$ rpki-client -vvf rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft File: AQtAe3X24zjzr7WajWJxXDwC7PQ.mft (raw, json) Hash identifier: YMp1O4L6x+fQ++4ARtQHAoTTubdno6+12F0KAjTJCCM= Subject key identifier: 76:CB:69:93:6A:6C:93:23:F7:DA:CD:D5:DE:13:00:52:A7:54:DE:7C Authority key identifier: 01:0B:40:7B:75:F6:E3:38:F3:AF:B5:9A:8D:62:71:5C:3C:02:EC:F4 Certificate issuer: /CN=A9132EC7/serialNumber=010B407B75F6E338F3AFB59A8D62715C3C02ECF4 Certificate serial: 1724 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft Manifest number: 1711 Signing time: Tue 04 Nov 2025 16:44:10 +0000 Manifest this update: Tue 04 Nov 2025 16:44:10 +0000 Manifest next update: Tue 11 Nov 2025 16:44:10 +0000 Files and hashes: 1: AQtAe3X24zjzr7WajWJxXDwC7PQ.crl (hash: MXUwdIkcE4ha+d9mPc8V4aeuUONENI5SFeHP+Q4Klb4=) 2: 0D4F5906FA7911E7B85F4E7EC4F9AE02.roa (hash: 822Cv07i81nzITiBp8oPidqObRAFnQ5Dsa+D8sFZUvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.crl rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5924 (0x1724) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132EC7, serialNumber=010B407B75F6E338F3AFB59A8D62715C3C02ECF4 Validity Not Before: Nov 4 16:44:10 2025 GMT Not After : Nov 11 16:44:10 2025 GMT Subject: CN=690a2d5a-6d6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ce:b7:b2:58:95:85:0d:e5:b3:47:19:ed:91: 6d:05:70:8e:74:fa:82:8a:a0:19:68:ec:6e:49:76: 8b:3a:ee:ba:e2:ee:29:54:58:6d:a8:83:be:cb:ee: 69:e7:0c:cc:1e:9b:4b:e2:19:be:10:67:82:a0:dd: 21:d6:0b:b4:05:23:23:aa:ee:8d:d4:38:3c:c0:61: af:b6:5e:5b:0d:ce:58:06:b4:8b:3c:ba:bc:1a:72: f9:ca:e5:c8:b6:a6:7d:7e:45:f4:10:17:47:43:58: 14:af:74:3b:96:32:50:c9:e9:4e:c9:9e:e7:d7:c0: 19:a9:04:5c:e2:f5:09:16:1a:02:21:56:1b:20:db: 76:07:7d:5c:88:74:e6:15:c7:4f:cd:5b:d9:07:6c: e2:f8:e5:55:c5:dc:e5:5c:65:e4:28:8d:f5:dc:ce: 12:00:d2:3c:90:b8:19:0a:50:1a:71:52:b3:d1:03: c4:b5:49:57:96:8c:0e:d3:db:d4:0e:3c:15:dd:c3: 91:e7:ca:99:28:a9:d1:56:9e:2f:54:93:13:cc:1d: 4c:cf:04:f3:6f:6d:8d:38:24:43:3c:d5:1f:99:59: 80:e1:e5:55:15:4f:73:06:ac:33:8e:8b:3a:95:c9: 48:5d:91:f0:0c:37:57:13:5d:1b:68:75:64:1b:50: dc:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:CB:69:93:6A:6C:93:23:F7:DA:CD:D5:DE:13:00:52:A7:54:DE:7C X509v3 Authority Key Identifier: keyid:01:0B:40:7B:75:F6:E3:38:F3:AF:B5:9A:8D:62:71:5C:3C:02:EC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:e1:3f:10:fb:a0:bb:2e:3a:02:88:d3:d4:a7:e7:8b:06:d8: 