$ rpki-client -vvf rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft File: aFlbmOTCezC6ozHOqscmF2fLkus.mft (raw, json) Hash identifier: J+b8Juaq1q3pdRRbN6ioeyzDuZl9GddbJeEEe1PvT+Q= Subject key identifier: 7A:9E:D0:27:0D:42:19:BB:E2:D1:40:C2:01:E3:B5:4A:83:91:E3:1B Authority key identifier: 68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB Certificate issuer: /CN=A9119AE2/serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Certificate serial: 06B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft Manifest number: 06A7 Signing time: Tue 04 Nov 2025 22:23:24 +0000 Manifest this update: Tue 04 Nov 2025 22:23:24 +0000 Manifest next update: Tue 11 Nov 2025 22:23:24 +0000 Files and hashes: 1: aFlbmOTCezC6ozHOqscmF2fLkus.crl (hash: rwFSsFxdbkvmX5b70WxrU5XLV4LmMsj7IlyHbR16dYg=) 2: 8D20F290411811ECA0929516C4F9AE02.roa (hash: RzJGgawBbn3xUezpVG2c9suPVgigMwJa0fSwMeigVU8=) 3: 8D23BDE287C611EB8C8DDB70C4F9AE02.roa (hash: dsN/B56rqWk3m7WjQOyUkNCCDpI9L9GI0dqzzx2vJVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:23:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1717 (0x6b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119AE2, serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Validity Not Before: Nov 4 22:23:24 2025 GMT Not After : Nov 11 22:23:24 2025 GMT Subject: CN=690a7cdc-1a0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f7:1b:fe:42:40:ec:41:fb:9a:3d:9c:98:f3: bd:d1:88:85:7a:46:07:2b:36:e4:67:52:7b:36:37: 8c:5b:2b:af:37:7c:b5:72:65:28:2c:84:2a:15:98: 50:04:e1:12:07:cb:ce:37:24:61:fe:f9:84:82:5f: 8b:22:9f:37:0b:85:e1:8a:65:8f:cb:06:e4:f1:61: 74:d7:e6:ef:b7:5e:0b:0b:d8:26:f0:23:b4:54:e6: 5d:07:8f:b0:92:de:76:9c:a1:52:94:7f:fb:d3:39: f7:b6:a9:ab:5d:a5:01:60:3b:99:b4:a1:70:bd:eb: e8:05:79:22:3c:42:5b:8a:ee:04:3c:c8:c6:ce:9d: ad:4d:15:52:c8:97:7f:6a:65:13:04:73:7e:38:98: 80:27:89:f8:46:74:dc:d3:ac:ae:b2:ae:a8:c4:0a: 71:35:38:b7:e3:47:4a:66:7f:dc:42:e0:3e:e4:c7: 27:21:7c:23:07:a3:18:70:ed:fc:a8:ce:61:d4:9e: 32:36:7b:65:f4:8d:ad:23:c0:d7:69:eb:0e:78:c4: fc:df:8f:14:ae:7c:27:52:52:4a:2f:7e:d3:80:33: ea:de:3e:c2:4a:47:70:03:84:df:8f:58:c5:13:17: 67:d2:34:68:01:0f:b3:8a:03:5e:99:a7:8e:c0:1b: 14:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:9E:D0:27:0D:42:19:BB:E2:D1:40:C2:01:E3:B5:4A:83:91:E3:1B X509v3 Authority Key Identifier: keyid:68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:f7:fa:85:5f:9d:1b:d4:46:01:fa:f6:72:2d:ea:09:b0:a7: 98:30:7c:d7:04:fe:8c:9b:59:7c:27:08:9a:82:08:4a:4a:e9: d7:d7:16:00:97:e6:61:98:5a:62:aa:ca:1d:46:dd:db:1b:f7: 2f:48:74:67:97:d2:f5:d0:1e:18:ec:43:31:cb:c3:ab:f0:54: 71:e3:9f:d2:27:fc:93:9c:b7:e3:6b:9e:25:d4:a4:90:ee:b8: 7c:a5:30:d6:4a:4f:14:64:cc:a2:39:78:0e:ba:ce:b5:5e:c0: d4:66:81:a2:8b:f3:09:13:51:49:4f:bf:a0:84:00:86:a0:59: 2d:95:b5:8e:4f:32:a1:56:e6:aa:8c:a1:87:9b:bd:31:bc:71: b1:bf:d7:33:76:3d:5d:cb:6e:1b:6d:71:3e:ac:dd:36:70:69: 36:46:07:da:2f:9c:32:77:ec:78:5c:93:b4:b7:8f:c3:9c:e4: b5:b9:25:14:da:d1:7a:e4:b7:6e:b4:ba:f2:77:0e:9c:28:d1: 97:83:f5:04:d5:c4:39:a6:5c:6c:89:76:23:71:06:00:61:c6: 3e:95:06:77:20:3a:72:72:20:90:3f:92:9b:b1:a2:7c:fc:ea: 35:f3:6c:12:8a:e6:74:1d:b4:05:32:34:7a:96:ad:c6:02:06: f3:33:fb:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlBRTIxMTAvBgNVBAUTKDY4NTk1Qjk4RTRDMjdCMzBCQUEzMzFDRUFBQzcyNjE3 NjdDQjkyRUIwHhcNMjUxMTA0MjIyMzI0WhcNMjUxMTExMjIyMzI0WjAYMRYwFAYD VQQDEw02OTBhN2NkYy0xYTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Pcb/kJA7EH7mj2cmPO90YiFekYHKzbkZ1J7NjeMWyuvN3y1cmUoLIQqFZhQ BOESB8vONyRh/vmEgl+LIp83C4XhimWPywbk8WF01+bvt14LC9gm8CO0VOZdB4+w kt52nKFSlH/70zn3tqmrXaUBYDuZtKFwvevoBXkiPEJbiu4EPMjGzp2tTRVSyJd/ amUTBHN+OJiAJ4n4RnTc06yusq6oxApxNTi340dKZn/cQuA+5McnIXwjB6MYcO38 qM5h1J4yNntl9I2tI8DXaesOeMT8348UrnwnUlJKL37TgDPq3j7CSkdwA4Tfj1jF Exdn0jRoAQ+zigNemaeOwBsUzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHqe0CcN Qhm74tFAwgHjtUqDkeMbMB8GA1UdIwQYMBaAFGhZW5jkwnswuqMxzqrHJhdny5Lr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUFFMi84QUI4QzE4QTg3 QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6QzZvekhPcXNjbUYyZkxr dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGbGJtT1RDZXpDNm96SE9xc2NtRjJmTGt1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUFFMi84QUI4QzE4QTg3QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6 QzZvekhPcXNjbUYyZkxrdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB9/qFX50b1EYB+vZyLeoJsKeYMHzXBP6Mm1l8JwiagghKSunX1xYA l+ZhmFpiqsodRt3bG/cvSHRnl9L10B4Y7EMxy8Or8FRx45/SJ/yTnLfja54l1KSQ 7rh8pTDWSk8UZMyiOXgOus61XsDUZoGii/MJE1FJT7+ghACGoFktlbWOTzKhVuaq jKGHm70xvHGxv9czdj1dy24bbXE+rN02cGk2RgfaL5wyd+x4XJO0t4/DnOS1uSUU 2tF65LdutLrydw6cKNGXg/UE1cQ5plxsiXYjcQYAYcY+lQZ3IDpyciCQP5KbsaJ8 /Oo182wSiuZ0HbQFMjR6lq3GAgbzM/tX -----END CERTIFICATE-----Generated at Wed Nov 5 16:35:47 2025 by rpki-client