$ rpki-client -vvf rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft File: cXGYzRpGea2dRS7h2wLQASpDdOw.mft (raw, json) Hash identifier: Ax0yechc/PzOJVuenPCcseqfBOYjl3J6ejaaguYJDpU= Subject key identifier: 52:7E:C3:0D:BE:D6:89:7E:05:5B:34:1C:79:47:28:E0:CA:B5:66:72 Authority key identifier: 71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC Certificate issuer: /CN=A9169F49/serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft Manifest number: 7C Signing time: Mon 03 Nov 2025 06:43:59 +0000 Manifest this update: Mon 03 Nov 2025 06:43:58 +0000 Manifest next update: Mon 10 Nov 2025 06:43:58 +0000 Files and hashes: 1: cXGYzRpGea2dRS7h2wLQASpDdOw.crl (hash: 3G6c4f0MnHrGu/G5rd6wdyyFC5hEx7CuE4BV+DinVEY=) 2: 2B42D1D8F9B611EFB3AB154BC4F9AE02.roa (hash: qRFt1VDcs2OHFjFWZc9CCxRhXeBrmwOFxAL6+b0Q2Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:43:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169F49, serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Validity Not Before: Nov 3 06:43:58 2025 GMT Not After : Nov 10 06:43:58 2025 GMT Subject: CN=69084f2f-7a0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6e:6d:c8:84:63:1f:66:b8:2c:1d:25:6b:e8: 0e:c3:1c:61:88:7b:ce:fd:71:95:db:5f:a1:50:aa: 8a:ff:59:fb:cd:ac:2c:33:38:2f:5e:ad:79:cf:b2: 7c:06:06:32:91:9e:03:8a:0d:d0:5b:c0:5b:b8:18: 59:61:1e:1f:4a:ab:ca:64:c3:3d:a2:6c:15:0a:4d: 8a:7a:ef:1c:83:90:f9:3c:a2:4e:c7:1c:49:e1:58: 32:61:f3:a9:e5:4d:3e:19:e9:23:8c:43:fe:c6:80: 6b:f3:e0:74:00:ab:70:9e:b7:3e:62:3e:8e:b0:dd: c1:c0:ed:70:2a:ec:32:23:59:1e:8c:1a:c6:2e:9c: 5c:54:d6:94:bf:d2:f6:9e:2b:21:4b:ea:56:2f:d5: bf:9e:7e:9a:1c:1c:e2:44:01:ba:a7:3d:82:0a:92: 92:4c:44:66:d9:fe:de:27:8e:ec:bc:c3:32:df:73: 70:7d:01:75:0d:ff:41:bc:f3:ff:3c:aa:f0:5c:0e: e0:cd:69:d4:1c:a7:cb:2f:f7:ce:11:14:eb:09:02: b7:89:9e:d5:4b:d8:9c:8c:50:2f:82:52:db:4c:a4: ef:87:03:20:42:e5:bb:e0:71:aa:8b:d9:3e:85:26: 5a:c0:db:18:c6:af:69:b3:9b:f1:ff:bc:3f:43:b2: 23:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:7E:C3:0D:BE:D6:89:7E:05:5B:34:1C:79:47:28:E0:CA:B5:66:72 X509v3 Authority Key Identifier: keyid:71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:6a:4e:f3:be:19:6b:21:0b:78:24:5b:12:22:41:63:75:ba: 8a:bd:99:37:eb:6a:45:c3:6c:49:c0:d8:cf:6f:8c:5e:d5:4b: