$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft File: xG1ZE_bCUMau4vMnRTXOhmKVufo.mft (raw, json) Hash identifier: wribcUFk4zx+93kQ7kWAYqZnNsBepCu6sTGrvnQC09k= Subject key identifier: 88:04:24:95:3E:B7:EF:15:57:3B:2C:EC:AE:18:BD:24:1E:3E:4E:9F Authority key identifier: C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA Certificate issuer: /CN=A9148B83/serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Certificate serial: 06AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft Manifest number: 06A3 Signing time: Tue 04 Nov 2025 22:23:38 +0000 Manifest this update: Tue 04 Nov 2025 22:23:37 +0000 Manifest next update: Tue 11 Nov 2025 22:23:37 +0000 Files and hashes: 1: xG1ZE_bCUMau4vMnRTXOhmKVufo.crl (hash: d8Tc1dy05nP05XLzv/NG3GrPVk1de3J/6vi5mzmpXdQ=) 2: 65FE79B8885D11EB81454E41C4F9AE02.roa (hash: 327ah/e9fUSF5H9j9NGNYuwKtrueHyZEroURzg2Xyh8=) 3: 009E969E885C11EB88A7723DC4F9AE02.roa (hash: 10SP9rtLMhnfiCiDsyU/nUUSFenGWa1NBToGV5Ae6kE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1710 (0x6ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B83, serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Validity Not Before: Nov 4 22:23:37 2025 GMT Not After : Nov 11 22:23:37 2025 GMT Subject: CN=690a7cea-e3d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e7:39:04:f0:a3:75:98:49:24:9e:f8:b9:7b: 6f:3f:7a:f1:ff:95:75:9a:0f:91:9d:a2:93:2a:ff: 2d:3a:0d:5a:a1:b1:b7:d6:33:1d:c8:1d:8c:3c:cc: 89:16:1b:1c:a1:a9:9d:81:12:cd:f0:20:01:c3:a1: 5a:66:26:47:35:8f:9d:2e:e1:ef:ba:84:15:91:10: 2b:cf:97:df:00:43:da:95:8c:ee:cd:e1:c7:5f:46: 19:f7:81:3d:4d:26:7e:dd:99:90:75:bb:32:1b:61: 8b:d6:55:0a:db:df:49:a3:03:4c:5a:47:1a:94:c1: f5:36:a7:6d:84:5d:83:39:11:c2:83:b3:ed:42:3a: eb:56:89:47:af:63:0c:df:b8:52:6e:2b:8b:53:b1: 52:a5:0c:dc:31:ea:44:01:f7:8b:e0:3c:4b:f2:ec: ab:32:f6:19:45:75:f1:be:d2:ab:7a:6f:c4:53:79: 0c:e7:66:8c:93:3b:1d:7f:ba:25:00:cb:e4:b7:b7: ce:41:04:14:c7:7d:54:5b:23:d3:2a:a8:e4:9e:77: 80:0e:65:b1:b9:8e:0b:fe:57:7c:d8:75:76:cf:01: 58:bf:54:50:29:aa:3e:2a:a3:49:60:e1:49:3d:73: e5:76:b5:5a:45:74:01:9e:5b:a4:b7:29:2e:b5:cc: 09:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:04:24:95:3E:B7:EF:15:57:3B:2C:EC:AE:18:BD:24:1E:3E:4E:9F X509v3 Authority Key Identifier: keyid:C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:34:f2:87:80:3a:06:fd:a8:99:c0:3a:e6:ba:be:9f:d8:35: e7:09:43:03:1d:e5:b0:e0:ba:50:b3:38:d1:91:7a:35:0f:14: 8a:e9:0d:58:76:5e:ff:95:27:f9:c3:51:92:d3:80:4c:54:23: 5c:ee:5d:25:0a:5c:59:c4:b4:ce:c8:14:1d:df:6b:90:4e:68: f7:77:d2:33:58:66:fa:f6:7b:cf:44:e5:c4:f3:07:18:d9:89: 91:0a:12:87:c8:08:80:da:16:16:a2:85:c7:42:88:37:e3:a7: e9:4a:e9:49:04:c7:29:c8:59:70:c3:78:63:ba:0b:90:d6:f6: 3f:61:b6:16:e4:82:a1:26:60:f4:ce:13:8f:dc:29:a2:76:05: e9:b0:ed:6e:3a:7e:7b:b9:b8:58:a4:18:0a:16:0a:42:3b:6c: e9:82:27:57:86:58:86:60:33:ae:a6:af:c9:9a:9a:bb:a4:de: e7:85:29:ca:57:56:f6:1b:46:0b:0c:bc:80:df:8a:20:6d:12: 2d:3b:4e:41:17:8f:2e:32:09:1e:6f:64:4e:d0:e2:99:81:f1: f4:af:c8:79:3f:a4:6b:e4:19:75:de:59:27:00:46:15:20:60: c9:9f:53:d7:da:9b:39:c5:e6:8a:70:67:d4:40:c6:6b:f4:e7: ad:98:e0:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCODMxMTAvBgNVBAUTKEM0NkQ1OTEzRjZDMjUwQzZBRUUyRjMyNzQ1MzVDRTg2 NjI5NUI5RkEwHhcNMjUxMTA0MjIyMzM3WhcNMjUxMTExMjIyMzM3WjAYMRYwFAYD VQQDEw02OTBhN2NlYS1lM2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ec5BPCjdZhJJJ74uXtvP3rx/5V1mg+RnaKTKv8tOg1aobG31jMdyB2MPMyJ FhscoamdgRLN8CABw6FaZiZHNY+dLuHvuoQVkRArz5ffAEPalYzuzeHHX0YZ94E9 TSZ+3ZmQdbsyG2GL1lUK299JowNMWkcalMH1NqdthF2DORHCg7PtQjrrVolHr2MM 37hSbiuLU7FSpQzcMepEAfeL4DxL8uyrMvYZRXXxvtKrem/EU3kM52aMkzsdf7ol AMvkt7fOQQQUx31UWyPTKqjknneADmWxuY4L/ld82HV2zwFYv1RQKao+KqNJYOFJ PXPldrVaRXQBnluktykutcwJ6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIgEJJU+ t+8VVzss7K4YvSQePk6fMB8GA1UdIwQYMBaAFMRtWRP2wlDGruLzJ0U1zoZilbn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI4My83N0FBNDE0Njg3 RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VNYXU0dk1uUlRYT2htS1Z1 Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHMVpFX2JDVU1hdTR2TW5SVFhPaG1LVnVmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEI4My83N0FBNDE0Njg3RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VN YXU0dk1uUlRYT2htS1Z1Zm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdNPKHgDoG/aiZwDrmur6f2DXnCUMDHeWw4LpQszjRkXo1DxSK6Q1Y dl7/lSf5w1GS04BMVCNc7l0lClxZxLTOyBQd32uQTmj3d9IzWGb69nvPROXE8wcY 2YmRChKHyAiA2hYWooXHQog346fpSulJBMcpyFlww3hjuguQ1vY/YbYW5IKhJmD0 zhOP3CmidgXpsO1uOn57ubhYpBgKFgpCO2zpgidXhliGYDOupq/Jmpq7pN7nhSnK V1b2G0YLDLyA34ogbRItO05BF48uMgkeb2RO0OKZgfH0r8h5P6Rr5Bl13lknAEYV IGDJn1PX2ps5xeaKcGfUQMZr9OetmOAz -----END CERTIFICATE-----Generated at Wed Nov 5 16:45:55 2025 by rpki-client