$ rpki-client -vvf rpki.apnic.net/member_repository/A9183EB3/3DB6A362637511EAB9C3680BC4F9AE02/VwO1XNjigCKWBKELyM9bOAERY_o.mft File: VwO1XNjigCKWBKELyM9bOAERY_o.mft (raw, json) Hash identifier: BtrHI+Ml+1Qj7FG8q+oVRg6amSzj5y5JXTw0ZrNvYqA= Subject key identifier: 40:AC:15:0C:DA:FE:25:35:80:48:84:00:60:6D:25:FE:B1:31:26:23 Authority key identifier: 57:03:B5:5C:D8:E2:80:22:96:04:A1:0B:C8:CF:5B:38:01:11:63:FA Certificate issuer: /CN=A9183EB3/serialNumber=5703B55CD8E280229604A10BC8CF5B38011163FA Certificate serial: 0AB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VwO1XNjigCKWBKELyM9bOAERY_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183EB3/3DB6A362637511EAB9C3680BC4F9AE02/VwO1XNjigCKWBKELyM9bOAERY_o.mft Manifest number: 0AB0 Signing time: Sun 02 Nov 2025 19:27:41 +0000 Manifest this update: Sun 02 Nov 2025 19:27:40 +0000 Manifest next update: Sun 09 Nov 2025 19:27:40 +0000 Files and hashes: 1: VwO1XNjigCKWBKELyM9bOAERY_o.crl (hash: J8ANGaKE/KpruaQFMFhq4E/qR/8HPK8YtW8mW6q1id4=) 2: D67C31E8637511EA8A698E0BC4F9AE02.roa (hash: 0G9HtTLZBqQUwE8UGiq72iqUjTtI4Gz6+fEdMQN9vkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183EB3/3DB6A362637511EAB9C3680BC4F9AE02/VwO1XNjigCKWBKELyM9bOAERY_o.crl rsync://rpki.apnic.net/member_repository/A9183EB3/3DB6A362637511EAB9C3680BC4F9AE02/VwO1XNjigCKWBKELyM9bOAERY_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VwO1XNjigCKWBKELyM9bOAERY_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2743 (0xab7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183EB3, serialNumber=5703B55CD8E280229604A10BC8CF5B38011163FA Validity Not Before: Nov 2 19:27:40 2025 GMT Not After : Nov 9 19:27:40 2025 GMT Subject: CN=6907b0ad-3e3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:66:13:dd:4a:b8:ce:20:4e:91:cd:b3:40:69: 47:eb:bb:fb:98:81:27:9d:e9:25:83:fb:e9:ca:1a: 64:1f:8f:2c:90:ad:13:76:02:f1:0f:be:84:6d:e1: 7c:c6:19:b9:5d:52:d1:0a:ea:b4:14:bc:bb:74:b4: 2b:9f:8e:6a:dd:31:a2:b6:d1:96:4a:ff:c1:40:6f: 10:29:d7:fd:90:3f:e1:c9:04:67:87:c2:0d:bc:23: 48:5c:eb:72:16:e7:c0:d0:d5:9f:a2:a7:49:ec:01: 32:26:71:87:b8:4f:50:81:86:ca:07:a9:09:5e:43: b7:87:39:d1:5c:32:c2:6f:38:13:b9:6d:c7:e4:10: e4:a8:96:fc:ee:76:8e:4f:47:6d:30:14:ec:65:6e: fe:97:db:0a:e5:6f:00:8a:c5:b1:c4:7d:72:87:95: 08:ce:0d:d8:61:70:03:e2:1c:15:32:fb:81:b1:94: 89:e8:0a:2b:cb:11:d6:99:68:b4:c4:d6:2f:82:16: 65:7f:f7:7c:7a:17:b5:0e:5c:67:3c:4d:d2:c7:03: 8b:ab:33:99:b8:d9:d7:f5:22:3b:33:e2:47:53:17: b3:fc:91:7b:ad:b4:d4:f2:e7:97:b8:1e:81:13:81: f5:67:b3:48:45:6e:80:23:04:45:a4:7f:bb:23:8a: 56:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:AC:15:0C:DA:FE:25:35:80:48:84:00:60:6D:25:FE:B1:31:26:23 X509v3 Authority Key Identifier: