$ rpki-client -vvf rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft File: O0irhhZS-u7X4dElg_Frt_uyiRM.mft (raw, json) Hash identifier: Vj2vlLq3RhSWVthbempuHK9Tgs8I5nv9rfMzA8z7jd8= Subject key identifier: 3A:C9:CD:3A:8F:3C:AE:97:7E:CF:8E:C0:6E:EE:3E:A0:52:3A:12:CA Authority key identifier: 3B:48:AB:86:16:52:FA:EE:D7:E1:D1:25:83:F1:6B:B7:FB:B2:89:13 Certificate issuer: /CN=A9176909/serialNumber=3B48AB861652FAEED7E1D12583F16BB7FBB28913 Certificate serial: 025E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft Manifest number: 024D Signing time: Wed 05 Nov 2025 01:55:49 +0000 Manifest this update: Wed 05 Nov 2025 01:55:49 +0000 Manifest next update: Wed 12 Nov 2025 01:55:49 +0000 Files and hashes: 1: O0irhhZS-u7X4dElg_Frt_uyiRM.crl (hash: QAbbTTmi7AQMbmZfHNa+D8+MiuB4djpcFxET1e/Bbmw=) 2: EDE89884DB1711EF8929832EC4F9AE02.roa (hash: tqa1Ixra7BMwCWoNM3olfzFpbEkXEWmJXa4eDjgnFBc=) 3: 8FFF9C5AAF1A11EFAF122A6AC4F9AE02.roa (hash: eVGJpjXfZuqnT2xF5gSdYG+4NURN3G12aXx32PS/6hU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.crl rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:55:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 606 (0x25e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176909, serialNumber=3B48AB861652FAEED7E1D12583F16BB7FBB28913 Validity Not Before: Nov 5 01:55:49 2025 GMT Not After : Nov 12 01:55:49 2025 GMT Subject: CN=690aaea5-ad46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:79:a4:69:93:6c:a1:0b:cd:4a:d0:42:1b:1e: 17:65:dc:02:d1:f1:d8:6e:35:f7:94:f0:2a:4a:01: 4c:b3:a6:06:79:5b:9c:22:6e:a3:da:54:63:ab:36: 22:c9:d3:0b:d7:99:c7:4e:32:de:b3:9a:54:64:6e: 30:54:02:d2:fb:08:c7:25:be:17:8d:9a:87:41:57: 28:b9:96:48:e0:9b:14:8f:d6:99:a0:c8:81:4f:eb: cc:e8:11:32:61:89:38:b2:b0:47:57:9a:29:ec:32: 2b:a7:9c:73:4e:c9:e7:64:27:28:25:68:d1:51:a1: 07:78:91:20:a0:d8:21:15:84:cb:b1:ba:f2:5a:03: 28:85:96:f4:28:7f:41:02:45:90:bb:fc:0b:7b:19: 7e:88:b0:2c:24:04:25:72:c4:09:39:1a:f4:d5:c6: 8e:08:e9:a4:25:d8:b5:cd:ff:74:c2:90:f2:0b:ab: 10:62:14:e4:56:48:ba:54:96:f9:f1:c5:0d:77:a0: 4f:8a:a4:e6:9b:45:fd:bf:e9:fa:18:41:65:a0:45: f4:5c:17:19:3c:22:c3:10:ec:1b:f4:c2:64:e6:03: ff:09:cd:a7:0e:a8:37:7c:09:12:0b:9b:c5:ce:88: 55:e8:a6:9f:88:fc:99:96:12:33:4d:b7:4b:17:f1: 57:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:C9:CD:3A:8F:3C:AE:97:7E:CF:8E:C0:6E:EE:3E:A0:52:3A:12:CA X509v3 Authority Key Identifier: