$ rpki-client -vvf rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.mft File: 84ggnKyyxrgUysV4XUv002zElx8.mft (raw, json) Hash identifier: nf9s6laJmqtalEDJIUmDZJczNT1GS6ofUQ7FBUD7DaI= Subject key identifier: CA:15:DF:56:A7:55:3B:22:04:00:6D:5E:24:BC:BD:50:80:59:71:15 Authority key identifier: F3:88:20:9C:AC:B2:C6:B8:14:CA:C5:78:5D:4B:F4:D3:6C:C4:97:1F Certificate issuer: /CN=A9138A50/serialNumber=F388209CACB2C6B814CAC5785D4BF4D36CC4971F Certificate serial: 04A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84ggnKyyxrgUysV4XUv002zElx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.mft Manifest number: 049B Signing time: Sun 02 Nov 2025 23:58:05 +0000 Manifest this update: Sun 02 Nov 2025 23:58:04 +0000 Manifest next update: Sun 09 Nov 2025 23:58:04 +0000 Files and hashes: 1: 84ggnKyyxrgUysV4XUv002zElx8.crl (hash: Ktnu0QK6M/+gj325jIEJukL5wB9Bc4LwZsCJwbAmfBU=) 2: 0DA4853256FC11EC8032440FC4F9AE02.roa (hash: qCU/OsBRO4+PMlzfkCWYCpZe9YTKzCH9brvEdyELMJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.crl rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84ggnKyyxrgUysV4XUv002zElx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:58:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1184 (0x4a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138A50, serialNumber=F388209CACB2C6B814CAC5785D4BF4D36CC4971F Validity Not Before: Nov 2 23:58:04 2025 GMT Not After : Nov 9 23:58:04 2025 GMT Subject: CN=6907f00c-ce02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1c:9d:61:c8:49:aa:5f:a6:c2:b8:98:47:88: f4:df:1b:89:69:25:aa:92:36:10:4d:53:24:ee:87: 65:06:ff:43:c9:2a:32:fa:fd:ec:f5:cd:66:88:f9: 9f:42:9f:64:28:fe:31:15:a6:a7:4d:37:32:f7:25: c6:69:31:2b:23:c7:99:7f:8c:eb:74:14:cc:44:32: 39:66:19:4a:13:a5:79:45:a6:5c:66:cb:6d:88:b4: ee:de:bd:d9:99:10:25:ac:2c:32:2e:66:59:c8:e1: c6:b2:26:76:fa:fc:1a:e3:2f:88:6f:cf:6d:12:c8: 83:8e:f0:0b:62:04:78:e1:66:5a:4f:18:75:09:a7: 43:23:15:14:41:eb:b4:a3:a7:40:d4:5b:bc:28:64: bd:cb:9d:49:a2:d4:56:70:52:c7:8d:d2:0c:f4:ee: 5a:7e:e0:e8:26:0b:1e:10:9e:58:c0:54:47:ae:ba: c5:28:8c:30:87:4a:1d:7d:af:97:9d:30:bb:c3:33: ea:cc:45:a4:b8:1a:b9:ad:18:4a:ad:02:13:71:66: ad:7f:8f:4a:40:90:13:56:61:57:0e:0e:eb:35:91: 9f:74:83:9c:34:8f:20:ab:7a:8e:71:f8:01:46:ca: a2:05:53:64:0d:a3:b4:e3:0b:bf:4f:d7:84:2c:35: 8a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:15:DF:56:A7:55:3B:22:04:00:6D:5E:24:BC:BD:50:80:59:71:15 X509v3 Authority Key Identifier: