$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft File: mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft (raw, json) Hash identifier: JZIC6kPXNT6RuX23YJ7c7SoV0WvlC/nQc6zfWI9dUBI= Subject key identifier: FC:6D:C5:F6:B3:EC:1B:E0:D9:1E:B5:E7:66:56:5E:3C:5E:61:4C:E2 Authority key identifier: 99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 Certificate issuer: /CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Certificate serial: 1090 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft Manifest number: 1054 Signing time: Tue 04 Nov 2025 17:32:06 +0000 Manifest this update: Tue 04 Nov 2025 17:32:06 +0000 Manifest next update: Tue 11 Nov 2025 17:32:06 +0000 Files and hashes: 1: mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl (hash: YUJ3RvvydXkf2aEEO7vRIU70QNRR3o8yUpkf/5gr2Fc=) 2: 64BBCC50909D11ED9EA9867FC4F9AE02.roa (hash: JcjF+/6kCZJ48Z0DWV35F84UCZas+SRfWJwuoffcQww=) 3: EE63EB2A59A611F0959E0C63C4F9AE02.roa (hash: GsLnRLdogxstpaApcoyc6Zg1nnApMAJYYma2C41kKMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:32:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4240 (0x1090) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F4B, serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Validity Not Before: Nov 4 17:32:06 2025 GMT Not After : Nov 11 17:32:06 2025 GMT Subject: CN=690a3896-ed7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:26:13:9c:39:76:0d:37:8e:43:6f:b7:05:40: 79:9e:a3:7a:d2:47:1a:c5:28:cb:a0:c0:ff:fe:7d: 80:d2:69:81:d2:98:81:97:43:9a:47:8d:a9:36:5a: f0:94:07:b3:60:38:2d:f6:49:09:87:f0:13:7c:90: 91:f8:e5:a7:45:23:e3:00:df:8f:b5:22:ad:8d:1f: f6:fa:d7:8f:0d:0c:0a:27:a9:96:83:cd:9d:f8:9a: 8c:b2:bf:40:dc:39:02:59:1a:86:11:cd:e4:81:34: 2a:3a:6d:8e:b6:27:f2:1d:90:c0:01:ab:43:c9:c4: b2:d7:4d:f6:bc:32:b2:9f:69:ea:6c:35:a3:64:a6: 02:83:9d:92:f3:b2:30:49:5e:fa:66:12:67:73:77: 2d:db:91:cc:01:b1:98:b8:e5:a1:2b:3f:cc:96:52: d5:1b:05:43:dd:62:18:e1:82:d0:ee:96:4d:55:61: c9:85:b0:38:c9:30:05:de:6e:74:68:07:f3:e6:08: 48:1c:77:fb:fe:52:7c:28:fc:1a:b9:df:ad:9b:4d: 81:f4:4d:99:6a:2d:0b:aa:6f:5a:07:bc:7f:23:8c: d6:d9:a1:f0:ef:d9:bf:16:43:28:e3:af:9c:d5:df: 7e:e0:6a:8b:02:78:fa:56:31:c0:c6:fc:00:13:53: 0c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:6D:C5:F6:B3:EC:1B:E0:D9:1E:B5:E7:66:56:5E:3C:5E:61:4C:E2 X509v3 Authority Key Identifier: keyid:99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:6f:a7:80:04:1b:d0:65:58:ad:c5:cf:80:55:04:05:5f:e7: e1:6c:e0:31:33:84:46:51:11:1b:0b:99:97:ec:7f:5a:ad:eb: fc:30:17:80:09:6a:5d:84:76:d1:5e:2b:5b:84:d9:79:11:fe: d8:6d:11:b9:a2:8e:7d:dc:c2:72:ec:28:69:a1:f6:91:8a:09: f4:ee:45:58:68:5b:50:d7:92:0a:83:15:f1:c8:d7:22:64:7b: f2:2c:6f:8f:cb:21:4e:1e:08:6f:0c:4c:c9:1d:3f:3c:a8:42: 2c:7c:33:fe:56:7e:96:e8:7a:9a:f6:c0:f3:9c:72:40:b4:85: d0:10:70:51:4a:fb:4a:15:68:db:be:1e:70:6b:5a:0a:b2:d2: b6:da:dc:6e:66:1c:db:7a:5a:63:49:65:ca:6b:93:d8:37:82: ed:51:e0:1e:75:20:d4:73:c7:4f:b2:ad:10:8f:96:8b:6b:e1: 1d:f5:d9:ce:9d:09:e2:61:6d:b6:f4:84:3d:a1:8d:db:31:26: 2e:71:8e:c7:64:73:b6:cf:ac:40:96:cd:74:c3:27:b3:c1:6b: c5:8a:ad:0e:cd:36:b9:a0:5f:1e:25:bd:92:f6:44:f8:4f:f6: cf:e1:8a:9d:11:80:8d:6b:ed:7c:1b:70:ee:c1:b2:cb:7d:b1: 6b:da:06:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGNEIxMTAvBgNVBAUTKDk5MzBEMEZGRUI4NzA3MDFCNEU4RUI0REIzQzA4NjYy MzNGQzVCNTAwHhcNMjUxMTA0MTczMjA2WhcNMjUxMTExMTczMjA2WjAYMRYwFAYD VQQDEw02OTBhMzg5Ni1lZDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmSYTnDl2DTeOQ2+3BUB5nqN60kcaxSjLoMD//n2A0mmB0piBl0OaR42pNlrw lAezYDgt9kkJh/ATfJCR+OWnRSPjAN+PtSKtjR/2+tePDQwKJ6mWg82d+JqMsr9A 3DkCWRqGEc3kgTQqOm2OtifyHZDAAatDycSy1032vDKyn2nqbDWjZKYCg52S87Iw SV76ZhJnc3ct25HMAbGYuOWhKz/MllLVGwVD3WIY4YLQ7pZNVWHJhbA4yTAF3m50 aAfz5ghIHHf7/lJ8KPwaud+tm02B9E2Zai0Lqm9aB7x/I4zW2aHw79m/FkMo46+c 1d9+4GqLAnj6VjHAxvwAE1MMcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxtxfaz 7Bvg2R6152ZWXjxeYUziMB8GA1UdIwQYMBaAFJkw0P/rhwcBtOjrTbPAhmIz/FtQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY0Qi81NzcyQUEzMDU0 RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3RzA2T3ROczhDR1lqUDhX MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21URFFfLXVIQndHMDZPdE5zOENHWWpQOFcxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEY0Qi81NzcyQUEzMDU0RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3 RzA2T3ROczhDR1lqUDhXMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBb6eABBvQZVitxc+AVQQFX+fhbOAxM4RGUREbC5mX7H9arev8MBeA CWpdhHbRXitbhNl5Ef7YbRG5oo593MJy7ChpofaRign07kVYaFtQ15IKgxXxyNci ZHvyLG+PyyFOHghvDEzJHT88qEIsfDP+Vn6W6Hqa9sDznHJAtIXQEHBRSvtKFWjb vh5wa1oKstK22txuZhzbelpjSWXKa5PYN4LtUeAedSDUc8dPsq0Qj5aLa+Ed9dnO nQniYW229IQ9oY3bMSYucY7HZHO2z6xAls10wyezwWvFiq0OzTa5oF8eJb2S9kT4 T/bP4YqdEYCNa+18G3DuwbLLfbFr2gbT -----END CERTIFICATE-----Generated at Wed Nov 5 21:44:15 2025 by rpki-client