$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft File: -1uWlTzNsR6SaDs-tbekV0lLJfA.mft (raw, json) Hash identifier: l7i4nMUHz4tUzSua+ih9BLzQxnHFl9yNrk1IyOFsb7s= Subject key identifier: 82:5F:5D:2B:8A:8A:B6:1E:AC:D8:3F:79:AF:76:44:EE:EB:B0:F7:55 Authority key identifier: FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 Certificate issuer: /CN=A9146A72/serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Certificate serial: 0183 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft Manifest number: 0180 Signing time: Tue 04 Nov 2025 15:32:44 +0000 Manifest this update: Tue 04 Nov 2025 15:32:43 +0000 Manifest next update: Tue 11 Nov 2025 15:32:43 +0000 Files and hashes: 1: -1uWlTzNsR6SaDs-tbekV0lLJfA.crl (hash: TFxlZER6dKptxszsHQ/JfLIB/lRjVGtkNPsU5/odDy4=) 2: 67B0ACBC8E5011EE95DFC141C4F9AE02.roa (hash: v8nxYYW0hF0+DI8v9AY4Ub2lKaqI81YP/TyFzHf/96E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:32:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72, serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Validity Not Before: Nov 4 15:32:43 2025 GMT Not After : Nov 11 15:32:43 2025 GMT Subject: CN=690a1c9c-5d27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:c3:40:a9:9d:58:3b:03:dc:77:0e:ce:f3:44: 8b:43:20:e3:56:8b:d5:0d:69:40:36:0f:46:f1:69: 44:78:7b:46:99:9a:f5:a6:bc:41:c0:65:70:f1:ea: e9:8a:02:50:6e:9d:55:b4:2f:57:5b:8b:a8:eb:91: 3b:f0:bd:e0:19:5e:a3:e6:5a:ee:31:5a:a5:6b:8d: f8:f0:ec:b8:5d:28:f6:23:97:70:59:6e:68:d6:ab: e0:60:d6:48:84:4f:74:4f:dd:06:58:29:5f:b4:e4: 17:00:f6:94:d1:18:80:5f:20:61:cc:4b:7a:9f:3b: 13:0f:ee:fd:32:ed:05:e0:b3:0a:78:f6:06:13:d0: 5d:c5:66:03:fb:f1:34:25:d0:e6:00:0b:ff:6d:34: c8:d0:71:62:aa:ad:1d:75:4e:54:3c:e4:ea:9b:ac: 8f:36:09:60:5a:b3:48:ec:58:bb:2c:ff:63:2a:b6: c5:45:1c:d3:30:e9:5f:4d:04:5e:30:b2:6f:6f:26: 0c:27:31:6e:13:22:6d:36:d3:d4:af:1e:c6:92:68: e7:fd:38:34:fe:fe:8e:e2:3d:9d:bb:83:db:83:c2: 32:cd:2c:02:cb:c2:7f:f5:f9:cd:d5:e4:b5:bd:25: c2:2a:ee:e3:49:be:81:7a:65:4c:e2:5f:75:57:77: f1:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:5F:5D:2B:8A:8A:B6:1E:AC:D8:3F:79:AF:76:44:EE:EB:B0:F7:55 X509v3 Authority Key Identifier: keyid:FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:05:61:6a:ca:3b:2e:6b:81:db:5e:85:61:f4:3c:d4:b1:02: 67:04:26:8d:5a:e9:9f:02:ef:54:54:37:93:73:e5:a5:44:d0: f7:ce:9a:6e:06:0b:a0:c2:b2:1e:0e:83:71:76:04:bf:a9:02: f0:e0:51:c5:2d:a6:b7:d3:66:fa:e9:25:12:ce:c5:6d:54:6c: e6:01:72:2b:62:59:fb:d3:a9:b2:12:ff:01:45:ea:40:6d:23: 12:1b:65:8e:bd:44:b6:e1:dd:c3:9e:60:1f:7b:88:06:dd:7c: 12:3d:ef:6e:83:1e:e2:a4:71:6a:9b:db:bb:05:80:47:21:3d: 2d:cf:29:db:1c:a1:66:53:fa:df:35:5b:ac:df:a7:ac:15:c5: 7a:03:8d:8b:d4:bb:39:c9:88:6e:09:19:57:6e:58:9c:ba:a1: 5c:d1:be:9b:ea:70:3d:1d:35:a5:c5:92:74:24:c0:b0:79:8d: c3:4b:a4:ad:fd:25:a2:01:41:3f:fd:63:d4:0e:b3:bb:3d:64: 5e:42:f5:ce:ae:c7:64:8c:7c:c8:2c:4d:96:9e:09:e0:d7:62: 41:90:f3:40:d0:05:04:c6:cd:82:34:ef:fb:f5:d7:ea:61:41: 1c:65:8f:47:bc:11:8e:66:97:67:e9:a9:af:c0:df:60:04:31: 86:22:a3:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKEZCNUI5Njk1M0NDREIxMUU5MjY4M0IzRUI1QjdBNDU3 NDk0QjI1RjAwHhcNMjUxMTA0MTUzMjQzWhcNMjUxMTExMTUzMjQzWjAYMRYwFAYD VQQDEw02OTBhMWM5Yy01ZDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8sNAqZ1YOwPcdw7O80SLQyDjVovVDWlANg9G8WlEeHtGmZr1prxBwGVw8erp igJQbp1VtC9XW4uo65E78L3gGV6j5lruMVqla4348Oy4XSj2I5dwWW5o1qvgYNZI hE90T90GWClftOQXAPaU0RiAXyBhzEt6nzsTD+79Mu0F4LMKePYGE9BdxWYD+/E0 JdDmAAv/bTTI0HFiqq0ddU5UPOTqm6yPNglgWrNI7Fi7LP9jKrbFRRzTMOlfTQRe MLJvbyYMJzFuEyJtNtPUrx7Gkmjn/Tg0/v6O4j2du4Pbg8IyzSwCy8J/9fnN1eS1 vSXCKu7jSb6BemVM4l91V3fxuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJfXSuK irYerNg/ea92RO7rsPdVMB8GA1UdIwQYMBaAFPtblpU8zbEekmg7PrW3pFdJSyXw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi80RjU2QzAxQzc3 OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi8tMXVXbFR6TnNSNlNhRHMtdGJla1YwbExK ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy0xdVdsVHpOc1I2U2FEcy10YmVrVjBsTEpmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkE3Mi80RjU2QzAxQzc3OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi8tMXVXbFR6TnNS NlNhRHMtdGJla1YwbExKZkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6BWFqyjsua4HbXoVh9DzUsQJnBCaNWumfAu9UVDeTc+WlRND3zppu BgugwrIeDoNxdgS/qQLw4FHFLaa302b66SUSzsVtVGzmAXIrYln706myEv8BRepA bSMSG2WOvUS24d3DnmAfe4gG3XwSPe9ugx7ipHFqm9u7BYBHIT0tzynbHKFmU/rf NVus36esFcV6A42L1Ls5yYhuCRlXblicuqFc0b6b6nA9HTWlxZJ0JMCweY3DS6St /SWiAUE//WPUDrO7PWReQvXOrsdkjHzILE2Wngng12JBkPNA0AUExs2CNO/79dfq YUEcZY9HvBGOZpdn6amvwN9gBDGGIqM0 -----END CERTIFICATE-----Generated at Wed Nov 5 05:17:56 2025 by rpki-client