$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft File: a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft (raw, json) Hash identifier: cfBcM1V8IoT8JMp4JzhVi5G3TV/TkMoBzkgzXZ9AO50= Subject key identifier: B0:EF:B8:D4:3E:AD:C0:F5:47:48:33:14:D0:3B:C1:A8:C5:CF:FD:DF Authority key identifier: 6B:57:09:32:90:D1:1F:65:CF:B9:1F:12:12:C2:8C:F7:33:F9:C2:B5 Certificate issuer: /CN=A9120AAA/serialNumber=6B57093290D11F65CFB91F1212C28CF733F9C2B5 Certificate serial: 018D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft Manifest number: 018A Signing time: Mon 03 Nov 2025 03:32:29 +0000 Manifest this update: Mon 03 Nov 2025 03:32:28 +0000 Manifest next update: Mon 10 Nov 2025 03:32:28 +0000 Files and hashes: 1: a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl (hash: xDDOIgLxtaetOQRDDfPOvYTr+9jNgsIbzLhlLvGJ+mA=) 2: 8A389AC25C4811EEBE1CF06BC4F9AE02.roa (hash: vn17TWtmnQ+kaPqXgcDq2YoeKGokw+dq87l/z9Wtkuk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:32:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AAA, serialNumber=6B57093290D11F65CFB91F1212C28CF733F9C2B5 Validity Not Before: Nov 3 03:32:28 2025 GMT Not After : Nov 10 03:32:28 2025 GMT Subject: CN=6908224c-8cea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a6:55:22:84:1f:77:37:99:d7:86:6f:f4:5d: 4a:36:b4:14:ef:21:78:7e:40:47:4a:83:1c:6a:94: 8f:c6:13:3e:c0:f4:86:16:78:39:56:59:a6:83:dd: 4c:6f:59:86:3b:f2:c3:c5:b1:8d:79:04:81:a2:7e: 1b:57:a8:de:05:d6:6b:aa:76:6e:84:d5:a4:bf:f9: 6c:fb:8a:7b:61:dd:88:80:8b:e7:fa:06:f6:95:67: 33:c5:94:48:d8:c4:ed:5d:9c:d3:3c:5e:30:08:85: d8:49:84:81:3c:82:30:1d:51:83:49:5b:57:38:c7: ca:5a:7f:38:3d:92:d3:31:ca:aa:0b:87:54:5b:ba: 69:0a:0d:0f:5a:59:4b:bd:d2:4e:8f:15:dd:a4:6a: 8c:75:5c:f6:d4:27:dc:34:a5:50:99:83:c8:fb:ee: 5f:de:8b:71:b3:c7:e8:ad:76:cc:d7:c8:27:c4:49: af:7a:6f:32:bc:e1:3e:3a:d0:b2:9a:7a:e7:a4:47: d2:c0:8f:8c:f7:51:bd:7e:0c:a0:4e:64:d6:7c:6c: 6a:79:1e:71:d4:8f:7b:00:09:85:c2:2c:63:81:36: 77:b3:98:80:62:34:e8:b4:4e:90:f7:fe:54:bf:8f: 46:50:a0:4f:3b:2e:a4:3e:b8:c8:25:5c:0b:23:99: cc:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:EF:B8:D4:3E:AD:C0:F5:47:48:33:14:D0:3B:C1:A8:C5:CF:FD:DF X509v3 Authority Key Identifier: keyid:6B:57:09:32:90:D1:1F:65:CF:B9:1F:12:12:C2:8C:F7:33:F9:C2:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:b5:d9:da:08:30:f3:f3:0d:56:45:0b:f1:d0:b2:50:13:52: