$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft File: 9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft (raw, json) Hash identifier: A9F/JjA6nGovGrFEXopqASz/PQvqQIZOlyefVI+a8GA= Subject key identifier: 0F:6B:49:22:2A:83:5B:C5:CB:FF:C3:46:EF:C2:A6:0A:4C:61:39:6B Authority key identifier: F6:55:32:56:B2:97:F2:83:31:9C:B9:89:E6:B8:C7:83:6F:87:19:0B Certificate issuer: /CN=A914C4ED/serialNumber=F6553256B297F283319CB989E6B8C7836F87190B Certificate serial: 034C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft Manifest number: 0348 Signing time: Wed 05 Nov 2025 00:46:28 +0000 Manifest this update: Wed 05 Nov 2025 00:46:27 +0000 Manifest next update: Wed 12 Nov 2025 00:46:27 +0000 Files and hashes: 1: 9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl (hash: Pilud37HNb0YXFX8w1hsZ5gl6INCSKu+7uXZTVcj43k=) 2: 9E60AA30DCB511ECAC801F6EC4F9AE02.roa (hash: X05nJ1j9oFxXKovC7MyWIX4IdW9s4NwJbF0XevapeM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:46:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 844 (0x34c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=F6553256B297F283319CB989E6B8C7836F87190B Validity Not Before: Nov 5 00:46:27 2025 GMT Not After : Nov 12 00:46:27 2025 GMT Subject: CN=690a9e63-fb1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:2f:8a:0b:7c:9a:bc:9c:9d:cf:c7:95:83:2a: 89:5b:41:c5:f2:56:48:5f:d0:f7:2f:00:5a:95:89: 7d:a2:e6:5e:5c:fd:12:d0:8b:4c:ee:81:87:a9:2b: 9d:60:c4:32:fe:be:c6:b6:0d:cd:bf:6c:bd:28:ae: 07:7b:28:ac:de:75:9f:28:d7:cf:9b:a5:3d:cb:a0: 57:1c:b1:ec:77:35:04:fa:32:4a:dc:0e:dc:72:ac: 80:f0:d5:70:63:7b:e5:14:5b:c8:74:5a:d3:89:bb: 0c:08:b6:7a:da:f9:28:7f:d7:93:38:21:3a:70:33: 22:30:28:31:2a:6d:67:33:f0:50:62:ac:c9:48:2d: e0:59:19:81:73:44:43:14:22:97:91:fc:d9:b4:04: 92:73:63:c7:f0:5f:35:f8:6f:06:8e:73:0f:cb:39: b8:c6:16:1c:37:ba:1b:f4:01:5f:0a:cf:eb:d2:8d: d7:de:e6:5f:13:b5:f5:04:a7:07:5f:1d:a0:5d:0b: ee:45:f1:27:15:95:be:1a:da:9c:ed:22:c8:05:29: 5a:fb:3c:2a:56:b4:23:80:41:1d:69:64:fc:77:0f: 22:c9:49:6f:83:b1:b6:56:bc:13:e5:15:f7:b8:a5: 8b:95:cf:54:be:52:86:6a:40:ad:09:50:86:ce:8a: 88:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:6B:49:22:2A:83:5B:C5:CB:FF:C3:46:EF:C2:A6:0A:4C:61:39:6B X509v3 Authority Key Identifier: keyid:F6:55:32:56:B2:97:F2:83:31:9C:B9:89:E6:B8:C7:83:6F:87:19:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:05:89:50:f6:05:cd:73:a5:5e:ba:b3:78:47:b3:d3:1c:49: e1:88:e9:2f:2a:77:32:c5:b9:7e:b6:ad:fb:02:8c:9f:ec:27: eb:4c:47:ba:ce:35:4a:55:76:cc:89:ac:7e:fb:cd:a6:40:cb: 50:2f:10:c6:e4:c8:83:96:94:3a:72:82:68:9e:9e:13:1e:ab: 3e:a7:73:0c:5c:fc:9f:35:77:50:3d:dc:95:ba:ba:34:42:56: 50:05:cb:40:e4:65:c6:81:30:3e:e0:29:4b:ee:0e:1d:2e:36: fc:35:a9:d4:a6:6d:c4:f8:f1:0a:6e:d5:58:9c:78:17:3e:84: ea:73:2f:f1:e6:38:ab:15:fd:09:51:f9:50:df:82:8d:85:83: b8:b9:a8:cf:bf:c6:69:66:0e:69:a5:1c:0a:1d:1c:84:e5:a6: c5:e2:e6:66:cb:4c:a7:e5:92:b7:b4:3b:58:1a:95:b8:0c:99: 7c:3a:42:96:1c:52:ac:bd:54:89:8d:db:3e:bf:e9:e9:ce:7b: 78:36:a9:6a:01:71:16:2b:07:31:dd:0e:ae:b1:8b:9b:00:2f: 4b:a9:34:2f:e8:5b:0c:95:0d:25:85:e7:3b:e5:a8:12:a7:58: 89:87:2a:0e:3b:86:5b:a8:cf:12:57:63:e5:59:b7:3f:68:b7: 1d:9d:54:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEY2NTUzMjU2QjI5N0YyODMzMTlDQjk4OUU2QjhDNzgz NkY4NzE5MEIwHhcNMjUxMTA1MDA0NjI3WhcNMjUxMTEyMDA0NjI3WjAYMRYwFAYD VQQDEw02OTBhOWU2My1mYjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7i+KC3yavJydz8eVgyqJW0HF8lZIX9D3LwBalYl9ouZeXP0S0ItM7oGHqSud YMQy/r7Gtg3Nv2y9KK4Heyis3nWfKNfPm6U9y6BXHLHsdzUE+jJK3A7ccqyA8NVw Y3vlFFvIdFrTibsMCLZ62vkof9eTOCE6cDMiMCgxKm1nM/BQYqzJSC3gWRmBc0RD FCKXkfzZtASSc2PH8F81+G8GjnMPyzm4xhYcN7ob9AFfCs/r0o3X3uZfE7X1BKcH Xx2gXQvuRfEnFZW+Gtqc7SLIBSla+zwqVrQjgEEdaWT8dw8iyUlvg7G2VrwT5RX3 uKWLlc9UvlKGakCtCVCGzoqIDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA9rSSIq g1vFy//DRu/CpgpMYTlrMB8GA1UdIwQYMBaAFPZVMlayl/KDMZy5iea4x4NvhxkL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC8zRUU5NDdBQURD QUMxMUVDQTIyM0JGNUNDNEY5QUUwMi85bFV5VnJLWDhvTXhuTG1KNXJqSGcyLUhH UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzlsVXlWcktYOG9NeG5MbUo1cmpIZzItSEdRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC8zRUU5NDdBQURDQUMxMUVDQTIyM0JGNUNDNEY5QUUwMi85bFV5VnJLWDhv TXhuTG1KNXJqSGcyLUhHUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeBYlQ9gXNc6VeurN4R7PTHEnhiOkvKncyxbl+tq37Aoyf7CfrTEe6 zjVKVXbMiax++82mQMtQLxDG5MiDlpQ6coJonp4THqs+p3MMXPyfNXdQPdyVuro0 QlZQBctA5GXGgTA+4ClL7g4dLjb8NanUpm3E+PEKbtVYnHgXPoTqcy/x5jirFf0J UflQ34KNhYO4uajPv8ZpZg5ppRwKHRyE5abF4uZmy0yn5ZK3tDtYGpW4DJl8OkKW HFKsvVSJjds+v+npznt4NqlqAXEWKwcx3Q6usYubAC9LqTQv6FsMlQ0lhec75agS p1iJhyoOO4ZbqM8SV2PlWbc/aLcdnVSQ -----END CERTIFICATE-----Generated at Wed Nov 5 12:27:54 2025 by rpki-client