$ rpki-client -vvf rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft File: gg9wML6sbUnxCbqOwlplvyNprS8.mft (raw, json) Hash identifier: z708R8awM0d+l/EroF0XnmV3xlRklKuH4aMJIhlpkMA= Subject key identifier: E5:41:46:E0:9C:87:FB:5D:3D:3E:45:57:A0:58:6A:58:CB:F0:9C:DA Authority key identifier: 82:0F:70:30:BE:AC:6D:49:F1:09:BA:8E:C2:5A:65:BF:23:69:AD:2F Certificate issuer: /CN=A9146DAA/serialNumber=820F7030BEAC6D49F109BA8EC25A65BF2369AD2F Certificate serial: 01F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft Manifest number: 01F4 Signing time: Wed 05 Nov 2025 02:39:19 +0000 Manifest this update: Wed 05 Nov 2025 02:39:18 +0000 Manifest next update: Wed 12 Nov 2025 02:39:18 +0000 Files and hashes: 1: gg9wML6sbUnxCbqOwlplvyNprS8.crl (hash: WJsfCWShkXJqkFsZCRNY/Kbug8J01o/s/kboOnD+2GY=) 2: 08E67270C19611EDBDEEFD0BC4F9AE02.roa (hash: +GbHVgs4RJ2wAESQgEWiA4cM6Z9oouqKwHYBrLXZcc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.crl rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:39:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 505 (0x1f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146DAA, serialNumber=820F7030BEAC6D49F109BA8EC25A65BF2369AD2F Validity Not Before: Nov 5 02:39:18 2025 GMT Not After : Nov 12 02:39:18 2025 GMT Subject: CN=690ab8d6-473c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2d:78:28:43:d7:bf:30:12:64:0e:3a:8e:59: 37:cf:d4:89:c0:84:ae:1e:55:7d:99:75:c5:7d:ba: a4:21:3e:81:0a:ec:22:85:5f:48:86:cb:b5:16:a4: a1:28:26:8b:0c:ae:9e:37:e6:07:c5:6c:e8:48:18: d4:f4:b4:08:ea:0c:75:4d:df:56:5a:5f:86:80:46: 03:82:bf:19:1e:ba:37:e2:9a:38:d1:3b:61:8d:c8: 64:9d:0a:21:14:29:c1:27:e5:fa:93:07:3f:f8:11: 43:4a:7c:36:b5:96:1e:85:ad:f5:06:07:fe:40:63: 81:da:95:c2:d8:7c:1c:2a:db:6c:e2:ca:66:eb:af: 9b:ba:9c:12:ab:f1:aa:46:9a:4d:ca:a3:81:34:5a: 9a:15:de:9e:08:24:25:f8:9d:90:21:c9:b1:3f:58: 97:0f:17:8a:a5:81:c8:2d:a9:4f:9f:c7:37:fe:ef: b3:40:4a:ad:af:5a:bf:16:67:40:c5:6d:f2:b5:55: 31:aa:1c:29:14:33:26:c8:8d:e2:bf:8b:8d:af:8a: 58:a8:a7:46:52:be:17:91:6b:a5:39:c5:99:58:2c: 33:f8:2d:e7:0d:7e:6c:46:2c:ed:71:7f:67:cd:0c: 1a:24:0b:1b:41:9f:a0:e1:1b:52:69:e6:a0:35:a2: 01:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:41:46:E0:9C:87:FB:5D:3D:3E:45:57:A0:58:6A:58:CB:F0:9C:DA X509v3 Authority Key Identifier: keyid:82:0F:70:30:BE:AC:6D:49:F1:09:BA:8E:C2:5A:65:BF:23:69:AD:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:b2:94:60:e9:81:86:6a:e0:eb:4a:5e:ad:0b:2c:be:93:9d: 