$ rpki-client -vvf rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft File: MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft (raw, json) Hash identifier: iQIhex7ecZBPywXrhqEdc4xpMRBYaZW5LYqwE94SpS8= Subject key identifier: 42:34:C9:9A:98:F7:E6:B4:40:2C:AF:54:5F:7E:D4:17:82:3B:13:20 Authority key identifier: 32:15:C5:51:6A:FB:54:D8:E6:12:D1:EC:3D:51:82:D3:21:E5:31:71 Certificate issuer: /CN=A9180127/serialNumber=3215C5516AFB54D8E612D1EC3D5182D321E53171 Certificate serial: 0190 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhXFUWr7VNjmEtHsPVGC0yHlMXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft Manifest number: 018C Signing time: Mon 03 Nov 2025 03:32:07 +0000 Manifest this update: Mon 03 Nov 2025 03:32:06 +0000 Manifest next update: Mon 10 Nov 2025 03:32:06 +0000 Files and hashes: 1: MhXFUWr7VNjmEtHsPVGC0yHlMXE.crl (hash: pREx5Y7nw5GDPXHpSar1QdeKkNLddH/DUgZ28GVYUuM=) 2: 80A66D902A6411F09ACA5C61C4F9AE02.roa (hash: VkiCTpbHNMdBRPiF1oBiRg7dOTIy/YEbnzSkLjMcvbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.crl rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhXFUWr7VNjmEtHsPVGC0yHlMXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180127, serialNumber=3215C5516AFB54D8E612D1EC3D5182D321E53171 Validity Not Before: Nov 3 03:32:06 2025 GMT Not After : Nov 10 03:32:06 2025 GMT Subject: CN=69082237-3596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1f:f7:71:42:4d:49:2d:69:2a:e1:ef:18:be: cb:37:4b:59:37:a6:69:da:ad:8a:a9:95:b4:9e:64: e5:9a:53:ac:3f:d0:cf:d8:3f:cd:ed:0c:29:32:94: 42:7b:05:5b:1c:3f:91:0f:e8:b9:b4:85:cb:dd:36: 84:6e:05:93:f3:cb:6b:fe:28:f6:2d:08:12:3c:38: 1c:ed:8a:14:e8:d0:57:3b:96:15:3d:b9:b1:d0:19: 2c:f2:cf:dd:e2:13:ae:7d:80:83:1c:aa:dd:9d:2a: 10:d9:bd:9e:09:f5:08:30:b6:67:ab:c1:7c:d7:59: 72:7e:ec:b9:1d:0b:f8:f7:42:8e:95:9f:f7:38:63: 96:21:87:fa:df:48:ce:e4:cc:38:fd:2f:73:98:2a: 7a:86:69:5d:ae:f6:f4:a5:75:f5:5f:a8:eb:d5:e9: 0c:cc:07:16:12:05:15:11:8d:d0:4c:17:0d:d9:25: c5:b1:76:63:ad:1f:87:ea:9a:2d:71:e1:8c:d8:5f: bb:4c:2e:36:e0:1f:05:0e:35:a4:46:cb:ad:92:c3: 23:4a:b8:cb:a9:cd:77:9b:1d:dd:ae:d7:b4:a7:99: 12:8a:c7:9c:43:d1:6f:68:37:42:3a:83:d5:79:83: 54:f4:f4:e0:79:3d:24:8f:34:fa:4c:66:b5:b9:f5: 6e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:34:C9:9A:98:F7:E6:B4:40:2C:AF:54:5F:7E:D4:17:82:3B:13:20 X509v3 Authority Key Identifier: keyid:32:15:C5:51:6A:FB:54:D8:E6:12:D1:EC:3D:51:82:D3:21:E5:31:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhXFUWr7VNjmEtHsPVGC0yHlMXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:94:c2:c9:09:dd:e5:a7:a5:47:dd:43:0b:e4:a9:84:9d:c9: b0:85:1e:fd:60:45:dc:ce:44:d0:3d:f4:09:bb:17:f5:58:c8: 74:78:17:7e:d8:c1:53:65:78:60:90:58:48:a6:85:ef:2b:ca: b2:44:c3:91:0e:7f:48:58:e6:e1:4e:d6:9b:60:88:a2:cd:51: 9b:2b:75:2e:1c:d1:78:77:9b:fa:78:32:a0:28:64:67:ac:7a: c7:d5:56:62:a0:70:e8:05:32:61:1c:59:eb:87:e9:db:ac:a9: 22:6b:ef:99:fa:25:09:a7:5c:e8:c4:2e:37:2c:4f:83:cd:da: e6:6a:41:4d:e6:4c:81:1d:58:61:5d:f8:22:69:c1:89:cb:0f: 0c:d9:ba:bb:34:0b:89:c3:dd:cc:ad:d4:3a:d7:3d:62:18:d5: 08:cc:34:19:81:33:ee:92:97:fd:20:6c:b2:e8:5d:30:3d:46: a1:3f:19:2d:90:f6:14:ee:9b:31:4b:7c:e8:77:23:df:a6:bd: 70:83:93:42:08:48:97:12:2b:8f:6f:67:a5:b3:9f:2a:07:53: 9f:44:42:ce:c3:d6:97:23:ef:40:3e:b9:d1:4d:2a:f0:95:f8: 75:c0:e4:99:05:b2:92:e6:2f:40:0d:22:c9:64:eb:bd:83:27: 51:b6:d8:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAxMjcxMTAvBgNVBAUTKDMyMTVDNTUxNkFGQjU0RDhFNjEyRDFFQzNENTE4MkQz MjFFNTMxNzEwHhcNMjUxMTAzMDMzMjA2WhcNMjUxMTEwMDMzMjA2WjAYMRYwFAYD VQQDEw02OTA4MjIzNy0zNTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoB/3cUJNSS1pKuHvGL7LN0tZN6Zp2q2KqZW0nmTlmlOsP9DP2D/N7QwpMpRC ewVbHD+RD+i5tIXL3TaEbgWT88tr/ij2LQgSPDgc7YoU6NBXO5YVPbmx0Bks8s/d 4hOufYCDHKrdnSoQ2b2eCfUIMLZnq8F811lyfuy5HQv490KOlZ/3OGOWIYf630jO 5Mw4/S9zmCp6hmldrvb0pXX1X6jr1ekMzAcWEgUVEY3QTBcN2SXFsXZjrR+H6pot ceGM2F+7TC424B8FDjWkRsutksMjSrjLqc13mx3drte0p5kSisecQ9FvaDdCOoPV eYNU9PTgeT0kjzT6TGa1ufVuFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEI0yZqY 9+a0QCyvVF9+1BeCOxMgMB8GA1UdIwQYMBaAFDIVxVFq+1TY5hLR7D1RgtMh5TFx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDEyNy8xNkFGMUQyMDVC N0YxMUVFQkUzMjBFMzVDNEY5QUUwMi9NaFhGVVdyN1ZOam1FdEhzUFZHQzB5SGxN WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01oWEZVV3I3Vk5qbUV0SHNQVkdDMHlIbE1YRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDEyNy8xNkFGMUQyMDVCN0YxMUVFQkUzMjBFMzVDNEY5QUUwMi9NaFhGVVdyN1ZO am1FdEhzUFZHQzB5SGxNWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOlMLJCd3lp6VH3UML5KmEncmwhR79YEXczkTQPfQJuxf1WMh0eBd+ 2MFTZXhgkFhIpoXvK8qyRMORDn9IWObhTtabYIiizVGbK3UuHNF4d5v6eDKgKGRn rHrH1VZioHDoBTJhHFnrh+nbrKkia++Z+iUJp1zoxC43LE+DzdrmakFN5kyBHVhh XfgiacGJyw8M2bq7NAuJw93MrdQ61z1iGNUIzDQZgTPukpf9IGyy6F0wPUahPxkt kPYU7psxS3zodyPfpr1wg5NCCEiXEiuPb2els58qB1OfRELOw9aXI+9APrnRTSrw lfh1wOSZBbKS5i9ADSLJZOu9gydRttjv -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:26 2025 by rpki-client