7d:6d:78:b7:b6:9f:68:85:24:a9:65:03:f2:fe:7d:20:a6:4e: b9:58:e2:8c:4d:99:dc:c7:1c:f0:ea:5e:44:37:94:61:90:88: 1b:94:f4:1a:ec:54:93:98:d9:6e:b9:bf:8e:c7:8a:ca:04:51: da:14:58:8a:ef:a3:df:6f:f4:37:fb:59:bf:65:53:31:a5:5f: 69:f5:04:0a:bc:98:b6:1c:10:36:4c:2c:02:40:c9:fe:50:ea: 3f:73:79:d3:04:3e:d6:65:d4:9a:d9:8c:61:3d:f8:f0:aa:de: b8:8f:25:93:6e:89:61:bb:f1:ec:0d:cf:72:12:05:b6:11:9e: 0d:fc:76:c1:ff:d9:f4:14:fe:c7:ea:ee:25:5a:c0:cc:db:93: 5e:16:03:d7:6c:2f:39:96:2e:26:e6:40:e7:2b:e4:61:49:d0: d7:8b:1d:91:dd:9e:32:49:de:e7:9b:ab:0e:f4:b3:b1:34:bc: bf:da:f2:25:f2:7c:8e:c5:0d:ae:7d:e8:84:7f:ba:42:37:c7: 57:9d:7d:97:43:32:ac:66:f1:b5:e5:e9:43:0c:03:f8:68:a0: ac:5b:d6:6e:44:e0:7a:4b:04:e6:3a:5b:29:35:01:32:9e:02: 5e:c1:b0:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFyQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJFQzcxMTAvBgNVBAUTKDAxMEI0MDdCNzVGNkUzMzhGM0FGQjU5QThENjI3MTVD M0MwMkVDRjQwHhcNMjUxMTA0MTY0NDEwWhcNMjUxMTExMTY0NDEwWjAYMRYwFAYD VQQDEw02OTBhMmQ1YS02ZDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwM63sliVhQ3ls0cZ7ZFtBXCOdPqCiqAZaOxuSXaLOu664u4pVFhtqIO+y+5p 5wzMHptL4hm+EGeCoN0h1gu0BSMjqu6N1Dg8wGGvtl5bDc5YBrSLPLq8GnL5yuXI tqZ9fkX0EBdHQ1gUr3Q7ljJQyelOyZ7n18AZqQRc4vUJFhoCIVYbINt2B31ciHTm FcdPzVvZB2zi+OVVxdzlXGXkKI313M4SANI8kLgZClAacVKz0QPEtUlXlowO09vU DjwV3cOR58qZKKnRVp4vVJMTzB1MzwTzb22NOCRDPNUfmVmA4eVVFU9zBqwzjos6 lclIXZHwDDdXE10baHVkG1DcFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbLaZNq bJMj99rN1d4TAFKnVN58MB8GA1UdIwQYMBaAFAELQHt19uM486+1mo1icVw8Auz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkVDNy8yOTM0NzI2QUZB NzgxMUU3OUNCNjA4N0RDNEY5QUUwMi9BUXRBZTNYMjR6anpyN1dhaldKeFhEd0M3 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRdEFlM1gyNHpqenI3V2FqV0p4WER3QzdQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkVDNy8yOTM0NzI2QUZBNzgxMUU3OUNCNjA4N0RDNEY5QUUwMi9BUXRBZTNYMjR6 anpyN1dhaldKeFhEd0M3UFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBf4T8Q+6C7LjoCiNPUp+eLBth9bXi3tp9ohSSpZQPy/n0gpk65WOKM TZncxxzw6l5EN5RhkIgblPQa7FSTmNluub+Ox4rKBFHaFFiK76Pfb/Q3+1m/ZVMx pV9p9QQKvJi2HBA2TCwCQMn+UOo/c3nTBD7WZdSa2YxhPfjwqt64jyWTbolhu/Hs Dc9yEgW2EZ4N/HbB/9n0FP7H6u4lWsDM25NeFgPXbC85li4m5kDnK+RhSdDXix2R 3Z4ySd7nm6sO9LOxNLy/2vIl8nyOxQ2ufeiEf7pCN8dXnX2XQzKsZvG15elDDAP4 aKCsW9ZuROB6SwTmOlspNQEyngJewbA+ -----END CERTIFICATE-----Generated at Wed Nov 5 12:28:07 2025 by rpki-client