$ rpki-client -vvf rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/r0YdV6kKM1svp3p6rsFnNJVJI7E.mft File: r0YdV6kKM1svp3p6rsFnNJVJI7E.mft (raw, json) Hash identifier: 3/i8Qr1/wiW+uAFr0Uofug+nXqBCdv8wiXJH9I5Ck1o= Subject key identifier: 21:B3:74:75:4B:E6:5F:DE:40:EE:C0:15:2D:A4:17:9F:D7:3C:EF:C0 Authority key identifier: AF:46:1D:57:A9:0A:33:5B:2F:A7:7A:7A:AE:C1:67:34:95:49:23:B1 Certificate issuer: /CN=A9114EF6/serialNumber=AF461D57A90A335B2FA77A7AAEC16734954923B1 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r0YdV6kKM1svp3p6rsFnNJVJI7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/r0YdV6kKM1svp3p6rsFnNJVJI7E.mft Manifest number: A4 Signing time: Mon 03 Nov 2025 06:25:06 +0000 Manifest this update: Mon 03 Nov 2025 06:25:06 +0000 Manifest next update: Mon 10 Nov 2025 06:25:06 +0000 Files and hashes: 1: r0YdV6kKM1svp3p6rsFnNJVJI7E.crl (hash: 3ocp1aksSS1MaonTT68FOLGIWaY8rMw0kl71CcjZe0A=) 2: 7EF2846AD16911EF9ECCE01FC4F9AE02.roa (hash: rKGqZf7K9QKHRBXlpgZth78K2mjkrDt+mwCvAfFIYLc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/r0YdV6kKM1svp3p6rsFnNJVJI7E.crl rsync://rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/r0YdV6kKM1svp3p6rsFnNJVJI7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r0YdV6kKM1svp3p6rsFnNJVJI7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:25:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114EF6, serialNumber=AF461D57A90A335B2FA77A7AAEC16734954923B1 Validity Not Before: Nov 3 06:25:06 2025 GMT Not After : Nov 10 06:25:06 2025 GMT Subject: CN=69084ac2-8671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:6c:3a:e8:69:a3:5b:df:dc:fd:b1:79:07:6e: f5:ea:e6:e3:df:6f:39:c8:e0:6c:1a:a4:4a:66:4b: 9f:53:92:04:f3:2b:a5:33:02:8b:2b:52:c1:0d:3b: 0d:8f:a5:c0:e3:5d:41:57:e7:51:f0:b9:41:f0:14: b5:c9:3b:15:89:d5:06:16:dc:71:6f:e1:74:9d:cd: 15:96:6a:0a:90:7d:0c:fe:d2:3b:5d:e9:b5:de:55: 62:8c:2c:3d:90:20:b3:35:11:16:eb:64:93:bd:6a: 0c:c9:fd:c3:5e:d2:1f:9e:56:25:ad:3f:76:22:54: 4e:72:c4:56:c6:b5:6d:50:bd:84:f4:1c:2a:76:6c: e5:f7:2d:3d:70:a5:88:9e:48:43:9c:9f:9b:13:1a: 77:d5:ae:95:fd:ab:8c:a0:40:0f:c5:96:48:08:e1: 15:9a:b0:f2:40:9b:ed:91:57:49:4b:6a:c6:72:fd: 60:e3:0b:93:23:27:c1:a5:2a:c6:4f:db:80:f9:b6: 61:c9:82:86:62:0b:68:c6:d4:0d:11:b5:86:8b:94: 06:f4:65:f7:cf:46:6b:70:87:95:db:ea:08:be:6f: f9:6f:c8:b6:03:f3:4d:77:ad:e4:42:98:40:21:ec: 14:ff:ec:0d:38:23:55:9c:b7:b5:2f:ae:5c:46:83: fe:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:B3:74:75:4B:E6:5F:DE:40:EE:C0:15:2D:A4:17:9F:D7:3C:EF:C0 X509v3 Authority Key Identifier: keyid:AF:46:1D:57:A9:0A:33:5B:2F:A7:7A:7A:AE:C1:67:34:95:49:23:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/r0YdV6kKM1svp3p6rsFnNJVJI7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r0YdV6kKM1svp3p6rsFnNJVJI7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114EF6/8DAE05A0D0D411EFBCD5123EC4F9AE02/r0YdV6kKM1svp3p6rsFnNJVJI7E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:0b:cc:92:fe:ff:bd:26:8a:83:bc:8f:df:bc:98:d7:dd:c3: b2:b8:7d:1f:c6:e3:44:c6:c6:55:a2:4a:44:5b:a4:0e:13:cf: e6:66:ca:06:4a:ea:f2:e5:d8:07:50:93:9b:67:8f:4b:e6:cc: 88:23:d6:fc:d6:15:44:2d:90:84:00:ec:4d:c2:f8:9b:04:58: db:b2:b0:05:bc:ea:6d:cb:1e:14:2c:e6:65:4b:8b:80:b0:cc: a2:d7:a6:01:37:d5:0c:3a:8d:20:d1:0e:c4:b4:dc:75:be:ac: 25:71:83:e8:25:d9:7a:b8:87:7e:61:f8:bb:6a:01:ff:81:e0: 51:e3:aa:21:f3:78:43:c8:77:0f:24:58:bc:41:58:58:d9:d3: 1d:56:67:da:ec:97:c2:da:b2:fa:04:9d:ad:f6:d4:c8:e5:31: a1:4d:29:26:0d:48:68:67:38:94:94:23:ce:4b:87:fb:ab:67: d1:6d:16:34:25:21:ed:3a:c9:58:4f:a3:5d:93:2a:03:31:57: 39:af:54:4c:50:26:e1:60:82:4c:b1:5b:da:0c:11:bf:18:5d: dc:00:3a:32:09:17:10:33:ab:40:43:b2:b2:5b:c0:0c:d1:0e: 67:71:e6:ed:68:70:3f:58:1e:d2:e8:2a:c0:43:71:32:55:d6: 3a:83:d1:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTRFRjYxMTAvBgNVBAUTKEFGNDYxRDU3QTkwQTMzNUIyRkE3N0E3QUFFQzE2NzM0 OTU0OTIzQjEwHhcNMjUxMTAzMDYyNTA2WhcNMjUxMTEwMDYyNTA2WjAYMRYwFAYD VQQDEw02OTA4NGFjMi04NjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Ww66GmjW9/c/bF5B2716ubj3285yOBsGqRKZkufU5IE8yulMwKLK1LBDTsN j6XA411BV+dR8LlB8BS1yTsVidUGFtxxb+F0nc0VlmoKkH0M/tI7Xem13lVijCw9 kCCzNREW62STvWoMyf3DXtIfnlYlrT92IlROcsRWxrVtUL2E9Bwqdmzl9y09cKWI nkhDnJ+bExp31a6V/auMoEAPxZZICOEVmrDyQJvtkVdJS2rGcv1g4wuTIyfBpSrG T9uA+bZhyYKGYgtoxtQNEbWGi5QG9GX3z0ZrcIeV2+oIvm/5b8i2A/NNd63kQphA IewU/+wNOCNVnLe1L65cRoP+VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCGzdHVL 5l/eQO7AFS2kF5/XPO/AMB8GA1UdIwQYMBaAFK9GHVepCjNbL6d6eq7BZzSVSSOx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNEVGNi84REFFMDVBMEQw RDQxMUVGQkNENTEyM0VDNEY5QUUwMi9yMFlkVjZrS00xc3ZwM3A2cnNGbk5KVkpJ N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3IwWWRWNmtLTTFzdnAzcDZyc0ZuTkpWSkk3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NEVGNi84REFFMDVBMEQwRDQxMUVGQkNENTEyM0VDNEY5QUUwMi9yMFlkVjZrS00x c3ZwM3A2cnNGbk5KVkpJN0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOC8yS/v+9JoqDvI/fvJjX3cOyuH0fxuNExsZVokpEW6QOE8/mZsoG Sury5dgHUJObZ49L5syII9b81hVELZCEAOxNwvibBFjbsrAFvOptyx4ULOZlS4uA sMyi16YBN9UMOo0g0Q7EtNx1vqwlcYPoJdl6uId+Yfi7agH/geBR46oh83hDyHcP JFi8QVhY2dMdVmfa7JfC2rL6BJ2t9tTI5TGhTSkmDUhoZziUlCPOS4f7q2fRbRY0 JSHtOslYT6NdkyoDMVc5r1RMUCbhYIJMsVvaDBG/GF3cADoyCRcQM6tAQ7KyW8AM 0Q5ncebtaHA/WB7S6CrAQ3EyVdY6g9Hh -----END CERTIFICATE-----Generated at Tue Nov 4 19:05:00 2025 by rpki-client