$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft File: wvKOnRiEOcT-afY6TKptpCSWKR0.mft (raw, json) Hash identifier: UWgMCqikpxwFS1OzyrJr7MTEKH/0aA+ELSR1K0+0hM4= Subject key identifier: 1C:A4:84:09:DE:19:F6:90:47:40:96:33:D1:4A:F1:E2:17:AA:67:D0 Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D Certificate issuer: /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Certificate serial: 05C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft Manifest number: 0590 Signing time: Sun 02 Nov 2025 23:23:27 +0000 Manifest this update: Sun 02 Nov 2025 23:23:27 +0000 Manifest next update: Sun 09 Nov 2025 23:23:27 +0000 Files and hashes: 1: wvKOnRiEOcT-afY6TKptpCSWKR0.crl (hash: kK4w8czCbL+oHphKKOaNV/z5q1R0aGyx7buvHzztj6I=) 2: 35A768B8563B11EC94608B5BC4F9AE02.roa (hash: P6wLHpQqCHGL554TbsS5XznXqZdAAm0+usW172StxkE=) 3: 24AE273C2D1111EE85C59810C4F9AE02.roa (hash: 9XIDfJY0Nbkx5W4WrOh9skXlNedfJVNiInoNg42Y+8s=) 4: BFFF6C4A07D911EDA41A0B25C4F9AE02.roa (hash: GP/xk9klfhzGUqC9zVSgLsFcoj/SNA7QNKZizL06GJY=) 5: C08B939607D911EDA41A0B25C4F9AE02.roa (hash: bKJMqVVKRvZ4SvMBFN3lmqToCrhVtOKwpkwkSKOCPAY=) 6: 2379396E35DA11F08BAAE414C4F9AE02.roa (hash: Jx8gJbXn9OtsYSW59bLdCCTB+IjRw64vOzcz4bDoiq4=) 7: 131FA4B092AD11F0AF4F4C85C4F9AE02.roa (hash: 2I5Ge7KBh0e5lEpfrh8ZbOfF9fHkRChHLpkEq2RW7oE=) 8: 85B13C3299CE11F087D1450FC4F9AE02.roa (hash: WGM85d42jF0RvgbFfnNoubVrh59/d23ICHptXHKbWpI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:23:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1481 (0x5c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D25, serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Validity Not Before: Nov 2 23:23:27 2025 GMT Not After : Nov 9 23:23:27 2025 GMT Subject: CN=6907e7ef-ec0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:05:7f:43:07:a6:77:d5:6c:e7:ef:f3:40:d2: fb:8b:d4:35:a8:6b:6e:88:41:f0:f6:64:ae:17:0d: 0a:64:af:e1:d8:76:70:f4:65:8c:57:c1:f7:0f:70: 24:dd:86:3a:71:69:bd:9c:5a:ef:82:70:e3:1b:d7: b6:67:d3:79:32:b7:20:df:72:aa:d0:4f:e6:97:fa: 80:9c:c3:f6:4b:25:51:74:62:ba:a0:bf:b1:56:10: 97:f9:d5:73:d4:54:1d:e3:89:f0:64:0c:86:c2:ab: 66:48:2e:fb:53:43:96:ab:b0:53:04:56:15:63:9a: 10:a1:3a:32:da:a0:f6:0c:be:ee:00:eb:50:28:2e: 62:df:1b:83:76:0c:cf:2c:27:d3:27:52:c1:d4:9e: 4e:d7:28:52:fc:26:63:12:22:f4:30:4d:18:bd:bc: 6a:77:b3:9e:fa:d2:f6:4b:aa:71:50:e5:d4:71:e7: 6c:cb:ec:a8:64:36:a3:2f:88:9e:f4:16:97:0d:26: 1f:2a:53:37:a7:ec:16:a0:a6:5b:2f:20:9d:fb:f4: 5f:7c:d0:5a:42:8e:45:45:fa:a1:fe:dd:6e:41:9a: 55:f7:7b:cf:32:cd:b4:b6:16:2a:09:d3:d8:8f:7d: 7f:7a:4e:a3:0c:2b:97:ce:d6:9e:09:d1:bf:e9:1b: 00:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:A4:84:09:DE:19:F6:90:47:40:96:33:D1:4A:F1:E2:17:AA:67:D0 X509v3 Authority Key Identifier: keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:f1:9e:87:79:01:fb:39:37:8d:a6:d1:e1:cf:5a:74:7c:8e: c7:be:82:93:cc:9f:c7:07:c2:04:13:9c:50:37:d5:7c:ae:2f: 1e:01:9b:76:89:3d:e2:d8:d9:56:c3:05:23:be:36:86:fa:97: eb:cb:9a:08:2a:fb:fb:3a:ae:d3:20:b3:f1:24:6c:25:4c:b6: 07:d4:ad:84:f4:5e:62:af:49:c3:12:0a:b2:ca:36:0c:75:c2: 37:f4:86:cb:68:25:7a:c6:98:16:b5:01:c4:ef:a7:82:00:31: 79:dc:54:c4:11:e9:58:dc:03:2f:47:66:0c:75:7f:45:3a:c0: 4c:6f:75:21:52:5a:5c:ba:90:81:5e:cc:af:fb:bb:5f:e1:f1: b0:5a:c3:24:57:ed:8d:a4:92:47:69:0a:b3:6e:75:c1:58:7e: b5:a6:3b:98:b5:1e:7c:af:fe:bd:f7:83:a7:c2:04:4d:28:40: 52:bf:1e:28:f7:03:65:b9:65:70:ac:19:f9:bd:fc:52:35:d7: 2f:25:fa:c8:c1:66:87:68:05:d6:8a:a7:70:06:94:80:fa:83: a9:26:a8:98:80:e1:92:d8:08:32:21:3c:df:92:5c:b0:aa:a2: b0:39:6c:ec:cb:71:10:eb:82:19:5c:b4:02:a4:23:e4:78:e3: 9c:e4:98:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVEMjUxMTAvBgNVBAUTKEMyRjI4RTlEMTg4NDM5QzRGRTY5RjYzQTRDQUE2REE0 MjQ5NjI5MUQwHhcNMjUxMTAyMjMyMzI3WhcNMjUxMTA5MjMyMzI3WjAYMRYwFAYD VQQDEw02OTA3ZTdlZi1lYzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6gV/Qwemd9Vs5+/zQNL7i9Q1qGtuiEHw9mSuFw0KZK/h2HZw9GWMV8H3D3Ak 3YY6cWm9nFrvgnDjG9e2Z9N5Mrcg33Kq0E/ml/qAnMP2SyVRdGK6oL+xVhCX+dVz 1FQd44nwZAyGwqtmSC77U0OWq7BTBFYVY5oQoToy2qD2DL7uAOtQKC5i3xuDdgzP LCfTJ1LB1J5O1yhS/CZjEiL0ME0Yvbxqd7Oe+tL2S6pxUOXUcedsy+yoZDajL4ie 9BaXDSYfKlM3p+wWoKZbLyCd+/RffNBaQo5FRfqh/t1uQZpV93vPMs20thYqCdPY j31/ek6jDCuXztaeCdG/6RsAdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBykhAne GfaQR0CWM9FK8eIXqmfQMB8GA1UdIwQYMBaAFMLyjp0YhDnE/mn2OkyqbaQklikd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQyNS82N0YyQjBEODBC RDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9jVC1hZlk2VEtwdHBDU1dL UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2S09uUmlFT2NULWFmWTZUS3B0cENTV0tSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUQyNS82N0YyQjBEODBCRDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9j VC1hZlk2VEtwdHBDU1dLUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZ8Z6HeQH7OTeNptHhz1p0fI7HvoKTzJ/HB8IEE5xQN9V8ri8eAZt2 iT3i2NlWwwUjvjaG+pfry5oIKvv7Oq7TILPxJGwlTLYH1K2E9F5ir0nDEgqyyjYM dcI39IbLaCV6xpgWtQHE76eCADF53FTEEelY3AMvR2YMdX9FOsBMb3UhUlpcupCB Xsyv+7tf4fGwWsMkV+2NpJJHaQqzbnXBWH61pjuYtR58r/6994OnwgRNKEBSvx4o 9wNluWVwrBn5vfxSNdcvJfrIwWaHaAXWiqdwBpSA+oOpJqiYgOGS2AgyITzfklyw qqKwOWzsy3EQ64IZXLQCpCPkeOOc5Jh7 -----END CERTIFICATE-----Generated at Tue Nov 4 20:20:40 2025 by rpki-client