keyid:F3:88:20:9C:AC:B2:C6:B8:14:CA:C5:78:5D:4B:F4:D3:6C:C4:97:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84ggnKyyxrgUysV4XUv002zElx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:16:36:99:2e:c5:ac:1d:67:73:40:d6:93:9f:ea:ff:b8:44: a8:ff:da:67:60:3c:35:59:f2:bf:1d:c5:3e:da:46:d0:2d:74: d2:04:60:f9:10:03:2c:62:99:34:61:50:e6:eb:1b:a5:77:76: 0f:3e:d7:0e:b2:84:ea:cb:e9:1a:99:2a:ee:c8:68:38:e3:10: 23:08:46:a3:79:fb:ac:df:11:99:8f:e7:c7:8c:b9:0d:39:41: 77:db:a9:86:f0:87:3a:c0:76:b5:e8:bf:41:b0:ef:f4:87:f4: d1:03:b4:e4:4f:01:13:bb:d9:98:66:b2:45:58:1e:e1:b2:dc: d9:bf:a6:a8:10:25:ad:22:ed:51:28:1b:67:c9:54:82:ba:bb: 68:eb:0e:58:c1:ff:a2:fa:3e:3f:73:da:de:1f:17:8e:a7:e9: 2d:a3:b5:28:e4:eb:18:52:01:e9:07:6a:bc:e5:73:a3:8e:a2: 8c:d7:a1:3b:a6:d4:70:62:24:b7:a9:3a:e3:f1:7d:b6:5c:1a: 0b:78:7e:f7:7d:26:c1:2d:89:cf:3a:a7:48:1e:8d:cc:d3:d4: dc:61:87:93:50:12:25:03:0f:62:90:d5:70:3e:86:55:7f:f8: 2f:ff:05:68:5a:71:c3:da:f9:99:e2:e9:b7:b1:da:e0:9c:af: 5a:bd:3b:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhBNTAxMTAvBgNVBAUTKEYzODgyMDlDQUNCMkM2QjgxNENBQzU3ODVENEJGNEQz NkNDNDk3MUYwHhcNMjUxMTAyMjM1ODA0WhcNMjUxMTA5MjM1ODA0WjAYMRYwFAYD VQQDEw02OTA3ZjAwYy1jZTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxydYchJql+mwriYR4j03xuJaSWqkjYQTVMk7odlBv9DySoy+v3s9c1miPmf Qp9kKP4xFaanTTcy9yXGaTErI8eZf4zrdBTMRDI5ZhlKE6V5RaZcZsttiLTu3r3Z mRAlrCwyLmZZyOHGsiZ2+vwa4y+Ib89tEsiDjvALYgR44WZaTxh1CadDIxUUQeu0 o6dA1Fu8KGS9y51JotRWcFLHjdIM9O5afuDoJgseEJ5YwFRHrrrFKIwwh0odfa+X nTC7wzPqzEWkuBq5rRhKrQITcWatf49KQJATVmFXDg7rNZGfdIOcNI8gq3qOcfgB RsqiBVNkDaO04wu/T9eELDWKNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMoV31an VTsiBABtXiS8vVCAWXEVMB8GA1UdIwQYMBaAFPOIIJysssa4FMrFeF1L9NNsxJcf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEE1MC9DOUE3QTQzODU2 RjkxMUVDODM2RTkxMERDNEY5QUUwMi84NGdnbkt5eXhyZ1V5c1Y0WFV2MDAyekVs eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg0Z2duS3l5eHJnVXlzVjRYVXYwMDJ6RWx4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEE1MC9DOUE3QTQzODU2RjkxMUVDODM2RTkxMERDNEY5QUUwMi84NGdnbkt5eXhy Z1V5c1Y0WFV2MDAyekVseDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdFjaZLsWsHWdzQNaTn+r/uESo/9pnYDw1WfK/HcU+2kbQLXTSBGD5 EAMsYpk0YVDm6xuld3YPPtcOsoTqy+kamSruyGg44xAjCEajefus3xGZj+fHjLkN OUF326mG8Ic6wHa16L9BsO/0h/TRA7TkTwETu9mYZrJFWB7hstzZv6aoECWtIu1R KBtnyVSCurto6w5Ywf+i+j4/c9reHxeOp+kto7Uo5OsYUgHpB2q85XOjjqKM16E7 ptRwYiS3qTrj8X22XBoLeH73fSbBLYnPOqdIHo3M09TcYYeTUBIlAw9ikNVwPoZV f/gv/wVoWnHD2vmZ4um3sdrgnK9avTtL -----END CERTIFICATE-----Generated at Tue Nov 4 21:35:07 2025 by rpki-client