$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json) Hash identifier: nuLvP9c/1PIfRwBOm3D/d+hGZtjqiSRZUFkifBA8X4A= Subject key identifier: 4B:EC:17:7A:9D:E4:36:BA:AA:7A:E7:65:81:5C:50:C5:F5:91:3C:9F Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Certificate serial: 1BF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft Manifest number: 1BE3 Signing time: Sun 02 Nov 2025 16:15:07 +0000 Manifest this update: Sun 02 Nov 2025 16:15:07 +0000 Manifest next update: Sun 09 Nov 2025 16:15:07 +0000 Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: rJg3YDqwuWioMKdEREtsI1fepyvRQOKNaGWZosZ2p7U=) 2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: wynmFUF72+WqOIzeId16MY3qAbLuhLthoUyin6hAIaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:15:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7157 (0x1bf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C2D, serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Validity Not Before: Nov 2 16:15:07 2025 GMT Not After : Nov 9 16:15:07 2025 GMT Subject: CN=6907838b-33a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:54:f4:90:85:d0:54:8c:ab:1d:e6:cf:f5:af: 1e:cd:92:81:b6:1d:9b:3f:27:77:db:db:fe:21:6b: 5d:59:0a:0a:01:01:50:9a:f8:a6:43:86:ba:9b:f8: 1d:ec:c1:73:48:07:f4:1f:16:73:d8:63:b0:93:77: 87:33:fc:4b:20:12:d5:bb:22:61:e8:74:3a:f1:6b: 94:cc:0a:60:0b:f1:6f:5c:fd:77:ef:dc:7a:62:38: 06:db:81:0f:8d:a1:d0:31:89:2e:0c:0b:87:35:c5: 0a:3f:93:a2:3a:e0:16:10:94:19:6a:59:b6:73:32: 6b:be:3b:e2:ba:e1:6e:06:88:7c:5a:a9:54:48:7f: 2d:3e:73:65:5d:0e:2f:77:eb:1e:db:a9:a9:7b:d1: c4:ec:7f:a1:0a:ad:9e:33:71:a2:c7:86:74:e2:03: f2:b5:47:a5:09:2f:40:be:99:30:88:9d:03:e3:47: 49:3b:27:42:f7:d9:ed:1d:46:87:94:8a:ef:88:32: 44:8c:99:7f:ac:ba:4e:5f:f2:f7:1d:bf:9f:09:98: 11:31:21:2b:88:a2:80:61:ac:46:91:ca:e1:26:32: 2a:b1:75:6c:86:68:48:f8:bd:b0:c8:d2:ed:c1:c9: 50:11:54:c6:85:ae:c5:32:70:bb:85:f1:02:a0:92: 7a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:EC:17:7A:9D:E4:36:BA:AA:7A:E7:65:81:5C:50:C5:F5:91:3C:9F X509v3 Authority Key Identifier: keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:16:1c:6a:74:24:15:a0:33:a4:04:ca:e0:0f:98:24:35:20: 57:61:93:12:56:17:cc:78:b8:3e:07:ad:e4:0e:8f:1e:90:a0: 70:8f:fb:6d:7e:98:cc:55:39:2b:7e:69:ae:c7:09:00:e6:47: 35:36:39:a3:f0:b1:26:2b:3f:9f:e9:c5:45:e9:74:88:01:17: 26:1d:98:3a:43:b6:eb:45:6c:ed:fd:e4:1d:89:7e:9b:2c:d8: 53:d7:2c:62:de:fe:fd:9e:a9:7a:f8:54:a9:c3:c2:14:12:79: 0e:bc:44:a3:b7:54:cf:8e:f5:50:83:22:e7:9a:0b:3d:ec:31: b1:a8:d8:28:36:03:ff:16:36:39:53:2d:c0:42:bf:b0:6c:78: 1b:24:65:d1:b5:f1:74:c4:f9:24:89:5a:bf:1f:b9:d5:6b:d2: fc:80:11:75:73:00:80:01:1f:21:b1:63:f4:42:8c:ad:4f:42: 69:75:19:0c:54:51:8d:1c:85:fc:9d:f9:cd:b1:7a:78:c6:4f: 0a:31:52:12:9c:b4:c2:8a:9c:1b:09:65:7c:7c:9a:09:d7:83: 25:ec:b8:4d:c9:14:c1:15:ca:9a:81:ce:6a:9e:7f:d7:8d:92: f4:32:48:68:54:c9:97:cb:a2:67:5e:a2:99:95:bf:64:9a:67: fc:83:4f:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3 NUU0ODg5MUEwHhcNMjUxMTAyMTYxNTA3WhcNMjUxMTA5MTYxNTA3WjAYMRYwFAYD VQQDEw02OTA3ODM4Yi0zM2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVT0kIXQVIyrHebP9a8ezZKBth2bPyd329v+IWtdWQoKAQFQmvimQ4a6m/gd 7MFzSAf0HxZz2GOwk3eHM/xLIBLVuyJh6HQ68WuUzApgC/FvXP1379x6YjgG24EP jaHQMYkuDAuHNcUKP5OiOuAWEJQZalm2czJrvjviuuFuBoh8WqlUSH8tPnNlXQ4v d+se26mpe9HE7H+hCq2eM3Gix4Z04gPytUelCS9AvpkwiJ0D40dJOydC99ntHUaH lIrviDJEjJl/rLpOX/L3Hb+fCZgRMSEriKKAYaxGkcrhJjIqsXVshmhI+L2wyNLt wclQEVTGha7FMnC7hfECoJJ60wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEvsF3qd 5Da6qnrnZYFcUMX1kTyfMB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4 NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCFhxqdCQVoDOkBMrgD5gkNSBXYZMSVhfMeLg+B63kDo8ekKBwj/tt fpjMVTkrfmmuxwkA5kc1Njmj8LEmKz+f6cVF6XSIARcmHZg6Q7brRWzt/eQdiX6b LNhT1yxi3v79nql6+FSpw8IUEnkOvESjt1TPjvVQgyLnmgs97DGxqNgoNgP/FjY5 Uy3AQr+wbHgbJGXRtfF0xPkkiVq/H7nVa9L8gBF1cwCAAR8hsWP0QoytT0JpdRkM VFGNHIX8nfnNsXp4xk8KMVISnLTCipwbCWV8fJoJ14Ml7LhNyRTBFcqagc5qnn/X jZL0MkhoVMmXy6JnXqKZlb9kmmf8g087 -----END CERTIFICATE-----Generated at Tue Nov 4 08:28:10 2025 by rpki-client