$ rpki-client -vvf rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft File: xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft (raw, json) Hash identifier: bYRe6LT6OylmHApZWCSgQtuZNZsRFfGhw12N69rd9cs= Subject key identifier: F0:66:13:8C:CE:36:B5:35:8F:6E:AD:A7:48:29:81:7C:56:31:BD:AC Authority key identifier: C4:8D:44:F1:11:D9:F4:DC:8E:3E:64:AD:7F:96:48:64:61:CB:9F:BD Certificate issuer: /CN=A9181CA2/serialNumber=C48D44F111D9F4DC8E3E64AD7F96486461CB9FBD Certificate serial: 0410 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft Manifest number: 040B Signing time: Wed 05 Nov 2025 00:30:39 +0000 Manifest this update: Wed 05 Nov 2025 00:30:39 +0000 Manifest next update: Wed 12 Nov 2025 00:30:39 +0000 Files and hashes: 1: xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl (hash: 0VkGOQ34zTPhyv4k3Otko3Gflx+USklXvKZc3sk1dys=) 2: 76391AA6995311EC8EAA8C59C4F9AE02.roa (hash: W7ot2zpw7zenj0ixyvV0R84xsbmbGiyY0szYoIQxijc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:30:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1040 (0x410) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181CA2, serialNumber=C48D44F111D9F4DC8E3E64AD7F96486461CB9FBD Validity Not Before: Nov 5 00:30:39 2025 GMT Not After : Nov 12 00:30:39 2025 GMT Subject: CN=690a9aaf-0168 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:cf:05:12:73:23:b4:fa:1a:91:66:25:3d:91: 88:56:9e:58:db:14:63:02:e7:15:d5:da:48:ba:d2: 0c:29:b2:a9:c5:05:42:6b:f8:56:94:55:1d:77:72: 63:11:6b:b7:7b:62:6a:19:99:b8:94:7d:79:b3:50: 27:88:85:0a:92:63:ae:86:be:44:3d:ab:e7:e9:b8: 92:d8:f3:3d:49:6f:42:8c:b2:1f:76:79:0d:89:f5: 62:c6:8b:02:d2:ca:8d:1d:8b:2c:56:79:62:74:1c: 34:31:f6:1e:5b:4a:3a:5a:43:f4:69:64:45:81:23: 9d:d2:79:f2:56:16:5b:77:4b:73:24:d8:5a:42:db: d3:b0:2e:54:27:1b:57:cf:9b:c3:89:5c:5a:f0:83: 74:95:01:5a:08:ac:7d:7c:8c:56:85:43:f3:89:70: c5:9f:2c:55:c2:83:b3:69:b3:f9:d2:60:aa:bd:a9: aa:98:c4:0b:3b:40:70:4d:d1:f0:28:2f:d7:13:bf: ec:0c:c3:8b:95:c1:65:12:d5:21:e0:ff:b2:23:72: 9f:e4:fd:e4:e1:e3:d4:c5:47:e3:2e:40:6d:e9:26: 5e:b1:e8:ad:f3:de:b3:e0:e4:bf:38:b4:13:1e:9c: 81:36:1e:ce:e2:33:c0:44:21:64:21:9a:38:67:14: 5d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:66:13:8C:CE:36:B5:35:8F:6E:AD:A7:48:29:81:7C:56:31:BD:AC X509v3 Authority Key Identifier: keyid:C4:8D:44:F1:11:D9:F4:DC:8E:3E:64:AD:7F:96:48:64:61:CB:9F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:5a:67:fd:56:df:9c:88:a5:f2:b2:50:44:c8:c9:23:f3:d3: 