$ rpki-client -vvf rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft File: 40IvTt5eaM7JqqfjxuMnjHMOHnw.mft (raw, json) Hash identifier: PJ6FA/2I6PTIOc2439j04/M9d/ef7ccxEPdsD+ek/0A= Subject key identifier: CE:B3:FC:30:24:B4:43:BC:F5:A8:CB:9B:D8:B1:70:02:96:82:28:A1 Authority key identifier: E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C Certificate issuer: /CN=A9180DA4/serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Certificate serial: 34D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft Manifest number: 34D3 Signing time: Sun 02 Nov 2025 14:40:56 +0000 Manifest this update: Sun 02 Nov 2025 14:40:55 +0000 Manifest next update: Sun 09 Nov 2025 14:40:55 +0000 Files and hashes: 1: 40IvTt5eaM7JqqfjxuMnjHMOHnw.crl (hash: SXeDFs0YCSJfS1FGSly8qSqw7zJM526lumyUeOB5tPo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13523 (0x34d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180DA4, serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Validity Not Before: Nov 2 14:40:55 2025 GMT Not After : Nov 9 14:40:55 2025 GMT Subject: CN=69076d78-58fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c3:bb:a8:aa:f2:cf:66:02:39:15:a8:c2:4f: 35:ed:52:76:94:b0:b9:f3:a7:71:27:2f:f2:77:a3: 71:22:bb:58:5c:b1:34:15:ee:1c:8c:db:d2:60:1b: 0d:52:16:72:27:d2:59:25:a7:0d:13:69:57:ee:04: 02:b4:21:37:87:ae:81:94:a1:35:1e:fb:18:4f:91: 60:e0:69:27:dc:94:e5:81:2a:65:7f:56:ca:5e:2f: 02:d6:ba:09:18:20:49:20:1c:1e:ff:6a:98:4b:ab: 47:9d:9c:76:cd:99:ee:93:d0:ac:f7:75:6b:93:e8: d5:9e:0e:59:43:16:73:ac:2a:f7:e9:39:d3:4d:a0: 0e:7e:6d:55:f9:7e:08:85:be:f0:ac:53:46:8f:f2: ab:ae:a1:6b:64:75:72:9e:c6:31:fe:06:d9:7e:ad: ba:e2:54:87:6a:f1:b8:a2:e4:59:70:fd:59:03:5b: df:d6:29:00:66:9b:46:43:2f:51:56:d0:df:6e:73: 08:b6:47:f0:4b:18:ea:6f:f4:b8:e3:8c:6a:cf:a7: d3:e9:54:63:3f:b8:f7:ee:fa:da:55:ac:fc:90:c3: 18:e1:b2:87:98:0c:72:5e:7f:d7:46:3b:47:61:79: fc:51:5e:d8:17:e4:56:74:df:42:11:8e:0a:85:e8: fa:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:B3:FC:30:24:B4:43:BC:F5:A8:CB:9B:D8:B1:70:02:96:82:28:A1 X509v3 Authority Key Identifier: keyid:E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:b6:9b:4f:52:82:7d:7b:d0:72:3c:ab:45:7e:36:ff:cd:01: 4a:6c:d3:41:1f:32:3c:33:25:8d:62:14:ef:0a:34:76:a7:fd: b4:49:c3:e7:37:44:d0:40:ed:e3:2e:f1:7d:1d:bc:b0:8f:b1: 5d:d1:d5:5e:50:c8:15:5f:0a:5a:f0:2f:aa:61:04:6e:cb:80: 10:17:d8:cb:cb:ca:82:b6:60:7d:e5:fd:6c:72:ec:88:13:1e: 59:b6:3c:ed:7d:75:b3:bc:79:eb:2f:30:d7:c8:79:95:6d:eb: 81:d8:29:45:75:d7:d0:f4:4c:90:2b:2d:7d:c4:4a:38:4b:e0: 41:5f:dc:5b:0e:32:43:d7:4a:96:df:47:d3:1d:6e:ba:0d:cd: 61:c4:5e:b1:88:8a:d0:02:f7:2a:b6:37:66:78:d6:43:1f:f1: 5c:63:da:d1:a1:c4:56:7b:87:f5:8c:d3:5f:17:24:89:66:9e: 9e:c4:15:04:a5:96:11:68:9e:e8:92:f4:f4:ec:f9:c5:02:47: 99:3f:b4:b1:a1:22:a3:2f:ef:bd:ee:45:c1:56:ad:c8:c5:ed: a9:48:e5:5b:5b:8f:c7:0e:d3:2f:68:a9:1e:77:24:5d:1f:e0: d4:e9:b9:db:43:ad:85:1c:dd:03:7a:2c:3e:1b:8c:3d:9e:3d: c4:95:98:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODBEQTQxMTAvBgNVBAUTKEUzNDIyRjRFREU1RTY4Q0VDOUFBQTdFM0M2RTMyNzhD NzMwRTFFN0MwHhcNMjUxMTAyMTQ0MDU1WhcNMjUxMTA5MTQ0MDU1WjAYMRYwFAYD VQQDEw02OTA3NmQ3OC01OGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8O7qKryz2YCORWowk817VJ2lLC586dxJy/yd6NxIrtYXLE0Fe4cjNvSYBsN UhZyJ9JZJacNE2lX7gQCtCE3h66BlKE1HvsYT5Fg4Gkn3JTlgSplf1bKXi8C1roJ GCBJIBwe/2qYS6tHnZx2zZnuk9Cs93Vrk+jVng5ZQxZzrCr36TnTTaAOfm1V+X4I hb7wrFNGj/KrrqFrZHVynsYx/gbZfq264lSHavG4ouRZcP1ZA1vf1ikAZptGQy9R VtDfbnMItkfwSxjqb/S444xqz6fT6VRjP7j37vraVaz8kMMY4bKHmAxyXn/XRjtH YXn8UV7YF+RWdN9CEY4Khej6cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM6z/DAk tEO89ajLm9ixcAKWgiihMB8GA1UdIwQYMBaAFONCL07eXmjOyaqn48bjJ4xzDh58 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MERBNC80NzNDNjQ1MDFE OEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFNN0pxcWZqeHVNbmpITU9I bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwSXZUdDVlYU03SnFxZmp4dU1uakhNT0hudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MERBNC80NzNDNjQ1MDFEOEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFN N0pxcWZqeHVNbmpITU9IbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYtptPUoJ9e9ByPKtFfjb/zQFKbNNBHzI8MyWNYhTvCjR2p/20ScPn N0TQQO3jLvF9Hbywj7Fd0dVeUMgVXwpa8C+qYQRuy4AQF9jLy8qCtmB95f1scuyI Ex5ZtjztfXWzvHnrLzDXyHmVbeuB2ClFddfQ9EyQKy19xEo4S+BBX9xbDjJD10qW 30fTHW66Dc1hxF6xiIrQAvcqtjdmeNZDH/FcY9rRocRWe4f1jNNfFySJZp6exBUE pZYRaJ7okvT07PnFAkeZP7SxoSKjL++97kXBVq3Ixe2pSOVbW4/HDtMvaKkedyRd H+DU6bnbQ62FHN0Deiw+G4w9nj3ElZiM -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:09 2025 by rpki-client