$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A47/97C5A0149DD611F0A4315E0AC4F9AE02/k-Wm1UXgDFaegN4yLrINV1d1BXU.mft File: k-Wm1UXgDFaegN4yLrINV1d1BXU.mft (raw, json) Hash identifier: Ciksb1J3LJwYkH0y6xPtsscghY0nPnQQFLDw3+jPv50= Subject key identifier: 31:96:D3:12:61:D9:D3:C2:F8:AA:86:0A:AF:C3:C2:B3:0A:3B:36:1D Authority key identifier: 93:E5:A6:D5:45:E0:0C:56:9E:80:DE:32:2E:B2:0D:57:57:75:05:75 Certificate issuer: /CN=A9171A47/serialNumber=93E5A6D545E00C569E80DE322EB20D5757750575 Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-Wm1UXgDFaegN4yLrINV1d1BXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A47/97C5A0149DD611F0A4315E0AC4F9AE02/k-Wm1UXgDFaegN4yLrINV1d1BXU.mft Manifest number: 1A Signing time: Mon 03 Nov 2025 07:55:16 +0000 Manifest this update: Mon 03 Nov 2025 07:55:16 +0000 Manifest next update: Mon 10 Nov 2025 07:55:16 +0000 Files and hashes: 1: k-Wm1UXgDFaegN4yLrINV1d1BXU.crl (hash: w31bdCksvwEDaQocrvB6Ilf4ttPLttHjk3PA65WFc6g=) 2: 1805E4389DE011F0B44FDA76C4F9AE02.roa (hash: BVg645b1ajGzj9xavjn4EeQ2fjsg53CBWQRexvbeM1s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A47/97C5A0149DD611F0A4315E0AC4F9AE02/k-Wm1UXgDFaegN4yLrINV1d1BXU.crl rsync://rpki.apnic.net/member_repository/A9171A47/97C5A0149DD611F0A4315E0AC4F9AE02/k-Wm1UXgDFaegN4yLrINV1d1BXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-Wm1UXgDFaegN4yLrINV1d1BXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:55:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A47, serialNumber=93E5A6D545E00C569E80DE322EB20D5757750575 Validity Not Before: Nov 3 07:55:16 2025 GMT Not After : Nov 10 07:55:16 2025 GMT Subject: CN=69085fe4-8954 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:cc:a0:84:37:d3:09:5a:7c:fe:c6:7e:35:4e: d1:a2:6f:da:b1:03:ba:2c:80:17:3b:51:e2:41:ae: 24:87:66:02:09:24:54:99:93:12:57:8f:c6:13:ad: 3c:b4:e1:c9:fb:93:a3:dc:79:32:a5:3e:a8:6b:63: 2d:66:6a:08:fd:05:c7:ad:42:d7:d8:5d:50:49:f8: 54:7d:c2:b1:74:fd:83:bd:95:a6:ae:15:fc:b4:91: 62:5a:10:35:73:e6:36:c6:d0:3e:b4:d9:ba:69:45: 6f:97:8a:fa:fd:01:72:08:78:59:d3:ec:f6:6f:78: c9:7e:11:b2:e4:95:da:26:ee:77:dc:83:29:7b:05: b2:c5:1e:d5:31:fe:e9:da:3f:d6:fa:b7:9f:9a:f0: 9e:47:90:bb:25:ac:72:84:d1:00:bc:1c:c4:2c:ab: fe:34:02:4c:6a:0c:55:8b:1b:d3:5d:16:f1:86:ba: 99:42:0d:e7:5a:d3:b9:6a:c3:2e:4d:a7:3e:d1:bb: 01:0b:ce:57:ad:ff:1f:02:fb:e9:9b:c6:f5:d4:06: 62:86:20:c1:55:59:56:f4:35:b8:73:6e:bd:c0:12: c5:ca:39:64:d9:58:e5:5e:03:33:a3:45:76:76:86: 54:f5:cb:a3:1b:df:9a:c0:87:c3:60:0c:04:a7:d9: f2:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:96:D3:12:61:D9:D3:C2:F8:AA:86:0A:AF:C3:C2:B3:0A:3B:36:1D X509v3 Authority Key Identifier: