzAxMTAvBgNVBAUTKDAyODlFMUUwODJCNkRBMUFCQTU1NTI4NDBDMENBQjAy QzJBM0I3NEUwHhcNMjUxMTAzMDAzNzA3WhcNMjUxMTEwMDAzNzA3WjAYMRYwFAYD VQQDEw02OTA3ZjkzMy02ZGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8MeuN+blXqMqeV4gqKGZ5F1/sC/tuhlC2QU3cfQmvgjwIwq6Khv0mEdYa0y JBd9rLF9cIIwGzMJgGJKW4EXaWPrYcBjpIMFTVQ1kNd9/gCUFE/uryYqMJUsNloB ti/BdAFGV0zrGsrS3e2vM1DF8oXHr5TBQuwN0uNO9hnUJW0foWhDXW64aCegEhN2 fDeCsyGKPQYOfzqNvWrCx53BjmRpZT/ty8lfCe6obKKaxYzYorYS24Rhp9o6KNfr cGMcRU4tJq7tbHC5qtz1fZU52Tp1e2xKNGOgDJbc9g8YOVXXUks938If04aFVwBQ 39aoTDyqa4bfKETnjtVFWYwg+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFeayoVp MDIiekXeCAQ1n7wBDC/OMB8GA1UdIwQYMBaAFAKJ4eCCttoaulVShAwMqwLCo7dO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEM3MC84MkJDODRFRUFD NjcxMUVDQjc1Q0RBMjRDNEY5QUUwMi9Bb25oNElLMjJocTZWVktFREF5ckFzS2p0 MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Fvbmg0SUsyMmhxNlZWS0VEQXlyQXNLanQwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEM3MC84MkJDODRFRUFDNjcxMUVDQjc1Q0RBMjRDNEY5QUUwMi9Bb25oNElLMjJo cTZWVktFREF5ckFzS2p0MDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFmWSWWyEXcxvVrZqm6M8tjMQ8ygZz/FckqHjfDy4NgKY2V6VPbkJZ 0BC0QLovU1dAfnEchLLqhAKIK/Dwf5BRBGW1gHbgOWCk7I37AwYXCW9zr8fmdgey V6Seyj8Gm1vvFKaW/OR9NVpe7L+QyoXUzHo8DSKVfgLET9sL7DfXevKPdL6lxXx3 Cs76XOERVsOaCK/n1+ZQW3qCGc5bWqtVc1DKQUkKFJOvSqTnPNRpz7ET0knU4ipN vpSkupf2ScOfZBmLblQdeYJeVF2onJf+MHV79cJVJsALp+DwyV2UIVckfuAEuXcH TVjtlDo5AKhgspEFxsCuWrrKx1JdjQIx -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:20 2025 by rpki-client