$ rpki-client -vvf rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft File: kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft (raw, json) Hash identifier: cvByx0UoqWYO7ojObjoOUzFl3XiJbaMnCW4B38+NWSk= Subject key identifier: C1:E0:23:A0:76:FA:0D:79:A8:88:F3:CA:9A:35:2E:DE:B6:E5:06:8C Authority key identifier: 91:0F:2F:41:40:8E:13:DA:ED:7C:21:DC:47:2D:C5:C5:8C:45:88:36 Certificate issuer: /CN=A917408F/serialNumber=910F2F41408E13DAED7C21DC472DC5C58C458836 Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft Manifest number: AC Signing time: Wed 05 Nov 2025 06:25:48 +0000 Manifest this update: Wed 05 Nov 2025 06:25:47 +0000 Manifest next update: Wed 12 Nov 2025 06:25:47 +0000 Files and hashes: 1: kQ8vQUCOE9rtfCHcRy3FxYxFiDY.crl (hash: nQCEUz2o7LNbJNUXD0TWyU1zUb4ZQJp8nJh0w6gsncE=) 2: 9CEF2622B76E11EF8FCC9767C4F9AE02.roa (hash: HSb6XjCDD/PrExNgC4kkLXSRksHnMNuj8kokihkx5ZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.crl rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:25:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917408F, serialNumber=910F2F41408E13DAED7C21DC472DC5C58C458836 Validity Not Before: Nov 5 06:25:47 2025 GMT Not After : Nov 12 06:25:47 2025 GMT Subject: CN=690aedeb-8b29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:b8:39:30:f5:bc:26:12:16:ac:22:76:9d:6c: e5:c9:c8:13:0d:2c:c8:af:39:54:20:63:50:00:6f: 79:11:54:19:08:bb:38:ce:4b:58:34:22:d1:7e:31: fb:10:7b:de:af:30:77:1e:05:12:d0:44:ec:81:0c: 02:0f:16:2e:64:80:cc:cd:fe:19:c0:2c:6b:33:83: f5:ba:f3:b7:75:8d:be:9e:87:49:ee:a3:1a:39:22: c8:39:ae:74:a0:f5:0d:30:6a:25:fc:e7:3c:ca:cf: 26:0f:b8:ca:ab:3a:da:9b:ea:65:58:93:6f:b1:84: b7:73:27:75:07:3d:1f:46:01:30:71:f8:22:e1:12: 20:56:87:6a:1a:58:ef:24:86:05:4e:ae:4a:43:09: 6e:1d:3f:e4:14:80:34:8a:ee:9a:9c:b3:5a:e0:d4: b7:a2:00:f0:75:a6:06:1d:a6:d4:15:f2:10:b8:b7: 69:4d:e3:e7:a1:c0:44:54:b4:90:dc:ea:d4:fa:07: 83:14:b8:6f:90:bd:45:1a:4c:a9:8b:f7:1b:5d:e4: 7d:06:82:51:f5:c5:a8:25:86:a0:0e:2d:45:c2:cb: e9:2c:5e:81:6e:ef:bf:5b:52:c9:d6:05:d0:e6:45: 94:86:76:aa:88:79:3c:92:bd:54:64:1a:64:43:1d: 03:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:E0:23:A0:76:FA:0D:79:A8:88:F3:CA:9A:35:2E:DE:B6:E5:06:8C X509v3 Authority Key Identifier: keyid:91:0F:2F:41:40:8E:13:DA:ED:7C:21:DC:47:2D:C5:C5:8C:45:88:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:15:8d:72:0c:6d:30:7b:bc:cf:65:d8:69:d6:83:07:c3:5a: 