$ rpki-client -vvf rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft File: fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft (raw, json) Hash identifier: oGJs92woTOMqDe1ZKG5qGChwf+ewnL7e48hJlpFcYws= Subject key identifier: 13:61:4F:97:F4:85:C5:B7:D6:2E:2E:B3:2E:B3:FA:01:31:AA:95:FD Authority key identifier: 7D:73:EF:11:5B:02:C5:E0:10:23:84:7A:91:B0:B0:F0:78:B5:F0:2B Certificate issuer: /CN=A9152A4E/serialNumber=7D73EF115B02C5E01023847A91B0B0F078B5F02B Certificate serial: 068F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft Manifest number: 0688 Signing time: Tue 04 Nov 2025 22:32:29 +0000 Manifest this update: Tue 04 Nov 2025 22:32:29 +0000 Manifest next update: Tue 11 Nov 2025 22:32:29 +0000 Files and hashes: 1: fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl (hash: hERD5vxnauZ52LLiQzmBWv+Qj5Gu3lhb3+0pq9H73F4=) 2: AB791BEE7BC711F0B0A56A74C4F9AE02.roa (hash: lK7bGVCygyPQRcWZjT3XlPriu2CyfUJlUxTwi2dzB50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:32:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1679 (0x68f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152A4E, serialNumber=7D73EF115B02C5E01023847A91B0B0F078B5F02B Validity Not Before: Nov 4 22:32:29 2025 GMT Not After : Nov 11 22:32:29 2025 GMT Subject: CN=690a7efd-eadf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f1:f2:c3:d8:07:d2:9e:88:58:96:33:9b:92: 2a:e0:0e:5c:57:9c:76:f4:27:e3:80:0b:12:dd:c3: 3a:88:50:da:2b:e7:56:b5:e4:c2:8a:f1:9c:ac:96: 1c:6d:0e:e6:69:2e:a6:3a:ca:17:42:05:d1:5e:8b: b5:c4:e2:44:f2:e2:f1:cb:b6:b4:eb:44:e1:91:55: 1a:66:fb:74:74:a9:5c:da:15:40:e3:86:a7:fd:a4: 1c:f8:74:96:21:5f:ca:22:4f:0a:3d:06:2e:18:a5: a0:f3:a2:b6:a4:57:bc:79:3e:b1:a6:20:60:92:cb: f4:1e:c7:cd:16:66:35:a5:ca:1f:64:aa:40:64:32: 11:00:ea:92:52:41:a8:c2:b6:8b:e7:90:1c:bb:68: f0:9e:ac:05:62:c3:3c:54:85:b7:69:8f:71:23:de: 26:b8:81:e9:a9:78:e9:97:1b:1e:36:66:88:bc:25: 73:05:b7:b5:67:70:17:91:81:73:b2:95:c1:7c:4d: 50:bd:06:ea:46:29:99:ba:d2:32:a3:94:69:f5:b1: 03:10:4d:e4:4a:cb:2e:6a:89:c9:b7:e2:a6:b6:59: 1e:b2:82:06:7b:18:fb:2c:74:47:fb:52:76:02:bd: e5:4d:13:98:49:98:80:9a:d6:0f:97:36:72:53:2e: e1:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:61:4F:97:F4:85:C5:B7:D6:2E:2E:B3:2E:B3:FA:01:31:AA:95:FD X509v3 Authority Key Identifier: keyid:7D:73:EF:11:5B:02:C5:E0:10:23:84:7A:91:B0:B0:F0:78:B5:F0:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:bd:12:1d:a9:61:92:9e:e6:87:5f:5b:80:f4:37:1c:3c:a3: 