$ rpki-client -vvf rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft File: rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft (raw, json) Hash identifier: 1IRbntVAzm44Dt+dZ7xgf5Q0Ii238FVe1o0p0cGjOEY= Subject key identifier: 3B:EF:85:95:1E:17:92:D0:86:A3:62:CB:CB:91:0D:36:71:06:1F:A8 Authority key identifier: AC:88:64:26:38:24:ED:E3:65:5B:99:74:2D:FB:39:E8:83:BB:91:45 Certificate issuer: /CN=A9120974/serialNumber=AC8864263824EDE3655B99742DFB39E883BB9145 Certificate serial: 10AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft Manifest number: 10A5 Signing time: Tue 04 Nov 2025 17:26:11 +0000 Manifest this update: Tue 04 Nov 2025 17:26:10 +0000 Manifest next update: Tue 11 Nov 2025 17:26:10 +0000 Files and hashes: 1: rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl (hash: Worou8t5zyF7X1gGXwl2QLtjQCpNDv8juqE4F2tz7pY=) 2: CBAED530FE6A11ECAB640344C4F9AE02.roa (hash: 8EmwRqTTi0D6Jqb1QQoQFecB/Y41qpXK3rVqh44z4W0=) 3: 6B1B75BC756311EFB6C7E64CC4F9AE02.roa (hash: 7SbyZl6WzchDvPbf0/nq4tvYfqbtpgq7UAgLfrYKHTw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:26:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4267 (0x10ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120974, serialNumber=AC8864263824EDE3655B99742DFB39E883BB9145 Validity Not Before: Nov 4 17:26:10 2025 GMT Not After : Nov 11 17:26:10 2025 GMT Subject: CN=690a3732-bafa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b4:29:67:6b:1b:3e:80:78:82:f7:09:15:45: bb:1c:13:ab:4b:5d:7b:07:0a:cd:fb:ef:c6:ed:b5: 64:4b:06:92:ad:e2:b4:46:2e:ec:45:e2:f2:c1:5a: 9e:b9:f9:8e:76:72:05:3f:32:5a:fb:91:e4:c0:44: dc:b8:67:da:ed:4c:fa:fb:5c:68:34:e9:11:f0:82: c8:7c:c1:d2:77:c0:25:c6:7e:11:68:2d:0f:93:b5: 05:fe:54:9f:a0:f3:13:05:38:1e:d8:ef:85:c2:68: a3:78:49:be:97:ec:6c:74:cb:c9:e0:a7:cd:cb:98: 29:14:05:9e:a6:31:a4:04:7a:77:da:82:75:9b:d7: 0c:9d:57:48:a4:12:10:10:e3:bb:fe:31:78:13:ca: 09:70:0b:c4:f2:dc:04:63:d3:dc:40:6b:43:bc:69: ec:7d:a4:9a:8a:c3:ec:1e:ab:5d:25:dc:b6:84:51: ee:ec:79:3d:3d:fc:ec:02:ff:25:cb:b5:2b:90:b8: 16:49:e5:0f:1b:72:85:fa:66:40:6c:81:da:93:73: 10:7a:09:d7:22:7e:ce:9b:cb:88:31:38:00:b1:57: 2a:0c:b9:42:d9:4d:18:8e:54:57:02:b0:b5:4e:9e: e1:17:e6:a1:12:be:25:a9:3f:ef:1e:86:ec:ac:60: dd:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:EF:85:95:1E:17:92:D0:86:A3:62:CB:CB:91:0D:36:71:06:1F:A8 X509v3 Authority Key Identifier: