$ rpki-client -vvf rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft File: 489F-AUQY7vbMX_dFREyqUAE_Vs.mft (raw, json) Hash identifier: a68OqlPpM3u3zugjKpC5zwOFnwYB+DC5ORX3c/c0d9w= Subject key identifier: A7:4D:42:28:48:A0:27:FC:75:61:C6:14:5A:4E:41:4B:C5:8F:AF:FE Authority key identifier: E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B Certificate issuer: /CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Certificate serial: 0330 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft Manifest number: 0318 Signing time: Mon 03 Nov 2025 01:08:18 +0000 Manifest this update: Mon 03 Nov 2025 01:08:17 +0000 Manifest next update: Mon 10 Nov 2025 01:08:17 +0000 Files and hashes: 1: 489F-AUQY7vbMX_dFREyqUAE_Vs.crl (hash: D8QQbRWZ2Ym5/LPR1pQEMyp/qsgGMQSo/kT0kEmILs0=) 2: 920E981CCAAA11ED8371524CC4F9AE02.roa (hash: +6obkqNFt0tnKMRz6dRit6ArMoN+fxhvRElw6ROUx6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:08:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 816 (0x330) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197202, serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Validity Not Before: Nov 3 01:08:17 2025 GMT Not After : Nov 10 01:08:17 2025 GMT Subject: CN=69080082-012f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9d:7f:96:45:28:bf:a2:94:45:a9:02:87:57: 7d:f8:a6:e9:fc:c9:69:9c:5f:5d:cb:0a:5c:61:d2: 9a:ae:33:a7:ef:9e:81:00:f1:0b:bd:c6:97:7d:af: c3:94:6a:40:b3:6f:95:37:fb:4c:5f:6f:32:85:19: d2:b1:02:22:bb:db:95:96:33:a6:85:e8:60:2c:91: 56:5f:41:d8:5a:fd:99:e4:67:d7:26:19:28:ae:9c: 9a:29:f8:75:1e:d9:70:9a:78:54:62:67:67:85:9b: a3:f2:1b:15:8b:37:f9:f4:ea:f6:f4:97:ac:0e:71: d1:69:27:b1:ab:06:d4:eb:60:f4:bb:fe:92:2b:c9: 78:b6:2e:be:79:8b:a1:26:93:e0:bb:06:5d:84:9c: a5:44:ee:79:bc:38:22:82:92:5f:c3:54:30:45:7b: 23:58:b5:f9:5e:5b:27:82:b5:7a:1e:f9:83:51:a2: 37:5b:45:b9:66:50:10:6e:71:a4:24:8b:c2:88:5c: 17:f9:ee:5f:c5:30:c2:9a:a3:b7:7d:ee:6c:d6:b3: 07:9a:fa:87:b7:35:93:dd:ae:73:b7:29:5b:4a:55: e6:0a:fa:2b:a3:00:f4:c8:3f:99:9a:50:06:81:d2: 71:de:bd:62:cd:96:72:3f:2f:ee:fb:13:3a:1a:2b: f3:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:4D:42:28:48:A0:27:FC:75:61:C6:14:5A:4E:41:4B:C5:8F:AF:FE X509v3 Authority Key Identifier: keyid:E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:74:c6:10:69:a9:10:0c:9d:65:c5:97:85:97:7c:79:43:71: 51:d0:1b:43:70:12:1c:06:51:f1:c1:c5:73:71:e3:31:e3:93: d3:82:1a:7b:ce:cc:d4:86:1a:e0:50:04:ea:a8:a3:db:7d:28: 3c:97:37:77:42:65:ba:35:c2:d7:fa:e8:e6:50:ff:46:b7:ad: b3:44:c3:92:3b:bc:f3:db:d1:4b:ff:f3:9b:cc:dd:7a:3f:e7: b4:e2:1f:ea:2b:14:43:26:2f:fb:d7:35:57:8f:9b:5d:ca:f4: b4:92:81:52:14:eb:97:ac:6d:64:da:06:b4:ef:53:fe:ed:9f: f1:64:59:f2:19:ec:67:60:ed:d4:12:a8:b3:d5:53:6e:85:3e: c3:b6:9c:6c:e2:76:9a:88:84:cd:46:a0:3c:bd:8f:e7:55:b5: d7:a6:a8:05:58:21:c7:79:26:41:46:5b:9f:39:d7:7b:47:9e: 0e:c8:d1:58:0a:cf:c7:26:f0:2d:4b:a4:29:b8:a2:ef:2c:22: ca:67:ea:39:6b:90:f4:9b:8e:32:3b:1c:3c:49:16:b4:3d:4e: c2:f4:5e:96:80:ad:02:ca:aa:7a:40:7a:c9:a6:81:cc:65:77: d1:db:96:51:7d:db:36:a0:34:56:eb:a9:62:e9:be:e3:26:1f: a6:de:0d:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyMDIxMTAvBgNVBAUTKEUzQ0Y0NUY4MDUxMDYzQkJEQjMxN0ZERDE1MTEzMkE5 NDAwNEZENUIwHhcNMjUxMTAzMDEwODE3WhcNMjUxMTEwMDEwODE3WjAYMRYwFAYD VQQDEw02OTA4MDA4Mi0wMTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx51/lkUov6KURakCh1d9+Kbp/MlpnF9dywpcYdKarjOn756BAPELvcaXfa/D lGpAs2+VN/tMX28yhRnSsQIiu9uVljOmhehgLJFWX0HYWv2Z5GfXJhkorpyaKfh1 HtlwmnhUYmdnhZuj8hsVizf59Or29JesDnHRaSexqwbU62D0u/6SK8l4ti6+eYuh JpPguwZdhJylRO55vDgigpJfw1QwRXsjWLX5XlsngrV6HvmDUaI3W0W5ZlAQbnGk JIvCiFwX+e5fxTDCmqO3fe5s1rMHmvqHtzWT3a5ztylbSlXmCvorowD0yD+ZmlAG gdJx3r1izZZyPy/u+xM6GivzpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKdNQihI oCf8dWHGFFpOQUvFj6/+MB8GA1UdIwQYMBaAFOPPRfgFEGO72zF/3RURMqlABP1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzIwMi8wQUZFQ0E3MEY3 MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3dmJNWF9kRlJFeXFVQUVf VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ4OUYtQVVRWTd2Yk1YX2RGUkV5cVVBRV9Wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzIwMi8wQUZFQ0E3MEY3MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3 dmJNWF9kRlJFeXFVQUVfVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGdMYQaakQDJ1lxZeFl3x5Q3FR0BtDcBIcBlHxwcVzceMx45PTghp7 zszUhhrgUATqqKPbfSg8lzd3QmW6NcLX+ujmUP9Gt62zRMOSO7zz29FL//ObzN16 P+e04h/qKxRDJi/71zVXj5tdyvS0koFSFOuXrG1k2ga071P+7Z/xZFnyGexnYO3U Eqiz1VNuhT7Dtpxs4naaiITNRqA8vY/nVbXXpqgFWCHHeSZBRlufOdd7R54OyNFY Cs/HJvAtS6QpuKLvLCLKZ+o5a5D0m44yOxw8SRa0PU7C9F6WgK0Cyqp6QHrJpoHM ZXfR25ZRfds2oDRW66li6b7jJh+m3g2S -----END CERTIFICATE-----Generated at Tue Nov 4 16:06:13 2025 by rpki-client