$ rpki-client -vvf rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.mft File: 1m4Cgid2-1UUPQyeVJAyhlal4I0.mft (raw, json) Hash identifier: YA5LVPv/luCh7zXioy5kK8MWxwdgEAmy+4jyuEud6Rw= Subject key identifier: A3:D0:13:57:E1:00:D3:99:D9:21:53:C6:49:F6:C5:0B:FE:B5:82:1D Authority key identifier: D6:6E:02:82:27:76:FB:55:14:3D:0C:9E:54:90:32:86:56:A5:E0:8D Certificate issuer: /CN=A9123180/serialNumber=D66E02822776FB55143D0C9E5490328656A5E08D Certificate serial: 0C8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1m4Cgid2-1UUPQyeVJAyhlal4I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.mft Manifest number: 0C85 Signing time: Sun 02 Nov 2025 18:24:25 +0000 Manifest this update: Sun 02 Nov 2025 18:24:25 +0000 Manifest next update: Sun 09 Nov 2025 18:24:25 +0000 Files and hashes: 1: 1m4Cgid2-1UUPQyeVJAyhlal4I0.crl (hash: 6zHQgNtfmganZolXNrL/QamCTPZFps2W4Sg7bS4ZqmA=) 2: 0EE3438A07FC11EABAD90A47C4F9AE02.roa (hash: o6uzXxi45nuYDCicVYaDwUO/XE7Lp0WVGghWkgO8ZII=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.crl rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1m4Cgid2-1UUPQyeVJAyhlal4I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:24:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3213 (0xc8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123180, serialNumber=D66E02822776FB55143D0C9E5490328656A5E08D Validity Not Before: Nov 2 18:24:25 2025 GMT Not After : Nov 9 18:24:25 2025 GMT Subject: CN=6907a1d9-8892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:60:31:d2:5c:53:e0:41:04:22:c9:2b:ee:44: b3:01:a6:a8:0c:3a:7c:be:24:82:f2:df:8e:db:19: 30:0c:cc:f2:88:fd:3c:50:5a:4b:3d:08:98:f6:1b: 09:14:fb:de:5a:c7:ae:c8:7a:e6:c6:ed:69:f2:46: 91:e4:2b:d9:5d:75:1c:a3:30:5e:7e:d6:16:b8:d9: 16:9f:48:5a:b6:a7:a0:8f:b6:83:1b:02:33:87:6a: 01:da:a7:9e:e9:0a:c7:86:20:5b:4e:b0:6e:9e:cf: 9d:ec:dd:3e:05:5b:ba:7e:fc:ec:e0:ea:e9:25:22: 1b:a4:44:d7:99:cc:25:55:82:bc:01:34:09:c8:7f: 4f:3d:a9:de:5d:f2:c9:b0:13:fc:7c:cc:6e:22:ca: 34:9d:f4:bb:c6:81:16:3a:5a:e9:f2:5d:c7:bc:42: 31:f7:c3:4f:26:90:b7:9e:a8:8a:4e:fe:6e:dc:e6: 02:fe:87:79:cf:58:62:a5:bb:c2:82:50:d0:f6:34: 0c:5e:b9:60:81:f1:4d:53:c3:6d:64:73:d5:61:4a: 7e:d3:a0:1f:ff:aa:d4:36:02:30:cd:70:b5:28:29: 6d:b6:61:a5:dc:9a:cc:c2:3e:47:f3:27:e4:a4:6f: 81:64:93:43:11:64:91:10:41:80:ef:5a:29:b3:47: 5d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:D0:13:57:E1:00:D3:99:D9:21:53:C6:49:F6:C5:0B:FE:B5:82:1D X509v3 Authority Key Identifier: keyid:D6:6E:02:82:27:76:FB:55:14:3D:0C:9E:54:90:32:86:56:A5:E0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1m4Cgid2-1UUPQyeVJAyhlal4I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:8b:33:20:3f:af:a6:83:af:44:eb:3d:52:3b:8d:6e:91:01: 92:b2:52:6e:c8:77:40:e4:c6:fe:6a:e1:2e:52:96:0f:cb:91: 26:43:1c:ce:8c:5f:fb:81:ca:93:65:62:cf:6a:e6:aa:fb:4a: f9:bd:4a:3c:d2:e6:9a:37:04:17:6c:5c:59:a8:3c:b0:a8:57: 6d:56:91:de:16:39:a0:81:ab:41:58:33:22:3b:bc:ac:f7:48: 59:3e:a6:55:3f:94:1d:96:08:5b:56:02:3c:85:73:7e:8d:7d: c4:e2:c8:e2:57:4e:e6:31:2b:17:10:eb:05:c1:f2:0c:48:65: 8a:ac:a2:b4:aa:20:b8:ae:47:2e:41:a2:ff:22:63:fd:2c:8f: b0:52:11:c7:fb:02:cd:0f:70:20:39:ed:f9:da:39:49:c6:35: bf:73:c1:3d:11:6a:3d:26:d0:68:df:cf:af:bd:00:d6:9b:21: a9:af:1c:fa:f2:42:18:d7:5e:4a:bd:ac:19:c7:88:d1:a8:e8: 22:25:62:51:60:36:58:37:8c:dd:3c:76:bb:fe:7f:52:5c:6d: d9:63:dd:db:45:01:9a:bc:eb:0d:c8:e6:4a:0e:0f:9c:76:05: d2:c4:c7:a8:f6:09:9a:7d:88:04:89:a8:bd:30:21:e6:8a:ee: 43:fe:f4:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMxODAxMTAvBgNVBAUTKEQ2NkUwMjgyMjc3NkZCNTUxNDNEMEM5RTU0OTAzMjg2 NTZBNUUwOEQwHhcNMjUxMTAyMTgyNDI1WhcNMjUxMTA5MTgyNDI1WjAYMRYwFAYD VQQDEw02OTA3YTFkOS04ODkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2Ax0lxT4EEEIskr7kSzAaaoDDp8viSC8t+O2xkwDMzyiP08UFpLPQiY9hsJ FPveWseuyHrmxu1p8kaR5CvZXXUcozBeftYWuNkWn0hatqegj7aDGwIzh2oB2qee 6QrHhiBbTrBuns+d7N0+BVu6fvzs4OrpJSIbpETXmcwlVYK8ATQJyH9PPaneXfLJ sBP8fMxuIso0nfS7xoEWOlrp8l3HvEIx98NPJpC3nqiKTv5u3OYC/od5z1hipbvC glDQ9jQMXrlggfFNU8NtZHPVYUp+06Af/6rUNgIwzXC1KClttmGl3JrMwj5H8yfk pG+BZJNDEWSREEGA71ops0ddqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPQE1fh ANOZ2SFTxkn2xQv+tYIdMB8GA1UdIwQYMBaAFNZuAoIndvtVFD0MnlSQMoZWpeCN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzE4MC8zMDU2OURCMDA3 RkIxMUVBOUIzNENDNDVDNEY5QUUwMi8xbTRDZ2lkMi0xVVVQUXllVkpBeWhsYWw0 STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFtNENnaWQyLTFVVVBReWVWSkF5aGxhbDRJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzE4MC8zMDU2OURCMDA3RkIxMUVBOUIzNENDNDVDNEY5QUUwMi8xbTRDZ2lkMi0x VVVQUXllVkpBeWhsYWw0STAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvizMgP6+mg69E6z1SO41ukQGSslJuyHdA5Mb+auEuUpYPy5EmQxzO jF/7gcqTZWLPauaq+0r5vUo80uaaNwQXbFxZqDywqFdtVpHeFjmggatBWDMiO7ys 90hZPqZVP5QdlghbVgI8hXN+jX3E4sjiV07mMSsXEOsFwfIMSGWKrKK0qiC4rkcu QaL/ImP9LI+wUhHH+wLND3AgOe352jlJxjW/c8E9EWo9JtBo38+vvQDWmyGprxz6 8kIY115KvawZx4jRqOgiJWJRYDZYN4zdPHa7/n9SXG3ZY93bRQGavOsNyOZKDg+c dgXSxMeo9gmafYgEiai9MCHmiu5D/vQj -----END CERTIFICATE-----Generated at Tue Nov 4 16:36:08 2025 by rpki-client