$ rpki-client -vvf rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft File: b09GjkMIsA0N9f6shChm1U539dM.mft (raw, json) Hash identifier: mdWRvKXDggYl/IbhwsTpooH2NwvIXx/8HUqxTDr7OWo= Subject key identifier: CB:56:66:FC:03:10:E6:6E:A4:82:B6:02:16:DE:E4:A5:0B:70:04:31 Authority key identifier: 6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 Certificate issuer: /CN=A915D1A2/serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Certificate serial: 0CBF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft Manifest number: 0CA6 Signing time: Sun 02 Nov 2025 18:22:06 +0000 Manifest this update: Sun 02 Nov 2025 18:22:05 +0000 Manifest next update: Sun 09 Nov 2025 18:22:05 +0000 Files and hashes: 1: b09GjkMIsA0N9f6shChm1U539dM.crl (hash: 61bcgLvb7fX1KgGBERwSk7UARwX+aX8/En0ISI3uNTo=) 2: 6D8B82D0D6D811EE8BBA8938C4F9AE02.roa (hash: 1cMybGIbvpxyTUqlwMM8pDEltG6qbjXuctF+adjG4sw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:22:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3263 (0xcbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D1A2, serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Validity Not Before: Nov 2 18:22:05 2025 GMT Not After : Nov 9 18:22:05 2025 GMT Subject: CN=6907a14e-2a56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:be:38:25:4a:70:09:80:b8:6f:6f:e1:30:ec: 86:8c:92:02:fc:12:b4:6e:5f:74:b2:75:fa:6b:1e: e4:42:1e:b5:0a:2e:3f:99:06:7e:e2:dd:07:db:6a: 46:9f:6f:ac:a1:13:0b:a2:ed:b2:db:9d:75:5b:9a: ef:7c:b5:93:33:81:ef:35:8a:c0:0b:ce:9a:98:a4: 2e:a2:be:60:8e:a3:e4:35:b5:e3:16:7c:8a:6d:fa: 14:61:2a:e9:a0:1c:1c:48:c9:90:6f:90:6c:ef:88: 75:a0:a5:ff:1c:77:e1:e0:11:74:82:10:a0:62:9b: f3:56:12:72:38:e0:93:cf:03:70:7f:62:58:ac:9a: c3:49:34:1b:15:f9:4e:98:64:f2:59:12:5d:a6:6e: 62:d9:5e:80:ce:51:c5:f9:8e:8b:ad:4e:9f:d5:8e: b5:83:ea:21:3f:e5:ae:1f:6f:6c:27:28:8e:fd:bb: 2e:a1:c2:90:5a:7f:cf:d8:04:0e:a8:bb:04:90:be: 0d:84:2d:e2:28:ba:da:24:96:e4:85:18:8b:49:fa: 4f:92:66:f7:ba:92:70:ca:20:2b:7b:36:46:df:cf: 69:c8:4d:0a:3f:ac:0b:6f:92:11:95:4b:c4:36:8e: d0:e0:af:45:ff:04:22:f7:46:3b:83:cd:80:37:cf: 1f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:56:66:FC:03:10:E6:6E:A4:82:B6:02:16:DE:E4:A5:0B:70:04:31 X509v3 Authority Key Identifier: keyid:6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:ef:f0:ca:4f:09:9d:09:81:70:ee:dc:4f:92:97:63:7c:8d: 48:45:7b:ad:47:a4:61:68:02:3e:73:4a:3b:00:46:7e:b1:db: b6:43:d1:bc:67:1e:72:c1:4a:d4:9e:55:e5:7b:07:b1:d5:06: 86:d2:cb:db:02:07:50:5b:54:2a:2a:4a:6e:2b:0d:42:a1:fd: 7f:6c:0c:22:e2:5c:1d:76:e1:15:4e:3a:50:ec:84:e1:00:5c: d8:fd:87:6e:44:09:0f:78:ce:8e:2f:fb:4c:39:e8:f8:b7:7e: 8a:9f:83:f7:e3:bf:ee:7f:c1:b2:b4:ca:ad:0a:4f:0a:c5:14: 72:25:bb:4f:02:fe:d3:26:20:36:63:30:25:7a:69:7f:46:a7: c1:8a:46:cb:b9:55:2f:63:86:ca:eb:26:f7:c7:ba:fb:74:d0: 47:cb:78:d9:6e:b5:f4:14:a5:f0:d2:e4:03:eb:2b:5e:cb:38: ec:14:c8:1d:20:02:e4:5f:a6:23:96:3a:e5:11:0d:07:07:f2: c4:be:d2:39:eb:65:2a:8e:86:c8:88:76:2e:13:91:c2:c9:61: 7b:9e:51:aa:be:16:d2:11:d6:ba:79:16:c5:c0:29:6c:ef:19: d5:ec:99:68:0b:cd:f2:25:70:60:45:b5:f0:c4:38:ae:14:ba: 0b:8a:9b:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQxQTIxMTAvBgNVBAUTKDZGNEY0NjhFNDMwOEIwMEQwREY1RkVBQzg0Mjg2NkQ1 NEU3N0Y1RDMwHhcNMjUxMTAyMTgyMjA1WhcNMjUxMTA5MTgyMjA1WjAYMRYwFAYD VQQDEw02OTA3YTE0ZS0yYTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtL44JUpwCYC4b2/hMOyGjJIC/BK0bl90snX6ax7kQh61Ci4/mQZ+4t0H22pG n2+soRMLou2y2511W5rvfLWTM4HvNYrAC86amKQuor5gjqPkNbXjFnyKbfoUYSrp oBwcSMmQb5Bs74h1oKX/HHfh4BF0ghCgYpvzVhJyOOCTzwNwf2JYrJrDSTQbFflO mGTyWRJdpm5i2V6AzlHF+Y6LrU6f1Y61g+ohP+WuH29sJyiO/bsuocKQWn/P2AQO qLsEkL4NhC3iKLraJJbkhRiLSfpPkmb3upJwyiArezZG389pyE0KP6wLb5IRlUvE No7Q4K9F/wQi90Y7g82AN88fmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtWZvwD EOZupIK2Ahbe5KULcAQxMB8GA1UdIwQYMBaAFG9PRo5DCLANDfX+rIQoZtVOd/XT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDFBMi9ERkQxMUYyODA2 QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNBME45ZjZzaENobTFVNTM5 ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IwOUdqa01Jc0EwTjlmNnNoQ2htMVU1MzlkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDFBMi9ERkQxMUYyODA2QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNB ME45ZjZzaENobTFVNTM5ZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB97/DKTwmdCYFw7txPkpdjfI1IRXutR6RhaAI+c0o7AEZ+sdu2Q9G8 Zx5ywUrUnlXlewex1QaG0svbAgdQW1QqKkpuKw1Cof1/bAwi4lwdduEVTjpQ7ITh AFzY/YduRAkPeM6OL/tMOej4t36Kn4P347/uf8GytMqtCk8KxRRyJbtPAv7TJiA2 YzAleml/RqfBikbLuVUvY4bK6yb3x7r7dNBHy3jZbrX0FKXw0uQD6yteyzjsFMgd IALkX6YjljrlEQ0HB/LEvtI562UqjobIiHYuE5HCyWF7nlGqvhbSEda6eRbFwCls 7xnV7JloC83yJXBgRbXwxDiuFLoLipuY -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:05 2025 by rpki-client