keyid:AC:88:64:26:38:24:ED:E3:65:5B:99:74:2D:FB:39:E8:83:BB:91:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:7a:64:fa:81:9d:a0:f1:17:b2:00:61:85:5f:13:15:9b:fb: 0e:a8:af:ed:0f:73:5a:35:73:97:dd:b6:8e:98:f0:8d:f7:df: 7a:8b:54:50:b1:3f:2e:ff:b7:2e:71:71:9b:fa:7d:47:20:de: a7:43:b0:cd:fb:2e:2f:09:a6:52:62:4a:13:6e:ff:e9:16:ea: 97:fd:75:f1:08:a5:14:30:a9:3f:11:0d:08:b7:ce:ee:19:38: ab:dd:f0:7c:0a:8d:da:32:6f:11:6f:d7:31:44:89:90:1a:4b: 8b:d3:e2:6b:0d:1d:f7:64:eb:78:ab:dc:b2:84:c1:46:e3:1a: 5b:98:99:99:a4:69:21:dd:39:cd:60:5a:69:70:d2:e8:48:43: 79:b0:30:a8:aa:40:55:2c:a6:94:f9:c9:f4:7c:ed:4e:7b:74: 6e:d9:e3:19:31:03:49:60:31:44:90:70:22:c3:fa:3e:05:c8: 3b:63:6b:51:46:f9:5e:ce:14:eb:d6:f2:ed:8c:1b:7d:42:3d: 02:08:d8:f4:8f:24:06:d5:cc:ec:44:26:4e:b8:07:ce:f5:c7: a4:ee:a0:cb:f6:01:e7:46:00:7b:ea:05:fa:df:e4:80:f4:f4: c0:e1:e0:46:8f:77:78:8c:da:46:e6:2a:75:1b:b6:da:48:40: 15:9a:26:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA5NzQxMTAvBgNVBAUTKEFDODg2NDI2MzgyNEVERTM2NTVCOTk3NDJERkIzOUU4 ODNCQjkxNDUwHhcNMjUxMTA0MTcyNjEwWhcNMjUxMTExMTcyNjEwWjAYMRYwFAYD VQQDEw02OTBhMzczMi1iYWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbQpZ2sbPoB4gvcJFUW7HBOrS117BwrN++/G7bVkSwaSreK0Ri7sReLywVqe ufmOdnIFPzJa+5HkwETcuGfa7Uz6+1xoNOkR8ILIfMHSd8Alxn4RaC0Pk7UF/lSf oPMTBTge2O+FwmijeEm+l+xsdMvJ4KfNy5gpFAWepjGkBHp32oJ1m9cMnVdIpBIQ EOO7/jF4E8oJcAvE8twEY9PcQGtDvGnsfaSaisPsHqtdJdy2hFHu7Hk9PfzsAv8l y7UrkLgWSeUPG3KF+mZAbIHak3MQegnXIn7Om8uIMTgAsVcqDLlC2U0YjlRXArC1 Tp7hF+ahEr4lqT/vHobsrGDdVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvvhZUe F5LQhqNiy8uRDTZxBh+oMB8GA1UdIwQYMBaAFKyIZCY4JO3jZVuZdC37OeiDu5FF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDk3NC9FMTA1QjNCQTNB NDkxMUU5OTQwRjJEMTZDNEY5QUUwMi9ySWhrSmpnazdlTmxXNWwwTGZzNTZJTzdr VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JJaGtKamdrN2VObFc1bDBMZnM1NklPN2tVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDk3NC9FMTA1QjNCQTNBNDkxMUU5OTQwRjJEMTZDNEY5QUUwMi9ySWhrSmpnazdl TmxXNWwwTGZzNTZJTzdrVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcemT6gZ2g8ReyAGGFXxMVm/sOqK/tD3NaNXOX3baOmPCN9996i1RQ sT8u/7cucXGb+n1HIN6nQ7DN+y4vCaZSYkoTbv/pFuqX/XXxCKUUMKk/EQ0It87u GTir3fB8Co3aMm8Rb9cxRImQGkuL0+JrDR33ZOt4q9yyhMFG4xpbmJmZpGkh3TnN YFppcNLoSEN5sDCoqkBVLKaU+cn0fO1Oe3Ru2eMZMQNJYDFEkHAiw/o+Bcg7Y2tR RvlezhTr1vLtjBt9Qj0CCNj0jyQG1czsRCZOuAfO9cek7qDL9gHnRgB76gX63+SA 9PTA4eBGj3d4jNpG5ip1G7baSEAVmiZj -----END CERTIFICATE-----Generated at Wed Nov 5 07:52:15 2025 by rpki-client