$ rpki-client -vvf rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft File: o9--Ea-KeOViz7RXkAzKuQkMK1k.mft (raw, json) Hash identifier: cdxcKSITLdLmjikVd5GnwVrKR2Wr/A6YKz3VxdEKDqY= Subject key identifier: E8:E5:4A:AE:A7:7F:FD:A9:18:1B:D5:79:BE:53:4F:D4:A6:5C:92:A3 Authority key identifier: A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 Certificate issuer: /CN=A9145604/serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Certificate serial: 0966 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft Manifest number: 0960 Signing time: Sun 02 Nov 2025 20:04:56 +0000 Manifest this update: Sun 02 Nov 2025 20:04:55 +0000 Manifest next update: Sun 09 Nov 2025 20:04:55 +0000 Files and hashes: 1: o9--Ea-KeOViz7RXkAzKuQkMK1k.crl (hash: zejezKTpgWeab27XcTwKpHNWjXST/ZC07v24jZmx+Q8=) 2: C0A21C70A4A711EA835CCA70C4F9AE02.roa (hash: oh99riu32xDufqLh4s49Z+OfJBlHg4YCfXKo4NVguOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:04:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2406 (0x966) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145604, serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Validity Not Before: Nov 2 20:04:55 2025 GMT Not After : Nov 9 20:04:55 2025 GMT Subject: CN=6907b967-4826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:53:c6:3f:d1:68:26:bc:fc:52:1b:6d:25:04: bb:83:64:e3:ca:45:b6:af:99:6e:a4:aa:ee:00:fb: 61:7a:5c:11:8e:ed:a6:4e:14:00:a9:3c:14:b2:a5: 70:89:d5:b7:92:33:dc:d4:12:ee:45:b7:01:68:f1: 04:be:84:94:3a:7a:5a:1b:ff:a5:19:c6:13:83:88: 87:c5:4a:a6:ee:c1:04:5e:4d:8c:0e:2a:23:8a:ba: e8:ac:5a:c6:94:b0:e0:4b:c6:fd:7b:f7:28:ac:93: 46:20:33:f5:a2:05:f7:c9:98:33:39:8e:84:a5:e4: ce:da:e0:83:36:a4:37:17:e9:6b:87:23:5a:bc:a1: d6:56:b6:10:c3:c9:9d:1f:a6:cb:51:2c:fc:f9:c9: f5:0a:f8:3e:f4:ee:8c:ab:5b:43:bf:d4:4e:52:f5: b1:ea:81:05:03:ac:4b:1c:14:d9:15:50:7e:0b:a4: fe:f6:f8:b7:bd:92:de:5e:f1:57:11:35:84:67:16: 6f:be:09:30:0e:51:31:cf:64:5c:67:e0:66:59:8d: 64:f2:76:41:88:40:03:0c:db:1d:28:01:d4:18:c9: a7:57:e3:80:fc:19:18:91:6a:cd:3d:df:8e:e6:9c: 0a:0f:e9:67:ed:78:0c:67:24:05:72:4a:2f:33:66: 69:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:E5:4A:AE:A7:7F:FD:A9:18:1B:D5:79:BE:53:4F:D4:A6:5C:92:A3 X509v3 Authority Key Identifier: keyid:A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:26:a7:57:dc:8b:5e:eb:30:e7:ee:a7:7d:f5:71:bc:92:44: 