$ rpki-client -vvf rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft File: J_xj2GH0aU96L5UfsShH4H-qkHI.mft (raw, json) Hash identifier: xCwkbFehvo2uZXD3zIQ9HH5SQ8rf8T13iiATGIeQyWs= Subject key identifier: CA:5D:99:D6:7D:F9:59:F7:89:A6:11:92:04:51:98:90:7E:A3:84:81 Authority key identifier: 27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 Certificate issuer: /CN=A9125F95/serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Certificate serial: 1DD7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft Manifest number: 1DCE Signing time: Sun 02 Nov 2025 16:06:59 +0000 Manifest this update: Sun 02 Nov 2025 16:06:59 +0000 Manifest next update: Sun 09 Nov 2025 16:06:59 +0000 Files and hashes: 1: J_xj2GH0aU96L5UfsShH4H-qkHI.crl (hash: l3vsPvQJxhUOCeXxbIHz9KSP3vZGi+LHpRik8rUq8/s=) 2: A17F07705FA311EAB1BB612CC4F9AE02.roa (hash: syqFyO0I3Vmcn5bJeGcao6zGLsNLne0ee+UOpu0s0a0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:06:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7639 (0x1dd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125F95, serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Validity Not Before: Nov 2 16:06:59 2025 GMT Not After : Nov 9 16:06:59 2025 GMT Subject: CN=690781a3-66a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:68:5f:84:12:e6:4a:b4:ea:a8:49:d0:14:a3: 5b:62:63:76:f4:80:be:76:90:d5:b5:a2:2d:94:04: e3:c8:41:cc:41:27:93:28:dd:82:c6:cf:d6:2d:5a: 93:2b:16:bd:5a:26:13:4f:56:29:2e:01:f9:2a:31: 41:65:3e:d3:2e:c6:97:55:c7:76:bb:1a:96:d5:62: 7a:e5:a8:b5:87:8c:1a:8a:7f:a5:9f:33:7a:8d:8d: 79:14:25:f9:2e:8b:da:fa:d2:da:61:65:13:28:44: 44:28:e0:bd:82:1f:98:25:5a:75:2f:9e:e2:84:d4: cb:c9:45:d8:9a:45:a0:38:08:ac:11:ec:34:48:01: fa:0f:36:8b:cc:89:0e:3b:a4:87:63:60:d8:fd:7f: 9a:cf:74:ec:3e:a7:49:9c:bc:c9:96:69:9c:1c:26: 5a:07:0d:43:ea:0e:fb:4b:a1:82:94:b6:d3:e4:3a: 46:bc:58:98:68:f8:b2:c0:43:49:a6:50:4c:85:9a: 74:99:fa:2e:2e:b4:a3:ba:80:49:9c:c9:40:31:83: 26:3f:48:6c:54:ef:81:c7:7c:a3:29:a5:9e:26:50: 12:41:6a:36:55:d4:c5:f4:c4:1f:37:9f:a4:29:99: 57:01:a6:18:6a:0c:0d:1d:03:7f:77:c7:f8:85:41: 54:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:5D:99:D6:7D:F9:59:F7:89:A6:11:92:04:51:98:90:7E:A3:84:81 X509v3 Authority Key Identifier: keyid:27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:69:77:ed:1b:ec:22:6b:bc:0c:da:f0:bf:35:a3:0f:78:15: e6:4a:ac:6b:51:af:82:bf:67:71:36:fe:bb:e2:75:10:c6:2b: 55:bd:84:c5:1b:2d:c8:b6:2e:e0:04:7b:73:e2:1d:c3:68:bd: 47:b8:62:65:0f:f9:d9:b0:66:9e:23:b9:87:67:ce:88:06:eb: 7e:86:75:53:4f:8a:64:45:60:cf:29:7b:98:cd:74:91:3c:33: c6:85:91:c7:a7:7f:69:10:20:fe:84:61:9a:46:eb:45:1a:3d: 27:bd:18:d2:f6:49:dc:1d:a9:00:34:4c:ea:9d:b0:34:18:5d: 59:ae:74:70:15:62:4d:ed:38:08:fc:53:f5:0a:16:39:5b:a0: 4b:ad:0a:78:c1:43:8b:f8:82:87:dc:a3:28:f5:31:26:c3:4f: e4:86:ff:b9:f8:02:46:35:f1:7b:a2:78:ce:59:5c:5d:66:28: 76:f5:8e:6d:9f:9d:59:9d:0a:d2:a6:a1:f5:50:45:0b:dd:c1: 6a:dc:cf:cc:39:f3:32:e6:48:b4:ec:4f:75:02:84:5d:5b:82: a1:69:7b:e4:65:7b:7d:d3:e1:c9:33:30:63:4b:a3:65:07:92: 5e:4e:f9:bf:e3:c2:41:00:4b:8e:45:ed:c6:d2:f1:a7:76:15: 60:61:07:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVGOTUxMTAvBgNVBAUTKDI3RkM2M0Q4NjFGNDY5NEY3QTJGOTUxRkIxMjg0N0Uw N0ZBQTkwNzIwHhcNMjUxMTAyMTYwNjU5WhcNMjUxMTA5MTYwNjU5WjAYMRYwFAYD VQQDEw02OTA3ODFhMy02NmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7WhfhBLmSrTqqEnQFKNbYmN29IC+dpDVtaItlATjyEHMQSeTKN2Cxs/WLVqT Kxa9WiYTT1YpLgH5KjFBZT7TLsaXVcd2uxqW1WJ65ai1h4wain+lnzN6jY15FCX5 Lova+tLaYWUTKEREKOC9gh+YJVp1L57ihNTLyUXYmkWgOAisEew0SAH6DzaLzIkO O6SHY2DY/X+az3TsPqdJnLzJlmmcHCZaBw1D6g77S6GClLbT5DpGvFiYaPiywENJ plBMhZp0mfouLrSjuoBJnMlAMYMmP0hsVO+Bx3yjKaWeJlASQWo2VdTF9MQfN5+k KZlXAaYYagwNHQN/d8f4hUFUBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpdmdZ9 +Vn3iaYRkgRRmJB+o4SBMB8GA1UdIwQYMBaAFCf8Y9hh9GlPei+VH7EoR+B/qpBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUY5NS9DRTJBRkM0NkEy NzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFVOTZMNVVmc1NoSDRILXFr SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pfeGoyR0gwYVU5Nkw1VWZzU2hINEgtcWtISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUY5NS9DRTJBRkM0NkEyNzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFV OTZMNVVmc1NoSDRILXFrSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIaXftG+wia7wM2vC/NaMPeBXmSqxrUa+Cv2dxNv674nUQxitVvYTF Gy3Iti7gBHtz4h3DaL1HuGJlD/nZsGaeI7mHZ86IBut+hnVTT4pkRWDPKXuYzXSR PDPGhZHHp39pECD+hGGaRutFGj0nvRjS9kncHakANEzqnbA0GF1ZrnRwFWJN7TgI /FP1ChY5W6BLrQp4wUOL+IKH3KMo9TEmw0/khv+5+AJGNfF7onjOWVxdZih29Y5t n51ZnQrSpqH1UEUL3cFq3M/MOfMy5ki07E91AoRdW4KhaXvkZXt90+HJMzBjS6Nl B5JeTvm/48JBAEuORe3G0vGndhVgYQcO -----END CERTIFICATE-----Generated at Tue Nov 4 16:03:39 2025 by rpki-client