$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json) Hash identifier: CoT9mrIhOyvw/NIFbJ+hLx8TwEQiwanE517LF0FhwoA= Subject key identifier: CD:8D:68:B6:E8:78:67:40:00:8A:FB:A5:4C:AA:F0:D1:A2:08:EA:B8 Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: 01F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft Manifest number: 01F1 Signing time: Wed 05 Nov 2025 02:40:03 +0000 Manifest this update: Wed 05 Nov 2025 02:40:02 +0000 Manifest next update: Wed 12 Nov 2025 02:40:02 +0000 Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: CysJ/h2SEYSLzLPNOuFTnf+MuvcM60E2bI6t81yfT8c=) 2: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (hash: 1DI+mqIXwfIJnsuS//oB0VNc4iGbxjDEhe/n7gNnlpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:40:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73, serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: Nov 5 02:40:02 2025 GMT Not After : Nov 12 02:40:02 2025 GMT Subject: CN=690ab903-01e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:55:f1:94:4c:55:27:f2:01:77:44:44:56:f1: 2c:71:f7:63:6c:72:40:02:ba:ce:95:0e:24:c3:de: 41:85:77:90:38:61:3f:5c:7b:ba:a2:ce:e1:ea:c9: c5:a2:6a:a5:87:34:07:6d:8c:38:ff:16:6e:d0:38: 1e:96:cd:04:c3:8d:40:10:90:26:ea:a5:39:b7:e5: e6:c1:f1:39:73:7c:f3:5c:78:b5:87:5d:c9:c7:ee: 6e:ec:93:38:9b:95:20:35:59:7e:03:0d:1c:38:fe: 1c:c6:00:37:af:e5:d0:80:66:f2:6b:24:37:15:10: 08:0d:06:eb:3c:f9:0d:66:2c:92:aa:92:c1:1c:ee: 82:17:1b:c0:da:71:8f:32:1d:16:1e:3f:0a:dc:69: e4:cc:11:3d:ad:e9:63:a4:6c:03:21:87:81:89:f3: fc:f4:24:c1:35:86:ee:a2:73:67:00:b7:01:44:a4: 48:79:e1:aa:fc:c7:db:46:7e:81:a7:5a:9c:1d:dc: cd:00:c4:04:bc:0d:84:be:68:b7:a0:57:b9:17:c5: 46:e4:11:0c:9d:5c:32:6f:27:e9:d6:42:e7:a0:11: ab:e1:c6:ca:14:7e:15:9e:4f:8d:90:29:db:e2:65: 01:66:ee:45:86:18:ea:04:61:6a:95:ab:97:47:1d: f9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:8D:68:B6:E8:78:67:40:00:8A:FB:A5:4C:AA:F0:D1:A2:08:EA:B8 X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:2a:4e:67:03:bd:bb:02:12:c4:ab:6f:09:83:87:15:63:2b: 6a:c6:5a:f9:88:26:c0:44:10:17:35:58:9e:46:3d:6a:12:dd: 61:09:a4:ed:72:50:52:85:ab:a7:8e:ca:e4:9c:61:9e:bd:90: d8:68:37:32:34:74:60:73:89:89:4d:3a:c2:53:fe:2e:e1:bc: 8f:9d:3b:ee:d7:f0:f7:c9:7f:10:c2:7c:36:9f:37:7f:0d:ae: 7a:b6:a3:4d:3a:ed:92:a6:49:3d:2a:b8:68:e5:da:ab:c3:df: 05:77:a5:cf:65:97:14:b6:7d:06:3c:94:72:d7:6a:af:af:72: 4e:60:10:f0:6a:27:94:bb:53:e2:01:1b:1d:48:58:ae:26:72: 9b:0b:2e:e7:c2:c2:cb:0a:aa:15:b2:a2:9a:8a:7a:83:ab:46: 8a:b4:33:bf:74:5b:d9:1b:24:b9:15:01:c6:da:e9:43:5b:e6: 13:c2:bb:99:ab:74:88:a5:29:19:9f:2e:2e:be:5f:e8:22:f4: 11:eb:61:d4:d1:37:40:3f:15:5a:98:96:d1:1d:6c:2c:41:03: 59:36:00:3e:d9:85:67:f5:73:47:97:f1:99:11:fd:1c:d5:62: 7e:95:3e:0d:f0:b3:05:50:b7:df:46:48:6b:0f:34:63:16:ae: 9d:cd:ae:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjUxMTA1MDI0MDAyWhcNMjUxMTEyMDI0MDAyWjAYMRYwFAYD VQQDEw02OTBhYjkwMy0wMWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFXxlExVJ/IBd0REVvEscfdjbHJAArrOlQ4kw95BhXeQOGE/XHu6os7h6snF omqlhzQHbYw4/xZu0Dgels0Ew41AEJAm6qU5t+XmwfE5c3zzXHi1h13Jx+5u7JM4 m5UgNVl+Aw0cOP4cxgA3r+XQgGbyayQ3FRAIDQbrPPkNZiySqpLBHO6CFxvA2nGP Mh0WHj8K3GnkzBE9reljpGwDIYeBifP89CTBNYbuonNnALcBRKRIeeGq/MfbRn6B p1qcHdzNAMQEvA2Evmi3oFe5F8VG5BEMnVwybyfp1kLnoBGr4cbKFH4Vnk+NkCnb 4mUBZu5FhhjqBGFqlauXRx358wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2NaLbo eGdAAIr7pUyq8NGiCOq4MB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEM3My84RTVDOUNDMEMzMTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21j RWM5dUI0WmZkbHNqaGxZNGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBKk5nA727AhLEq28Jg4cVYytqxlr5iCbARBAXNVieRj1qEt1hCaTt clBShaunjsrknGGevZDYaDcyNHRgc4mJTTrCU/4u4byPnTvu1/D3yX8Qwnw2nzd/ Da56tqNNOu2Spkk9Krho5dqrw98Fd6XPZZcUtn0GPJRy12qvr3JOYBDwaieUu1Pi ARsdSFiuJnKbCy7nwsLLCqoVsqKainqDq0aKtDO/dFvZGyS5FQHG2ulDW+YTwruZ q3SIpSkZny4uvl/oIvQR62HU0TdAPxVamJbRHWwsQQNZNgA+2YVn9XNHl/GZEf0c 1WJ+lT4N8LMFULffRkhrDzRjFq6dza5O -----END CERTIFICATE-----Generated at Wed Nov 5 05:27:18 2025 by rpki-client