$ rpki-client -vvf rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.mft File: g--P6e5IafC5SpX3RvWJS6H7MPA.mft (raw, json) Hash identifier: 96ITqrzaS2CEsdgsSyb2gJQ2xEtfL/dV7JIy3B2Y3WI= Subject key identifier: 52:0A:58:F9:01:3B:D6:40:C2:79:D7:B6:1F:29:6C:C2:54:D8:73:94 Authority key identifier: 83:EF:8F:E9:EE:48:69:F0:B9:4A:95:F7:46:F5:89:4B:A1:FB:30:F0 Certificate issuer: /CN=A914EB9A/serialNumber=83EF8FE9EE4869F0B94A95F746F5894BA1FB30F0 Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g--P6e5IafC5SpX3RvWJS6H7MPA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.mft Manifest number: 0109 Signing time: Wed 05 Nov 2025 05:07:52 +0000 Manifest this update: Wed 05 Nov 2025 05:07:51 +0000 Manifest next update: Wed 12 Nov 2025 05:07:51 +0000 Files and hashes: 1: g--P6e5IafC5SpX3RvWJS6H7MPA.crl (hash: RdBtIoI58TyMQKYfCLuImgWC2dg/hEQn9yuRrmF/L9E=) 2: A368B23623C411EFB7164123C4F9AE02.roa (hash: xksJk5Cwcy8+0Thge3EVjB2r6Pp+L19aLaysM6rp0MI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.crl rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g--P6e5IafC5SpX3RvWJS6H7MPA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:07:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EB9A, serialNumber=83EF8FE9EE4869F0B94A95F746F5894BA1FB30F0 Validity Not Before: Nov 5 05:07:51 2025 GMT Not After : Nov 12 05:07:51 2025 GMT Subject: CN=690adba7-c8fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:37:33:d4:30:04:2b:a3:e7:55:0c:55:d5:d6: b5:0a:b3:f2:72:bb:31:6d:64:ca:39:4c:68:ed:61: 7d:31:d9:64:ed:83:cd:47:b3:a0:bf:01:4c:1a:b2: 4c:33:a1:01:37:7d:cb:84:fb:4d:b8:fb:15:ca:91: 25:8d:22:9c:6a:73:5c:30:65:66:0b:4a:5e:c4:86: 5a:46:c1:1e:0f:38:1d:29:9e:70:43:e4:d7:8a:63: 49:d2:48:67:bf:ec:c4:8a:5c:46:ae:39:ae:fb:ae: ff:67:f1:ff:26:38:c3:75:c8:29:26:8a:a5:87:9f: 95:1b:e3:f6:90:41:f0:57:56:20:6d:ec:df:26:a6: a0:b5:30:29:67:62:03:40:a2:e2:0e:8e:f5:ac:97: 26:1a:90:4a:da:b5:38:a4:f4:c4:c9:72:2c:52:95: ba:18:a1:38:a2:05:f5:a2:b9:fc:1d:11:ed:09:37: 48:29:f0:f6:ee:78:05:c1:16:a3:90:66:04:c8:e1: 55:96:48:90:a9:33:ba:d9:8f:cb:8a:1d:4f:b2:9e: 32:f0:9d:7b:7d:68:0d:2a:1c:82:68:69:1d:66:35: e6:3a:44:61:4a:20:d1:f5:50:25:03:9a:15:c2:5b: 2c:a2:00:8e:a5:49:03:62:9a:39:cf:d6:ee:40:fd: 00:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:0A:58:F9:01:3B:D6:40:C2:79:D7:B6:1F:29:6C:C2:54:D8:73:94 X509v3 Authority Key Identifier: