$ rpki-client -vvf rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft File: ao09a_bbD13jJOQgxXOwqRhDx5Q.mft (raw, json) Hash identifier: NTV+rUydgsl6R3z8Pg09cxqCCWTuXUHYQ4ZnjMxkPN4= Subject key identifier: 23:70:8E:77:05:66:D9:69:B8:E6:B0:EA:B8:04:C9:B1:5C:49:BB:56 Authority key identifier: 6A:8D:3D:6B:F6:DB:0F:5D:E3:24:E4:20:C5:73:B0:A9:18:43:C7:94 Certificate issuer: /CN=A911A108/serialNumber=6A8D3D6BF6DB0F5DE324E420C573B0A91843C794 Certificate serial: 0188 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft Manifest number: 0184 Signing time: Wed 05 Nov 2025 03:47:58 +0000 Manifest this update: Wed 05 Nov 2025 03:47:58 +0000 Manifest next update: Wed 12 Nov 2025 03:47:58 +0000 Files and hashes: 1: ao09a_bbD13jJOQgxXOwqRhDx5Q.crl (hash: IiorhiG9bY4ZQYBcmXB7QmX/glsovJckKLJ3Q9lW5P8=) 2: 2152B7B06C0411EEBC1AA814C4F9AE02.roa (hash: OgtSGJ5OXdScPeyQQLIa+zffj6S5x6FMffLKFbYg9qM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.crl rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:47:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A108, serialNumber=6A8D3D6BF6DB0F5DE324E420C573B0A91843C794 Validity Not Before: Nov 5 03:47:58 2025 GMT Not After : Nov 12 03:47:58 2025 GMT Subject: CN=690ac8ee-19f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fb:45:2c:ed:25:a6:3c:b6:df:4c:05:63:d5: 78:c3:fa:b3:53:f1:4d:91:c0:92:9a:20:76:13:ab: e0:8e:42:a6:c0:8e:79:a4:12:a1:28:e3:4e:51:df: 19:62:ea:80:49:a8:96:5d:38:e6:1f:cb:2f:84:61: 0e:c0:25:64:ff:2e:6a:a0:f2:82:44:94:e6:bb:1f: c6:22:89:d8:c9:9a:3f:1e:af:ff:fd:b9:bb:d3:32: 63:2d:33:22:2a:29:9c:3a:c4:fc:02:3f:7d:fe:97: 17:02:65:86:51:29:ba:ba:16:c9:a5:0a:b2:e4:75: ae:c5:19:2f:19:8b:af:e3:ed:e5:f9:39:ce:27:a8: 3a:9c:10:4f:d4:aa:81:d8:56:08:26:23:3d:26:48: 6f:64:70:d7:76:46:79:a0:e3:76:f8:9a:a2:36:1f: 7b:6a:44:26:5e:a7:f6:55:7b:e2:d1:7c:71:73:c7: 80:aa:23:47:28:bd:5e:ac:ce:e7:ec:6f:41:6f:52: 91:26:20:31:8f:69:a8:ba:59:74:e1:e1:bd:28:7d: de:8a:ca:71:10:16:89:f3:14:25:a0:d6:24:d3:39: da:fe:53:eb:77:62:93:dc:dd:34:d0:48:71:4c:50: e1:03:36:25:1c:9e:1f:3c:35:d8:9c:72:97:f9:b3: 15:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:70:8E:77:05:66:D9:69:B8:E6:B0:EA:B8:04:C9:B1:5C:49:BB:56 X509v3 Authority Key Identifier: keyid:6A:8D:3D:6B:F6:DB:0F:5D:E3:24:E4:20:C5:73:B0:A9:18:43:C7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:8f:cf:43:24:96:28:6a:d4:4c:d3:d9:05:2a:c2:ad:c5:6d: 