c1:69:ac:ed:97:24:66:86:02:e6:95:d9:6b:18:6c:62:46:fe: fa:0a:64:cb:c1:b4:59:c9:41:99:69:ac:23:b0:c9:fb:35:03: 31:df:04:2d:ab:c8:da:a4:65:49:6a:45:1a:bc:1b:b9:52:22: a0:1a:18:43:c8:7d:fc:0f:93:75:e8:73:c5:60:7f:45:5a:ba: 2d:7a:2b:92:fa:f5:5d:b2:d4:5c:ba:c0:03:42:9e:3a:f2:39: 30:2c:14:1c:f7:15:51:ad:88:7e:93:a4:0d:fe:b6:8d:2a:f9: 8f:bb:d8:c2:6a:b6:23:7d:82:cb:a0:95:57:55:6f:1d:1a:f8: ab:ec:6b:ea:e6:3d:31:24:50:a6:df:a3:93:66:4c:2e:9b:b7: 8f:eb:5b:2f:8d:fd:7f:0a:c7:04:29:d0:62:7e:39:c3:1d:cd: 26:fb:af:65:5c:2d:f7:9a:c0:6a:77:b0:a1:cd:f5:91:42:af: d1:ad:72:05:6e:37:f9:bb:90:c6:7a:47:8d:82:f0:b4:97:47: 33:aa:36:e3:af:e6:c0:1f:d4:b0:48:27:eb:66:54:57:c0:73: 40:62:ba:58 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OUY0OTExMC8GA1UEBRMoNzE3MTk4Q0QxQTQ2NzlBRDlENDUyRUUxREIwMkQwMDEy QTQzNzRFQzAeFw0yNTExMDMwNjQzNThaFw0yNTExMTAwNjQzNThaMBgxFjAUBgNV BAMTDTY5MDg0ZjJmLTdhMGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKbm3IhGMfZrgsHSVr6A7DHGGIe879cZXbX6FQqor/WfvNrCwzOC9erXnPsnwG BjKRngOKDdBbwFu4GFlhHh9Kq8pkwz2ibBUKTYp67xyDkPk8ok7HHEnhWDJh86nl TT4Z6SOMQ/7GgGvz4HQAq3Cetz5iPo6w3cHA7XAq7DIjWR6MGsYunFxU1pS/0vae KyFL6lYv1b+efpocHOJEAbqnPYIKkpJMRGbZ/t4njuy8wzLfc3B9AXUN/0G88/88 qvBcDuDNadQcp8sv984RFOsJAreJntVL2JyMUC+CUttMpO+HAyBC5bvgcaqL2T6F JlrA2xjGr2mzm/H/vD9DsiOHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUn7DDb7W iX4FWzQceUco4Mq1ZnIwHwYDVR0jBBgwFoAUcXGYzRpGea2dRS7h2wLQASpDdOww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5RjQ5L0IyQzVGQjlBRjlC NTExRUZBNUQ3M0M0N0M0RjlBRTAyL2NYR1l6UnBHZWEyZFJTN2gyd0xRQVNwRGRP dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY1hHWXpScEdlYTJkUlM3aDJ3TFFBU3BEZE93LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5 RjQ5L0IyQzVGQjlBRjlCNTExRUZBNUQ3M0M0N0M0RjlBRTAyL2NYR1l6UnBHZWEy ZFJTN2gyd0xRQVNwRGRPdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMBqTvO+GWshC3gkWxIiQWN1uoq9mTfrakXDbEnA2M9vjF7VS8FprO2X JGaGAuaV2WsYbGJG/voKZMvBtFnJQZlprCOwyfs1AzHfBC2ryNqkZUlqRRq8G7lS IqAaGEPIffwPk3Xoc8Vgf0Vaui16K5L69V2y1Fy6wANCnjryOTAsFBz3FVGtiH6T pA3+to0q+Y+72MJqtiN9gsuglVdVbx0a+Kvsa+rmPTEkUKbfo5NmTC6bt4/rWy+N /X8KxwQp0GJ+OcMdzSb7r2VcLfeawGp3sKHN9ZFCr9GtcgVuN/m7kMZ6R42C8LSX RzOqNuOv5sAf1LBIJ+tmVFfAc0Biulg= -----END CERTIFICATE-----Generated at Tue Nov 4 01:06:08 2025 by rpki-client