44:7b:c6:25:3b:42:99:0d:48:00:f4:0c:93:6d:67:41:39:d2: f8:c8:01:22:85:73:c6:de:8b:57:dd:06:9c:dc:38:0f:cc:2b: 17:94:2b:46:9a:47:ae:52:04:2f:41:d5:be:a1:f2:75:15:97: 9d:2f:55:6b:bf:4f:26:d3:37:2c:c5:66:41:bc:5f:bd:ad:de: 84:fe:99:ba:ee:5d:81:06:ba:be:c1:38:90:08:1a:95:61:72: d2:5c:c0:3d:1a:a7:27:4d:e7:da:b9:fe:0a:6e:17:60:53:a0: 50:18:3a:69:14:77:18:14:cf:86:31:1c:58:a5:e8:45:0a:d4: b0:41:8f:b0:96:ca:ac:2b:1d:8e:94:2c:db:ef:24:89:16:cb: bb:5c:ee:13:11:34:ad:45:f8:cd:d9:bb:b9:4d:19:1a:78:57: 50:94:96:65:7a:cd:65:24:04:24:9e:e2:60:7a:59:31:7b:7f: a4:30:17:32:62:8f:cc:04:f7:95:f7:9b:6e:6d:81:53:ec:f1: 3b:5d:ce:8e:7a:08:08:f3:90:51:71:a8:c5:09:e2:32:a5:3c: 33:01:7c:8d:06:c8:27:60:83:dd:32:f4:41:d5:8e:d0:50:95: b4:d3:c7:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQwOEYxMTAvBgNVBAUTKDkxMEYyRjQxNDA4RTEzREFFRDdDMjFEQzQ3MkRDNUM1 OEM0NTg4MzYwHhcNMjUxMTA1MDYyNTQ3WhcNMjUxMTEyMDYyNTQ3WjAYMRYwFAYD VQQDEw02OTBhZWRlYi04YjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7bg5MPW8JhIWrCJ2nWzlycgTDSzIrzlUIGNQAG95EVQZCLs4zktYNCLRfjH7 EHverzB3HgUS0ETsgQwCDxYuZIDMzf4ZwCxrM4P1uvO3dY2+nodJ7qMaOSLIOa50 oPUNMGol/Oc8ys8mD7jKqzram+plWJNvsYS3cyd1Bz0fRgEwcfgi4RIgVodqGljv JIYFTq5KQwluHT/kFIA0iu6anLNa4NS3ogDwdaYGHabUFfIQuLdpTePnocBEVLSQ 3OrU+geDFLhvkL1FGkypi/cbXeR9BoJR9cWoJYagDi1FwsvpLF6Bbu+/W1LJ1gXQ 5kWUhnaqiHk8kr1UZBpkQx0D3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMHgI6B2 +g15qIjzypo1Lt625QaMMB8GA1UdIwQYMBaAFJEPL0FAjhPa7Xwh3EctxcWMRYg2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDA4Ri8xNkNEOTg1OEI3 NkUxMUVGQUNGMEY4NjVDNEY5QUUwMi9rUTh2UVVDT0U5cnRmQ0hjUnkzRnhZeEZp RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tROHZRVUNPRTlydGZDSGNSeTNGeFl4RmlEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDA4Ri8xNkNEOTg1OEI3NkUxMUVGQUNGMEY4NjVDNEY5QUUwMi9rUTh2UVVDT0U5 cnRmQ0hjUnkzRnhZeEZpRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJFY1yDG0we7zPZdhp1oMHw1pEe8YlO0KZDUgA9AyTbWdBOdL4yAEi hXPG3otX3Qac3DgPzCsXlCtGmkeuUgQvQdW+ofJ1FZedL1Vrv08m0zcsxWZBvF+9 rd6E/pm67l2BBrq+wTiQCBqVYXLSXMA9GqcnTefauf4KbhdgU6BQGDppFHcYFM+G MRxYpehFCtSwQY+wlsqsKx2OlCzb7ySJFsu7XO4TETStRfjN2bu5TRkaeFdQlJZl es1lJAQknuJgelkxe3+kMBcyYo/MBPeV95tubYFT7PE7Xc6OeggI85BRcajFCeIy pTwzAXyNBsgnYIPdMvRB1Y7QUJW008e7 -----END CERTIFICATE-----Generated at Wed Nov 5 13:35:22 2025 by rpki-client