keyid:57:03:B5:5C:D8:E2:80:22:96:04:A1:0B:C8:CF:5B:38:01:11:63:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183EB3/3DB6A362637511EAB9C3680BC4F9AE02/VwO1XNjigCKWBKELyM9bOAERY_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VwO1XNjigCKWBKELyM9bOAERY_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183EB3/3DB6A362637511EAB9C3680BC4F9AE02/VwO1XNjigCKWBKELyM9bOAERY_o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:ef:b6:d0:0b:25:e2:47:50:21:3a:7d:30:0d:c6:5e:0b:33: 32:32:2e:c0:33:37:8c:c2:e5:59:1b:8f:99:95:eb:ef:23:90: cc:0e:52:33:39:7b:88:ec:27:5a:67:35:51:7a:09:0d:79:48: e9:0e:ac:d3:9d:fd:89:7c:c7:ae:ac:c2:d8:8f:e1:69:61:70: a0:6d:2b:8e:96:79:16:a6:7d:33:98:9e:a8:1f:41:80:22:b6: 44:aa:57:c1:9c:36:f7:45:8d:91:25:fa:11:78:92:00:b4:97: 16:90:7d:d8:f0:21:8c:e5:a6:c7:1e:a9:55:a3:fa:21:c2:72: 73:6b:1e:8d:b2:a6:90:b5:45:dd:99:21:f6:53:f6:e2:52:59: a8:a4:6a:37:c1:e5:5f:38:79:9b:6b:4c:d2:e7:30:38:db:43: 85:68:3e:17:f9:a9:ca:87:58:2b:68:9f:b9:7d:ca:d5:4b:97: 87:c7:7b:8f:c9:e9:8d:dc:17:da:b9:b8:ae:9b:55:8a:75:f2: fd:59:64:33:6d:d8:de:6d:0a:5a:b2:af:d9:85:3c:66:54:9e: 41:c6:6e:b4:e0:02:c6:0a:6a:bd:60:d3:6e:45:f6:07:7d:20: 3c:db:d7:1d:65:e2:5f:c5:10:0d:0e:94:34:70:91:f6:4a:33: c5:9b:a7:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNFQjMxMTAvBgNVBAUTKDU3MDNCNTVDRDhFMjgwMjI5NjA0QTEwQkM4Q0Y1QjM4 MDExMTYzRkEwHhcNMjUxMTAyMTkyNzQwWhcNMjUxMTA5MTkyNzQwWjAYMRYwFAYD VQQDEw02OTA3YjBhZC0zZTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2mYT3Uq4ziBOkc2zQGlH67v7mIEnneklg/vpyhpkH48skK0TdgLxD76EbeF8 xhm5XVLRCuq0FLy7dLQrn45q3TGittGWSv/BQG8QKdf9kD/hyQRnh8INvCNIXOty FufA0NWfoqdJ7AEyJnGHuE9QgYbKB6kJXkO3hznRXDLCbzgTuW3H5BDkqJb87naO T0dtMBTsZW7+l9sK5W8AisWxxH1yh5UIzg3YYXAD4hwVMvuBsZSJ6AoryxHWmWi0 xNYvghZlf/d8ehe1DlxnPE3SxwOLqzOZuNnX9SI7M+JHUxez/JF7rbTU8ueXuB6B E4H1Z7NIRW6AIwRFpH+7I4pWeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFECsFQza /iU1gEiEAGBtJf6xMSYjMB8GA1UdIwQYMBaAFFcDtVzY4oAilgShC8jPWzgBEWP6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0VCMy8zREI2QTM2MjYz NzUxMUVBQjlDMzY4MEJDNEY5QUUwMi9Wd08xWE5qaWdDS1dCS0VMeU05Yk9BRVJZ X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Z3TzFYTmppZ0NLV0JLRUx5TTliT0FFUllfby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0VCMy8zREI2QTM2MjYzNzUxMUVBQjlDMzY4MEJDNEY5QUUwMi9Wd08xWE5qaWdD S1dCS0VMeU05Yk9BRVJZX28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCm77bQCyXiR1AhOn0wDcZeCzMyMi7AMzeMwuVZG4+ZlevvI5DMDlIz OXuI7CdaZzVRegkNeUjpDqzTnf2JfMeurMLYj+FpYXCgbSuOlnkWpn0zmJ6oH0GA IrZEqlfBnDb3RY2RJfoReJIAtJcWkH3Y8CGM5abHHqlVo/ohwnJzax6NsqaQtUXd mSH2U/biUlmopGo3weVfOHmba0zS5zA420OFaD4X+anKh1graJ+5fcrVS5eHx3uP yemN3Bfaubium1WKdfL9WWQzbdjebQpasq/ZhTxmVJ5Bxm604ALGCmq9YNNuRfYH fSA829cdZeJfxRANDpQ0cJH2SjPFm6f1 -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:21 2025 by rpki-client