$ rpki-client -vvf rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft File: _U2MY5rcFYR8e0kRFZ3nG9gTk64.mft (raw, json) Hash identifier: W9h0CJcBl1TAbalnnS6kmq4uzl9tTF/AK0ecDkrD5v8= Subject key identifier: F5:62:9D:6D:46:D2:E0:37:F4:02:C0:AE:8E:B6:5E:B5:4D:4E:DF:4D Authority key identifier: FD:4D:8C:63:9A:DC:15:84:7C:7B:49:11:15:9D:E7:1B:D8:13:93:AE Certificate issuer: /CN=A9152462/serialNumber=FD4D8C639ADC15847C7B4911159DE71BD81393AE Certificate serial: 0862 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft Manifest number: 085C Signing time: Tue 04 Nov 2025 20:44:55 +0000 Manifest this update: Tue 04 Nov 2025 20:44:54 +0000 Manifest next update: Tue 11 Nov 2025 20:44:54 +0000 Files and hashes: 1: _U2MY5rcFYR8e0kRFZ3nG9gTk64.crl (hash: YjrKAe4XzeVXLhqvhNfhB8MQlFc/3MViFYkPqRMK4ms=) 2: 4149D206DC4711EA80D5D916C4F9AE02.roa (hash: fmTA3xXjU3MtioARHLhk0XmrYZWzaoGTX30tUFAbkPE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.crl rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:44:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2146 (0x862) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152462, serialNumber=FD4D8C639ADC15847C7B4911159DE71BD81393AE Validity Not Before: Nov 4 20:44:54 2025 GMT Not After : Nov 11 20:44:54 2025 GMT Subject: CN=690a65c7-f447 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d6:15:f8:d1:d2:75:c5:f0:84:bf:f6:ab:46: a9:53:d1:10:31:31:67:73:a9:44:d6:8a:40:95:41: 79:24:52:25:7a:8c:2f:67:ad:62:17:f2:db:90:69: d3:a5:73:0a:91:58:d0:b3:c8:56:66:32:8d:46:04: b9:0f:7d:3e:de:5f:bd:d3:32:cb:e7:ac:18:f1:d8: cf:b7:9f:3e:8f:4a:d4:06:5c:bf:eb:02:dc:3e:1e: 97:03:61:d4:16:22:c2:2b:37:a1:6f:98:cc:62:cc: 95:30:59:15:f9:3e:8a:98:c7:c8:b2:85:56:0f:e9: 51:5e:fc:0a:d1:45:d7:4a:3b:d5:e3:3b:ed:2e:b6: 01:2a:fc:29:3c:d8:e9:f3:21:39:c3:f2:2c:82:9e: 16:c3:ab:20:5f:bd:d8:2c:75:10:d6:3b:19:42:e0: 01:30:10:90:e0:84:c4:f5:97:01:81:d5:fa:cd:53: 22:74:c4:61:d0:f6:db:ef:41:e5:b9:ee:74:4e:d4: 34:85:89:83:6e:0f:86:36:cf:69:6b:f6:1b:4b:64: 81:66:b2:32:a4:59:5e:25:9a:6d:6a:29:be:35:44: d3:ef:9c:3a:c7:28:77:cf:30:19:80:10:a6:23:d4: a6:44:ac:45:c1:22:ec:11:b6:e0:e1:48:80:56:cd: cb:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:62:9D:6D:46:D2:E0:37:F4:02:C0:AE:8E:B6:5E:B5:4D:4E:DF:4D X509v3 Authority Key Identifier: keyid:FD:4D:8C:63:9A:DC:15:84:7C:7B:49:11:15:9D:E7:1B:D8:13:93:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:32:ec:21:1d:22:ca:99:da:e7:f8:d0:1d:ad:05:98:91:c6: eb:4e:1d:56:a3:ff:fa:a3:48:75:cc:0f:ed:21:d5:ef:ec:7e: f1:30:f9:86:53:c3:77:f1:01:17:fc:16:4f:aa:6b:db:b8:26: b7:7c:12:db:91:7c:09:46:1f:34:b7:0d:65:1b:a9:ab:8f:f3: 3a:f5:67:94:89:d4:0e:2f:e0:b2:d6:f4:82:52:9f:99:f9:24: 0b:74:64:25:19:f2:0f:4b:71:f8:c8:e2:b0:93:42:2d:c2:b0: cb:7a:f9:55:f0:f9:ff:1c:22:37:22:63:4e:f8:db:87:f1:87: 16:bb:a0:db:bf:e3:a7:d4:7c:e4:88:64:95:6e:45:39:50:0e: 0f:cc:9a:4a:c0:c6:c3:08:ba:76:9a:5f:76:d6:4c:e6:8c:f2: ed:8d:2e:71:83:67:29:1e:10:06:12:99:d4:b9:3e:bb:9c:41: 6d:ce:1d:e2:a7:0d:56:05:3e:16:9d:32:fc:82:25:7b:6a:ee: d5:a9:2b:35:f5:8e:b7:f6:c3:b4:c7:8a:a3:48:f7:ca:1b:bb: 89:b0:12:9b:19:90:60:2e:22:7b:90:d8:e3:4b:7e:1d:e7:b1: 5e:08:da:59:07:9e:08:69:5d:25:aa:28:ec:c4:18:31:7c:3f: bc:d7:cc:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0NjIxMTAvBgNVBAUTKEZENEQ4QzYzOUFEQzE1ODQ3QzdCNDkxMTE1OURFNzFC RDgxMzkzQUUwHhcNMjUxMTA0MjA0NDU0WhcNMjUxMTExMjA0NDU0WjAYMRYwFAYD VQQDEw02OTBhNjVjNy1mNDQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAodYV+NHSdcXwhL/2q0apU9EQMTFnc6lE1opAlUF5JFIleowvZ61iF/LbkGnT pXMKkVjQs8hWZjKNRgS5D30+3l+90zLL56wY8djPt58+j0rUBly/6wLcPh6XA2HU FiLCKzehb5jMYsyVMFkV+T6KmMfIsoVWD+lRXvwK0UXXSjvV4zvtLrYBKvwpPNjp 8yE5w/Isgp4Ww6sgX73YLHUQ1jsZQuABMBCQ4ITE9ZcBgdX6zVMidMRh0Pbb70Hl ue50TtQ0hYmDbg+GNs9pa/YbS2SBZrIypFleJZptaim+NUTT75w6xyh3zzAZgBCm I9SmRKxFwSLsEbbg4UiAVs3LiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVinW1G 0uA39ALAro62XrVNTt9NMB8GA1UdIwQYMBaAFP1NjGOa3BWEfHtJERWd5xvYE5Ou MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjQ2Mi8zMkM3NTdFNkRD NDUxMUVBODZBNzM3MTNDNEY5QUUwMi9fVTJNWTVyY0ZZUjhlMGtSRlozbkc5Z1Rr NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19VMk1ZNXJjRllSOGUwa1JGWjNuRzlnVGs2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjQ2Mi8zMkM3NTdFNkRDNDUxMUVBODZBNzM3MTNDNEY5QUUwMi9fVTJNWTVyY0ZZ UjhlMGtSRlozbkc5Z1RrNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpMuwhHSLKmdrn+NAdrQWYkcbrTh1Wo//6o0h1zA/tIdXv7H7xMPmG U8N38QEX/BZPqmvbuCa3fBLbkXwJRh80tw1lG6mrj/M69WeUidQOL+Cy1vSCUp+Z +SQLdGQlGfIPS3H4yOKwk0ItwrDLevlV8Pn/HCI3ImNO+NuH8YcWu6Dbv+On1Hzk iGSVbkU5UA4PzJpKwMbDCLp2ml921kzmjPLtjS5xg2cpHhAGEpnUuT67nEFtzh3i pw1WBT4WnTL8giV7au7VqSs19Y639sO0x4qjSPfKG7uJsBKbGZBgLiJ7kNjjS34d 57FeCNpZB54IaV0lqijsxBgxfD+818wu -----END CERTIFICATE-----Generated at Wed Nov 5 00:05:51 2025 by rpki-client