keyid:83:EF:8F:E9:EE:48:69:F0:B9:4A:95:F7:46:F5:89:4B:A1:FB:30:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g--P6e5IafC5SpX3RvWJS6H7MPA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EB9A/E4A65EDE23C311EF892DEB21C4F9AE02/g--P6e5IafC5SpX3RvWJS6H7MPA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:80:18:58:b9:03:bd:36:ae:8a:62:bb:2f:90:0f:db:2a:ad: ec:7e:70:d2:dc:6a:3c:47:65:55:76:22:e4:e9:f5:9b:9a:94: 59:c0:a1:ec:a5:c1:b1:61:a0:d1:de:9b:8e:a7:45:66:f3:57: 28:2a:fa:34:16:1a:63:47:4b:af:7a:8f:da:61:9a:c6:0f:ff: bb:be:7e:b5:b2:33:51:0c:bf:4a:ee:47:51:9c:a8:6c:78:f8: da:49:be:1b:cd:95:10:bf:20:f9:ad:d2:aa:e3:20:57:8a:9d: b8:fd:5e:0d:e5:54:a6:e6:d2:1d:ee:81:47:2f:02:3c:66:b4: 52:22:17:cd:83:a4:2e:19:35:37:c0:19:eb:13:4f:fb:00:89: 35:5f:a9:24:27:b8:d5:71:90:d7:52:f9:77:d0:91:7e:21:31: c6:44:0b:ed:11:a5:04:b5:4a:52:82:0b:42:6a:61:75:9c:77: 65:27:a2:c7:73:75:e4:23:9b:f6:e2:bb:4d:56:7e:d5:e1:95: 18:de:85:3b:32:9b:fc:6c:e0:39:39:ab:97:96:40:0f:e0:30: b8:d9:fc:5f:95:1f:24:2b:4c:9a:f5:fe:c4:bc:1f:e9:d0:c7: ab:a6:75:f5:74:2a:55:17:ed:6a:dc:01:65:7c:57:6d:29:4d: 85:95:80:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVCOUExMTAvBgNVBAUTKDgzRUY4RkU5RUU0ODY5RjBCOTRBOTVGNzQ2RjU4OTRC QTFGQjMwRjAwHhcNMjUxMTA1MDUwNzUxWhcNMjUxMTEyMDUwNzUxWjAYMRYwFAYD VQQDEw02OTBhZGJhNy1jOGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTcz1DAEK6PnVQxV1da1CrPycrsxbWTKOUxo7WF9Mdlk7YPNR7OgvwFMGrJM M6EBN33LhPtNuPsVypEljSKcanNcMGVmC0pexIZaRsEeDzgdKZ5wQ+TXimNJ0khn v+zEilxGrjmu+67/Z/H/JjjDdcgpJoqlh5+VG+P2kEHwV1YgbezfJqagtTApZ2ID QKLiDo71rJcmGpBK2rU4pPTEyXIsUpW6GKE4ogX1orn8HRHtCTdIKfD27ngFwRaj kGYEyOFVlkiQqTO62Y/Lih1Psp4y8J17fWgNKhyCaGkdZjXmOkRhSiDR9VAlA5oV wlssogCOpUkDYpo5z9buQP0A8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFIKWPkB O9ZAwnnXth8pbMJU2HOUMB8GA1UdIwQYMBaAFIPvj+nuSGnwuUqV90b1iUuh+zDw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUI5QS9FNEE2NUVERTIz QzMxMUVGODkyREVCMjFDNEY5QUUwMi9nLS1QNmU1SWFmQzVTcFgzUnZXSlM2SDdN UEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ctLVA2ZTVJYWZDNVNwWDNSdldKUzZIN01QQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUI5QS9FNEE2NUVERTIzQzMxMUVGODkyREVCMjFDNEY5QUUwMi9nLS1QNmU1SWFm QzVTcFgzUnZXSlM2SDdNUEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNgBhYuQO9Nq6KYrsvkA/bKq3sfnDS3Go8R2VVdiLk6fWbmpRZwKHs pcGxYaDR3puOp0Vm81coKvo0FhpjR0uveo/aYZrGD/+7vn61sjNRDL9K7kdRnKhs ePjaSb4bzZUQvyD5rdKq4yBXip24/V4N5VSm5tId7oFHLwI8ZrRSIhfNg6QuGTU3 wBnrE0/7AIk1X6kkJ7jVcZDXUvl30JF+ITHGRAvtEaUEtUpSggtCamF1nHdlJ6LH c3XkI5v24rtNVn7V4ZUY3oU7Mpv8bOA5OauXlkAP4DC42fxflR8kK0ya9f7EvB/p 0MerpnX1dCpVF+1q3AFlfFdtKU2FlYAZ -----END CERTIFICATE-----Generated at Wed Nov 5 06:54:08 2025 by rpki-client