1e:66:6e:e6:dc:5b:cc:09:f0:08:84:89:0b:0e:1b:e4:94:aa: bf:92:20:65:a2:65:7b:7e:46:ae:f1:28:0f:b2:f3:cd:3d:da: b7:8c:ab:f7:d3:8d:8c:d6:44:dd:3e:70:1e:92:03:d6:2e:93: b0:1b:1b:83:f1:8a:6e:bf:32:5f:4c:6f:42:a6:70:06:e5:53: 19:17:0a:e3:c5:82:55:f6:3f:e7:c0:ec:41:8e:46:76:f1:ac: 7e:53:fe:44:6c:20:b9:ba:43:ab:36:65:72:11:00:9c:3f:e5: b3:c7:5b:0f:9d:d1:6d:f0:c8:f3:5a:e1:98:57:fe:c4:57:a0: f7:81:1f:03:9a:ac:8b:2e:df:a1:ce:fd:59:5b:f9:44:ce:f0: 9a:6d:79:70:04:e9:96:53:ce:c2:c0:aa:1e:d9:5c:22:29:f9: 79:fb:3a:6e:30:06:76:6c:a3:ba:b7:87:ef:50:60:7f:41:d3: 95:6b:8b:9c:d7:0a:49:08:62:02:62:91:b4:10:42:ed:ea:3c: 62:9b:2e:2c:0c:4e:ca:bd:41:3d:6b:fd:13:23:f7:ac:8f:22: 70:4a:32:96:d6:e3:df:60:ab:9d:b0:df:1b:69:a1:87:3e:43: f9:16:15:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU2MDQxMTAvBgNVBAUTKEEzREZCRTExQUY4QTc4RTU2MkNGQjQ1NzkwMENDQUI5 MDkwQzJCNTkwHhcNMjUxMTAyMjAwNDU1WhcNMjUxMTA5MjAwNDU1WjAYMRYwFAYD VQQDEw02OTA3Yjk2Ny00ODI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVPGP9FoJrz8UhttJQS7g2TjykW2r5lupKruAPthelwRju2mThQAqTwUsqVw idW3kjPc1BLuRbcBaPEEvoSUOnpaG/+lGcYTg4iHxUqm7sEEXk2MDiojirrorFrG lLDgS8b9e/corJNGIDP1ogX3yZgzOY6EpeTO2uCDNqQ3F+lrhyNavKHWVrYQw8md H6bLUSz8+cn1Cvg+9O6Mq1tDv9ROUvWx6oEFA6xLHBTZFVB+C6T+9vi3vZLeXvFX ETWEZxZvvgkwDlExz2RcZ+BmWY1k8nZBiEADDNsdKAHUGMmnV+OA/BkYkWrNPd+O 5pwKD+ln7XgMZyQFckovM2ZpfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOjlSq6n f/2pGBvVeb5TT9SmXJKjMB8GA1UdIwQYMBaAFKPfvhGvinjlYs+0V5AMyrkJDCtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTYwNC9CQ0VDNkM1RUE0 QTAxMUVBOEZCQUI0NURDNEY5QUUwMi9vOS0tRWEtS2VPVml6N1JYa0F6S3VRa01L MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285LS1FYS1LZU9WaXo3UlhrQXpLdVFrTUsxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTYwNC9CQ0VDNkM1RUE0QTAxMUVBOEZCQUI0NURDNEY5QUUwMi9vOS0tRWEtS2VP Vml6N1JYa0F6S3VRa01LMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVJqdX3Ite6zDn7qd99XG8kkQeZm7m3FvMCfAIhIkLDhvklKq/kiBl omV7fkau8SgPsvPNPdq3jKv3042M1kTdPnAekgPWLpOwGxuD8YpuvzJfTG9CpnAG 5VMZFwrjxYJV9j/nwOxBjkZ28ax+U/5EbCC5ukOrNmVyEQCcP+Wzx1sPndFt8Mjz WuGYV/7EV6D3gR8DmqyLLt+hzv1ZW/lEzvCabXlwBOmWU87CwKoe2VwiKfl5+zpu MAZ2bKO6t4fvUGB/QdOVa4uc1wpJCGICYpG0EELt6jximy4sDE7KvUE9a/0TI/es jyJwSjKW1uPfYKudsN8baaGHPkP5FhU6 -----END CERTIFICATE-----Generated at Tue Nov 4 07:19:19 2025 by rpki-client