$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft File: ulHQnhOT5woFhzID_3zE4f1-pw8.mft (raw, json) Hash identifier: W0W5+j83ccq2q4aHnWRJaXiuHg7W29NjXsy7yV1520k= Subject key identifier: E8:09:F2:87:FD:30:1E:07:14:10:EC:3F:39:A3:1D:16:94:44:D5:26 Authority key identifier: BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F Certificate issuer: /CN=A9168B03/serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Certificate serial: 1C2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft Manifest number: 1C21 Signing time: Tue 04 Nov 2025 16:18:39 +0000 Manifest this update: Tue 04 Nov 2025 16:18:39 +0000 Manifest next update: Tue 11 Nov 2025 16:18:39 +0000 Files and hashes: 1: ulHQnhOT5woFhzID_3zE4f1-pw8.crl (hash: oxgg88VsMTbGc9l9gSWceCJ2kU8eThrsMs3NYrJRVG4=) 2: D3EAE1500B5911EA8CC1114BC4F9AE02.roa (hash: iw8R7e0/cuiLe2UpbocEUV4DYRPW2H32JZcJjyrYF2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:18:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7215 (0x1c2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B03, serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Validity Not Before: Nov 4 16:18:39 2025 GMT Not After : Nov 11 16:18:39 2025 GMT Subject: CN=690a275f-9df7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:27:c5:dd:cd:69:dd:fb:50:f9:01:8c:77:ca: 79:af:7a:f8:2e:30:ea:a7:b7:1c:07:a9:2d:82:a4: 55:ac:a0:d1:79:3b:d4:9d:55:7b:49:46:7c:87:d9: 2f:db:4b:93:3b:d0:a5:8e:51:91:63:57:a3:89:ed: 3b:dc:89:35:17:05:12:ae:c1:53:bb:45:48:ea:4e: f1:3e:6c:45:df:a8:03:65:7b:70:39:9f:40:d5:72: bf:7e:95:11:8d:ec:04:cf:ce:2a:d5:a0:18:75:a3: 38:9f:2b:8a:18:9f:56:75:5a:8e:0d:dc:de:52:71: 86:f9:ca:54:08:69:f5:94:bc:53:39:ff:75:ba:d8: ae:f0:f0:af:31:f8:03:96:c1:72:bf:6d:d6:0d:c7: 47:a5:91:8d:89:17:e8:84:ed:4c:7f:b9:ea:37:f6: 35:e7:71:9f:65:69:93:e9:d4:92:ca:ca:2f:26:64: e5:c9:bb:0b:f2:5e:7a:4c:03:6a:74:4f:f2:30:20: 00:2c:39:fa:4b:6b:fc:7d:34:ba:28:e4:1e:60:bc: 02:29:ee:05:03:33:7d:df:d6:e8:e7:7a:4b:75:91: 86:09:9b:55:05:7b:1f:28:a6:e1:41:69:39:88:86: 62:69:5a:fe:87:63:f1:ca:f7:57:bb:e0:04:b2:08: e7:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:09:F2:87:FD:30:1E:07:14:10:EC:3F:39:A3:1D:16:94:44:D5:26 X509v3 Authority Key Identifier: keyid:BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:a7:92:96:94:c2:66:a3:8e:23:04:dd:24:97:6c:a8:3c:f4: 2c:25:11:a9:65:6f:2c:ed:b2:89:52:d4:99:23:56:48:c6:6b: a7:c4:7a:d1:4f:3f:23:73:f8:73:eb:bb:b8:36:56:9d:de:d1: 7e:0f:8f:63:aa:e1:5b:df:50:34:ee:aa:07:10:0d:47:df:e3: 18:65:14:4f:62:cb:bc:64:28:42:37:b2:99:c9:92:61:19:d6: 19:e1:17:75:c4:f4:7e:c6:e5:0f:2d:53:8c:b7:f0:26:a3:9f: b4:73:a8:df:19:89:af:4f:c3:2b:ca:dd:6b:69:90:d7:97:03: 91:4c:97:a7:41:2d:0b:6d:14:67:2e:2f:36:42:09:78:66:f2: 40:b7:d3:84:e6:bb:2c:96:2c:66:c6:62:7a:cf:21:e3:23:f3: 4c:1b:0c:f2:4b:c5:11:02:c6:f5:6b:de:52:96:d7:09:8a:4f: a6:c4:53:7d:56:13:b8:60:f3:0d:2d:6a:1f:dc:78:65:ac:77: cd:58:81:88:46:4f:5b:4b:e9:e4:08:f5:4e:3b:33:6d:77:d5: 66:10:ef:5e:3c:81:e2:07:47:74:f6:43:a7:2f:72:e0:48:48: e3:a4:71:ad:b4:6c:b0:5c:79:37:4c:4a:8c:27:d7:2a:fb:bf: 19:50:af:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCMDMxMTAvBgNVBAUTKEJBNTFEMDlFMTM5M0U3MEEwNTg3MzIwM0ZGN0NDNEUx RkQ3RUE3MEYwHhcNMjUxMTA0MTYxODM5WhcNMjUxMTExMTYxODM5WjAYMRYwFAYD VQQDEw02OTBhMjc1Zi05ZGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCfF3c1p3ftQ+QGMd8p5r3r4LjDqp7ccB6ktgqRVrKDReTvUnVV7SUZ8h9kv 20uTO9CljlGRY1ejie073Ik1FwUSrsFTu0VI6k7xPmxF36gDZXtwOZ9A1XK/fpUR jewEz84q1aAYdaM4nyuKGJ9WdVqODdzeUnGG+cpUCGn1lLxTOf91utiu8PCvMfgD lsFyv23WDcdHpZGNiRfohO1Mf7nqN/Y153GfZWmT6dSSysovJmTlybsL8l56TANq dE/yMCAALDn6S2v8fTS6KOQeYLwCKe4FAzN939bo53pLdZGGCZtVBXsfKKbhQWk5 iIZiaVr+h2PxyvdXu+AEsgjnRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOgJ8of9 MB4HFBDsPzmjHRaURNUmMB8GA1UdIwQYMBaAFLpR0J4Tk+cKBYcyA/98xOH9fqcP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEIwMy9EMTE4RTY3OEY5 OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3b0ZoeklEXzN6RTRmMS1w dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VsSFFuaE9UNXdvRmh6SURfM3pFNGYxLXB3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEIwMy9EMTE4RTY3OEY5OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3 b0ZoeklEXzN6RTRmMS1wdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsp5KWlMJmo44jBN0kl2yoPPQsJRGpZW8s7bKJUtSZI1ZIxmunxHrR Tz8jc/hz67u4Nlad3tF+D49jquFb31A07qoHEA1H3+MYZRRPYsu8ZChCN7KZyZJh GdYZ4Rd1xPR+xuUPLVOMt/Amo5+0c6jfGYmvT8Mryt1raZDXlwORTJenQS0LbRRn Li82Qgl4ZvJAt9OE5rsslixmxmJ6zyHjI/NMGwzyS8URAsb1a95SltcJik+mxFN9 VhO4YPMNLWof3HhlrHfNWIGIRk9bS+nkCPVOOzNtd9VmEO9ePIHiB0d09kOnL3Lg SEjjpHGttGywXHk3TEqMJ9cq+78ZUK9V -----END CERTIFICATE-----Generated at Wed Nov 5 05:27:00 2025 by rpki-client