$ rpki-client -vvf rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft File: lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft (raw, json) Hash identifier: HUoUUIzT0EVI3kZBNoTJbtxIHnWj3AUHSTedzS2oguo= Subject key identifier: 0D:46:73:FF:0E:07:34:3A:22:1A:73:21:4A:81:B4:C6:5A:F3:99:D3 Authority key identifier: 95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 Certificate issuer: /CN=A9118749/serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft Manifest number: 98 Signing time: Wed 05 Nov 2025 06:41:39 +0000 Manifest this update: Wed 05 Nov 2025 06:41:38 +0000 Manifest next update: Wed 12 Nov 2025 06:41:38 +0000 Files and hashes: 1: lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl (hash: sH4fgiwyo3yrJi2j5A1x5DgCzymfDhfaClVMvZHn1NA=) 2: 0D9D8C8CDC2311EFAEB2F679C4F9AE02.roa (hash: 03QUr5ZAl3/ykq0wAZ+dvJyS4Q+1vw+rUu54WRSVzn8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:41:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118749, serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Validity Not Before: Nov 5 06:41:38 2025 GMT Not After : Nov 12 06:41:38 2025 GMT Subject: CN=690af1a2-ff6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9f:e8:3e:87:fd:a8:d9:1c:61:b6:f1:22:3f: 3d:06:7a:eb:bf:ea:91:67:2c:ba:4b:3f:d8:79:f0: a8:e3:d7:e8:da:f7:d0:80:1b:40:a4:5e:36:bf:60: 2d:c8:eb:5c:96:eb:3f:df:fe:4a:67:38:fc:65:32: 1f:d2:a1:f5:e5:73:21:fb:cd:b1:ae:ff:0e:dd:95: 73:72:8b:83:3e:fd:26:7e:29:f5:46:3b:61:bb:6e: 32:a7:aa:17:7a:0f:ca:cb:bc:06:77:d0:41:f9:59: cd:60:a6:0d:d6:ea:40:79:ae:10:fd:e7:f4:22:52: c8:e8:6b:27:87:fc:6b:c4:37:8c:55:63:53:38:b6: 81:14:f6:3e:1e:36:7b:54:fd:71:10:8a:b5:ca:26: 95:11:62:6d:6b:3d:77:6a:6b:8b:63:1d:31:b6:cd: 1e:e9:c5:b5:ea:18:29:b2:a7:20:04:0c:53:f4:95: d3:f5:4b:73:f1:19:07:5a:4a:6d:02:fa:79:b6:60: 5a:b9:a5:3d:ab:fd:3e:82:ca:04:32:38:2b:ae:67: db:d1:ba:2e:55:7a:29:66:cb:47:ae:7b:27:82:df: 9e:44:c7:8b:d2:18:30:7d:81:bf:07:aa:b1:7d:9a: 34:29:35:3a:c5:2c:c3:a8:19:0f:a4:83:e1:1f:22: a6:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:46:73:FF:0E:07:34:3A:22:1A:73:21:4A:81:B4:C6:5A:F3:99:D3 X509v3 Authority Key Identifier: keyid:95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:37:f2:ef:89:70:3e:aa:c9:d4:37:42:ec:bf:76:36:ce:2b: 4e:a8:a1:72:b0:ef:92:82:16:b2:eb:44:aa:51:d2:5a:12:6f: 5f:0d:8f:9e:bd:26:de:d7:38:89:ed:ce:bd:78:4f:f6:98:a5: 6c:2a:7f:d8:2e:88:c7:ee:3a:2a:12:48:26:fb:9b:75:fa:6a: 65:ac:d4:bc:38:9e:80:e5:a1:59:51:8e:37:fb:32:2b:ca:f4: 10:b5:15:88:d7:a0:e8:2e:2a:16:94:86:77:8b:a4:26:c9:6a: 1c:3f:ea:df:48:f1:67:a1:85:85:98:c2:8b:e4:59:21:91:f9: dc:3d:b5:3f:67:37:ed:91:65:9b:bf:93:08:da:cc:f4:a9:e7: d1:d8:ee:e7:15:f5:6a:a2:48:32:2e:2c:14:fd:c8:fe:12:67: 9b:67:95:5e:90:e2:42:a0:be:e5:ca:6e:ec:27:f8:8c:03:9f: 4f:3b:17:b9:19:6f:ef:be:85:37:c7:a8:51:8a:ad:4c:f5:ca: 73:da:9e:5a:04:e3:b6:32:33:4a:df:91:ed:75:0a:f2:58:17: a0:bf:96:9b:e3:cc:42:2b:bf:8b:b5:ef:92:93:50:ca:ef:05: 6f:9b:23:c5:61:44:5f:b3:8c:f2:e9:8e:9b:be:04:a8:c1:2e: b7:f9:0d:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg3NDkxMTAvBgNVBAUTKDk1NDU5RDVEMUVCMDQwOTVGRDE2M0YwRDg0RDFGM0E0 NkMxNUU0RjAwHhcNMjUxMTA1MDY0MTM4WhcNMjUxMTEyMDY0MTM4WjAYMRYwFAYD VQQDEw02OTBhZjFhMi1mZjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAup/oPof9qNkcYbbxIj89Bnrrv+qRZyy6Sz/YefCo49fo2vfQgBtApF42v2At yOtclus/3/5KZzj8ZTIf0qH15XMh+82xrv8O3ZVzcouDPv0mfin1Rjthu24yp6oX eg/Ky7wGd9BB+VnNYKYN1upAea4Q/ef0IlLI6Gsnh/xrxDeMVWNTOLaBFPY+HjZ7 VP1xEIq1yiaVEWJtaz13amuLYx0xts0e6cW16hgpsqcgBAxT9JXT9Utz8RkHWkpt Avp5tmBauaU9q/0+gsoEMjgrrmfb0bouVXopZstHrnsngt+eRMeL0hgwfYG/B6qx fZo0KTU6xSzDqBkPpIPhHyKmrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA1Gc/8O BzQ6IhpzIUqBtMZa85nTMB8GA1UdIwQYMBaAFJVFnV0esECV/RY/DYTR86RsFeTw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODc0OS9CQTU3REJBNkRD MjAxMUVGOTFCNTQwMUVDNEY5QUUwMi9sVVdkWFI2d1FKWDlGajhOaE5IenBHd1Y1 UEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xVV2RYUjZ3UUpYOUZqOE5oTkh6cEd3VjVQQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODc0OS9CQTU3REJBNkRDMjAxMUVGOTFCNTQwMUVDNEY5QUUwMi9sVVdkWFI2d1FK WDlGajhOaE5IenBHd1Y1UEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEN/LviXA+qsnUN0Lsv3Y2zitOqKFysO+Sghay60SqUdJaEm9fDY+e vSbe1ziJ7c69eE/2mKVsKn/YLojH7joqEkgm+5t1+mplrNS8OJ6A5aFZUY43+zIr yvQQtRWI16DoLioWlIZ3i6QmyWocP+rfSPFnoYWFmMKL5FkhkfncPbU/ZzftkWWb v5MI2sz0qefR2O7nFfVqokgyLiwU/cj+EmebZ5VekOJCoL7lym7sJ/iMA59POxe5 GW/vvoU3x6hRiq1M9cpz2p5aBOO2MjNK35HtdQryWBegv5ab48xCK7+Lte+Sk1DK 7wVvmyPFYURfs4zy6Y6bvgSowS63+Q2w -----END CERTIFICATE-----Generated at Wed Nov 5 16:16:35 2025 by rpki-client