$ rpki-client -vvf rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft File: 9y59Xhu0VCq3_3dzZYg8FgEDTek.mft (raw, json) Hash identifier: MOdtcL9RBiDh02YuTAXp2ej2uojPG4yR5I5Gi9yIAc0= Subject key identifier: CE:13:A7:A8:5F:7F:E4:D0:09:1D:5A:3A:0A:1F:E8:DD:A2:24:CB:29 Authority key identifier: F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 Certificate issuer: /CN=A919631C/serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Certificate serial: 0F0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft Manifest number: 0EFE Signing time: Tue 04 Nov 2025 17:42:08 +0000 Manifest this update: Tue 04 Nov 2025 17:42:07 +0000 Manifest next update: Tue 11 Nov 2025 17:42:07 +0000 Files and hashes: 1: 9y59Xhu0VCq3_3dzZYg8FgEDTek.crl (hash: Vy7v3rpx3X7hc3GB964xp9yq2tOj/VquZHRJW6Ots7c=) 2: DCB2531AC75911EF979D593BC4F9AE02.roa (hash: oL0maWqOk1WBmFKK+iZrpTSZZSpD3rBTTNKLPVPOQyw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:42:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3852 (0xf0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919631C, serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Validity Not Before: Nov 4 17:42:07 2025 GMT Not After : Nov 11 17:42:07 2025 GMT Subject: CN=690a3aef-984f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:98:86:75:3d:c0:99:ae:fb:11:be:eb:d7:de: e4:ef:3c:c4:4f:c6:ab:b8:6d:bb:ab:fc:ea:86:89: 45:b3:fd:cd:a6:4b:c0:39:6a:fb:85:8e:b9:1e:5b: b5:2e:9d:72:0b:bc:e7:b2:39:b7:3d:f8:e4:98:6f: b0:6b:a0:6f:7d:fc:06:95:89:51:6e:0a:6d:9b:e3: b3:94:b3:fc:39:e9:63:64:23:57:f9:c8:98:4e:05: 8f:7d:d0:b4:45:5d:bd:b0:dc:15:68:2b:fd:a3:94: 91:6c:a7:cb:d8:9d:aa:2f:24:8f:98:4a:ad:7a:60: 2e:cb:dc:26:58:a9:53:15:02:46:54:1e:bf:50:eb: 53:52:09:39:d8:d2:67:56:54:e4:a1:c7:7f:c8:40: 6f:01:30:fa:f9:eb:da:da:91:9b:c3:a3:01:40:7a: e5:c0:8a:37:42:dd:ad:10:0b:71:13:00:94:da:e1: 99:59:0a:79:af:44:db:aa:5a:14:db:5d:14:95:50: 26:24:bf:4e:49:43:dc:06:6e:23:e7:e3:f3:cd:97: 52:f3:af:46:67:14:93:8f:87:37:6b:99:2e:12:e3: 0c:b2:a8:db:0e:2e:bd:d9:76:cb:cd:2a:7b:7f:4b: 3c:6a:cb:48:83:62:93:e4:af:d0:f4:a5:59:f0:bb: 9f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:13:A7:A8:5F:7F:E4:D0:09:1D:5A:3A:0A:1F:E8:DD:A2:24:CB:29 X509v3 Authority Key Identifier: keyid:F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:ca:73:fc:cb:79:c0:1b:8d:7f:c4:4d:e9:ae:a5:34:fc:73: 1b:a6:03:74:68:60:b6:f0:38:db:4b:d5:f7:8c:b9:5f:c3:96: 7b:59:a3:c2:15:34:d3:2d:c4:72:9b:90:83:fb:39:6b:d6:06: dd:d6:4b:78:02:62:75:eb:c9:f7:79:3f:a7:b2:fb:87:72:63: 9b:c1:18:14:72:fd:bf:a1:af:71:61:4c:b2:1e:3b:2a:91:be: ce:ad:a1:d9:be:c7:6f:64:e4:0f:1d:81:ea:f3:aa:ed:e6:17: 47:0f:20:a0:fc:f3:7c:13:57:c7:a9:e0:ee:e4:48:d2:4f:21: 9e:d5:a5:f1:6e:42:0f:cd:2e:cd:0d:5d:18:d1:43:d9:b8:10: 8f:ec:9b:49:e9:e1:2c:cf:16:6d:59:15:73:a6:20:62:e1:56: 1e:98:f4:64:f7:e6:23:b6:c8:c2:9c:5e:87:f3:ac:21:34:a9: 41:77:bb:cb:53:18:62:d7:d2:d1:71:25:cc:c5:1e:7e:d5:55: 39:fc:fc:5c:d2:7e:fc:7d:b8:a0:ab:9e:48:c3:5f:b6:03:68: 1b:48:17:76:46:7a:ea:8e:e3:75:ec:49:ed:5c:a7:44:cb:e8: 08:40:b0:7b:6e:96:7e:be:5b:8b:ad:85:ea:d3:46:91:66:fb: 7f:2d:57:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYzMUMxMTAvBgNVBAUTKEY3MkU3RDVFMUJCNDU0MkFCN0ZGNzc3MzY1ODgzQzE2 MDEwMzRERTkwHhcNMjUxMTA0MTc0MjA3WhcNMjUxMTExMTc0MjA3WjAYMRYwFAYD VQQDEw02OTBhM2FlZi05ODRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ZiGdT3Ama77Eb7r197k7zzET8aruG27q/zqholFs/3NpkvAOWr7hY65Hlu1 Lp1yC7znsjm3PfjkmG+wa6BvffwGlYlRbgptm+OzlLP8OeljZCNX+ciYTgWPfdC0 RV29sNwVaCv9o5SRbKfL2J2qLySPmEqtemAuy9wmWKlTFQJGVB6/UOtTUgk52NJn VlTkocd/yEBvATD6+eva2pGbw6MBQHrlwIo3Qt2tEAtxEwCU2uGZWQp5r0TbqloU 210UlVAmJL9OSUPcBm4j5+PzzZdS869GZxSTj4c3a5kuEuMMsqjbDi692XbLzSp7 f0s8astIg2KT5K/Q9KVZ8LufuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM4Tp6hf f+TQCR1aOgof6N2iJMspMB8GA1UdIwQYMBaAFPcufV4btFQqt/93c2WIPBYBA03p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjMxQy9BOUMzMTcwNDhD MjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZDcTNfM2R6WllnOEZnRURU ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5NTlYaHUwVkNxM18zZHpaWWc4RmdFRFRlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjMxQy9BOUMzMTcwNDhDMjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZD cTNfM2R6WllnOEZnRURUZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAynP8y3nAG41/xE3prqU0/HMbpgN0aGC28DjbS9X3jLlfw5Z7WaPC FTTTLcRym5CD+zlr1gbd1kt4AmJ168n3eT+nsvuHcmObwRgUcv2/oa9xYUyyHjsq kb7OraHZvsdvZOQPHYHq86rt5hdHDyCg/PN8E1fHqeDu5EjSTyGe1aXxbkIPzS7N DV0Y0UPZuBCP7JtJ6eEszxZtWRVzpiBi4VYemPRk9+YjtsjCnF6H86whNKlBd7vL Uxhi19LRcSXMxR5+1VU5/Pxc0n78fbigq55Iw1+2A2gbSBd2RnrqjuN17EntXKdE y+gIQLB7bpZ+vluLrYXq00aRZvt/LVed -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:41 2025 by rpki-client