$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft File: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft (raw, json) Hash identifier: DB1tgCXTHEFlT8SUWWsFWZVYBhvwR9nVv3mMgA4Ih5k= Subject key identifier: 31:CA:5A:1E:0C:45:C2:77:BB:44:8B:E1:0A:64:88:77:3E:BD:0F:86 Authority key identifier: 33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 Certificate issuer: /CN=A9171A59/serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Certificate serial: 04FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft Manifest number: 04F7 Signing time: Mon 27 Oct 2025 00:43:07 +0000 Manifest this update: Mon 27 Oct 2025 00:43:06 +0000 Manifest next update: Mon 03 Nov 2025 00:43:06 +0000 Files and hashes: 1: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl (hash: QeUEvhIPkFEFk9BGYzbywPwHVaX0H0vu33soEaD7fl0=) 2: ABD9CB4630C711ECA2491515C4F9AE02.roa (hash: CoT7676o1FhYn/hTok256b21HFRTMynmtKsMLIXyZyA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 00:43:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1276 (0x4fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A59, serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Validity Not Before: Oct 27 00:43:06 2025 GMT Not After : Nov 3 00:43:06 2025 GMT Subject: CN=68fec01b-399f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:39:ec:6a:51:04:49:e8:ae:f4:aa:81:84:12: d8:08:ff:c9:6c:e8:69:3e:64:f4:2a:75:a8:b3:4e: f3:30:2b:37:45:85:41:8b:46:10:a5:d9:a3:3f:2d: c0:ef:a6:01:75:ef:4b:80:8e:1e:14:fd:a0:82:e7: 5f:da:93:59:fa:de:42:25:a8:8f:c3:12:30:d2:6a: f6:d1:cc:3d:75:e9:01:5a:75:1e:2d:81:a8:9f:2e: 99:9a:7e:eb:b5:59:e0:ec:75:b2:a8:55:0c:37:be: d0:04:7b:aa:9b:f5:89:e8:45:b0:3b:b7:dd:21:02: 47:cf:a7:96:fd:2f:45:95:7b:1a:f5:51:02:60:47: 68:74:b1:99:ce:76:aa:da:6e:a2:ce:5c:cb:02:95: 27:fe:c2:47:c9:1b:df:5b:d9:52:19:31:1d:98:8c: c8:59:40:6b:24:da:6e:5c:af:0d:4b:ad:25:0c:4c: 1a:ba:54:c6:a5:2e:b2:8e:28:6f:35:21:f5:6e:bb: f5:6d:26:e0:ba:ec:8a:12:11:45:14:68:94:9b:09: 02:92:bb:e4:3b:42:19:4c:93:0a:75:3d:ee:78:bc: 83:5a:4a:9a:25:b9:92:91:33:64:a4:f2:d5:8a:d1: dc:8f:72:c2:77:32:c2:59:b9:66:94:da:14:f8:f0: 0d:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:CA:5A:1E:0C:45:C2:77:BB:44:8B:E1:0A:64:88:77:3E:BD:0F:86 X509v3 Authority Key Identifier: keyid:33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:5c:fb:f2:71:1f:75:63:2b:a5:a7:0d:f2:85:ce:ab:42:30: dd:f9:dd:6a:0f:ce:5c:1e:97:c2:56:a2:93:e9:22:21:4e:e4: ae:1b:28:6b:ed:e5:6b:eb:f5:94:76:2c:a6:41:63:89:3f:ff: df:75:35:24:41:02:ea:89:a8:68:0b:72:0d:58:fe:cf:21:80: 8d:5a:f8:4b:ff:ec:d0:6a:03:db:f5:71:c0:45:1c:40:d2:49: 1f:b9:59:2a:4f:cb:d6:a1:a3:bd:9c:13:0e:d8:e6:1d:09:47: e5:4e:e1:d6:9a:d7:c8:2f:09:f3:ce:70:46:4c:73:e5:17:48: a1:68:a3:cf:a3:dd:9d:33:7d:43:59:6e:5e:bb:b3:b3:bc:f4: 18:88:9a:a6:0b:f9:10:a8:fc:ae:0a:66:d2:f4:c2:e7:e5:f7: 6f:03:95:c1:30:07:8c:a4:90:57:a0:0b:aa:e8:5e:a2:b0:d8: 32:ee:10:f0:b4:1b:32:08:d0:23:ab:11:cb:de:86:2c:e3:0e: 33:ec:1a:e7:a5:0d:4a:17:a6:94:ed:5a:24:27:d9:4f:f2:fe: f5:cc:87:89:e4:98:dd:66:9d:c2:11:2e:71:61:74:82:f4:e2: 82:ba:cb:50:2c:5a:ff:63:60:8c:56:5a:00:1c:8b:f9:4d:29: 5b:1a:32:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBNTkxMTAvBgNVBAUTKDMzM0VDNTAzMDE0RDA2NzRBRjE2NzQxOTk0MTBGOUIw OTFCOEZCOTQwHhcNMjUxMDI3MDA0MzA2WhcNMjUxMTAzMDA0MzA2WjAYMRYwFAYD VQQDEw02OGZlYzAxYi0zOTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwznsalEESeiu9KqBhBLYCP/JbOhpPmT0KnWos07zMCs3RYVBi0YQpdmjPy3A 76YBde9LgI4eFP2ggudf2pNZ+t5CJaiPwxIw0mr20cw9dekBWnUeLYGony6Zmn7r tVng7HWyqFUMN77QBHuqm/WJ6EWwO7fdIQJHz6eW/S9FlXsa9VECYEdodLGZznaq 2m6izlzLApUn/sJHyRvfW9lSGTEdmIzIWUBrJNpuXK8NS60lDEwaulTGpS6yjihv NSH1brv1bSbguuyKEhFFFGiUmwkCkrvkO0IZTJMKdT3ueLyDWkqaJbmSkTNkpPLV itHcj3LCdzLCWblmlNoU+PANZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDHKWh4M RcJ3u0SL4QpkiHc+vQ+GMB8GA1UdIwQYMBaAFDM+xQMBTQZ0rxZ0GZQQ+bCRuPuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUE1OS84QUI5MzNFQTMw QzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJuU3ZGblFabEJENXNKRzQt NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL016N0ZBd0ZOQm5TdkZuUVpsQkQ1c0pHNC01US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUE1OS84QUI5MzNFQTMwQzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJu U3ZGblFabEJENXNKRzQtNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPXPvycR91Yyulpw3yhc6rQjDd+d1qD85cHpfCVqKT6SIhTuSuGyhr 7eVr6/WUdiymQWOJP//fdTUkQQLqiahoC3INWP7PIYCNWvhL/+zQagPb9XHARRxA 0kkfuVkqT8vWoaO9nBMO2OYdCUflTuHWmtfILwnzznBGTHPlF0ihaKPPo92dM31D WW5eu7OzvPQYiJqmC/kQqPyuCmbS9MLn5fdvA5XBMAeMpJBXoAuq6F6isNgy7hDw tBsyCNAjqxHL3oYs4w4z7BrnpQ1KF6aU7VokJ9lP8v71zIeJ5JjdZp3CES5xYXSC 9OKCustQLFr/Y2CMVloAHIv5TSlbGjI7 -----END CERTIFICATE-----Generated at Tue Oct 28 12:59:47 2025 by rpki-client