$ rpki-client -vvf rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft File: WghDEGDly0pzQThDpsLwBL78Mr8.mft (raw, json) Hash identifier: R3BHcBFr3TcsYwPq9D8O+ZyHPwlNKsrcRTaB7LP5SwM= Subject key identifier: C6:7E:67:F4:CB:40:EE:6F:C8:87:4A:3C:C7:31:F4:C6:0A:FC:5C:8C Authority key identifier: 5A:08:43:10:60:E5:CB:4A:73:41:38:43:A6:C2:F0:04:BE:FC:32:BF Certificate issuer: /CN=A9160DF1/serialNumber=5A08431060E5CB4A73413843A6C2F004BEFC32BF Certificate serial: 050B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft Manifest number: 0506 Signing time: Sun 02 Nov 2025 23:36:42 +0000 Manifest this update: Sun 02 Nov 2025 23:36:42 +0000 Manifest next update: Sun 09 Nov 2025 23:36:42 +0000 Files and hashes: 1: WghDEGDly0pzQThDpsLwBL78Mr8.crl (hash: kH5T7DulQX3w2vV9INDy7XSjE4C3tl9OpVg4DdFG9RM=) 2: 846935702CD911ECA528B744C4F9AE02.roa (hash: W1EZe814Szf15WwX2ObaPNFong/hjvqkU7/N1EMoShM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.crl rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:36:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1291 (0x50b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160DF1, serialNumber=5A08431060E5CB4A73413843A6C2F004BEFC32BF Validity Not Before: Nov 2 23:36:42 2025 GMT Not After : Nov 9 23:36:42 2025 GMT Subject: CN=6907eb0a-48d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:74:de:e4:d4:ff:08:ce:5e:c5:78:95:31:66: 42:cb:87:2f:dc:37:6c:99:ca:5d:41:e2:21:f9:0e: e7:6b:46:f8:e5:38:84:58:cd:d5:c7:55:0b:62:df: 40:90:c4:3c:94:24:cb:44:f3:54:b8:b6:f0:ec:25: 2c:3d:cb:0d:da:34:67:c0:34:53:80:f7:f4:09:e5: 4a:f0:02:47:34:d8:54:34:52:0f:1c:0f:5c:6e:b1: 76:ac:73:38:cd:e5:a6:09:47:1a:9d:73:f7:4e:a3: c0:77:14:d6:d2:65:2d:1f:d7:be:43:c0:cf:b3:cc: fe:26:48:3f:04:b8:8d:89:c2:90:95:d2:8a:72:c3: 72:8d:15:66:49:84:aa:06:1c:38:17:84:93:90:b1: c7:06:02:84:84:6f:ba:90:09:b3:36:0e:21:d5:9f: de:9e:63:6a:28:81:ee:10:7e:8f:fe:36:b8:a2:18: e0:ef:08:5c:ec:6a:ce:68:7a:5f:1c:a9:11:bd:80: 56:84:17:c6:d1:2c:35:05:01:c2:b8:c3:1e:9c:c0: c4:6c:75:92:f5:07:37:e2:6d:11:fe:cf:49:79:ae: 21:9f:a0:23:9b:c5:c9:29:56:94:13:5f:86:bf:ea: 09:96:0b:10:fe:c4:d8:8e:34:71:e5:c6:ca:ab:f7: 5b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:7E:67:F4:CB:40:EE:6F:C8:87:4A:3C:C7:31:F4:C6:0A:FC:5C:8C X509v3 Authority Key Identifier: keyid:5A:08:43:10:60:E5:CB:4A:73:41:38:43:A6:C2:F0:04:BE:FC:32:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:9a:c9:62:f4:cb:a6:9f:fa:72:cf:41:54:84:a0:a8:42:65: 