$ rpki-client -vvf rpki.apnic.net/member_repository/A9178E22/B502638674DA11EF8039B026C4F9AE02/r11hzhK3w-WNyGyXhyy7LNqtJ_E.mft File: r11hzhK3w-WNyGyXhyy7LNqtJ_E.mft (raw, json) Hash identifier: WbMqU8vkAmFGZTJLk4rp9S+/vE9J9MzUR2wk4fHe2Os= Subject key identifier: B0:39:9F:AA:C9:D0:C9:2B:0B:48:46:6B:F5:C9:02:DE:15:15:7B:79 Authority key identifier: AF:5D:61:CE:12:B7:C3:E5:8D:C8:6C:97:87:2C:BB:2C:DA:AD:27:F1 Certificate issuer: /CN=A9178E22/serialNumber=AF5D61CE12B7C3E58DC86C97872CBB2CDAAD27F1 Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r11hzhK3w-WNyGyXhyy7LNqtJ_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178E22/B502638674DA11EF8039B026C4F9AE02/r11hzhK3w-WNyGyXhyy7LNqtJ_E.mft Manifest number: D5 Signing time: Mon 03 Nov 2025 05:38:31 +0000 Manifest this update: Mon 03 Nov 2025 05:38:31 +0000 Manifest next update: Mon 10 Nov 2025 05:38:31 +0000 Files and hashes: 1: r11hzhK3w-WNyGyXhyy7LNqtJ_E.crl (hash: cZ5VlxS4PVqrsF9iu+FUrha5NWbVDNLC2EbSSQspxu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178E22/B502638674DA11EF8039B026C4F9AE02/r11hzhK3w-WNyGyXhyy7LNqtJ_E.crl rsync://rpki.apnic.net/member_repository/A9178E22/B502638674DA11EF8039B026C4F9AE02/r11hzhK3w-WNyGyXhyy7LNqtJ_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r11hzhK3w-WNyGyXhyy7LNqtJ_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:38:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178E22, serialNumber=AF5D61CE12B7C3E58DC86C97872CBB2CDAAD27F1 Validity Not Before: Nov 3 05:38:31 2025 GMT Not After : Nov 10 05:38:31 2025 GMT Subject: CN=69083fd7-2936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e3:85:62:b8:0b:c4:1f:53:b7:60:de:7a:89: 62:39:b6:d7:ed:75:ca:79:6b:91:60:c3:d2:9a:59: 9c:a7:86:c7:aa:4d:b2:2b:e2:5d:ba:cc:40:a3:34: 4c:0b:c7:0d:6c:b0:b8:ab:71:5f:8b:58:dc:a9:5b: 2a:93:ee:71:64:61:7f:21:7e:e9:7b:a6:49:ca:3a: d4:fb:3b:3b:64:82:6b:1b:c6:57:b1:90:f9:e6:d1: b0:6c:7f:8a:e5:8f:b0:d7:d7:e8:1f:b0:ea:63:08: 1a:5b:d5:a2:42:b6:1e:f6:9e:91:6b:04:6c:67:30: a8:97:e8:5c:60:fa:3a:b3:8d:31:09:00:b5:37:64: 72:1a:f3:ae:3d:57:85:6b:b5:a0:59:60:c4:38:9c: b0:6b:bf:78:9a:67:d2:e5:69:4f:2f:76:f6:c1:a8: 5f:16:e2:68:d6:08:8a:e9:cd:ec:08:51:a0:90:ee: 10:e9:ae:2d:c7:00:88:70:20:79:89:b3:17:e2:ee: 0a:73:35:73:c2:7b:27:5c:0e:6e:65:b8:ca:92:08: 02:74:33:29:20:5f:79:1a:98:fb:ef:38:21:c1:ec: 4d:c8:2c:bf:70:d3:f3:dc:5a:fb:4d:ca:48:cc:03: 06:34:2c:47:3f:e4:fc:64:30:95:bb:4f:65:ef:69: 8e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:39:9F:AA:C9:D0:C9:2B:0B:48:46:6B:F5:C9:02:DE:15:15:7B:79 X509v3 Authority Key Identifier: keyid:AF:5D:61:CE:12:B7:C3:E5:8D:C8:6C:97:87:2C:BB:2C:DA:AD:27:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178E22/B502638674DA11EF8039B026C4F9AE02/r11hzhK3w-WNyGyXhyy7LNqtJ_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r11hzhK3w-WNyGyXhyy7LNqtJ_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178E22/B502638674DA11EF8039B026C4F9AE02/r11hzhK3w-WNyGyXhyy7LNqtJ_E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:4c:60:1c:fa:0a:83:14:28:be:6f:94:31:01:db:d9:10:0b: d5:1a:b8:2f:c1:88:6b:26:0d:16:0c:10:cf:b9:a9:b1:cf:6e: f6:50:93:01:88:06:d0:a8:f6:c7:fa:61:db:5a:f0:68:97:79: 9c:5d:ab:7b:f1:5f:39:91:b2:bf:04:31:a6:4f:1d:0b:4e:3e: d0:e1:e6:a8:1c:36:a6:87:c9:52:37:f0:c9:b1:8c:b3:01:72: a3:25:42:22:16:61:0a:d3:db:79:b8:bd:9e:e2:01:a9:80:b7: 61:e0:33:46:3b:6e:51:41:8c:6a:52:e4:2f:a5:3e:e0:d8:60: 5b:d1:0f:41:52:19:6b:df:04:84:7c:fb:19:a1:73:74:50:8a: 94:6f:73:d6:0b:e5:b4:27:50:d4:d2:39:77:2c:44:60:ce:1f: aa:9e:f4:ad:13:59:f0:33:a6:16:53:cf:f3:51:77:0b:32:be: 0f:4c:41:64:5b:a9:f1:e0:97:51:66:62:4e:b8:5f:a2:72:27: ab:fa:0f:fa:d6:47:1f:df:e1:86:ae:65:c1:36:b9:78:07:61: 6e:26:05:37:d8:7c:af:d5:5a:c9:82:01:c1:08:da:6b:62:eb: 80:d7:7a:89:22:91:35:7a:93:cc:9a:45:45:0e:4e:a1:c2:68: 0e:99:e5:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFMjIxMTAvBgNVBAUTKEFGNUQ2MUNFMTJCN0MzRTU4REM4NkM5Nzg3MkNCQjJD REFBRDI3RjEwHhcNMjUxMTAzMDUzODMxWhcNMjUxMTEwMDUzODMxWjAYMRYwFAYD VQQDEw02OTA4M2ZkNy0yOTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1OOFYrgLxB9Tt2DeeoliObbX7XXKeWuRYMPSmlmcp4bHqk2yK+JdusxAozRM C8cNbLC4q3Ffi1jcqVsqk+5xZGF/IX7pe6ZJyjrU+zs7ZIJrG8ZXsZD55tGwbH+K 5Y+w19foH7DqYwgaW9WiQrYe9p6RawRsZzCol+hcYPo6s40xCQC1N2RyGvOuPVeF a7WgWWDEOJywa794mmfS5WlPL3b2wahfFuJo1giK6c3sCFGgkO4Q6a4txwCIcCB5 ibMX4u4KczVzwnsnXA5uZbjKkggCdDMpIF95Gpj77zghwexNyCy/cNPz3Fr7TcpI zAMGNCxHP+T8ZDCVu09l72mOZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLA5n6rJ 0MkrC0hGa/XJAt4VFXt5MB8GA1UdIwQYMBaAFK9dYc4St8Pljchsl4csuyzarSfx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEUyMi9CNTAyNjM4Njc0 REExMUVGODAzOUIwMjZDNEY5QUUwMi9yMTFoemhLM3ctV055R3lYaHl5N0xOcXRK X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IxMWh6aEszdy1XTnlHeVhoeXk3TE5xdEpfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEUyMi9CNTAyNjM4Njc0REExMUVGODAzOUIwMjZDNEY5QUUwMi9yMTFoemhLM3ct V055R3lYaHl5N0xOcXRKX0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOTGAc+gqDFCi+b5QxAdvZEAvVGrgvwYhrJg0WDBDPuamxz272UJMB iAbQqPbH+mHbWvBol3mcXat78V85kbK/BDGmTx0LTj7Q4eaoHDamh8lSN/DJsYyz AXKjJUIiFmEK09t5uL2e4gGpgLdh4DNGO25RQYxqUuQvpT7g2GBb0Q9BUhlr3wSE fPsZoXN0UIqUb3PWC+W0J1DU0jl3LERgzh+qnvStE1nwM6YWU8/zUXcLMr4PTEFk W6nx4JdRZmJOuF+icier+g/61kcf3+GGrmXBNrl4B2FuJgU32Hyv1VrJggHBCNpr YuuA13qJIpE1epPMmkVFDk6hwmgOmeWB -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:59 2025 by rpki-client