keyid:3B:48:AB:86:16:52:FA:EE:D7:E1:D1:25:83:F1:6B:B7:FB:B2:89:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:b2:75:27:10:1f:37:b1:cc:77:68:04:35:e6:a8:e7:71:a6: 3a:a8:47:73:c1:8d:c3:78:79:f6:a9:48:51:bc:10:55:02:c0: 55:9d:34:4a:04:2b:56:75:6f:7c:09:9c:5f:64:d5:18:dd:c3: cb:20:7e:13:79:88:e1:2d:94:24:7d:4b:08:74:08:90:40:f3: c8:8d:d4:b3:63:71:49:4a:f9:06:cb:6e:77:de:7c:cb:99:1b: 8a:80:ee:15:c4:40:4a:db:ae:28:dc:de:45:e6:5f:e6:c0:b3: f4:ec:6a:fc:90:60:71:b3:f3:44:20:5a:1f:85:29:d6:7d:89: b9:17:6f:68:1d:b6:74:56:f5:e5:34:62:52:4e:ff:8d:b9:f4: 22:86:6f:7a:e6:52:6e:4e:eb:58:46:bb:0f:4d:58:cf:81:30: a4:d8:e3:84:48:e1:11:9b:ff:d6:37:96:2b:28:11:52:f1:8a: e3:9d:05:d1:14:27:53:8a:45:d4:46:82:c4:aa:25:59:d9:73: 61:64:9f:9a:68:2f:18:8f:12:1c:3c:11:73:33:c0:d5:a7:84: e2:30:c3:b6:23:6e:eb:33:9e:e3:5a:95:f9:e6:2a:ca:7b:6b: 87:70:db:1a:cc:a7:ea:e6:74:d1:9b:b9:98:25:b0:73:2a:87: f5:e7:e6:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY5MDkxMTAvBgNVBAUTKDNCNDhBQjg2MTY1MkZBRUVEN0UxRDEyNTgzRjE2QkI3 RkJCMjg5MTMwHhcNMjUxMTA1MDE1NTQ5WhcNMjUxMTEyMDE1NTQ5WjAYMRYwFAYD VQQDEw02OTBhYWVhNS1hZDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXmkaZNsoQvNStBCGx4XZdwC0fHYbjX3lPAqSgFMs6YGeVucIm6j2lRjqzYi ydML15nHTjLes5pUZG4wVALS+wjHJb4XjZqHQVcouZZI4JsUj9aZoMiBT+vM6BEy YYk4srBHV5op7DIrp5xzTsnnZCcoJWjRUaEHeJEgoNghFYTLsbryWgMohZb0KH9B AkWQu/wLexl+iLAsJAQlcsQJORr01caOCOmkJdi1zf90wpDyC6sQYhTkVki6VJb5 8cUNd6BPiqTmm0X9v+n6GEFloEX0XBcZPCLDEOwb9MJk5gP/Cc2nDqg3fAkSC5vF zohV6KafiPyZlhIzTbdLF/FXJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDrJzTqP PK6Xfs+OwG7uPqBSOhLKMB8GA1UdIwQYMBaAFDtIq4YWUvru1+HRJYPxa7f7sokT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjkwOS85QUJBQ0FDODRE Q0IxMUVEODI5NjFCMzZDNEY5QUUwMi9PMGlyaGhaUy11N1g0ZEVsZ19GcnRfdXlp Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08waXJoaFpTLXU3WDRkRWxnX0ZydF91eWlSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjkwOS85QUJBQ0FDODREQ0IxMUVEODI5NjFCMzZDNEY5QUUwMi9PMGlyaGhaUy11 N1g0ZEVsZ19GcnRfdXlpUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOsnUnEB83scx3aAQ15qjncaY6qEdzwY3DeHn2qUhRvBBVAsBVnTRK BCtWdW98CZxfZNUY3cPLIH4TeYjhLZQkfUsIdAiQQPPIjdSzY3FJSvkGy2533nzL mRuKgO4VxEBK264o3N5F5l/mwLP07Gr8kGBxs/NEIFofhSnWfYm5F29oHbZ0VvXl NGJSTv+NufQihm965lJuTutYRrsPTVjPgTCk2OOESOERm//WN5YrKBFS8YrjnQXR FCdTikXURoLEqiVZ2XNhZJ+aaC8YjxIcPBFzM8DVp4TiMMO2I27rM57jWpX55irK e2uHcNsazKfq5nTRm7mYJbBzKof15+ZF -----END CERTIFICATE-----Generated at Wed Nov 5 07:55:15 2025 by rpki-client