$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json) Hash identifier: JRHO55MmD7Ypl58KqvkEe8gy28k8nWmnSNkSvxqA3n0= Subject key identifier: DB:47:21:BD:D1:8B:38:81:79:7D:AD:84:87:85:CE:9C:A0:4F:C9:2D Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Certificate serial: 1BF6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft Manifest number: 1BE4 Signing time: Tue 04 Nov 2025 16:20:20 +0000 Manifest this update: Tue 04 Nov 2025 16:20:19 +0000 Manifest next update: Tue 11 Nov 2025 16:20:19 +0000 Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: RJYZp3MYebRNu3Gn0j8VeR2n0EJ2GRad0/1rt8FZKQw=) 2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: wynmFUF72+WqOIzeId16MY3qAbLuhLthoUyin6hAIaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:20:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7158 (0x1bf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C2D, serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Validity Not Before: Nov 4 16:20:19 2025 GMT Not After : Nov 11 16:20:19 2025 GMT Subject: CN=690a27c4-bffe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e3:fa:75:06:bd:9f:1f:a2:4a:c6:f8:f3:fb: 3b:33:9a:6f:aa:97:78:21:76:85:59:01:38:d9:cf: 2a:de:8e:a2:bc:36:a4:c8:00:03:f8:71:c8:0f:ad: 12:1c:63:39:de:08:26:df:75:82:51:ef:19:37:d9: eb:75:b8:13:99:9d:ca:bb:fb:48:48:8f:b3:63:ee: 2a:d4:0c:d1:5a:1c:2a:eb:c9:c6:be:57:6d:ed:64: be:7c:ac:b0:0e:52:22:85:e0:89:3c:ab:6a:93:5b: 04:46:09:85:75:e6:84:54:ca:3f:cf:fb:88:2b:3c: 30:68:40:40:cf:52:01:89:d3:26:6f:56:f6:9c:e1: ae:a4:4c:b4:d9:90:fe:f9:93:67:5c:2e:20:4a:1d: 16:7f:ea:b8:08:3e:82:f5:a7:8a:36:78:15:a1:71: a7:d1:a7:20:b1:0a:64:56:d6:6c:4c:85:cc:be:46: 49:ae:ea:15:d9:ac:7e:c6:1a:ec:00:4e:a3:17:fe: 99:d3:4d:6e:aa:e3:aa:ba:02:6c:7c:8d:ee:3b:99: 4f:21:5a:3e:3e:13:94:7c:27:08:b2:bb:4a:d3:32: 64:f8:ff:24:77:74:75:91:5e:1e:91:9d:06:9f:51: 91:17:fb:80:a5:e2:ed:49:98:f0:45:7d:79:8d:05: a8:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:47:21:BD:D1:8B:38:81:79:7D:AD:84:87:85:CE:9C:A0:4F:C9:2D X509v3 Authority Key Identifier: keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:fe:78:53:dd:cf:49:00:2c:d8:31:ef:5e:41:b9:7f:ac:d6: 40:b4:c1:20:15:7d:a3:f4:21:90:26:aa:1a:8b:9b:a1:85:7e: 0e:ed:73:db:6c:d2:16:dd:bf:f3:ff:d8:e6:e3:21:90:6b:96: f6:92:9d:c5:e5:64:14:ed:df:c5:19:dd:48:89:c0:2e:45:57: cf:55:90:6c:87:29:01:c2:67:59:68:c1:53:cd:a4:50:f7:37: 60:b9:d2:f4:8f:95:fe:85:b9:2c:e2:19:db:16:44:06:0c:9d: 93:97:de:eb:bf:82:ab:61:09:03:1f:44:ed:ed:fc:37:8a:cd: b0:ce:fe:05:74:f3:f5:7c:6b:46:74:cd:32:28:15:34:b2:3a: 27:7d:b0:c0:d0:e2:bc:6d:d5:9d:09:62:2a:d5:70:62:79:13: 61:7b:17:ef:fb:43:d9:f3:93:8f:10:52:39:c6:f8:5d:50:ce: cf:ba:39:85:6a:17:18:54:6a:2a:94:56:5b:d7:37:e2:06:96: 1b:a7:07:4a:17:d3:6f:51:0b:c5:5b:be:4f:7d:01:34:8e:88: 87:51:5a:f0:d6:90:f5:ca:9e:b4:b1:0d:0b:02:f1:62:40:f0: 64:cf:41:30:5f:fe:ed:99:16:1c:15:15:70:1d:71:0e:76:83: c2:1b:4f:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3 NUU0ODg5MUEwHhcNMjUxMTA0MTYyMDE5WhcNMjUxMTExMTYyMDE5WjAYMRYwFAYD VQQDEw02OTBhMjdjNC1iZmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxeP6dQa9nx+iSsb48/s7M5pvqpd4IXaFWQE42c8q3o6ivDakyAAD+HHID60S HGM53ggm33WCUe8ZN9nrdbgTmZ3Ku/tISI+zY+4q1AzRWhwq68nGvldt7WS+fKyw DlIiheCJPKtqk1sERgmFdeaEVMo/z/uIKzwwaEBAz1IBidMmb1b2nOGupEy02ZD+ +ZNnXC4gSh0Wf+q4CD6C9aeKNngVoXGn0acgsQpkVtZsTIXMvkZJruoV2ax+xhrs AE6jF/6Z001uquOqugJsfI3uO5lPIVo+PhOUfCcIsrtK0zJk+P8kd3R1kV4ekZ0G n1GRF/uApeLtSZjwRX15jQWoIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtHIb3R iziBeX2thIeFzpygT8ktMB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4 NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDC/nhT3c9JACzYMe9eQbl/rNZAtMEgFX2j9CGQJqoai5uhhX4O7XPb bNIW3b/z/9jm4yGQa5b2kp3F5WQU7d/FGd1IicAuRVfPVZBshykBwmdZaMFTzaRQ 9zdgudL0j5X+hbks4hnbFkQGDJ2Tl97rv4KrYQkDH0Tt7fw3is2wzv4FdPP1fGtG dM0yKBU0sjonfbDA0OK8bdWdCWIq1XBieRNhexfv+0PZ85OPEFI5xvhdUM7PujmF ahcYVGoqlFZb1zfiBpYbpwdKF9NvUQvFW75PfQE0joiHUVrw1pD1yp60sQ0LAvFi QPBkz0EwX/7tmRYcFRVwHXEOdoPCG08A -----END CERTIFICATE-----Generated at Wed Nov 5 19:21:03 2025 by rpki-client