$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft File: 1AwbOf4FNm7Ysj4IgLaet198kOI.mft (raw, json) Hash identifier: hDy3PT9vku9ETj81ixOuhlVmYG8lwUqhem2Rh0WbSf4= Subject key identifier: 46:13:E3:FB:CF:56:B6:34:84:68:56:6F:10:82:B5:2E:DD:F4:57:4D Authority key identifier: D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 Certificate issuer: /CN=A9171A26/serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Certificate serial: 0B50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft Manifest number: 0B48 Signing time: Sun 02 Nov 2025 19:11:29 +0000 Manifest this update: Sun 02 Nov 2025 19:11:28 +0000 Manifest next update: Sun 09 Nov 2025 19:11:28 +0000 Files and hashes: 1: 1AwbOf4FNm7Ysj4IgLaet198kOI.crl (hash: dTV7zayI4o2xNdfWm0HGHecFPyJRGGjrRi8QAt5Z4O8=) 2: 5C9BC9D045C311EA9DE6F237C4F9AE02.roa (hash: MFAkJWqLTCFjc2AZoDqXIN5GFKdjipOlXptUILZsE5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2896 (0xb50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A26, serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Validity Not Before: Nov 2 19:11:28 2025 GMT Not After : Nov 9 19:11:28 2025 GMT Subject: CN=6907ace1-8c7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:90:7a:6d:68:5b:c5:a1:c1:d5:6b:f3:7a:af: dd:17:0c:2b:e9:07:0c:ee:ed:d3:ec:b7:58:07:07: 83:cd:fa:40:b4:7a:f1:39:f1:17:c2:cb:30:35:04: 68:78:28:ce:f9:32:61:f9:64:bb:f3:6a:2d:de:12: fa:e8:aa:e4:df:96:d7:ea:6f:bd:40:58:6c:c9:a5: 45:f9:78:74:34:e9:b5:55:d7:78:3f:e7:f2:78:7a: 32:58:3e:5e:d9:e3:48:a3:fb:13:5d:11:f2:a7:2f: c2:ff:b7:18:94:42:11:50:99:39:f5:51:e8:94:0c: a5:f0:e2:b7:54:a6:6a:81:40:b6:31:6b:e9:76:84: fc:8f:ec:85:f5:d9:9f:b8:34:48:b2:26:0a:ce:51: 43:59:a9:22:90:1f:f1:37:bd:46:55:a2:24:99:45: 9b:fb:88:cf:75:0b:ce:95:8e:af:fb:6d:28:b3:34: 77:72:61:a7:51:4a:c8:bf:f4:22:6d:e7:e0:b8:df: 2d:d4:c4:4b:e6:1c:fb:1d:37:2b:57:f8:fd:17:40: da:df:42:45:8f:65:41:3e:0d:02:46:27:ef:f1:68: e2:80:e4:69:ad:38:6c:02:7b:0d:f0:9e:8b:13:01: 8f:fc:c4:c1:14:5c:9c:c0:82:95:80:4f:39:40:45: 43:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:13:E3:FB:CF:56:B6:34:84:68:56:6F:10:82:B5:2E:DD:F4:57:4D X509v3 Authority Key Identifier: keyid:D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:f2:25:97:cb:06:38:24:3a:6a:7c:c7:8f:5b:74:4f:18:19: d6:46:25:07:40:68:87:44:64:d3:f5:ca:02:8e:38:15:6b:bc: 6f:77:9f:e6:2b:94:6e:0e:af:ff:65:6f:f9:f9:65:bb:61:93: 52:8c:a7:6e:7f:40:c1:91:ce:6d:64:79:95:41:9d:d9:23:39: 9b:ae:c5:9d:25:c7:c2:8f:4a:2a:5f:3d:e3:0d:f2:44:d9:56: 2d:a6:8c:ee:3a:1b:1b:8e:ff:2f:dd:6e:b3:b6:62:56:c3:1b: e5:8f:61:91:ec:45:61:7d:a6:57:19:4a:87:6b:c4:d7:74:d5: ac:31:d7:4b:df:57:c8:27:65:f5:17:96:26:8f:35:55:a8:73: f5:dc:77:8d:b2:a6:c3:11:c4:11:45:44:60:d5:df:0c:22:5d: 6c:d6:9b:8a:6f:d6:60:d7:90:09:a1:59:ce:49:61:ab:e5:0b: 0e:9a:2c:46:35:38:24:a7:bf:28:0b:70:39:97:2a:fc:48:a2: fa:fd:e5:c0:68:eb:9f:64:7e:65:e4:79:f8:99:d0:9f:40:f7: 39:5b:b3:b9:9a:0a:9b:ad:99:d9:0a:15:1b:72:d3:65:f9:3f: 27:ee:07:a5:3b:08:4f:3f:e4:b0:69:32:7d:89:b6:6b:c4:cc: 33:a8:4d:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBMjYxMTAvBgNVBAUTKEQ0MEMxQjM5RkUwNTM2NkVEOEIyM0UwODgwQjY5RUI3 NUY3QzkwRTIwHhcNMjUxMTAyMTkxMTI4WhcNMjUxMTA5MTkxMTI4WjAYMRYwFAYD VQQDEw02OTA3YWNlMS04YzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJB6bWhbxaHB1Wvzeq/dFwwr6QcM7u3T7LdYBweDzfpAtHrxOfEXwsswNQRo eCjO+TJh+WS782ot3hL66Krk35bX6m+9QFhsyaVF+Xh0NOm1Vdd4P+fyeHoyWD5e 2eNIo/sTXRHypy/C/7cYlEIRUJk59VHolAyl8OK3VKZqgUC2MWvpdoT8j+yF9dmf uDRIsiYKzlFDWakikB/xN71GVaIkmUWb+4jPdQvOlY6v+20oszR3cmGnUUrIv/Qi befguN8t1MRL5hz7HTcrV/j9F0Da30JFj2VBPg0CRifv8WjigORprThsAnsN8J6L EwGP/MTBFFycwIKVgE85QEVDlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYT4/vP VrY0hGhWbxCCtS7d9FdNMB8GA1UdIwQYMBaAFNQMGzn+BTZu2LI+CIC2nrdffJDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUEyNi9CRTUzMTJBMjQ1 QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5tN1lzajRJZ0xhZXQxOThr T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBd2JPZjRGTm03WXNqNElnTGFldDE5OGtPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUEyNi9CRTUzMTJBMjQ1QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5t N1lzajRJZ0xhZXQxOThrT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCH8iWXywY4JDpqfMePW3RPGBnWRiUHQGiHRGTT9coCjjgVa7xvd5/m K5RuDq//ZW/5+WW7YZNSjKduf0DBkc5tZHmVQZ3ZIzmbrsWdJcfCj0oqXz3jDfJE 2VYtpozuOhsbjv8v3W6ztmJWwxvlj2GR7EVhfaZXGUqHa8TXdNWsMddL31fIJ2X1 F5YmjzVVqHP13HeNsqbDEcQRRURg1d8MIl1s1puKb9Zg15AJoVnOSWGr5QsOmixG NTgkp78oC3A5lyr8SKL6/eXAaOufZH5l5Hn4mdCfQPc5W7O5mgqbrZnZChUbctNl +T8n7gelOwhPP+SwaTJ9ibZrxMwzqE12 -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:27 2025 by rpki-client