41:4a:c3:c8:a8:05:7d:38:62:4b:2d:ec:6a:90:e4:04:b6:88: 19:13:87:cf:bd:b4:d1:88:04:93:50:e3:62:5f:24:cd:ef:40: 6e:55:75:4a:ad:17:50:e9:7a:7b:09:75:52:76:b6:74:c0:2d: 56:98:bb:16:61:56:25:3a:07:e7:7f:0b:f6:fa:00:b8:50:1a: cb:91:fb:8d:43:40:0d:a5:8d:4d:3e:e7:b0:91:79:8c:ca:62: a5:93:bd:4a:f2:2b:24:b7:fe:28:15:d4:49:1d:ff:f9:72:f7: a0:ac:38:e8:c0:d3:fe:35:d4:72:9f:87:99:be:ca:5a:9e:3c: 24:d6:0d:b8:8d:da:0c:0c:35:48:72:2d:e9:fb:ff:cf:2c:e0: e7:2c:da:54:6f:8b:5a:71:7e:bf:55:83:17:75:f6:d9:7d:22: 84:f0:54:7c:a8:b7:f7:96:2e:a3:25:2c:46:a7:c5:bd:8c:ef: de:a3:24:bd:ba:21:d5:bb:ca:51:15:ce:8a:88:88:22:2b:a4: 6a:69:21:ba:91:27:bc:4c:aa:c0:a0:27:11:46:63:97:42:0c: e9:6a:8d:eb:ed:1e:49:a7:b7:b9:97:52:e4:0d:eb:38:3a:c8: b9:2c:42:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUExMDgxMTAvBgNVBAUTKDZBOEQzRDZCRjZEQjBGNURFMzI0RTQyMEM1NzNCMEE5 MTg0M0M3OTQwHhcNMjUxMTA1MDM0NzU4WhcNMjUxMTEyMDM0NzU4WjAYMRYwFAYD VQQDEw02OTBhYzhlZS0xOWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/tFLO0lpjy230wFY9V4w/qzU/FNkcCSmiB2E6vgjkKmwI55pBKhKONOUd8Z YuqASaiWXTjmH8svhGEOwCVk/y5qoPKCRJTmux/GIonYyZo/Hq///bm70zJjLTMi KimcOsT8Aj99/pcXAmWGUSm6uhbJpQqy5HWuxRkvGYuv4+3l+TnOJ6g6nBBP1KqB 2FYIJiM9JkhvZHDXdkZ5oON2+JqiNh97akQmXqf2VXvi0Xxxc8eAqiNHKL1erM7n 7G9Bb1KRJiAxj2moull04eG9KH3eispxEBaJ8xQloNYk0zna/lPrd2KT3N000Ehx TFDhAzYlHJ4fPDXYnHKX+bMVxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNwjncF ZtlpuOaw6rgEybFcSbtWMB8GA1UdIwQYMBaAFGqNPWv22w9d4yTkIMVzsKkYQ8eU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTEwOC9GOTU4RkM0QTZD MDAxMUVFQjk4QjQzMEVDNEY5QUUwMi9hbzA5YV9iYkQxM2pKT1FneFhPd3FSaER4 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FvMDlhX2JiRDEzakpPUWd4WE93cVJoRHg1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTEwOC9GOTU4RkM0QTZDMDAxMUVFQjk4QjQzMEVDNEY5QUUwMi9hbzA5YV9iYkQx M2pKT1FneFhPd3FSaER4NVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJj89DJJYoatRM09kFKsKtxW1BSsPIqAV9OGJLLexqkOQEtogZE4fP vbTRiASTUONiXyTN70BuVXVKrRdQ6Xp7CXVSdrZ0wC1WmLsWYVYlOgfnfwv2+gC4 UBrLkfuNQ0ANpY1NPuewkXmMymKlk71K8iskt/4oFdRJHf/5cvegrDjowNP+NdRy n4eZvspanjwk1g24jdoMDDVIci3p+//PLODnLNpUb4tacX6/VYMXdfbZfSKE8FR8 qLf3li6jJSxGp8W9jO/eoyS9uiHVu8pRFc6KiIgiK6RqaSG6kSe8TKrAoCcRRmOX Qgzpao3r7R5Jp7e5l1LkDes4Osi5LELc -----END CERTIFICATE-----Generated at Wed Nov 5 10:25:41 2025 by rpki-client