$ rpki-client -vvf rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.mft File: mqwVb6kYtDBXQdrp1duikzdGzoc.mft (raw, json) Hash identifier: DyYml19gh3DCO4BVwu6A2bioYuflFQuT+Y3lpVqjN1M= Subject key identifier: 60:D6:59:90:F1:1A:54:AC:D4:D1:A0:EC:73:88:FA:C0:AF:DF:3D:24 Authority key identifier: 9A:AC:15:6F:A9:18:B4:30:57:41:DA:E9:D5:DB:A2:93:37:46:CE:87 Certificate issuer: /CN=A9133CD2/serialNumber=9AAC156FA918B4305741DAE9D5DBA2933746CE87 Certificate serial: 0214 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqwVb6kYtDBXQdrp1duikzdGzoc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.mft Manifest number: 0209 Signing time: Wed 05 Nov 2025 02:30:26 +0000 Manifest this update: Wed 05 Nov 2025 02:30:26 +0000 Manifest next update: Wed 12 Nov 2025 02:30:26 +0000 Files and hashes: 1: mqwVb6kYtDBXQdrp1duikzdGzoc.crl (hash: pZEBS4m8TjCSmp8Ky0ev3xHKPwBqGqFDISl0f8CjhgU=) 2: A46B24207D3811EF8EE86E6BC4F9AE02.roa (hash: q4NWMO7W6lRpux2uN6ng9OrQyUZmWgx1UYeF7qqy2kQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.crl rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqwVb6kYtDBXQdrp1duikzdGzoc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:30:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 532 (0x214) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133CD2, serialNumber=9AAC156FA918B4305741DAE9D5DBA2933746CE87 Validity Not Before: Nov 5 02:30:26 2025 GMT Not After : Nov 12 02:30:26 2025 GMT Subject: CN=690ab6c2-3622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:79:fe:0a:b6:42:83:db:39:86:cc:67:69:46: c9:3e:a2:42:e5:5a:36:40:ec:81:17:69:84:a2:74: 94:e7:a6:9b:e0:97:96:e3:a2:bb:ac:d7:78:e9:78: cd:a3:e1:66:ed:ac:95:dc:4d:ec:36:dd:cf:89:a0: a7:9e:a6:ae:ce:a0:94:8e:53:68:6f:a6:0d:b0:d7: 20:8c:34:aa:80:44:e5:65:4e:7f:44:c2:40:e3:8c: de:0a:1d:a7:4b:1d:08:a1:f1:9d:c1:33:f4:38:53: 71:ba:c9:61:ef:6d:b5:a2:0c:22:96:a3:f9:88:c6: e6:46:df:02:86:6f:60:3a:52:0c:7c:03:fc:4e:0b: c8:e0:5e:3a:ed:be:ba:83:f3:f7:dc:8f:ee:14:79: 3d:97:9c:64:10:32:d6:72:d3:10:b9:a6:ac:0a:7a: e5:e5:3a:3b:54:01:43:c4:0e:7f:e2:17:3e:bd:15: 39:7b:e1:9d:3c:fc:f5:cd:70:14:19:4d:42:8d:c8: 2d:ec:20:ad:3f:c5:2a:63:bb:78:61:23:59:28:29: 1f:c8:49:3c:3d:11:64:5c:3c:58:d3:7a:01:9b:50: 78:52:dc:13:ab:d1:e3:d1:81:18:9f:8b:55:c4:85: dd:f5:44:2a:b5:4a:ef:c9:93:f5:3d:13:f5:99:1e: 16:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:D6:59:90:F1:1A:54:AC:D4:D1:A0:EC:73:88:FA:C0:AF:DF:3D:24 X509v3 Authority Key Identifier: