$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft File: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft (raw, json) Hash identifier: tcbD8cWfQ8tUNcPOdiA7Jv8mw7LpqZKKPO3wPJ4ihlM= Subject key identifier: 1D:C0:19:0C:83:E1:21:9B:88:66:6A:B4:C5:28:F8:26:CB:A5:69:64 Authority key identifier: FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 Certificate issuer: /CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft Manifest number: 0109 Signing time: Mon 03 Nov 2025 04:58:20 +0000 Manifest this update: Mon 03 Nov 2025 04:58:19 +0000 Manifest next update: Mon 10 Nov 2025 04:58:19 +0000 Files and hashes: 1: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl (hash: nrShbZZ6i3trDrwLQFC5hgcJa+iacsX3lnLMmF797/4=) 2: D16A1B5C225711EF975F6747C4F9AE02.roa (hash: Oq3D4ezYunPFGiMcUlxoGy2jtufjcwOjdtjOKgqjtFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:58:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5, serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Validity Not Before: Nov 3 04:58:19 2025 GMT Not After : Nov 10 04:58:19 2025 GMT Subject: CN=6908366c-f2e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e0:d5:31:dd:c5:3c:b5:01:8a:4f:1c:31:4d: 44:29:3f:1a:61:9c:1a:5d:2e:0e:f5:fd:86:21:00: 90:53:96:7c:04:44:d3:17:35:7f:e9:97:88:9f:54: 16:55:ac:6a:42:f9:f7:22:b6:53:36:9a:02:cd:f3: c7:1b:90:26:1d:82:5a:3e:c4:e2:2f:d5:65:49:c3: bb:bc:59:dc:1e:62:a0:72:33:f6:28:83:40:2b:b5: a1:7d:9a:4a:8a:1a:71:6e:1a:59:80:dc:41:e4:03: 6d:f5:79:02:ce:be:08:97:e8:b6:a0:89:d3:7d:86: 16:0e:2b:78:84:7f:62:3f:16:7d:5c:46:b5:ba:20: 9f:9e:9e:dc:06:cf:3a:0d:21:72:6e:24:1a:0f:85: b5:24:ae:46:d7:89:0f:a8:d9:18:72:2c:b8:7d:ab: 2b:ad:98:c1:ea:7d:77:39:4d:8b:da:66:7f:ad:03: 44:ee:7f:9e:4a:5d:aa:74:a2:99:a3:88:8d:87:35: 38:0f:fb:31:28:78:3a:97:1e:42:d8:1b:8a:9e:95: a2:a0:6c:60:f4:6d:10:1e:38:ce:c7:4a:82:ce:21: 23:95:76:2d:4b:db:04:9d:3c:7a:2a:b7:dc:0d:ce: 1d:65:44:d2:e5:42:dd:fd:d3:e1:10:67:a5:1a:44: 3e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:C0:19:0C:83:E1:21:9B:88:66:6A:B4:C5:28:F8:26:CB:A5:69:64 X509v3 Authority Key Identifier: keyid:FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:de:b5:c8:6b:c8:c8:7c:ed:99:04:34:bb:91:e1:8c:fc:9f: 13:78:bb:f5:62:41:b3:fa:4a:ec:54:63:67:29:5f:12:da:ff: b5:27:51:f5:77:d7:51:f5:3f:a5:2a:cd:c9:4a:62:21:a8:f2: 5f:13:71:f0:59:f4:4d:ea:50:a4:3f:dd:b6:26:1e:3a:ab:8c: 99:9a:9a:bf:67:d2:b5:66:c8:0e:01:44:7f:ef:32:18:f7:88: 0a:7d:1a:01:41:70:e9:65:66:47:43:6d:b4:e4:20:a9:98:e8: 43:ca:f9:3d:ec:ad:16:d1:08:d9:5b:f2:7e:2a:98:67:3f:a1: 4a:fb:dd:d9:26:16:f2:37:79:01:2e:47:02:d6:98:bd:3e:b6: df:36:a4:b4:20:86:c1:76:d5:26:b3:49:20:7b:c3:12:43:dd: 4c:af:68:57:53:39:1a:32:66:fc:46:d5:a7:84:7b:05:1a:f7: ce:13:51:2d:15:ce:22:eb:14:0a:4f:d3:f6:fd:6a:36:a0:5d: 94:30:76:cc:90:96:44:6c:05:42:16:ff:13:d7:4b:cc:30:16: 39:68:d7:9e:24:b5:8c:07:ff:80:d5:97:eb:64:09:43:6f:18: ad:7a:60:34:a5:e5:ec:93:04:e5:68:e0:0c:d8:0f:2f:38:ed: 04:c7:d1:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKEZBODExRjUyRTUxOTVBNDI5RDcwNkQxOUMwMDMyMzdD MzIwOUFBMzcwHhcNMjUxMTAzMDQ1ODE5WhcNMjUxMTEwMDQ1ODE5WjAYMRYwFAYD VQQDEw02OTA4MzY2Yy1mMmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoODVMd3FPLUBik8cMU1EKT8aYZwaXS4O9f2GIQCQU5Z8BETTFzV/6ZeIn1QW VaxqQvn3IrZTNpoCzfPHG5AmHYJaPsTiL9VlScO7vFncHmKgcjP2KINAK7WhfZpK ihpxbhpZgNxB5ANt9XkCzr4Il+i2oInTfYYWDit4hH9iPxZ9XEa1uiCfnp7cBs86 DSFybiQaD4W1JK5G14kPqNkYciy4fasrrZjB6n13OU2L2mZ/rQNE7n+eSl2qdKKZ o4iNhzU4D/sxKHg6lx5C2BuKnpWioGxg9G0QHjjOx0qCziEjlXYtS9sEnTx6Krfc Dc4dZUTS5ULd/dPhEGelGkQ++wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB3AGQyD 4SGbiGZqtMUo+CbLpWlkMB8GA1UdIwQYMBaAFPqBH1LlGVpCnXBtGcADI3wyCao3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9GQTM3QzYzRTIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldrS2RjRzBad0FNamZESUpx amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vRWZVdVVaV2tLZGNHMFp3QU1qZkRJSnFqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9GQTM3QzYzRTIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldr S2RjRzBad0FNamZESUpxamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCe3rXIa8jIfO2ZBDS7keGM/J8TeLv1YkGz+krsVGNnKV8S2v+1J1H1 d9dR9T+lKs3JSmIhqPJfE3HwWfRN6lCkP922Jh46q4yZmpq/Z9K1ZsgOAUR/7zIY 94gKfRoBQXDpZWZHQ2205CCpmOhDyvk97K0W0QjZW/J+KphnP6FK+93ZJhbyN3kB LkcC1pi9PrbfNqS0IIbBdtUms0kge8MSQ91Mr2hXUzkaMmb8RtWnhHsFGvfOE1Et Fc4i6xQKT9P2/Wo2oF2UMHbMkJZEbAVCFv8T10vMMBY5aNeeJLWMB/+A1ZfrZAlD bxitemA0peXskwTlaOAM2A8vOO0Ex9Hh -----END CERTIFICATE-----Generated at Tue Nov 4 07:23:46 2025 by rpki-client