$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft File: PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft (raw, json) Hash identifier: lUZGLn4rGj/EtHXNKb47XF95fvROSiEzNHeCBjf+jCk= Subject key identifier: 9A:37:9B:F2:B7:36:4C:DF:65:7B:39:6A:70:15:29:4F:3F:39:B2:39 Authority key identifier: 3D:1F:7F:B1:46:41:0A:3C:33:5B:33:C4:98:2A:73:63:8B:E5:40:9E Certificate issuer: /CN=A91DD3FB/serialNumber=3D1F7FB146410A3C335B33C4982A73638BE5409E Certificate serial: 07FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft Manifest number: 07F6 Signing time: Sun 02 Nov 2025 20:58:38 +0000 Manifest this update: Sun 02 Nov 2025 20:58:38 +0000 Manifest next update: Sun 09 Nov 2025 20:58:38 +0000 Files and hashes: 1: PR9_sUZBCjwzWzPEmCpzY4vlQJ4.crl (hash: OTYlW/wo4wgo9beMVClv7rfprr1rUE9Pah82Xya4qkU=) 2: 2037569602BD11EBB333DA0FC4F9AE02.roa (hash: wrP/aiUubLvMy2sDZxNt1LMzFgR4k2obYAa+c5WHPY8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.crl rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:58:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2044 (0x7fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD3FB, serialNumber=3D1F7FB146410A3C335B33C4982A73638BE5409E Validity Not Before: Nov 2 20:58:38 2025 GMT Not After : Nov 9 20:58:38 2025 GMT Subject: CN=6907c5fe-572a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:01:ee:be:45:35:2e:9d:31:ce:81:f4:24:f7: 75:3c:54:c5:27:94:85:45:70:18:1b:f2:4a:89:4e: 5b:e1:2a:73:78:4f:42:a7:52:4a:b0:d5:b8:67:ec: f8:56:f5:75:46:03:08:5f:ab:a2:29:61:95:6e:3a: e1:7a:84:96:88:b1:a5:87:24:2d:46:f8:d0:47:f2: 42:47:32:a7:fe:21:5e:bd:03:39:50:32:e5:60:e5: 3f:ec:db:f6:f8:10:03:0c:14:8e:3a:b8:7c:04:ff: 1c:92:77:b0:88:75:2d:38:f4:e2:0c:66:29:22:2c: 15:3e:1c:8e:de:14:ba:37:29:bd:ec:99:56:53:f4: 0f:4c:6a:c1:f6:5f:55:82:29:b7:8d:e8:69:fe:d4: fc:17:4f:8d:d0:0f:ec:e5:b7:c1:08:95:76:86:83: 1f:99:5f:8f:19:86:26:f5:93:ee:2f:9b:6a:4b:75: c3:9a:f9:23:1d:56:f0:96:94:99:c8:ee:38:a2:fc: 82:60:e7:77:6a:93:c1:67:e2:2d:7d:59:33:6b:a2: 20:9c:45:e1:14:4d:2c:27:df:8d:ba:c2:79:39:66: 8e:0e:b8:21:63:fa:66:ca:0f:b6:b6:7b:e6:e5:6d: 05:13:12:23:49:85:be:a5:c0:bb:2a:ae:32:51:53: 8c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:37:9B:F2:B7:36:4C:DF:65:7B:39:6A:70:15:29:4F:3F:39:B2:39 X509v3 Authority Key Identifier: keyid:3D:1F:7F:B1:46:41:0A:3C:33:5B:33:C4:98:2A:73:63:8B:E5:40:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:cf:9c:69:53:a4:00:bd:79:64:1a:82:82:49:5b:8f:76:3e: 