$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft File: Fz6pPabl71KPpzMJc4hIg92lJ-4.mft (raw, json) Hash identifier: SXPiK3KKItzZuzh08SJrvkR4LbqGMjn2t37gYpYB/nw= Subject key identifier: F2:41:CF:C8:B5:72:FC:30:97:5B:8A:9B:60:1E:AC:B6:C0:B1:73:E9 Authority key identifier: 17:3E:A9:3D:A6:E5:EF:52:8F:A7:33:09:73:88:48:83:DD:A5:27:EE Certificate issuer: /CN=A9145E09/serialNumber=173EA93DA6E5EF528FA7330973884883DDA527EE Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft Manifest number: 74 Signing time: Wed 05 Nov 2025 07:04:11 +0000 Manifest this update: Wed 05 Nov 2025 07:04:10 +0000 Manifest next update: Wed 12 Nov 2025 07:04:10 +0000 Files and hashes: 1: Fz6pPabl71KPpzMJc4hIg92lJ-4.crl (hash: d59fAH0Cinh5uJqVEfndhYETAOZHEpDLjTX4QZc7xnU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.crl rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:04:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145E09, serialNumber=173EA93DA6E5EF528FA7330973884883DDA527EE Validity Not Before: Nov 5 07:04:10 2025 GMT Not After : Nov 12 07:04:10 2025 GMT Subject: CN=690af6eb-3aa0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:8b:4f:41:aa:4e:29:2e:20:f1:af:73:57:a2: 73:14:ea:1b:fd:ad:ae:dd:50:83:ec:79:6a:5c:18: cb:77:4f:04:8e:a2:34:e5:0c:b2:21:b4:95:27:ab: 0c:6d:bf:1a:80:97:b6:56:61:e6:72:7f:ba:af:7d: 20:92:82:16:e1:10:8d:e2:f8:33:f1:f0:c2:bd:74: 9a:7e:00:2b:cd:0c:45:be:fc:82:bd:a3:2b:1d:3a: 8c:1d:ff:58:7a:c2:2f:95:c4:37:e3:f4:4e:65:40: 8e:1d:8b:df:59:74:9a:80:53:a5:ec:62:2e:7e:3d: 7b:75:f9:bb:e0:3b:66:2e:07:e6:f0:64:a2:4d:1a: c0:bc:22:f5:59:b6:48:56:42:f6:f4:5a:7d:ed:a4: 19:92:55:06:29:43:e3:6d:8b:ca:6c:2c:08:01:ac: 69:2a:84:e5:77:9e:c6:41:f1:68:4c:23:f5:fb:2a: 34:ef:65:1d:43:07:34:fc:95:86:a6:05:7a:be:a5: 05:5b:a0:3f:7e:97:39:bb:59:df:8e:c9:f0:65:b0: 02:55:6f:9f:48:c5:86:46:67:dc:4e:12:fe:52:ad: de:dd:b5:aa:62:54:f0:37:75:dc:b1:0b:92:36:a0: 15:82:8a:ea:37:5d:e9:80:36:e5:4c:33:da:5d:16: 3c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:41:CF:C8:B5:72:FC:30:97:5B:8A:9B:60:1E:AC:B6:C0:B1:73:E9 X509v3 Authority Key Identifier: keyid:17:3E:A9:3D:A6:E5:EF:52:8F:A7:33:09:73:88:48:83:DD:A5:27:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d8:7a:40:9c:fa:e3:89:9d:7f:9c:61:e6:37:c3:01:94:07:da: 23:50:0d:c1:3b:ac:ea:cd:65:fc:e3:bf:8d:58:6a:85:f9:95: 