$ rpki-client -vvf rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft File: KN1yVzxbraKIuDKzmB_0yYsvjFE.mft (raw, json) Hash identifier: F3CyB6oGzVIiV9pph6kmymVFaGjaKGrH+ohlYFR8rLw= Subject key identifier: 03:DE:2F:61:97:37:B8:A7:9A:02:C4:4F:90:9F:FB:75:C2:BA:4D:27 Authority key identifier: 28:DD:72:57:3C:5B:AD:A2:88:B8:32:B3:98:1F:F4:C9:8B:2F:8C:51 Certificate issuer: /CN=A9180174/serialNumber=28DD72573C5BADA288B832B3981FF4C98B2F8C51 Certificate serial: 0549 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft Manifest number: 0542 Signing time: Tue 04 Nov 2025 23:44:14 +0000 Manifest this update: Tue 04 Nov 2025 23:44:14 +0000 Manifest next update: Tue 11 Nov 2025 23:44:14 +0000 Files and hashes: 1: KN1yVzxbraKIuDKzmB_0yYsvjFE.crl (hash: 71vQBF/P4XefVGkByS6QLM8xzTwwywkqbV6gP8uvvpg=) 2: F6750B60168D11EC89C9CB5DC4F9AE02.roa (hash: L229HAjJw9So9Rlreie2EkxQHxnxmVW3pDOMuafdlQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.crl rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1353 (0x549) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180174, serialNumber=28DD72573C5BADA288B832B3981FF4C98B2F8C51 Validity Not Before: Nov 4 23:44:14 2025 GMT Not After : Nov 11 23:44:14 2025 GMT Subject: CN=690a8fce-8d88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:16:7f:1d:59:d7:f7:78:f2:88:d0:4b:cb:54: 88:71:35:3f:1e:92:87:af:ec:af:ba:22:3d:29:98: 17:3a:18:59:e1:69:72:f5:6c:a0:f8:f2:da:d3:75: 14:54:69:19:1a:39:67:c8:be:bf:ff:a9:2b:49:8e: 70:f1:c2:38:41:d4:6f:40:3f:9b:2e:93:00:12:03: b3:98:aa:de:f2:55:de:35:fe:a8:09:bc:06:24:25: c5:b5:a8:b2:de:f9:2c:6b:ae:b2:62:f8:db:5e:2e: 29:92:f3:eb:fc:07:bf:54:ff:3d:39:2a:ae:c3:0d: 42:9a:d6:a4:a7:87:7d:f1:cf:44:e9:80:ef:e0:6c: c8:24:53:86:8f:02:d8:52:2a:ae:a4:23:b2:cd:d3: ce:6f:7d:ef:5f:57:d1:49:9c:23:01:0e:fd:5a:ce: 1f:12:39:43:4e:6f:73:17:77:6e:79:bf:6a:14:49: e2:fa:2d:e8:8c:a1:3c:b8:75:16:9f:57:65:90:9a: ab:c3:53:ea:42:df:22:1e:6e:15:d5:47:3c:fe:c3: ad:c8:79:d8:ad:06:fe:0d:c1:ca:6a:ee:16:4e:f1: f3:9e:55:da:c6:35:9d:38:26:01:f7:f4:a6:d0:99: 37:5a:eb:1e:29:ef:a8:65:50:16:62:01:4b:06:a7: ac:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:DE:2F:61:97:37:B8:A7:9A:02:C4:4F:90:9F:FB:75:C2:BA:4D:27 X509v3 Authority Key Identifier: keyid:28:DD:72:57:3C:5B:AD:A2:88:B8:32:B3:98:1F:F4:C9:8B:2F:8C:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:18:74:f9:8e:78:e5:bc:28:66:6a:42:37:2b:63:f3:40:ae: 