bc:d8:59:8d:f9:ad:62:fd:39:d0:b6:2d:0b:e2:81:c5:d7:a9: 2e:fb:0e:9f:44:02:5f:91:9e:86:3e:5c:72:d1:02:65:68:0a: 7b:0d:f0:07:4e:12:62:6a:ee:1b:80:fc:76:c6:dc:4e:dc:71: b3:aa:41:96:27:21:1c:92:b0:64:2c:58:2a:60:19:27:81:1c: cd:8d:15:8f:99:13:a1:76:a2:4f:4e:62:dd:cc:a3:4c:3d:4d: 85:7c:4d:20:cb:72:52:99:f6:c8:a8:c8:c0:dc:b7:5f:ce:f5: ef:68:1d:ba:47:e3:dd:ad:b4:a9:a5:c4:39:fd:c9:9b:e4:a1: ec:e0:d9:7a:8d:00:39:2e:50:0f:8b:37:1e:d9:e4:ec:33:bf: 5b:76:43:28:d5:86:62:3b:93:ba:a2:f3:bd:38:4b:ed:43:9b: 8b:fa:1a:30:f3:7f:66:5b:4c:a6:bf:80:51:8c:92:12:91:c0: 1b:97:be:36:98:6c:32:f5:e6:32:81:1f:f1:ce:5d:37:9a:82: 2e:0f:e7:e2:79:a4:c2:41:8b:1a:68:6d:13:e2:c9:e3:12:52: 4b:27:8d:08:b8:89:e4:92:7f:3d:bf:f2:a9:eb:1e:29:12:b3: 99:04:70:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQUExMTAvBgNVBAUTKDZCNTcwOTMyOTBEMTFGNjVDRkI5MUYxMjEyQzI4Q0Y3 MzNGOUMyQjUwHhcNMjUxMTAzMDMzMjI4WhcNMjUxMTEwMDMzMjI4WjAYMRYwFAYD VQQDEw02OTA4MjI0Yy04Y2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaZVIoQfdzeZ14Zv9F1KNrQU7yF4fkBHSoMcapSPxhM+wPSGFng5Vlmmg91M b1mGO/LDxbGNeQSBon4bV6jeBdZrqnZuhNWkv/ls+4p7Yd2IgIvn+gb2lWczxZRI 2MTtXZzTPF4wCIXYSYSBPIIwHVGDSVtXOMfKWn84PZLTMcqqC4dUW7ppCg0PWllL vdJOjxXdpGqMdVz21CfcNKVQmYPI++5f3otxs8forXbM18gnxEmvem8yvOE+OtCy mnrnpEfSwI+M91G9fgygTmTWfGxqeR5x1I97AAmFwixjgTZ3s5iAYjTotE6Q9/5U v49GUKBPOy6kPrjIJVwLI5nM5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDvuNQ+ rcD1R0gzFNA7wajFz/3fMB8GA1UdIwQYMBaAFGtXCTKQ0R9lz7kfEhLCjPcz+cK1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFBQS8wQ0E3N0M4MjVD NDcxMUVFQUE5RkU5NjZDNEY5QUUwMi9hMWNKTXBEUkgyWFB1UjhTRXNLTTl6UDV3 clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExY0pNcERSSDJYUHVSOFNFc0tNOXpQNXdyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFBQS8wQ0E3N0M4MjVDNDcxMUVFQUE5RkU5NjZDNEY5QUUwMi9hMWNKTXBEUkgy WFB1UjhTRXNLTTl6UDV3clUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXtdnaCDDz8w1WRQvx0LJQE1K82FmN+a1i/TnQti0L4oHF16ku+w6f RAJfkZ6GPlxy0QJlaAp7DfAHThJiau4bgPx2xtxO3HGzqkGWJyEckrBkLFgqYBkn gRzNjRWPmROhdqJPTmLdzKNMPU2FfE0gy3JSmfbIqMjA3LdfzvXvaB26R+PdrbSp pcQ5/cmb5KHs4Nl6jQA5LlAPizce2eTsM79bdkMo1YZiO5O6ovO9OEvtQ5uL+how 839mW0ymv4BRjJISkcAbl742mGwy9eYygR/xzl03moIuD+fieaTCQYsaaG0T4snj ElJLJ40IuInkkn89v/Kp6x4pErOZBHCz -----END CERTIFICATE-----Generated at Wed Nov 5 04:49:18 2025 by rpki-client