keyid:93:E5:A6:D5:45:E0:0C:56:9E:80:DE:32:2E:B2:0D:57:57:75:05:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A47/97C5A0149DD611F0A4315E0AC4F9AE02/k-Wm1UXgDFaegN4yLrINV1d1BXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-Wm1UXgDFaegN4yLrINV1d1BXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A47/97C5A0149DD611F0A4315E0AC4F9AE02/k-Wm1UXgDFaegN4yLrINV1d1BXU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:db:3b:19:09:95:43:4d:22:18:28:2d:d2:22:bd:b4:06:36: c1:b2:41:2f:b8:46:87:a2:5c:95:43:59:50:4f:fe:6c:fd:e8: 8b:a5:5f:86:10:29:45:4a:87:29:70:79:8e:04:ef:76:79:0c: 82:90:64:67:89:56:47:3d:4a:54:77:cd:2d:fc:a9:af:db:30: 2a:28:3e:d7:d6:79:9c:bc:1f:63:75:38:4f:c0:03:1e:5e:0d: ff:d3:c8:9c:39:7d:1a:be:92:9e:57:35:5a:20:76:5b:e0:4f: 52:f6:7c:9f:89:2d:93:40:b9:32:28:0d:ef:ac:7e:3f:be:42: bd:e6:65:18:be:64:6d:4c:1b:35:d4:9e:e0:f2:ff:a4:32:2d: 2b:92:ae:ba:0c:d1:4d:8f:14:29:75:ed:6f:05:db:d5:ff:34: 2e:93:f9:d0:8b:bc:1c:b8:e7:26:a9:9a:31:c4:a2:2f:18:c0: 75:b4:3b:c7:4e:51:55:3d:b5:96:7d:9a:88:07:fb:09:b5:50: 6b:a6:0b:13:ed:bc:e1:96:36:6e:16:d9:8e:23:3c:2d:ec:63: 50:84:2e:1d:27:a5:d2:f1:d1:01:5a:24:9e:f7:68:30:07:2a: 5e:f4:f4:7c:98:14:7c:e1:4a:3d:03:38:f6:84:ba:eb:4d:f8: 66:c3:44:ef -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MUE0NzExMC8GA1UEBRMoOTNFNUE2RDU0NUUwMEM1NjlFODBERTMyMkVCMjBENTc1 Nzc1MDU3NTAeFw0yNTExMDMwNzU1MTZaFw0yNTExMTAwNzU1MTZaMBgxFjAUBgNV BAMTDTY5MDg1ZmU0LTg5NTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUzKCEN9MJWnz+xn41TtGib9qxA7osgBc7UeJBriSHZgIJJFSZkxJXj8YTrTy0 4cn7k6PceTKlPqhrYy1magj9BcetQtfYXVBJ+FR9wrF0/YO9laauFfy0kWJaEDVz 5jbG0D602bppRW+Xivr9AXIIeFnT7PZveMl+EbLkldom7nfcgyl7BbLFHtUx/una P9b6t5+a8J5HkLslrHKE0QC8HMQsq/40AkxqDFWLG9NdFvGGuplCDeda07lqwy5N pz7RuwELzlet/x8C++mbxvXUBmKGIMFVWVb0Nbhzbr3AEsXKOWTZWOVeAzOjRXZ2 hlT1y6Mb35rAh8NgDASn2fKbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMZbTEmHZ 08L4qoYKr8PCswo7Nh0wHwYDVR0jBBgwFoAUk+Wm1UXgDFaegN4yLrINV1d1BXUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcxQTQ3Lzk3QzVBMDE0OURE NjExRjBBNDMxNUUwQUM0RjlBRTAyL2stV20xVVhnREZhZWdONHlMcklOVjFkMUJY VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvay1XbTFVWGdERmFlZ040eUxySU5WMWQxQlhVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcx QTQ3Lzk3QzVBMDE0OURENjExRjBBNDMxNUUwQUM0RjlBRTAyL2stV20xVVhnREZh ZWdONHlMcklOVjFkMUJYVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFrbOxkJlUNNIhgoLdIivbQGNsGyQS+4RoeiXJVDWVBP/mz96IulX4YQ KUVKhylweY4E73Z5DIKQZGeJVkc9SlR3zS38qa/bMCooPtfWeZy8H2N1OE/AAx5e Df/TyJw5fRq+kp5XNVogdlvgT1L2fJ+JLZNAuTIoDe+sfj++Qr3mZRi+ZG1MGzXU nuDy/6QyLSuSrroM0U2PFCl17W8F29X/NC6T+dCLvBy45yapmjHEoi8YwHW0O8dO UVU9tZZ9mogH+wm1UGumCxPtvOGWNm4W2Y4jPC3sY1CELh0npdLx0QFaJJ73aDAH Kl709HyYFHzhSj0DOPaEuutN+GbDRO8= -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:44 2025 by rpki-client