$ rpki-client -vvf rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft File: 2z39hs6_6u06rxXeruaWUjR0aik.mft (raw, json) Hash identifier: a2vIZVaqE8hpuLxRdUR3tY5dL+6hCbk4JIhzh+NicxA= Subject key identifier: D7:83:63:C7:C5:D8:BB:B1:DD:AA:A9:5B:07:FC:B8:B6:11:94:08:E9 Authority key identifier: DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29 Certificate issuer: /CN=A9171BF0/serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29 Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft Manifest number: B4 Signing time: Mon 03 Nov 2025 06:02:46 +0000 Manifest this update: Mon 03 Nov 2025 06:02:46 +0000 Manifest next update: Mon 10 Nov 2025 06:02:46 +0000 Files and hashes: 1: 2z39hs6_6u06rxXeruaWUjR0aik.crl (hash: 5bZtoRxYPpI8dJSDCCkMU2yxF13AWzIOdmp6zORJ85c=) 2: 12004368A41611EFA0D7CD42C4F9AE02.roa (hash: 9YzGJkxen0bF7ZOSO15+u2xKU2H/RKyzN947mBYbnYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:02:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171BF0, serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29 Validity Not Before: Nov 3 06:02:46 2025 GMT Not After : Nov 10 06:02:46 2025 GMT Subject: CN=69084586-585b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:92:0f:af:d5:d9:45:c2:4e:62:3c:1b:46:4b: 3d:1e:00:dc:24:73:95:eb:0e:d0:9c:2c:0f:91:bc: a6:61:9c:25:62:12:75:e9:d9:18:d6:f1:a8:78:61: c9:1d:3c:d8:61:00:8d:05:32:cf:01:46:42:be:64: 47:cb:dd:13:b7:29:da:66:20:b1:b9:4b:5f:76:0d: 12:9f:bb:bd:d3:a0:ad:a8:0b:86:72:c2:fc:3d:81: 48:e6:0c:de:3e:97:bb:ce:7d:41:78:f6:c4:62:a8: dc:01:c4:25:10:0a:68:02:b7:12:8e:26:a3:3e:e4: 86:a3:e4:8f:d6:0c:89:a1:90:3e:c1:7d:cb:d5:60: fa:01:6a:23:f9:ec:ca:4e:21:b4:90:32:f2:59:e4: 7e:43:4b:53:d4:36:2c:12:6c:60:76:90:37:f5:53: da:68:74:21:76:65:98:02:b7:44:2c:a7:26:ae:01: 3f:fc:86:6e:41:b5:81:02:1d:ec:b7:30:06:20:ef: bb:da:fb:ab:07:7a:57:5a:3e:a9:f3:35:1a:5c:ba: 59:44:34:7e:d0:cf:40:59:44:96:63:d8:eb:1f:26: 15:74:a1:2f:e3:7a:c4:df:d1:08:12:90:76:20:04: 39:6a:bd:b4:0f:a2:b5:c0:d3:39:cf:50:82:f1:9b: 48:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:83:63:C7:C5:D8:BB:B1:DD:AA:A9:5B:07:FC:B8:B6:11:94:08:E9 X509v3 Authority Key Identifier: keyid:DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:e4:89:23:b7:6c:d1:e7:0b:4a:bb:af:43:ea:cb:7f:f8:27: da:5b:6f:51:5d:42:f7:db:f6:7a:84:14:73:10:e5:03:d9:f1: 7d:57:86:a9:7c:5e:ca:f1:3a:84:58:62:7f:18:ff:26:1d:71: 97:a7:d4:b0:f7:5e:30:51:cc:52:6f:f5:8f:8c:99:48:c2:75: 4c:b1:1c:98:dc:32:d3:f6:e4:34:3d:ab:0e:6d:de:c0:55:90: b3:78:67:37:00:ef:9f:10:2d:fa:bb:fa:c3:6e:b2:ba:2e:c4: 44:bd:3f:ce:da:b2:e4:28:7d:57:74:ce:3d:e0:fb:d6:9d:a7: 50:01:3f:4b:d8:44:01:12:43:22:6c:e0:5d:b1:ae:1e:f1:79: ec:5c:72:85:11:a2:68:c0:44:cb:8a:81:f3:d3:bf:df:ad:39: e5:8e:29:b0:99:7e:dc:d9:28:76:26:e4:e0:9d:6f:e2:b2:72: d3:0f:a5:a7:ab:3c:4e:1b:7b:28:6e:12:4e:41:13:c0:58:2c: 53:29:95:af:4d:62:f3:d3:b1:e2:72:3a:cf:8e:75:82:ec:76: d5:de:f6:41:2f:17:96:ea:de:f6:c5:ad:16:5d:d6:87:a7:53: 8b:27:3f:32:7a:70:2f:53:da:61:4d:0c:5e:5c:c5:6b:f9:42: fe:4e:61:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCRjAxMTAvBgNVBAUTKERCM0RGRDg2Q0VCRkVBRUQzQUFGMTVERUFFRTY5NjUy MzQ3NDZBMjkwHhcNMjUxMTAzMDYwMjQ2WhcNMjUxMTEwMDYwMjQ2WjAYMRYwFAYD VQQDEw02OTA4NDU4Ni01ODViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pIPr9XZRcJOYjwbRks9HgDcJHOV6w7QnCwPkbymYZwlYhJ16dkY1vGoeGHJ HTzYYQCNBTLPAUZCvmRHy90TtynaZiCxuUtfdg0Sn7u906CtqAuGcsL8PYFI5gze Ppe7zn1BePbEYqjcAcQlEApoArcSjiajPuSGo+SP1gyJoZA+wX3L1WD6AWoj+ezK TiG0kDLyWeR+Q0tT1DYsEmxgdpA39VPaaHQhdmWYArdELKcmrgE//IZuQbWBAh3s tzAGIO+72vurB3pXWj6p8zUaXLpZRDR+0M9AWUSWY9jrHyYVdKEv43rE39EIEpB2 IAQ5ar20D6K1wNM5z1CC8ZtIOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNeDY8fF 2Lux3aqpWwf8uLYRlAjpMB8GA1UdIwQYMBaAFNs9/YbOv+rtOq8V3q7mllI0dGop MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUJGMC9BNzhGMUIxMkE0 MTUxMUVGQTE0RkJEM0ZDNEY5QUUwMi8yejM5aHM2XzZ1MDZyeFhlcnVhV1VqUjBh aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6MzloczZfNnUwNnJ4WGVydWFXVWpSMGFpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUJGMC9BNzhGMUIxMkE0MTUxMUVGQTE0RkJEM0ZDNEY5QUUwMi8yejM5aHM2XzZ1 MDZyeFhlcnVhV1VqUjBhaWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJ5Ikjt2zR5wtKu69D6st/+CfaW29RXUL32/Z6hBRzEOUD2fF9V4ap fF7K8TqEWGJ/GP8mHXGXp9Sw914wUcxSb/WPjJlIwnVMsRyY3DLT9uQ0PasObd7A VZCzeGc3AO+fEC36u/rDbrK6LsREvT/O2rLkKH1XdM494PvWnadQAT9L2EQBEkMi bOBdsa4e8XnsXHKFEaJowETLioHz07/frTnljimwmX7c2Sh2JuTgnW/isnLTD6Wn qzxOG3sobhJOQRPAWCxTKZWvTWLz07HicjrPjnWC7HbV3vZBLxeW6t72xa0WXdaH p1OLJz8yenAvU9phTQxeXMVr+UL+TmFx -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:17 2025 by rpki-client