$ rpki-client -vvf rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft File: 9fHi3rMlVisihf-LXeJd8srfdwc.mft (raw, json) Hash identifier: NeyPYsObINeLEqhtST9E+oo42igD9nrHeZYRyXTNa00= Subject key identifier: 3F:4B:A6:17:35:04:35:7D:8B:DD:5A:80:75:61:4A:1F:46:1C:E0:06 Authority key identifier: F5:F1:E2:DE:B3:25:56:2B:22:85:FF:8B:5D:E2:5D:F2:CA:DF:77:07 Certificate issuer: /CN=A915B4B5/serialNumber=F5F1E2DEB325562B2285FF8B5DE25DF2CADF7707 Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9fHi3rMlVisihf-LXeJd8srfdwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft Manifest number: 0126 Signing time: Mon 03 Nov 2025 04:38:30 +0000 Manifest this update: Mon 03 Nov 2025 04:38:30 +0000 Manifest next update: Mon 10 Nov 2025 04:38:30 +0000 Files and hashes: 1: 9fHi3rMlVisihf-LXeJd8srfdwc.crl (hash: yJO7K5D4WtJ5WUe2OpZLuuHwRNkNyL8y8V7WOKD1TCQ=) 2: E0207030F13611EE869F9E34C4F9AE02.roa (hash: 1cTaBvBAhxFneEeGlAFuRr/tcaFQd3vN8aAkRfuybSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.crl rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9fHi3rMlVisihf-LXeJd8srfdwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:38:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B4B5, serialNumber=F5F1E2DEB325562B2285FF8B5DE25DF2CADF7707 Validity Not Before: Nov 3 04:38:30 2025 GMT Not After : Nov 10 04:38:30 2025 GMT Subject: CN=690831c6-9da4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:71:70:17:23:3d:2e:90:00:db:a3:8e:c5:43: e9:c6:01:d0:4b:33:a3:4b:41:bd:2b:a0:6c:e4:a1: 0a:b9:a0:21:d1:80:02:67:30:e8:0c:2d:2c:9d:cf: 5e:38:65:38:18:bc:c1:be:5e:63:48:fb:00:ae:6e: d4:88:ec:29:0c:9a:30:1f:64:a3:a3:2c:a0:b9:e6: 86:33:1f:f8:8a:8f:e6:16:de:08:d9:4e:5a:e5:5f: c3:ea:37:00:32:46:ea:b3:fd:01:43:ae:91:44:1e: 7e:c7:18:ac:d9:07:a9:2d:10:ef:d4:b9:5b:ae:90: 6f:fb:92:8a:cb:04:87:92:03:e8:5b:4b:fd:49:21: 5b:9c:58:62:b1:19:16:91:b4:78:d8:34:fe:14:55: 6e:e4:54:bc:8b:72:9c:55:91:f3:f2:c8:c3:4b:49: d5:97:3b:fd:17:c2:b5:7f:b7:4e:39:80:4f:6d:60: 0b:b8:d8:5e:19:0c:d5:24:18:36:66:b5:c4:64:20: b5:dd:b9:6c:7d:8c:c0:fe:be:9b:2c:af:77:ea:51: 33:35:f9:c6:b3:27:5a:4b:8a:78:05:db:2d:db:f2: 14:f3:3a:0e:2d:f6:83:1b:60:7c:95:76:19:70:b5: e7:31:68:c8:af:3d:b9:02:e1:86:4a:64:67:10:be: 1e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:4B:A6:17:35:04:35:7D:8B:DD:5A:80:75:61:4A:1F:46:1C:E0:06 X509v3 Authority Key Identifier: keyid:F5:F1:E2:DE:B3:25:56:2B:22:85:FF:8B:5D:E2:5D:F2:CA:DF:77:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9fHi3rMlVisihf-LXeJd8srfdwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:53:cf:80:68:b3:2f:ef:14:ff:50:86:88:be:fc:f9:21:a8: 1b:dc:29:02:f7:8f:77:79:e7:06:fb:89:01:37:6d:5c:c7:d7: 78:cf:08:07:a8:78:da:e0:8e:8c:3d:1a:92:c6:b0:2d:08:73: e4:0f:84:41:50:c0:a6:66:1e:0c:5d:88:9e:bb:ae:d6:94:f5: 14:f6:19:1f:5a:0b:35:4b:26:04:00:5b:43:50:f5:de:76:94: cb:a3:a9:80:49:3b:a7:74:c1:ee:b3:70:a0:49:87:56:02:f2: a0:d9:f3:3e:f9:02:fa:4b:c3:7d:0e:9e:b4:27:62:b2:3c:b2: 15:cf:68:b1:37:19:fc:6c:56:52:28:5c:ad:bd:d5:89:1a:5a: 12:f9:d2:53:83:5f:c4:ab:b8:6f:4d:15:28:52:71:bd:dc:42: cc:ab:81:7c:d7:ff:f3:b1:04:2a:b8:c6:f6:5e:62:08:f8:8c: ec:1f:b3:df:4c:43:db:db:91:8a:5c:f8:93:4e:de:32:36:72: 2a:78:a7:6d:ae:be:65:bc:8c:47:22:34:0f:40:f9:94:87:4d: 98:23:55:b4:3e:1a:03:fa:30:d9:2e:02:7f:72:4d:4c:91:bf: 43:ed:46:99:b9:e8:3a:5b:e7:17:68:42:7e:95:93:f5:9d:14: 7e:bc:95:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI0QjUxMTAvBgNVBAUTKEY1RjFFMkRFQjMyNTU2MkIyMjg1RkY4QjVERTI1REYy Q0FERjc3MDcwHhcNMjUxMTAzMDQzODMwWhcNMjUxMTEwMDQzODMwWjAYMRYwFAYD VQQDEw02OTA4MzFjNi05ZGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXFwFyM9LpAA26OOxUPpxgHQSzOjS0G9K6Bs5KEKuaAh0YACZzDoDC0snc9e OGU4GLzBvl5jSPsArm7UiOwpDJowH2SjoyygueaGMx/4io/mFt4I2U5a5V/D6jcA Mkbqs/0BQ66RRB5+xxis2QepLRDv1LlbrpBv+5KKywSHkgPoW0v9SSFbnFhisRkW kbR42DT+FFVu5FS8i3KcVZHz8sjDS0nVlzv9F8K1f7dOOYBPbWALuNheGQzVJBg2 ZrXEZCC13blsfYzA/r6bLK936lEzNfnGsydaS4p4Bdst2/IU8zoOLfaDG2B8lXYZ cLXnMWjIrz25AuGGSmRnEL4eLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9Lphc1 BDV9i91agHVhSh9GHOAGMB8GA1UdIwQYMBaAFPXx4t6zJVYrIoX/i13iXfLK33cH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjRCNS80MENFOUYyQUYx MzYxMUVFOTA4QkYwMzJDNEY5QUUwMi85ZkhpM3JNbFZpc2loZi1MWGVKZDhzcmZk d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlmSGkzck1sVmlzaWhmLUxYZUpkOHNyZmR3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjRCNS80MENFOUYyQUYxMzYxMUVFOTA4QkYwMzJDNEY5QUUwMi85ZkhpM3JNbFZp c2loZi1MWGVKZDhzcmZkd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHU8+AaLMv7xT/UIaIvvz5Iagb3CkC9493eecG+4kBN21cx9d4zwgH qHja4I6MPRqSxrAtCHPkD4RBUMCmZh4MXYieu67WlPUU9hkfWgs1SyYEAFtDUPXe dpTLo6mASTundMHus3CgSYdWAvKg2fM++QL6S8N9Dp60J2KyPLIVz2ixNxn8bFZS KFytvdWJGloS+dJTg1/Eq7hvTRUoUnG93ELMq4F81//zsQQquMb2XmII+IzsH7Pf TEPb25GKXPiTTt4yNnIqeKdtrr5lvIxHIjQPQPmUh02YI1W0PhoD+jDZLgJ/ck1M kb9D7UaZueg6W+cXaEJ+lZP1nRR+vJV5 -----END CERTIFICATE-----Generated at Wed Nov 5 05:46:17 2025 by rpki-client