$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft File: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft (raw, json) Hash identifier: 7XxdJG9LCV4BH/Tyr/gD5jbeUOhm37H9U+LHsKLh85s= Subject key identifier: 4D:BB:F1:A0:14:B7:51:5C:D9:17:BF:DA:99:4F:D5:F4:F3:D8:5B:E1 Authority key identifier: AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 Certificate issuer: /CN=A9123BFF/serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Certificate serial: 07D0 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft Manifest number: 07C8 Signing time: Tue 04 Nov 2025 16:03:17 +0000 Manifest this update: Tue 04 Nov 2025 16:03:17 +0000 Manifest next update: Tue 11 Nov 2025 16:03:17 +0000 Files and hashes: 1: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl (hash: 3w5xxo2FJdc8mGYMLKc/gumZ3BaSOzsnaEt3Fo6zBjU=) 2: A3744A28149A11EDB9CF2F70C4F9AE02.roa (hash: ldhnqRcVbTxkt0kcgUABU1YyeJx0zAFYwLA5AA7ZzpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:03:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2000 (0x7d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Validity Not Before: Nov 4 16:03:17 2025 GMT Not After : Nov 11 16:03:17 2025 GMT Subject: CN=690a23c5-5201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d2:53:38:b4:22:a6:e7:68:96:09:26:e4:a3: 26:57:48:37:83:cb:53:18:a0:c0:37:11:b8:14:b6: 7f:7a:24:df:55:e9:45:95:43:4c:68:52:05:6d:0f: 8c:82:bf:12:49:9a:70:13:ce:21:4a:ce:81:29:dd: 89:94:a6:b8:0e:df:c0:ad:aa:7b:ab:3d:81:ea:2b: fd:0a:cb:05:15:5a:f4:74:35:00:e4:c6:b7:f2:6b: 87:2c:86:ba:06:30:45:33:ce:04:10:37:27:2c:cd: 3a:ac:8e:2f:99:8e:f3:ac:72:60:de:0f:15:b9:76: df:fa:41:7e:f9:18:a5:9c:ba:4d:9d:41:41:60:6c: c6:8e:88:b3:20:f4:6e:fa:b8:b1:0d:87:33:d2:cc: c4:b8:87:2a:f2:5f:86:62:32:a8:d7:28:55:fa:82: 9d:65:0a:c0:ff:6d:14:73:7f:f2:96:7e:e0:e0:7a: 90:76:b1:42:cd:81:8b:1d:e5:7f:f5:54:61:6e:26: 04:59:cd:83:15:8f:7e:f4:7f:10:ee:95:b0:71:3c: 96:47:a1:a6:b5:c1:76:df:49:a0:73:1c:9e:bb:3d: e6:46:2d:ea:09:87:22:a7:48:17:a1:77:a1:f1:13: 31:eb:eb:f9:e5:33:2f:43:e1:07:0f:6b:e6:9d:88: 55:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:BB:F1:A0:14:B7:51:5C:D9:17:BF:DA:99:4F:D5:F4:F3:D8:5B:E1 X509v3 Authority Key Identifier: keyid:AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:56:2e:9e:28:2d:ee:c4:10:9b:39:2b:50:c0:e7:24:4d:54: a1:b2:15:84:e6:6e:f0:04:12:97:dd:6d:f2:4c:17:4a:72:ee: 00:29:83:f6:a7:37:1b:43:6a:40:04:26:46:66:4d:a5:1c:91: 73:05:42:4e:6a:fc:04:58:11:95:54:06:a7:64:16:7a:73:23: 14:ca:ea:88:27:54:d2:5b:8c:6f:fe:8c:c2:11:5f:fb:84:69: fe:cb:6e:30:5d:66:7f:68:6e:b9:5d:0f:36:a6:31:e5:1b:45: 40:22:b5:25:53:d3:70:d7:3d:62:e9:05:4f:e3:bd:5f:2c:a2: 9d:71:2c:aa:e0:13:56:26:06:f2:88:ce:57:56:e0:06:eb:fa: 4f:b3:75:34:e6:bf:ed:81:9d:fb:c5:02:3a:9a:d5:ad:c5:98: 79:67:f9:78:7d:51:39:be:7f:a2:13:af:cb:35:bb:42:44:24: 82:0c:7e:21:fb:0c:4d:60:f8:21:61:d2:d7:12:1c:2d:f3:ab: bf:e9:2d:2b:3f:31:21:6e:6e:22:31:0a:13:b2:fb:ef:02:71: 85:79:39:a2:80:c7:d5:06:90:aa:ff:2c:40:e3:71:c2:fb:28: f9:b7:8b:2e:9f:0d:e4:b5:0c:be:bc:b0:d9:c3:65:51:b7:a1: 49:ae:82:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKEFGNEEzNTQ0Qzc0QjMxN0E3QzMyNkFGMEU4MzkzQ0I5 RDUyNjIwMzIwHhcNMjUxMTA0MTYwMzE3WhcNMjUxMTExMTYwMzE3WjAYMRYwFAYD VQQDEw02OTBhMjNjNS01MjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdJTOLQipudolgkm5KMmV0g3g8tTGKDANxG4FLZ/eiTfVelFlUNMaFIFbQ+M gr8SSZpwE84hSs6BKd2JlKa4Dt/Arap7qz2B6iv9CssFFVr0dDUA5Ma38muHLIa6 BjBFM84EEDcnLM06rI4vmY7zrHJg3g8VuXbf+kF++RilnLpNnUFBYGzGjoizIPRu +rixDYcz0szEuIcq8l+GYjKo1yhV+oKdZQrA/20Uc3/yln7g4HqQdrFCzYGLHeV/ 9VRhbiYEWc2DFY9+9H8Q7pWwcTyWR6GmtcF230mgcxyeuz3mRi3qCYcip0gXoXeh 8RMx6+v55TMvQ+EHD2vmnYhVEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE278aAU t1Fc2Re/2plP1fTz2FvhMB8GA1UdIwQYMBaAFK9KNUTHSzF6fDJq8Og5PLnVJiAy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi8wRTJFRjUzNDFB NkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1YcDhNbXJ3NkRrOHVkVW1J REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3IwbzFSTWRMTVhwOE1tcnc2RGs4dWRVbUlESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0JGRi8wRTJFRjUzNDFBNkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1Y cDhNbXJ3NkRrOHVkVW1JREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbVi6eKC3uxBCbOStQwOckTVShshWE5m7wBBKX3W3yTBdKcu4AKYP2 pzcbQ2pABCZGZk2lHJFzBUJOavwEWBGVVAanZBZ6cyMUyuqIJ1TSW4xv/ozCEV/7 hGn+y24wXWZ/aG65XQ82pjHlG0VAIrUlU9Nw1z1i6QVP471fLKKdcSyq4BNWJgby iM5XVuAG6/pPs3U05r/tgZ37xQI6mtWtxZh5Z/l4fVE5vn+iE6/LNbtCRCSCDH4h +wxNYPghYdLXEhwt86u/6S0rPzEhbm4iMQoTsvvvAnGFeTmigMfVBpCq/yxA43HC +yj5t4sunw3ktQy+vLDZw2VRt6FJroJQ -----END CERTIFICATE-----Generated at Wed Nov 5 17:50:19 2025 by rpki-client