$ rpki-client -vvf rpki.apnic.net/member_repository/A9122041/2E72E0AEDC3511EE8FF1A433C4F9AE02/fSf9xw_NGLbdWwQmla_djBc1wTA.mft File: fSf9xw_NGLbdWwQmla_djBc1wTA.mft (raw, json) Hash identifier: uGeFdcOSjkcYwvwPfvfKC/s+7LMvFmk8bhxXoqsrW8w= Subject key identifier: 92:A0:F1:1B:1A:46:FE:F0:DD:A9:97:6A:61:CA:03:E9:E2:CF:10:7F Authority key identifier: 7D:27:FD:C7:0F:CD:18:B6:DD:5B:04:26:95:AF:DD:8C:17:35:C1:30 Certificate issuer: /CN=A9122041/serialNumber=7D27FDC70FCD18B6DD5B042695AFDD8C1735C130 Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fSf9xw_NGLbdWwQmla_djBc1wTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122041/2E72E0AEDC3511EE8FF1A433C4F9AE02/fSf9xw_NGLbdWwQmla_djBc1wTA.mft Manifest number: 0134 Signing time: Mon 03 Nov 2025 04:28:59 +0000 Manifest this update: Mon 03 Nov 2025 04:28:58 +0000 Manifest next update: Mon 10 Nov 2025 04:28:58 +0000 Files and hashes: 1: fSf9xw_NGLbdWwQmla_djBc1wTA.crl (hash: oPjFwB3bvcO5v5Ky9VMZXCCl5Dadmi0FtH9v8BoDXuI=) 2: E46B7DACDC3611EEBE5CDD37C4F9AE02.roa (hash: T4vR48N6YhwHqTHzqOptSkBSTlUWr6Qnyq5t5xi8rho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122041/2E72E0AEDC3511EE8FF1A433C4F9AE02/fSf9xw_NGLbdWwQmla_djBc1wTA.crl rsync://rpki.apnic.net/member_repository/A9122041/2E72E0AEDC3511EE8FF1A433C4F9AE02/fSf9xw_NGLbdWwQmla_djBc1wTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fSf9xw_NGLbdWwQmla_djBc1wTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122041, serialNumber=7D27FDC70FCD18B6DD5B042695AFDD8C1735C130 Validity Not Before: Nov 3 04:28:58 2025 GMT Not After : Nov 10 04:28:58 2025 GMT Subject: CN=69082f8a-1590 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:09:f1:db:42:b8:37:47:5d:9c:ba:9e:75:3f: 32:a3:4b:82:67:e9:42:ff:21:1a:5f:4b:a4:e9:56: a5:b8:0a:b4:db:42:be:83:35:51:44:07:e6:35:33: ef:76:4c:6a:c2:7e:5b:ee:ed:c0:ac:e7:4c:b9:6a: 72:e9:5c:11:0d:5d:d0:c4:a3:8a:34:0b:67:94:c0: 19:84:e1:8d:be:69:92:7e:7d:c2:17:fb:70:e5:f9: 49:96:ce:f2:53:2a:66:8e:dc:43:1b:19:a8:d2:b6: c8:cd:a2:d7:44:53:8e:55:a3:a2:8d:bb:68:bc:6f: 78:47:f7:54:83:a7:6b:2d:42:21:9f:91:2a:32:f8: f5:76:eb:be:8d:e7:dd:0b:4f:4e:5e:0d:e3:0a:53: 23:4e:71:ae:85:ca:98:16:9d:72:8f:89:d7:bf:f6: 2b:e2:ab:43:20:62:41:3b:e1:1d:ba:4a:6a:6d:d0: 1c:49:25:96:30:73:44:74:11:63:1f:24:90:d8:f3: 54:f4:64:f5:e4:f4:e4:b8:3d:a6:29:2c:66:c4:ef: 92:bd:47:8e:93:4f:cd:07:88:97:ce:94:f0:ef:31: c3:a8:9a:59:31:57:a7:34:12:5f:a8:00:8c:30:cc: 6c:a0:e7:71:df:ba:84:82:e6:79:fb:14:7b:c0:a9: a4:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:A0:F1:1B:1A:46:FE:F0:DD:A9:97:6A:61:CA:03:E9:E2:CF:10:7F X509v3 Authority Key Identifier: keyid:7D:27:FD:C7:0F:CD:18:B6:DD:5B:04:26:95:AF:DD:8C:17:35:C1:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122041/2E72E0AEDC3511EE8FF1A433C4F9AE02/fSf9xw_NGLbdWwQmla_djBc1wTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fSf9xw_NGLbdWwQmla_djBc1wTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122041/2E72E0AEDC3511EE8FF1A433C4F9AE02/fSf9xw_NGLbdWwQmla_djBc1wTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:40:78:82:64:b7:16:52:b8:ba:7c:dd:c8:af:53:0c:40:06: 5d:d2:4e:2d:5f:88:ce:cb:e3:2c:52:18:70:6e:07:c3:d3:a8: 9e:ec:7a:8a:ed:6c:28:eb:7f:0e:39:89:44:b3:25:a8:f4:9a: 9c:4e:8d:60:89:e2:13:b3:f2:6b:c8:91:35:e6:ec:82:58:df: e6:c8:9b:29:00:b1:68:bd:40:02:f4:e6:2a:94:f4:80:a0:56: f3:76:f6:58:e8:02:2e:4a:79:dc:26:fa:a4:a3:c7:ac:72:11: 8a:e8:60:a1:15:e9:f3:3b:7a:fe:7d:c5:5f:03:33:e5:2f:6e: 18:2e:34:4c:41:6a:85:5d:a0:77:1f:2f:94:49:b2:e8:2f:8b: 2f:51:43:e2:12:1d:53:22:f3:f6:c7:79:30:4e:91:01:43:97: e3:75:ba:9f:44:7b:5c:f6:ad:bc:46:d9:fc:a8:74:0f:4e:d4: 86:62:df:dd:d8:76:05:a8:2c:6e:33:df:e4:a7:46:d3:e8:e7: 8c:e0:ab:9b:7e:b8:4f:1c:09:af:bd:0e:14:d1:99:37:ee:58: 34:4c:c1:a3:c3:2e:d1:1b:af:a8:e1:c8:ee:6b:4a:3d:a6:f5: fa:bd:ae:64:bd:4e:86:93:c0:a2:e5:41:e9:b5:7b:b9:a0:a1: fe:56:66:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIwNDExMTAvBgNVBAUTKDdEMjdGREM3MEZDRDE4QjZERDVCMDQyNjk1QUZERDhD MTczNUMxMzAwHhcNMjUxMTAzMDQyODU4WhcNMjUxMTEwMDQyODU4WjAYMRYwFAYD VQQDEw02OTA4MmY4YS0xNTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQnx20K4N0ddnLqedT8yo0uCZ+lC/yEaX0uk6ValuAq020K+gzVRRAfmNTPv dkxqwn5b7u3ArOdMuWpy6VwRDV3QxKOKNAtnlMAZhOGNvmmSfn3CF/tw5flJls7y UypmjtxDGxmo0rbIzaLXRFOOVaOijbtovG94R/dUg6drLUIhn5EqMvj1duu+jefd C09OXg3jClMjTnGuhcqYFp1yj4nXv/Yr4qtDIGJBO+EdukpqbdAcSSWWMHNEdBFj HySQ2PNU9GT15PTkuD2mKSxmxO+SvUeOk0/NB4iXzpTw7zHDqJpZMVenNBJfqACM MMxsoOdx37qEguZ5+xR7wKmkNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJKg8Rsa Rv7w3amXamHKA+nizxB/MB8GA1UdIwQYMBaAFH0n/ccPzRi23VsEJpWv3YwXNcEw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjA0MS8yRTcyRTBBRURD MzUxMUVFOEZGMUE0MzNDNEY5QUUwMi9mU2Y5eHdfTkdMYmRXd1FtbGFfZGpCYzF3 VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZTZjl4d19OR0xiZFd3UW1sYV9kakJjMXdUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjA0MS8yRTcyRTBBRURDMzUxMUVFOEZGMUE0MzNDNEY5QUUwMi9mU2Y5eHdfTkdM YmRXd1FtbGFfZGpCYzF3VEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARQHiCZLcWUri6fN3Ir1MMQAZd0k4tX4jOy+MsUhhwbgfD06ie7HqK 7Wwo638OOYlEsyWo9JqcTo1gieITs/JryJE15uyCWN/myJspALFovUAC9OYqlPSA oFbzdvZY6AIuSnncJvqko8eschGK6GChFenzO3r+fcVfAzPlL24YLjRMQWqFXaB3 Hy+USbLoL4svUUPiEh1TIvP2x3kwTpEBQ5fjdbqfRHtc9q28Rtn8qHQPTtSGYt/d 2HYFqCxuM9/kp0bT6OeM4KubfrhPHAmvvQ4U0Zk37lg0TMGjwy7RG6+o4cjua0o9 pvX6va5kvU6Gk8Ci5UHptXu5oKH+VmaT -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:39 2025 by rpki-client