96:b8:d3:ed:23:a0:2d:79:13:51:61:2e:24:06:d2:06:a4:f1: f6:54:6e:71:b4:b9:f4:0a:e9:7a:e4:81:bc:0b:d5:40:01:f5: cd:08:81:95:d0:27:b4:2e:84:ec:28:06:d8:90:f7:00:11:90: 4d:b2:fb:c3:37:32:99:ef:4b:8a:f0:ee:86:11:6b:16:b7:2f: 28:60:96:25:35:a9:cb:e0:b9:25:8d:77:f9:79:44:98:fe:1f: dd:82:0b:45:38:15:f0:60:85:c0:8b:38:e8:4d:0c:96:e4:ca: 38:47:4a:dd:78:28:7c:25:a0:e0:d2:62:4a:9d:bf:d4:32:44: 73:68:5a:92:24:aa:42:f4:d6:56:46:2d:b7:4e:11:49:95:10: b2:bb:ec:ba:1d:bc:ff:91:18:42:4a:15:6f:6f:1e:31:ce:80: 49:b2:76:b6:c7:af:d5:ef:44:f5:15:b1:4d:be:94:90:4b:37: 82:ce:fb:2e:1b:90:43:22:ce:ac:da:f1:80:d1:42:35:8d:59: 2e:19:20:66:81:9e:56:74:fe:98:b3:96:e1:4d:4c:ea:ce:02: 10:50:a4:44:12:bd:9d:62:12:1e:50:36:ed:d1:13:e9:4d:ad: 4c:32:07:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJBNEUxMTAvBgNVBAUTKDdENzNFRjExNUIwMkM1RTAxMDIzODQ3QTkxQjBCMEYw NzhCNUYwMkIwHhcNMjUxMTA0MjIzMjI5WhcNMjUxMTExMjIzMjI5WjAYMRYwFAYD VQQDEw02OTBhN2VmZC1lYWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvHyw9gH0p6IWJYzm5Iq4A5cV5x29CfjgAsS3cM6iFDaK+dWteTCivGcrJYc bQ7maS6mOsoXQgXRXou1xOJE8uLxy7a060ThkVUaZvt0dKlc2hVA44an/aQc+HSW IV/KIk8KPQYuGKWg86K2pFe8eT6xpiBgksv0HsfNFmY1pcofZKpAZDIRAOqSUkGo wraL55Acu2jwnqwFYsM8VIW3aY9xI94muIHpqXjplxseNmaIvCVzBbe1Z3AXkYFz spXBfE1QvQbqRimZutIyo5Rp9bEDEE3kSssuaonJt+KmtlkesoIGexj7LHRH+1J2 Ar3lTROYSZiAmtYPlzZyUy7hVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBNhT5f0 hcW31i4usy6z+gExqpX9MB8GA1UdIwQYMBaAFH1z7xFbAsXgECOEepGwsPB4tfAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkE0RS9FM0UwODQ2NDk1 QkIxMUVCOTQ5RkU1MzVDNEY5QUUwMi9mWFB2RVZzQ3hlQVFJNFI2a2JDdzhIaTE4 Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZYUHZFVnNDeGVBUUk0UjZrYkN3OEhpMThDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkE0RS9FM0UwODQ2NDk1QkIxMUVCOTQ5RkU1MzVDNEY5QUUwMi9mWFB2RVZzQ3hl QVFJNFI2a2JDdzhIaTE4Q3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzvRIdqWGSnuaHX1uA9DccPKOWuNPtI6AteRNRYS4kBtIGpPH2VG5x tLn0Cul65IG8C9VAAfXNCIGV0Ce0LoTsKAbYkPcAEZBNsvvDNzKZ70uK8O6GEWsW ty8oYJYlNanL4LkljXf5eUSY/h/dggtFOBXwYIXAizjoTQyW5Mo4R0rdeCh8JaDg 0mJKnb/UMkRzaFqSJKpC9NZWRi23ThFJlRCyu+y6Hbz/kRhCShVvbx4xzoBJsna2 x6/V70T1FbFNvpSQSzeCzvsuG5BDIs6s2vGA0UI1jVkuGSBmgZ5WdP6Ys5bhTUzq zgIQUKREEr2dYhIeUDbt0RPpTa1MMgew -----END CERTIFICATE-----Generated at Wed Nov 5 09:59:40 2025 by rpki-client