59:84:63:9e:bd:b7:e0:3c:d7:d1:60:dc:83:0a:35:70:b7:db: e7:68:d7:f2:db:c5:02:f4:72:4c:71:9a:68:68:e5:53:63:f2: 01:2d:d1:f5:ab:3d:8d:9e:ef:7e:a1:00:75:a7:af:c3:1f:bd: 22:21:e5:cf:7a:ce:da:cf:43:07:64:64:f1:bd:d9:c0:d2:ed: 40:70:86:19:9f:cc:aa:e4:d2:57:12:a7:c1:3d:b9:c8:f0:a7: 3f:fa:07:9d:9c:2e:0d:6e:21:cf:b8:ac:95:e1:5e:18:18:18: 37:ee:fd:8d:de:e1:11:a9:fc:04:12:c4:3a:45:56:f3:ab:de: 8a:88:1c:43:3b:36:4d:15:99:5b:ec:8c:d3:8f:e8:4a:18:da: f9:6b:6f:3a:da:0a:09:e8:f6:08:86:73:cf:89:2a:5a:d3:2b: 4d:ed:20:70:f5:b7:c2:eb:23:9e:a9:2b:f1:b2:85:51:30:21: 78:b2:74:3a:96:c9:5e:f2:35:23:85:e8:e7:9a:a0:36:ec:52: 72:60:50:9f:69:f0:d3:c9:2a:bf:38:11:9f:55:4f:2d:86:c3: 5f:a2:18:f8:c5:09:65:e4:af:79:6c:cc:76:2b:66:14:99:f5: 35:87:e3:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBERjExMTAvBgNVBAUTKDVBMDg0MzEwNjBFNUNCNEE3MzQxMzg0M0E2QzJGMDA0 QkVGQzMyQkYwHhcNMjUxMTAyMjMzNjQyWhcNMjUxMTA5MjMzNjQyWjAYMRYwFAYD VQQDEw02OTA3ZWIwYS00OGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAznTe5NT/CM5exXiVMWZCy4cv3DdsmcpdQeIh+Q7na0b45TiEWM3Vx1ULYt9A kMQ8lCTLRPNUuLbw7CUsPcsN2jRnwDRTgPf0CeVK8AJHNNhUNFIPHA9cbrF2rHM4 zeWmCUcanXP3TqPAdxTW0mUtH9e+Q8DPs8z+Jkg/BLiNicKQldKKcsNyjRVmSYSq Bhw4F4STkLHHBgKEhG+6kAmzNg4h1Z/enmNqKIHuEH6P/ja4ohjg7whc7GrOaHpf HKkRvYBWhBfG0Sw1BQHCuMMenMDEbHWS9Qc34m0R/s9Jea4hn6Ajm8XJKVaUE1+G v+oJlgsQ/sTYjjRx5cbKq/db+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMZ+Z/TL QO5vyIdKPMcx9MYK/FyMMB8GA1UdIwQYMBaAFFoIQxBg5ctKc0E4Q6bC8AS+/DK/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MERGMS9FMzc5RDVBMDJD RDUxMUVDQkI2QzQxMkJDNEY5QUUwMi9XZ2hERUdEbHkwcHpRVGhEcHNMd0JMNzhN cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dnaERFR0RseTBwelFUaERwc0x3Qkw3OE1yOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MERGMS9FMzc5RDVBMDJDRDUxMUVDQkI2QzQxMkJDNEY5QUUwMi9XZ2hERUdEbHkw cHpRVGhEcHNMd0JMNzhNcjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0msli9Mumn/pyz0FUhKCoQmVZhGOevbfgPNfRYNyDCjVwt9vnaNfy 28UC9HJMcZpoaOVTY/IBLdH1qz2Nnu9+oQB1p6/DH70iIeXPes7az0MHZGTxvdnA 0u1AcIYZn8yq5NJXEqfBPbnI8Kc/+gednC4NbiHPuKyV4V4YGBg37v2N3uERqfwE EsQ6RVbzq96KiBxDOzZNFZlb7IzTj+hKGNr5a2862goJ6PYIhnPPiSpa0ytN7SBw 9bfC6yOeqSvxsoVRMCF4snQ6lsle8jUjhejnmqA27FJyYFCfafDTySq/OBGfVU8t hsNfohj4xQll5K95bMx2K2YUmfU1h+PU -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:35 2025 by rpki-client