keyid:9A:AC:15:6F:A9:18:B4:30:57:41:DA:E9:D5:DB:A2:93:37:46:CE:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqwVb6kYtDBXQdrp1duikzdGzoc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:1f:b8:c2:db:ab:6e:f4:65:fb:52:59:a8:e5:12:8c:e1:2d: d9:44:b1:5d:e3:c1:f1:37:f7:17:1a:05:cd:ae:99:34:ee:bc: aa:61:f7:f0:aa:2d:74:6f:39:29:ff:44:45:a2:16:e4:f8:29: 46:e3:ce:e3:8a:c3:14:7c:ee:72:76:45:6b:8b:bb:91:e6:dd: 7b:6a:41:40:b1:8d:3c:82:3e:6b:95:6e:4e:f4:57:db:28:6e: 01:50:78:e1:0e:ff:38:bd:38:73:a1:89:c2:fb:2c:cc:ba:c2: 9d:89:a3:1f:8b:13:4b:7c:a8:f9:de:c5:44:1c:ba:41:30:d6: 86:6c:fe:ec:75:98:4f:20:91:43:cd:a4:2b:7d:e2:d4:9d:53: b1:22:ff:1a:a0:af:91:42:62:bf:80:1b:2b:8a:73:4e:f3:59: d8:88:fb:4c:89:0b:7c:7e:1d:8c:6b:21:f9:06:e9:db:f7:65: be:3c:78:c8:fc:00:26:43:be:a3:1c:88:05:1a:36:f0:7c:84: 0b:e8:cc:df:60:d7:88:a4:d5:fe:b0:e4:1b:5b:ed:4b:78:1f: 3c:8e:c6:e2:66:b5:59:ab:58:0c:16:e6:f8:8b:1f:df:da:ea: 46:3d:13:8e:90:3d:60:07:57:1b:94:61:4f:c3:75:2b:87:31: c4:5b:e0:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNDRDIxMTAvBgNVBAUTKDlBQUMxNTZGQTkxOEI0MzA1NzQxREFFOUQ1REJBMjkz Mzc0NkNFODcwHhcNMjUxMTA1MDIzMDI2WhcNMjUxMTEyMDIzMDI2WjAYMRYwFAYD VQQDEw02OTBhYjZjMi0zNjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHn+CrZCg9s5hsxnaUbJPqJC5Vo2QOyBF2mEonSU56ab4JeW46K7rNd46XjN o+Fm7ayV3E3sNt3PiaCnnqauzqCUjlNob6YNsNcgjDSqgETlZU5/RMJA44zeCh2n Sx0IofGdwTP0OFNxuslh7221ogwilqP5iMbmRt8Chm9gOlIMfAP8TgvI4F467b66 g/P33I/uFHk9l5xkEDLWctMQuaasCnrl5To7VAFDxA5/4hc+vRU5e+GdPPz1zXAU GU1Cjcgt7CCtP8UqY7t4YSNZKCkfyEk8PRFkXDxY03oBm1B4UtwTq9Hj0YEYn4tV xIXd9UQqtUrvyZP1PRP1mR4W0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGDWWZDx GlSs1NGg7HOI+sCv3z0kMB8GA1UdIwQYMBaAFJqsFW+pGLQwV0Ha6dXbopM3Rs6H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0NEMi80NUYzQUE3RUFD MTYxMUVEQjk0N0I4NjBDNEY5QUUwMi9tcXdWYjZrWXREQlhRZHJwMWR1aWt6ZEd6 b2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21xd1ZiNmtZdERCWFFkcnAxZHVpa3pkR3pvYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0NEMi80NUYzQUE3RUFDMTYxMUVEQjk0N0I4NjBDNEY5QUUwMi9tcXdWYjZrWXRE QlhRZHJwMWR1aWt6ZEd6b2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrH7jC26tu9GX7Ulmo5RKM4S3ZRLFd48HxN/cXGgXNrpk07ryqYffw qi10bzkp/0RFohbk+ClG487jisMUfO5ydkVri7uR5t17akFAsY08gj5rlW5O9Ffb KG4BUHjhDv84vThzoYnC+yzMusKdiaMfixNLfKj53sVEHLpBMNaGbP7sdZhPIJFD zaQrfeLUnVOxIv8aoK+RQmK/gBsrinNO81nYiPtMiQt8fh2MayH5Bunb92W+PHjI /AAmQ76jHIgFGjbwfIQL6MzfYNeIpNX+sOQbW+1LeB88jsbiZrVZq1gMFub4ix/f 2upGPROOkD1gB1cblGFPw3UrhzHEW+BM -----END CERTIFICATE-----Generated at Wed Nov 5 05:41:34 2025 by rpki-client