06:7e:ad:a0:e2:6a:c2:95:07:d3:71:b1:1f:3e:22:ee:ce:f3: 02:fb:1d:19:00:f8:3e:08:ad:97:0c:f7:bc:16:eb:fd:8e:f1: 65:d4:e7:30:3a:cd:29:0f:c5:47:8e:c8:66:0b:0c:1c:79:6b: d4:78:68:89:19:f7:30:af:5c:52:5d:1c:9d:51:5e:17:19:04: ac:56:ab:8a:0e:d0:d5:f7:77:d5:bc:f6:a8:22:93:b9:32:c9: 8a:1a:9d:93:ab:53:9e:49:51:58:8d:45:f2:64:8d:56:c9:97: d8:18:57:37:24:f9:10:d0:1f:82:3b:a2:02:84:5e:1b:c6:ab: 21:f7:7e:9b:5b:1f:f8:3f:1e:df:0f:df:11:0d:e8:02:e6:f0: d3:41:9c:b1:0a:12:da:99:42:00:5f:f4:f1:91:a5:4c:59:80: b4:4c:53:03:aa:3e:f5:d7:43:f8:12:7d:db:a0:49:0a:b8:1d: b4:52:eb:6b:41:3a:51:2f:54:df:be:6c:50:fb:22:8f:b3:86: b6:9a:98:da:17:29:db:65:3b:e5:60:2b:8b:1d:49:0e:77:e3: ea:3c:d3:39:74:52:29:72:88:5a:c0:43:f0:c8:12:db:2a:4a: dd:55:e1:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQzRkIxMTAvBgNVBAUTKDNEMUY3RkIxNDY0MTBBM0MzMzVCMzNDNDk4MkE3MzYz OEJFNTQwOUUwHhcNMjUxMTAyMjA1ODM4WhcNMjUxMTA5MjA1ODM4WjAYMRYwFAYD VQQDEw02OTA3YzVmZS01NzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQHuvkU1Lp0xzoH0JPd1PFTFJ5SFRXAYG/JKiU5b4SpzeE9Cp1JKsNW4Z+z4 VvV1RgMIX6uiKWGVbjrheoSWiLGlhyQtRvjQR/JCRzKn/iFevQM5UDLlYOU/7Nv2 +BADDBSOOrh8BP8cknewiHUtOPTiDGYpIiwVPhyO3hS6Nym97JlWU/QPTGrB9l9V gim3jehp/tT8F0+N0A/s5bfBCJV2hoMfmV+PGYYm9ZPuL5tqS3XDmvkjHVbwlpSZ yO44ovyCYOd3apPBZ+ItfVkza6IgnEXhFE0sJ9+NusJ5OWaODrghY/pmyg+2tnvm 5W0FExIjSYW+pcC7Kq4yUVOMyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJo3m/K3 NkzfZXs5anAVKU8/ObI5MB8GA1UdIwQYMBaAFD0ff7FGQQo8M1szxJgqc2OL5UCe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDNGQi80MjEyQkM5RTAy QkIxMUVCQjNENDA0MEJDNEY5QUUwMi9QUjlfc1VaQkNqd3pXelBFbUNwelk0dmxR SjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BSOV9zVVpCQ2p3eld6UEVtQ3B6WTR2bFFKNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDNGQi80MjEyQkM5RTAyQkIxMUVCQjNENDA0MEJDNEY5QUUwMi9QUjlfc1VaQkNq d3pXelBFbUNwelk0dmxRSjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNz5xpU6QAvXlkGoKCSVuPdj4Gfq2g4mrClQfTcbEfPiLuzvMC+x0Z APg+CK2XDPe8Fuv9jvFl1OcwOs0pD8VHjshmCwwceWvUeGiJGfcwr1xSXRydUV4X GQSsVquKDtDV93fVvPaoIpO5MsmKGp2Tq1OeSVFYjUXyZI1WyZfYGFc3JPkQ0B+C O6IChF4bxqsh936bWx/4Px7fD98RDegC5vDTQZyxChLamUIAX/TxkaVMWYC0TFMD qj7110P4En3boEkKuB20UutrQTpRL1TfvmxQ+yKPs4a2mpjaFynbZTvlYCuLHUkO d+PqPNM5dFIpcohawEPwyBLbKkrdVeE1 -----END CERTIFICATE-----Generated at Mon Nov 3 18:08:18 2025 by rpki-client