$ rpki-client -vvf rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft File: rIf9aQzGskx4_D9x0y3eDbookNs.mft (raw, json) Hash identifier: Vn6bx2zOGYw3wZCBw5eC00RVTLICDapDlc/bOjN+Oqw= Subject key identifier: C1:D0:12:D4:14:1F:A9:32:88:30:44:E6:9C:DA:B3:29:AE:BD:3A:63 Authority key identifier: AC:87:FD:69:0C:C6:B2:4C:78:FC:3F:71:D3:2D:DE:0D:BA:28:90:DB Certificate issuer: /CN=A917C156/serialNumber=AC87FD690CC6B24C78FC3F71D32DDE0DBA2890DB Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft Manifest number: 69 Signing time: Mon 03 Nov 2025 07:00:40 +0000 Manifest this update: Mon 03 Nov 2025 07:00:40 +0000 Manifest next update: Mon 10 Nov 2025 07:00:40 +0000 Files and hashes: 1: rIf9aQzGskx4_D9x0y3eDbookNs.crl (hash: sBGJff90edB+1QMrcKqcr5AQDTp8W3f+rSgHX7PBRZY=) 2: 82B7AD281C2811F0AF6EDC47C4F9AE02.roa (hash: TOct4YZ3x0uVg6PIqVFGhW7Pj8+y8nCLAaZLvcpqBvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.crl rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C156, serialNumber=AC87FD690CC6B24C78FC3F71D32DDE0DBA2890DB Validity Not Before: Nov 3 07:00:40 2025 GMT Not After : Nov 10 07:00:40 2025 GMT Subject: CN=69085318-69ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f9:da:45:10:8b:64:95:bb:31:bb:5d:86:c4: 93:e6:6a:fd:d1:cc:3e:1e:ed:c4:a0:bc:73:23:df: 18:8c:b4:03:87:e1:72:ce:e0:d0:29:40:12:d2:3b: 83:10:f4:57:0d:a3:7c:d8:9d:a6:46:45:02:90:e2: 5d:4d:ac:6e:da:eb:7a:59:13:e6:ec:e8:00:bd:5f: 36:e9:f8:ba:91:a1:69:dd:05:f7:a1:13:ea:cf:af: 53:35:c7:83:90:14:24:c9:c6:a6:22:b7:43:aa:3c: c2:c0:5b:3d:5b:a5:3c:85:5c:45:4c:85:a2:2c:c2: 6a:64:eb:22:45:54:31:88:b3:2e:4a:25:fb:35:a0: 8a:17:4b:bd:d2:24:72:72:52:b5:65:35:96:5d:15: 91:58:4f:46:b6:21:88:21:6f:e8:9e:90:4b:50:4b: af:23:7c:57:b2:7f:53:d0:7c:43:44:d4:f0:8a:9c: 68:bb:d6:21:d3:28:56:c9:26:2e:65:fd:cc:c3:c1: 9f:24:47:66:a7:e4:44:27:27:30:4e:2f:48:f4:a4: 75:7b:ef:12:c8:ff:e2:a1:48:3c:d0:dd:79:00:b7: 62:9e:f4:46:e2:6c:15:29:68:7f:20:27:11:82:f7: 1a:c8:52:74:62:8f:00:6b:d1:d4:fb:f8:80:86:4a: ac:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:D0:12:D4:14:1F:A9:32:88:30:44:E6:9C:DA:B3:29:AE:BD:3A:63 X509v3 Authority Key Identifier: keyid:AC:87:FD:69:0C:C6:B2:4C:78:FC:3F:71:D3:2D:DE:0D:BA:28:90:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:0b:47:55:ae:64:ce:46:8d:fc:65:dd:cb:bd:e2:25:32:15: f3:97:70:65:c7:40:cc:4e:02:a1:96:45:ad:33:a9:69:75:ea: 20:f2:45:1f:c6:4b:66:35:7a:f5:3c:4d:ee:d3:93:40:74:09: a2:1b:a3:f9:fe:97:62:b5:da:f5:39:07:3d:7d:a1:fc:52:1e: 6b:af:66:61:b3:85:ca:09:90:69:f5:fa:c5:95:bd:00:aa:67: 7d:e7:04:4f:d8:b9:39:9a:61:c4:db:ad:8e:25:59:ee:57:d6: 78:a5:34:71:0d:62:0f:fd:b8:fa:54:b5:3c:0f:9a:05:ef:5c: 38:74:03:d1:c6:85:b5:f6:fc:dc:56:12:e1:6d:ed:d5:f1:0c: a6:9c:ee:29:8e:81:5a:50:f6:ff:05:53:63:61:e1:fb:b5:22: aa:e8:87:0e:10:1c:08:93:ea:9b:8d:7e:5b:20:55:80:45:bf: 09:5b:ce:ad:3e:20:1e:27:d3:f3:7f:49:2b:39:6b:26:bb:7a: c9:5d:00:b8:55:b7:d3:c1:aa:b5:87:06:d6:e4:1e:13:bf:2b: ad:5d:e2:5c:bd:d3:33:72:93:11:db:f8:91:50:41:04:75:cf: a7:14:e1:23:d9:76:dd:ed:50:57:0e:36:d8:a6:13:eb:90:b8: d0:69:dd:6f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzE1NjExMC8GA1UEBRMoQUM4N0ZENjkwQ0M2QjI0Qzc4RkMzRjcxRDMyRERFMERC QTI4OTBEQjAeFw0yNTExMDMwNzAwNDBaFw0yNTExMTAwNzAwNDBaMBgxFjAUBgNV BAMTDTY5MDg1MzE4LTY5YWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2+dpFEItklbsxu12GxJPmav3RzD4e7cSgvHMj3xiMtAOH4XLO4NApQBLSO4MQ 9FcNo3zYnaZGRQKQ4l1NrG7a63pZE+bs6AC9Xzbp+LqRoWndBfehE+rPr1M1x4OQ FCTJxqYit0OqPMLAWz1bpTyFXEVMhaIswmpk6yJFVDGIsy5KJfs1oIoXS73SJHJy UrVlNZZdFZFYT0a2IYghb+iekEtQS68jfFeyf1PQfENE1PCKnGi71iHTKFbJJi5l /czDwZ8kR2an5EQnJzBOL0j0pHV77xLI/+KhSDzQ3XkAt2Ke9EbibBUpaH8gJxGC 9xrIUnRijwBr0dT7+ICGSqwfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwdAS1BQf qTKIMETmnNqzKa69OmMwHwYDVR0jBBgwFoAUrIf9aQzGskx4/D9x0y3eDbookNsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMTU2LzE0MkU2NERFMUMw MzExRjBBNURDMTU1NkM0RjlBRTAyL3JJZjlhUXpHc2t4NF9EOXgweTNlRGJvb2tO cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcklmOWFRekdza3g0X0Q5eDB5M2VEYm9va05zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MTU2LzE0MkU2NERFMUMwMzExRjBBNURDMTU1NkM0RjlBRTAyL3JJZjlhUXpHc2t4 NF9EOXgweTNlRGJvb2tOcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJcLR1WuZM5Gjfxl3cu94iUyFfOXcGXHQMxOAqGWRa0zqWl16iDyRR/G S2Y1evU8Te7Tk0B0CaIbo/n+l2K12vU5Bz19ofxSHmuvZmGzhcoJkGn1+sWVvQCq Z33nBE/YuTmaYcTbrY4lWe5X1nilNHENYg/9uPpUtTwPmgXvXDh0A9HGhbX2/NxW EuFt7dXxDKac7imOgVpQ9v8FU2Nh4fu1Iqrohw4QHAiT6puNflsgVYBFvwlbzq0+ IB4n0/N/SSs5aya7esldALhVt9PBqrWHBtbkHhO/K61d4ly90zNykxHb+JFQQQR1 z6cU4SPZdt3tUFcONtimE+uQuNBp3W8= -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:04 2025 by rpki-client