9b:2a:65:b9:d2:29:dd:9d:6b:71:c8:86:85:1a:38:05:96:d3: cc:b4:46:1e:7f:ee:46:9a:68:20:27:6e:81:72:34:d9:f2:bd: 78:e5:17:4a:d5:c5:77:82:31:17:f7:5e:b5:fa:c3:e2:2b:ec: c1:02:da:d1:ef:55:a5:4d:17:b4:f0:32:8f:ae:dd:23:c1:75: 08:a2:94:32:fc:56:a8:0f:62:99:86:13:c2:0c:e5:74:25:29: 12:f5:65:96:6d:4f:9e:b8:f0:e8:e9:13:9c:83:ba:b4:a7:8c: ec:22:4b:1b:62:bb:92:31:4c:3c:19:99:00:1c:4d:69:42:43: 21:32:37:43:71:45:ae:4c:78:7e:0b:04:17:de:33:b3:d2:28: 04:30:0f:9f:a7:a0:83:09:af:2e:c3:a4:96:27:e4:cf:45:22: 3f:8c:77:09:f5:3d:44:77:37:33:d3:74:09:2b:d4:c3:dd:5c: 01:9b:ff:75:ac:e7:5b:96:04:3b:72:48:6e:63:4a:4a:9c:b6: f2:fb:e4:3a:48:46:27:5f:53:31:12:36:b6:62:d9:b5:17:46: 1d:e6:fb:7b:6d:9c:da:c5:bf:3c:e7:fa:f8:2d:c7:4d:29:31: 21:35:94:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAxNzQxMTAvBgNVBAUTKDI4REQ3MjU3M0M1QkFEQTI4OEI4MzJCMzk4MUZGNEM5 OEIyRjhDNTEwHhcNMjUxMTA0MjM0NDE0WhcNMjUxMTExMjM0NDE0WjAYMRYwFAYD VQQDEw02OTBhOGZjZS04ZDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2xZ/HVnX93jyiNBLy1SIcTU/HpKHr+yvuiI9KZgXOhhZ4Wly9Wyg+PLa03UU VGkZGjlnyL6//6krSY5w8cI4QdRvQD+bLpMAEgOzmKre8lXeNf6oCbwGJCXFtaiy 3vksa66yYvjbXi4pkvPr/Ae/VP89OSquww1Cmtakp4d98c9E6YDv4GzIJFOGjwLY UiqupCOyzdPOb33vX1fRSZwjAQ79Ws4fEjlDTm9zF3dueb9qFEni+i3ojKE8uHUW n1dlkJqrw1PqQt8iHm4V1Uc8/sOtyHnYrQb+DcHKau4WTvHznlXaxjWdOCYB9/Sm 0Jk3WuseKe+oZVAWYgFLBqesGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPeL2GX N7inmgLET5Cf+3XCuk0nMB8GA1UdIwQYMBaAFCjdclc8W62iiLgys5gf9MmLL4xR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDE3NC83OUQ2NjYyQTE2 ODkxMUVDODE2MjU4MENDNEY5QUUwMi9LTjF5Vnp4YnJhS0l1REt6bUJfMHlZc3Zq RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tOMXlWenhicmFLSXVES3ptQl8weVlzdmpGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDE3NC83OUQ2NjYyQTE2ODkxMUVDODE2MjU4MENDNEY5QUUwMi9LTjF5Vnp4YnJh S0l1REt6bUJfMHlZc3ZqRkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjGHT5jnjlvChmakI3K2PzQK6bKmW50indnWtxyIaFGjgFltPMtEYe f+5GmmggJ26BcjTZ8r145RdK1cV3gjEX9161+sPiK+zBAtrR71WlTRe08DKPrt0j wXUIopQy/FaoD2KZhhPCDOV0JSkS9WWWbU+euPDo6ROcg7q0p4zsIksbYruSMUw8 GZkAHE1pQkMhMjdDcUWuTHh+CwQX3jOz0igEMA+fp6CDCa8uw6SWJ+TPRSI/jHcJ 9T1Edzcz03QJK9TD3VwBm/91rOdblgQ7ckhuY0pKnLby++Q6SEYnX1MxEja2Ytm1 F0Yd5vt7bZzaxb885/r4LcdNKTEhNZSj -----END CERTIFICATE-----Generated at Wed Nov 5 15:25:54 2025 by rpki-client