$ rpki-client -vvf rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.mft File: mRs2LGa5oYApqN1CgVXZfHbgEgk.mft (raw, json) Hash identifier: CTC+q7TIwgpoS02WdR5uGnztgUyYfu6EI2ZVJyXhLVA= Subject key identifier: 33:F9:40:77:29:CD:C5:3C:54:B0:EC:09:2E:70:20:EC:20:21:E9:EC Authority key identifier: 99:1B:36:2C:66:B9:A1:80:29:A8:DD:42:81:55:D9:7C:76:E0:12:09 Certificate issuer: /CN=A9178D2A/serialNumber=991B362C66B9A18029A8DD428155D97C76E01209 Certificate serial: 0573 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs2LGa5oYApqN1CgVXZfHbgEgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.mft Manifest number: 056E Signing time: Tue 04 Nov 2025 23:25:03 +0000 Manifest this update: Tue 04 Nov 2025 23:25:03 +0000 Manifest next update: Tue 11 Nov 2025 23:25:03 +0000 Files and hashes: 1: mRs2LGa5oYApqN1CgVXZfHbgEgk.crl (hash: 3H4q8JEEqbHInVu2x0PFGQ7jvIG+apgzbXVWz2psSn8=) 2: DB9C041801B311ECBA0E715CC4F9AE02.roa (hash: POPDOMnD2vV8xWQMiufmv3X0702RYs86sixhHrnG1/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.crl rsync://rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs2LGa5oYApqN1CgVXZfHbgEgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:25:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1395 (0x573) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178D2A, serialNumber=991B362C66B9A18029A8DD428155D97C76E01209 Validity Not Before: Nov 4 23:25:03 2025 GMT Not After : Nov 11 23:25:03 2025 GMT Subject: CN=690a8b4f-55dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:bb:84:bf:36:55:4c:35:f1:a2:4f:23:9b:e5: e0:5f:bc:73:64:e9:b3:6b:e4:21:44:59:22:91:31: 55:61:a0:c7:ad:03:3d:5d:e4:14:d5:9e:17:f3:af: 19:47:20:b2:78:06:8d:28:e2:91:2c:96:78:44:3a: fa:d9:82:08:93:90:92:94:47:7a:b9:e1:c9:32:04: db:42:92:8c:24:a4:52:a2:b1:36:21:ba:24:db:9a: 94:76:24:1a:d5:43:cb:fe:7b:fb:52:5c:62:49:58: 63:f1:d0:4b:b0:9a:c7:03:51:8e:72:92:bc:26:ad: 62:c1:67:e5:94:c3:fe:07:3e:7d:53:d5:2d:0c:f2: 5c:b6:4b:f8:18:da:dd:f1:d1:93:56:2b:c1:87:26: 73:ae:e1:60:9e:8e:9b:1c:db:b0:c3:ab:7f:7d:07: 5d:ba:e7:66:44:b7:dd:80:27:c1:fa:e4:77:c8:70: d8:ad:17:7e:7a:c4:da:75:cc:b8:5f:31:ef:41:3f: ac:77:a6:92:38:26:14:5e:97:27:d6:fe:08:bc:9c: 78:2e:9f:b1:15:b5:50:69:1a:e3:25:9f:41:27:4b: 5a:89:25:26:99:ec:59:69:01:e1:c3:0e:4d:91:4e: 67:5e:9e:2a:e0:1a:ee:06:89:1a:a1:19:c2:6c:2b: a0:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:F9:40:77:29:CD:C5:3C:54:B0:EC:09:2E:70:20:EC:20:21:E9:EC X509v3 Authority Key Identifier: keyid:99:1B:36:2C:66:B9:A1:80:29:A8:DD:42:81:55:D9:7C:76:E0:12:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs2LGa5oYApqN1CgVXZfHbgEgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:a6:90:4a:bd:1e:38:c0:e4:30:6e:f4:dd:c3:d4:52:17:c3: 9d:3f:77:4d:7d:1e:52:5a:5d:60:e3:ee:bd:ce:2c:5f:fa:b2: a4:21:f2:90:87:8a:70:d6:5c:c8:a1:73:f5:0b:28:05:89:88: a8:df:41:ab:82:96:b3:99:c2:d3:0e:c7:a8:4d:71:86:45:25: 95:41:2b:f7:6b:d4:a5:8a:0b:ef:7a:00:a8:87:18:24:e8:56: 94:b1:a1:8d:2d:a4:71:65:3f:3d:d5:fc:1f:43:9a:35:13:75: 9d:0a:4d:7d:18:21:09:cd:1b:be:52:d5:85:c0:d3:99:79:bc: 65:4f:a0:b1:cc:3e:10:bf:89:3a:51:70:ac:36:ed:ad:ff:3f: b5:ad:fe:49:f3:9f:70:f0:69:c9:b3:e0:e2:7c:d9:82:a7:f2: e1:e7:c8:9d:6c:90:c2:f1:dd:6e:22:ea:f7:83:52:55:51:3a: 04:e5:82:ed:cb:20:c8:22:0d:d9:4f:39:35:eb:aa:f2:6a:e1: 81:0b:11:a6:a9:63:5c:6a:5b:fc:19:3d:66:c5:d2:f5:73:54: ac:5f:e5:ba:54:f7:60:d4:5b:e8:04:4e:bd:a6:d1:0c:20:ff: 8a:e7:89:ec:be:bc:8d:47:55:cb:94:05:69:2e:62:eb:9c:ee: f2:7f:54:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhEMkExMTAvBgNVBAUTKDk5MUIzNjJDNjZCOUExODAyOUE4REQ0MjgxNTVEOTdD NzZFMDEyMDkwHhcNMjUxMTA0MjMyNTAzWhcNMjUxMTExMjMyNTAzWjAYMRYwFAYD VQQDEw02OTBhOGI0Zi01NWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyruEvzZVTDXxok8jm+XgX7xzZOmza+QhRFkikTFVYaDHrQM9XeQU1Z4X868Z RyCyeAaNKOKRLJZ4RDr62YIIk5CSlEd6ueHJMgTbQpKMJKRSorE2Ibok25qUdiQa 1UPL/nv7UlxiSVhj8dBLsJrHA1GOcpK8Jq1iwWfllMP+Bz59U9UtDPJctkv4GNrd 8dGTVivBhyZzruFgno6bHNuww6t/fQdduudmRLfdgCfB+uR3yHDYrRd+esTadcy4 XzHvQT+sd6aSOCYUXpcn1v4IvJx4Lp+xFbVQaRrjJZ9BJ0taiSUmmexZaQHhww5N kU5nXp4q4BruBokaoRnCbCugJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDP5QHcp zcU8VLDsCS5wIOwgIensMB8GA1UdIwQYMBaAFJkbNixmuaGAKajdQoFV2Xx24BIJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEQyQS8yRDJGODI2NjAx QjIxMUVDQTU3RUY1NUJDNEY5QUUwMi9tUnMyTEdhNW9ZQXBxTjFDZ1ZYWmZIYmdF Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21SczJMR2E1b1lBcHFOMUNnVlhaZkhiZ0Vnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEQyQS8yRDJGODI2NjAxQjIxMUVDQTU3RUY1NUJDNEY5QUUwMi9tUnMyTEdhNW9Z QXBxTjFDZ1ZYWmZIYmdFZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6ppBKvR44wOQwbvTdw9RSF8OdP3dNfR5SWl1g4+69zixf+rKkIfKQ h4pw1lzIoXP1CygFiYio30GrgpazmcLTDseoTXGGRSWVQSv3a9SligvvegCohxgk 6FaUsaGNLaRxZT891fwfQ5o1E3WdCk19GCEJzRu+UtWFwNOZebxlT6CxzD4Qv4k6 UXCsNu2t/z+1rf5J859w8GnJs+DifNmCp/Lh58idbJDC8d1uIur3g1JVUToE5YLt yyDIIg3ZTzk166ryauGBCxGmqWNcalv8GT1mxdL1c1SsX+W6VPdg1FvoBE69ptEM IP+K54nsvryNR1XLlAVpLmLrnO7yf1Tf -----END CERTIFICATE-----Generated at Wed Nov 5 10:07:37 2025 by rpki-client