5a:d5:a2:f9:72:01:e7:94:45:58:ab:da:9b:6c:46:9f:c4:b0: 3c:ab:96:97:b2:9d:74:97:74:20:93:54:a6:18:99:be:4c:d6: fa:58:92:25:e8:ac:f6:d3:d9:a9:fa:20:88:9a:f3:e5:4a:67: 6d:69:b6:c8:1f:b9:e3:59:6b:d5:f0:f0:d5:23:87:a1:46:92: 9e:f2:4d:3e:03:9a:b5:61:f3:be:db:44:b0:68:d3:b2:9a:3e: eb:1f:34:c2:ed:62:37:74:d6:b4:72:56:9c:98:9d:a6:7e:0c: c7:27:e4:02:ab:1c:7d:9d:f4:d2:da:f1:7d:b9:8b:ff:d8:d5: 24:17:f1:5e:a6:7b:a1:45:66:d0:a2:4c:03:66:0b:6e:4d:92: 14:af:a2:7f:85:c0:ab:af:7d:94:67:eb:4d:39:45:9e:d0:48: 05:6b:36:c3:42:8e:dd:06:a1:85:31:66:de:46:fb:0b:4f:3f: 6b:8e:7f:32:38:2d:3b:08:2e:e0:ae:c3:be:d1:21:34:4b:14: ef:24:ab:93:cb:6a:81:1e:54:40:11:21:e0:38:cb:86:5b:2e: 33:a7:7a:a6:30:73:05:9e:e5:8d:7b:80:da:56:53:01:66:0c: 8a:f0:76:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODFDQTIxMTAvBgNVBAUTKEM0OEQ0NEYxMTFEOUY0REM4RTNFNjRBRDdGOTY0ODY0 NjFDQjlGQkQwHhcNMjUxMTA1MDAzMDM5WhcNMjUxMTEyMDAzMDM5WjAYMRYwFAYD VQQDEw02OTBhOWFhZi0wMTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnM8FEnMjtPoakWYlPZGIVp5Y2xRjAucV1dpIutIMKbKpxQVCa/hWlFUdd3Jj EWu3e2JqGZm4lH15s1AniIUKkmOuhr5EPavn6biS2PM9SW9CjLIfdnkNifVixosC 0sqNHYssVnlidBw0MfYeW0o6WkP0aWRFgSOd0nnyVhZbd0tzJNhaQtvTsC5UJxtX z5vDiVxa8IN0lQFaCKx9fIxWhUPziXDFnyxVwoOzabP50mCqvamqmMQLO0BwTdHw KC/XE7/sDMOLlcFlEtUh4P+yI3Kf5P3k4ePUxUfjLkBt6SZeseit896z4OS/OLQT HpyBNh7O4jPARCFkIZo4ZxRdxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBmE4zO NrU1j26tp0gpgXxWMb2sMB8GA1UdIwQYMBaAFMSNRPER2fTcjj5krX+WSGRhy5+9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MUNBMi83OTM2NUI4RThG MDcxMUVDOUVCMjMxNzBDNEY5QUUwMi94STFFOFJIWjlOeU9QbVN0ZjVaSVpHSExu NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJMUU4UkhaOU55T1BtU3RmNVpJWkdITG43MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MUNBMi83OTM2NUI4RThGMDcxMUVDOUVCMjMxNzBDNEY5QUUwMi94STFFOFJIWjlO eU9QbVN0ZjVaSVpHSExuNzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRWmf9Vt+ciKXyslBEyMkj89Na1aL5cgHnlEVYq9qbbEafxLA8q5aX sp10l3Qgk1SmGJm+TNb6WJIl6Kz209mp+iCImvPlSmdtabbIH7njWWvV8PDVI4eh RpKe8k0+A5q1YfO+20SwaNOymj7rHzTC7WI3dNa0clacmJ2mfgzHJ+QCqxx9nfTS 2vF9uYv/2NUkF/FepnuhRWbQokwDZgtuTZIUr6J/hcCrr32UZ+tNOUWe0EgFazbD Qo7dBqGFMWbeRvsLTz9rjn8yOC07CC7grsO+0SE0SxTvJKuTy2qBHlRAESHgOMuG Wy4zp3qmMHMFnuWNe4DaVlMBZgyK8HYF -----END CERTIFICATE-----Generated at Wed Nov 5 18:09:30 2025 by rpki-client