$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft File: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json) Hash identifier: v06/Y6cQ3UvRbDP0UhqdT1BGdAETEX7CH6k07tupBpk= Subject key identifier: 8D:B7:F0:4E:20:09:6A:3D:4D:EF:C8:74:C3:AD:96:70:EC:97:9F:5C Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 050B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft Manifest number: 0500 Signing time: Tue 04 Nov 2025 23:44:25 +0000 Manifest this update: Tue 04 Nov 2025 23:44:25 +0000 Manifest next update: Tue 11 Nov 2025 23:44:25 +0000 Files and hashes: 1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: se6CpipAqbfuc+0zFpLhm7fMe7Nlrw89LxT46uM3r+g=) 2: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: 4FN1ls050r3VusXGiD5QsVc+2i8lsZWUOsjCg4ks1ns=) 3: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: xSXFEgaEwRI11lRD4Ufv2Q0UsgFam8SFWBwH7ownsu0=) 4: 9BBDF5DEFFD611EF9AE4D35EC4F9AE02.roa (hash: XhD4C1tmuOJjIi4uib9jXt7/7FR/n9zJv0iU9Ika1Yo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1291 (0x50b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Validity Not Before: Nov 4 23:44:25 2025 GMT Not After : Nov 11 23:44:25 2025 GMT Subject: CN=690a8fd9-213d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:61:f4:18:90:27:66:3e:77:82:e6:a4:2d:27: 48:05:6d:93:2c:bb:09:88:70:7f:ed:5b:fd:de:f0: 06:a4:b1:b3:ea:eb:65:af:48:34:2c:88:1b:19:31: 4b:79:67:e9:39:9c:e7:af:b3:b6:4b:03:64:1e:8e: 7f:c7:ba:a1:d8:e4:7a:bc:c2:f7:bd:01:e5:8d:61: 51:f1:db:57:02:6c:e0:a9:2a:93:b8:74:cb:74:04: 8f:2c:72:2a:1b:99:3f:48:46:11:fe:42:45:b1:9a: 7a:91:bb:73:90:c7:56:a0:63:f4:52:d6:17:67:37: 46:49:8d:6b:ab:7a:90:82:c7:c2:b2:86:af:2e:11: 6c:ed:b2:56:bf:b7:a8:db:59:ba:36:62:ee:90:c8: 61:51:d8:40:2a:ef:f2:33:19:35:9a:2c:ee:ef:9e: 94:be:a8:f1:e4:52:fa:44:f5:33:a0:03:f0:bf:44: c6:af:5c:f2:71:43:bb:a2:e5:10:be:12:d1:1c:29: 61:43:7f:e8:24:81:7c:b7:7f:fb:83:67:6b:a9:6c: 65:0d:b9:17:7b:98:0f:77:3c:46:6b:f3:4c:0d:c0: ad:e3:84:95:07:56:72:cb:86:88:e3:b1:47:4e:33: 28:06:e0:74:f6:8c:47:d7:9c:89:f2:61:21:54:07: 0d:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:B7:F0:4E:20:09:6A:3D:4D:EF:C8:74:C3:AD:96:70:EC:97:9F:5C X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:8d:0d:55:1f:79:e8:3c:61:29:67:bb:dd:c3:b1:cb:a1:7b: 87:ec:da:0e:aa:d2:a6:b4:a7:36:03:83:6e:76:6a:f4:18:cc: 1d:7a:a7:d2:c2:5c:6b:83:f8:3c:c7:7e:01:64:11:93:57:bf: 9d:29:a8:dd:08:a7:77:e3:01:40:4d:f2:e3:b4:82:9e:bb:0b: 34:3d:f3:fb:9e:39:b1:73:ba:20:8b:da:fe:96:14:16:92:d7: 86:5b:79:ad:db:3b:8c:0f:91:e5:62:6e:0d:a6:08:80:31:ea: 88:bf:49:0e:33:11:07:2b:5b:6e:bb:91:31:1e:fb:0d:7f:4c: 1b:b1:67:be:ca:f5:3b:93:4d:cf:2d:6d:11:0d:51:5e:88:b1: 0d:57:a2:ec:7a:bf:fa:7e:cb:27:78:c6:e5:66:56:45:eb:b5: 32:42:7a:49:f6:74:8a:b0:29:df:8b:e2:f7:26:da:b4:9e:e1: 4b:94:80:8d:73:d1:77:9e:2f:e6:da:fc:20:30:83:42:6e:33: e1:da:87:c0:a8:40:e2:12:37:bf:db:7d:de:a3:f6:6d:22:a5: 34:e6:db:d1:d5:46:f7:a8:c6:e7:71:df:3c:9b:34:16:c0:ba: 89:37:95:2d:e8:ee:de:95:d2:63:33:0f:7f:f8:09:e8:f8:8d: c2:cb:b5:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjUxMTA0MjM0NDI1WhcNMjUxMTExMjM0NDI1WjAYMRYwFAYD VQQDEw02OTBhOGZkOS0yMTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmH0GJAnZj53guakLSdIBW2TLLsJiHB/7Vv93vAGpLGz6utlr0g0LIgbGTFL eWfpOZznr7O2SwNkHo5/x7qh2OR6vML3vQHljWFR8dtXAmzgqSqTuHTLdASPLHIq G5k/SEYR/kJFsZp6kbtzkMdWoGP0UtYXZzdGSY1rq3qQgsfCsoavLhFs7bJWv7eo 21m6NmLukMhhUdhAKu/yMxk1mizu756Uvqjx5FL6RPUzoAPwv0TGr1zycUO7ouUQ vhLRHClhQ3/oJIF8t3/7g2drqWxlDbkXe5gPdzxGa/NMDcCt44SVB1Zyy4aI47FH TjMoBuB09oxH15yJ8mEhVAcNzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI238E4g CWo9Te/IdMOtlnDsl59cMB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zNTkwNjVBNjMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZN UXkza2JVdy0yaFQyUXYyaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHjQ1VH3noPGEpZ7vdw7HLoXuH7NoOqtKmtKc2A4Nudmr0GMwdeqfS wlxrg/g8x34BZBGTV7+dKajdCKd34wFATfLjtIKeuws0PfP7njmxc7ogi9r+lhQW kteGW3mt2zuMD5HlYm4NpgiAMeqIv0kOMxEHK1tuu5ExHvsNf0wbsWe+yvU7k03P LW0RDVFeiLENV6Lser/6fssneMblZlZF67UyQnpJ9nSKsCnfi+L3Jtq0nuFLlICN c9F3ni/m2vwgMINCbjPh2ofAqEDiEje/233eo/ZtIqU05tvR1Ub3qMbncd88mzQW wLqJN5Ut6O7eldJjMw9/+Ano+I3Cy7VZ -----END CERTIFICATE-----Generated at Wed Nov 5 04:47:45 2025 by rpki-client