7b:75:a2:da:b3:6c:be:d5:22:6b:70:11:2c:d4:6a:b9:8b:0d: 03:12:0f:18:b6:93:ca:63:6f:83:ed:7f:ec:8f:65:ea:e0:7a: e7:a8:7f:82:df:2c:eb:33:02:4f:83:46:12:64:73:9a:22:a0: 6b:ca:51:6d:25:e1:01:09:99:b6:01:4f:dc:56:74:33:05:88: cf:52:a2:f6:7e:bc:13:5e:85:86:68:7f:77:52:ae:42:69:72: 0e:2b:08:30:a7:7e:45:20:37:0e:4c:a7:5b:28:05:8a:77:07: b2:38:af:70:55:3f:34:36:8d:0f:6e:01:09:5d:cb:d1:d0:a4: 28:92:22:36:a6:13:9f:c7:8d:16:43:94:91:8b:ad:d8:9c:f5: 72:a6:3f:2c:b5:56:e4:41:99:7a:83:2e:b2:89:bc:e0:24:26: ce:81:44:7f:ed:86:7b:b7:d0:78:9e:e9:de:f5:bc:c7:95:a5: 8d:cc:3b:c8:9d:83:e0:ee:1f:8f:7a:a0:65:0d:0e:31:f0:f3: 74:a1:fd:ff:40:7a:95:e8:75:1c:53:1e:05:6c:89:e9:1d:68: c4:70:25:ce -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUUwOTExMC8GA1UEBRMoMTczRUE5M0RBNkU1RUY1MjhGQTczMzA5NzM4ODQ4ODNE REE1MjdFRTAeFw0yNTExMDUwNzA0MTBaFw0yNTExMTIwNzA0MTBaMBgxFjAUBgNV BAMTDTY5MGFmNmViLTNhYTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoi09Bqk4pLiDxr3NXonMU6hv9ra7dUIPseWpcGMt3TwSOojTlDLIhtJUnqwxt vxqAl7ZWYeZyf7qvfSCSghbhEI3i+DPx8MK9dJp+ACvNDEW+/IK9oysdOowd/1h6 wi+VxDfj9E5lQI4di99ZdJqAU6XsYi5+PXt1+bvgO2YuB+bwZKJNGsC8IvVZtkhW Qvb0Wn3tpBmSVQYpQ+Nti8psLAgBrGkqhOV3nsZB8WhMI/X7KjTvZR1DBzT8lYam BXq+pQVboD9+lzm7Wd+OyfBlsAJVb59IxYZGZ9xOEv5Srd7dtapiVPA3ddyxC5I2 oBWCiuo3XemANuVMM9pdFjyBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8kHPyLVy /DCXW4qbYB6stsCxc+kwHwYDVR0jBBgwFoAUFz6pPabl71KPpzMJc4hIg92lJ+4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1RTA5LzhGNjI1QzRFMDhD ODExRjBBMEQzNEU1NkM0RjlBRTAyL0Z6NnBQYWJsNzFLUHB6TUpjNGhJZzkybEot NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRno2cFBhYmw3MUtQcHpNSmM0aElnOTJsSi00LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 RTA5LzhGNjI1QzRFMDhDODExRjBBMEQzNEU1NkM0RjlBRTAyL0Z6NnBQYWJsNzFL UHB6TUpjNGhJZzkybEotNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANh6QJz644mdf5xh5jfDAZQH2iNQDcE7rOrNZfzjv41YaoX5lXt1otqz bL7VImtwESzUarmLDQMSDxi2k8pjb4Ptf+yPZergeueof4LfLOszAk+DRhJkc5oi oGvKUW0l4QEJmbYBT9xWdDMFiM9SovZ+vBNehYZof3dSrkJpcg4rCDCnfkUgNw5M p1soBYp3B7I4r3BVPzQ2jQ9uAQldy9HQpCiSIjamE5/HjRZDlJGLrdic9XKmPyy1 VuRBmXqDLrKJvOAkJs6BRH/thnu30Hie6d71vMeVpY3MO8idg+DuH496oGUNDjHw 83Sh/f9AepXodRxTHgVsiekdaMRwJc4= -----END CERTIFICATE-----Generated at Wed Nov 5 15:04:47 2025 by rpki-client