$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.mft File: -S21ujUS5Gp82_tLNRS9b_hcjz0.mft (raw, json) Hash identifier: Iq1yhMLMr7GqrSz1zZI7wpjmmwsV7cx7C5Zz4w7EO0U= Subject key identifier: 75:A2:9A:38:43:18:54:A3:CA:83:D4:37:E8:6D:81:4F:94:7D:4B:F5 Authority key identifier: F9:2D:B5:BA:35:12:E4:6A:7C:DB:FB:4B:35:14:BD:6F:F8:5C:8F:3D Certificate issuer: /CN=A9131A30/serialNumber=F92DB5BA3512E46A7CDBFB4B3514BD6FF85C8F3D Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-S21ujUS5Gp82_tLNRS9b_hcjz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.mft Manifest number: 0144 Signing time: Mon 03 Nov 2025 04:22:43 +0000 Manifest this update: Mon 03 Nov 2025 04:22:42 +0000 Manifest next update: Mon 10 Nov 2025 04:22:42 +0000 Files and hashes: 1: -S21ujUS5Gp82_tLNRS9b_hcjz0.crl (hash: 9t8PEwt2bmVJI0ObYtg6KHhuQ1NFvjsiX4fTvZVv534=) 2: C3CCADD2CAF211EEBA58E81EC4F9AE02.roa (hash: 78U/w57PvT+FVEdRzkbgRL49bNVYISozUZOyQlDFcE4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.crl rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-S21ujUS5Gp82_tLNRS9b_hcjz0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:22:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A30, serialNumber=F92DB5BA3512E46A7CDBFB4B3514BD6FF85C8F3D Validity Not Before: Nov 3 04:22:42 2025 GMT Not After : Nov 10 04:22:42 2025 GMT Subject: CN=69082e12-8248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:56:6c:54:77:0a:a3:c5:3a:4b:59:af:ef:c6: 3a:34:38:57:e2:69:06:f6:5e:c9:53:79:05:fa:01: 5d:65:be:2b:5e:ac:4b:c0:96:7c:34:80:73:31:e4: 84:56:75:f0:dd:ec:03:ff:6b:ef:93:d2:50:96:78: 0e:c4:23:6d:53:06:a0:5e:d6:d1:c1:2f:f7:cb:d3: 72:9e:6d:ba:1e:71:4b:84:6e:6d:5c:3e:18:a6:39: e2:2b:a8:33:2d:e9:d2:3d:01:31:83:f4:19:68:c6: 18:84:ef:d9:85:84:88:99:0b:95:94:08:61:25:4b: a4:9b:6c:56:87:f2:87:c0:3f:e0:b5:1a:a2:c3:14: 35:ef:a0:26:1f:ef:65:5d:6c:3d:9c:c1:f0:c9:0f: 94:35:d3:dc:53:e5:31:04:8e:9d:67:8a:f2:20:ed: cb:eb:b5:03:26:4f:6f:6b:74:3e:2b:18:29:59:ab: 29:93:1b:ca:1e:74:6c:9c:dc:0e:22:71:a6:05:8f: 44:c1:a8:67:1f:d2:74:3e:b4:78:14:f5:d8:d7:23: 8b:9d:df:8c:a0:c8:6e:a5:02:15:45:e2:91:c3:49: a4:10:86:85:7b:a1:e0:42:11:5f:2f:85:28:77:c1: e2:ab:84:ae:10:aa:06:39:c3:1f:a0:34:83:3c:70: bc:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:A2:9A:38:43:18:54:A3:CA:83:D4:37:E8:6D:81:4F:94:7D:4B:F5 X509v3 Authority Key Identifier: keyid:F9:2D:B5:BA:35:12:E4:6A:7C:DB:FB:4B:35:14:BD:6F:F8:5C:8F:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-S21ujUS5Gp82_tLNRS9b_hcjz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A30/4B7A186ACAF211EEACDB2E1EC4F9AE02/-S21ujUS5Gp82_tLNRS9b_hcjz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:28:57:9f:0a:8a:fa:51:7a:27:91:21:b4:e4:45:d0:fa:91: ee:8a:d8:7d:2a:24:ca:2a:6e:f0:a6:d9:b9:10:e7:5f:91:67: ef:a6:b5:ff:43:49:5a:4e:e3:00:aa:8b:55:4e:0a:13:4b:37: d2:c9:5f:2e:40:ae:44:cf:ad:35:da:97:71:c7:53:01:2a:ee: 2a:11:67:70:62:8e:20:90:19:1c:f7:66:61:9d:66:5b:f6:fc: 81:54:28:65:cb:e8:f7:03:72:82:1b:c5:a4:b0:f1:45:d7:ba: 65:65:32:14:bb:d2:c0:9c:a2:d9:8a:5f:19:12:75:01:e7:e7: e5:f3:13:3f:76:71:f6:8a:db:fc:a9:f2:8e:fb:81:49:9c:33: 1a:22:5f:1a:ed:00:c9:bd:84:01:ec:f5:e6:5b:63:81:2a:af: a1:12:8d:64:5f:a7:b2:9b:76:8e:fc:b4:e5:ae:b0:4b:21:11: 4b:3c:80:da:9d:72:9d:65:29:8c:59:7d:54:dd:c8:60:59:c5: 88:77:b0:aa:5e:48:33:a6:d3:ce:a8:78:28:f3:95:f6:7a:b1: 6a:b1:d2:f6:04:f6:d6:7d:31:da:81:7a:ea:55:2e:44:a8:05: cf:b0:28:88:9e:11:53:15:8a:da:54:31:86:9b:96:95:3f:28: cb:49:2d:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMzAxMTAvBgNVBAUTKEY5MkRCNUJBMzUxMkU0NkE3Q0RCRkI0QjM1MTRCRDZG Rjg1QzhGM0QwHhcNMjUxMTAzMDQyMjQyWhcNMjUxMTEwMDQyMjQyWjAYMRYwFAYD VQQDEw02OTA4MmUxMi04MjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFZsVHcKo8U6S1mv78Y6NDhX4mkG9l7JU3kF+gFdZb4rXqxLwJZ8NIBzMeSE VnXw3ewD/2vvk9JQlngOxCNtUwagXtbRwS/3y9Nynm26HnFLhG5tXD4YpjniK6gz LenSPQExg/QZaMYYhO/ZhYSImQuVlAhhJUukm2xWh/KHwD/gtRqiwxQ176AmH+9l XWw9nMHwyQ+UNdPcU+UxBI6dZ4ryIO3L67UDJk9va3Q+KxgpWaspkxvKHnRsnNwO InGmBY9EwahnH9J0PrR4FPXY1yOLnd+MoMhupQIVReKRw0mkEIaFe6HgQhFfL4Uo d8Hiq4SuEKoGOcMfoDSDPHC8NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWimjhD GFSjyoPUN+htgU+UfUv1MB8GA1UdIwQYMBaAFPkttbo1EuRqfNv7SzUUvW/4XI89 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEzMC80QjdBMTg2QUNB RjIxMUVFQUNEQjJFMUVDNEY5QUUwMi8tUzIxdWpVUzVHcDgyX3RMTlJTOWJfaGNq ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1TMjF1alVTNUdwODJfdExOUlM5Yl9oY2p6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUEzMC80QjdBMTg2QUNBRjIxMUVFQUNEQjJFMUVDNEY5QUUwMi8tUzIxdWpVUzVH cDgyX3RMTlJTOWJfaGNqejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwKFefCor6UXonkSG05EXQ+pHuith9KiTKKm7wptm5EOdfkWfvprX/ Q0laTuMAqotVTgoTSzfSyV8uQK5Ez6012pdxx1MBKu4qEWdwYo4gkBkc92ZhnWZb 9vyBVChly+j3A3KCG8WksPFF17plZTIUu9LAnKLZil8ZEnUB5+fl8xM/dnH2itv8 qfKO+4FJnDMaIl8a7QDJvYQB7PXmW2OBKq+hEo1kX6eym3aO/LTlrrBLIRFLPIDa nXKdZSmMWX1U3chgWcWId7CqXkgzptPOqHgo85X2erFqsdL2BPbWfTHagXrqVS5E qAXPsCiInhFTFYraVDGGm5aVPyjLSS20 -----END CERTIFICATE-----Generated at Tue Nov 4 23:18:18 2025 by rpki-client