7d:2e:4a:be:43:4f:67:a2:c5:82:28:e9:d9:22:2b:b3:7e:5a: 7b:de:e4:cc:72:5a:72:0f:19:0b:68:c6:d1:77:90:ed:10:e0: 00:5e:2f:e9:67:26:6b:7d:b9:bb:f4:81:88:5d:ee:bd:50:cf: 7f:d8:07:a4:d1:eb:59:1b:62:bd:e8:25:68:65:e1:07:a0:e5: 16:a8:75:f5:e6:2e:36:56:b7:9a:ca:b3:a5:88:19:5a:27:52: f9:d8:f4:e5:7a:37:b8:43:e7:72:59:78:97:82:e8:31:76:a5: 90:24:c0:28:1a:15:31:a4:15:d4:b2:78:df:15:c7:dd:71:8d: 2b:0c:f5:db:6c:61:17:da:60:fd:a4:9d:a7:9e:ce:b7:50:da: 47:4a:90:e9:5b:a7:b1:a7:77:36:91:c6:2e:a2:ea:aa:67:9c: 6d:e3:fc:04:f7:63:06:b6:09:9e:41:14:6c:07:c3:d3:52:cf: 56:96:73:67:0f:b4:82:98:fb:36:52:8c:e6:2a:fa:33:cb:1d: 8d:38:a3:d2:33:5a:a5:67:3e:e4:43:b3:76:1a:46:e6:db:20: 6a:0e:7a:e0:33:0c:0f:de:13:75:f9:b2:29:a5:e2:a4:71:52: 43:24:e4:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZEQUExMTAvBgNVBAUTKDgyMEY3MDMwQkVBQzZENDlGMTA5QkE4RUMyNUE2NUJG MjM2OUFEMkYwHhcNMjUxMTA1MDIzOTE4WhcNMjUxMTEyMDIzOTE4WjAYMRYwFAYD VQQDEw02OTBhYjhkNi00NzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoy14KEPXvzASZA46jlk3z9SJwISuHlV9mXXFfbqkIT6BCuwihV9Ihsu1FqSh KCaLDK6eN+YHxWzoSBjU9LQI6gx1Td9WWl+GgEYDgr8ZHro34po40TthjchknQoh FCnBJ+X6kwc/+BFDSnw2tZYeha31Bgf+QGOB2pXC2HwcKtts4spm66+bupwSq/Gq RppNyqOBNFqaFd6eCCQl+J2QIcmxP1iXDxeKpYHILalPn8c3/u+zQEqtr1q/FmdA xW3ytVUxqhwpFDMmyI3iv4uNr4pYqKdGUr4XkWulOcWZWCwz+C3nDX5sRiztcX9n zQwaJAsbQZ+g4RtSaeagNaIBpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOVBRuCc h/tdPT5FV6BYaljL8JzaMB8GA1UdIwQYMBaAFIIPcDC+rG1J8Qm6jsJaZb8jaa0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkRBQS83MUVCN0M1QUMx OTMxMUVEOUI4NjZCMEJDNEY5QUUwMi9nZzl3TUw2c2JVbnhDYnFPd2xwbHZ5TnBy UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dnOXdNTDZzYlVueENicU93bHBsdnlOcHJTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkRBQS83MUVCN0M1QUMxOTMxMUVEOUI4NjZCMEJDNEY5QUUwMi9nZzl3TUw2c2JV bnhDYnFPd2xwbHZ5TnByUzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMspRg6YGGauDrSl6tCyy+k519Lkq+Q09nosWCKOnZIiuzflp73uTM clpyDxkLaMbRd5DtEOAAXi/pZyZrfbm79IGIXe69UM9/2Aek0etZG2K96CVoZeEH oOUWqHX15i42VreayrOliBlaJ1L52PTleje4Q+dyWXiXgugxdqWQJMAoGhUxpBXU snjfFcfdcY0rDPXbbGEX2mD9pJ2nns63UNpHSpDpW6exp3c2kcYuouqqZ5xt4/wE 92MGtgmeQRRsB8PTUs9WlnNnD7SCmPs2UozmKvozyx2NOKPSM1qlZz7kQ7N2Gkbm 2yBqDnrgMwwP3hN1+bIppeKkcVJDJOQ2 -----END CERTIFICATE-----Generated at Wed Nov 5 18:09:28 2025 by rpki-client