$ rpki-client -vvf rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft File: b09GjkMIsA0N9f6shChm1U539dM.mft (raw, json) Hash identifier: 4BkxadieWKKMX1j8M/XEOulv8Ym50jGs03LO0Lr5Lr4= Subject key identifier: 56:B8:21:7E:C1:34:67:20:49:4A:3A:9E:BD:41:A6:EF:F2:91:16:1F Authority key identifier: 6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 Certificate issuer: /CN=A915D1A2/serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Certificate serial: 0CC0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft Manifest number: 0CA7 Signing time: Tue 04 Nov 2025 18:27:47 +0000 Manifest this update: Tue 04 Nov 2025 18:27:46 +0000 Manifest next update: Tue 11 Nov 2025 18:27:46 +0000 Files and hashes: 1: b09GjkMIsA0N9f6shChm1U539dM.crl (hash: PrZotON5JXo3+ng9fjZ0tYeR8nCNDbIU/QxIE3pBV5k=) 2: 6D8B82D0D6D811EE8BBA8938C4F9AE02.roa (hash: 1cMybGIbvpxyTUqlwMM8pDEltG6qbjXuctF+adjG4sw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3264 (0xcc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D1A2, serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Validity Not Before: Nov 4 18:27:46 2025 GMT Not After : Nov 11 18:27:46 2025 GMT Subject: CN=690a45a3-d8dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:59:49:a5:a7:a5:a5:50:32:ab:38:ec:34:ef: ee:20:98:71:16:ce:6d:e3:bc:8c:3e:18:71:e6:81: 64:bf:2f:55:0d:2f:45:36:c2:aa:27:b9:bb:02:bc: ad:d2:49:a3:b6:c7:e7:cf:80:76:d0:5b:cd:65:62: 20:3b:e5:97:29:7c:3c:f4:53:e0:b4:71:89:9e:9f: e5:55:f3:b7:57:eb:93:4d:63:05:dc:8b:89:ca:de: d3:51:ee:8b:8c:08:33:ba:e8:ef:12:77:0e:ae:03: bf:99:d2:5e:72:1d:6c:85:08:96:a7:75:a3:b2:6b: 23:37:06:c5:40:4b:a7:32:34:17:4d:71:16:7c:df: 8f:28:30:76:7d:67:46:e7:64:28:40:85:b8:5b:32: 88:2f:b3:c2:7c:4e:aa:a3:3c:c2:fe:26:f2:74:0e: 0c:9b:72:6f:c9:37:09:a5:aa:96:8b:0d:89:95:fa: 19:bb:40:14:b8:3a:c5:db:3b:4a:97:48:84:2f:67: d5:e6:6a:56:7f:23:9f:0e:9e:f7:6a:d9:1c:84:f5: 74:ec:81:33:e2:73:a5:db:6a:6a:6e:4b:cd:1e:77: f7:df:4c:77:2c:e1:bd:8c:55:3a:e2:71:59:f7:52: fe:28:f7:00:30:f0:32:19:42:bf:18:36:b5:24:01: f6:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:B8:21:7E:C1:34:67:20:49:4A:3A:9E:BD:41:A6:EF:F2:91:16:1F X509v3 Authority Key Identifier: keyid:6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:52:8a:c4:75:8b:0e:6b:49:b5:ed:6e:35:e0:8b:0a:ab:88: 01:82:da:d3:49:e5:93:7e:2e:0e:48:9d:14:10:3d:b3:62:8a: 58:d2:b8:2c:c3:c2:af:b4:9f:23:9d:6d:c6:52:27:73:ee:25: 04:f9:05:69:79:ce:ef:47:8f:15:50:c7:33:ed:4e:7f:e1:ec: a9:a2:48:0b:e6:b4:67:11:e0:61:bc:b8:2d:8d:51:a9:e7:bc: 0c:8d:ad:7d:67:90:8f:18:ae:59:ca:a0:2e:3b:ce:a5:b4:6b: 11:b1:1e:8d:13:88:f0:9a:d5:58:89:cb:a3:5c:0a:37:79:85: 66:e3:6b:44:9f:93:9e:04:5e:17:af:da:da:a7:a2:ac:58:73: eb:49:bd:25:4f:2d:3d:dd:84:32:64:a7:10:d5:cb:55:59:b8: 61:4f:46:30:72:24:8a:23:2f:03:f7:14:8f:e1:61:ce:55:7c: 50:44:34:a2:8c:94:1d:54:95:18:f3:1d:e8:56:ef:96:7e:f0: 74:a7:0e:dd:9d:ac:bf:39:4d:81:88:e6:99:d2:31:59:04:75: 6c:34:f2:ce:3e:b8:b6:5e:ab:64:65:b0:98:17:b9:4c:46:93: 55:51:b4:36:46:99:20:44:d6:df:33:64:4a:ab:c3:ec:fd:54: 9f:f8:cf:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQxQTIxMTAvBgNVBAUTKDZGNEY0NjhFNDMwOEIwMEQwREY1RkVBQzg0Mjg2NkQ1 NEU3N0Y1RDMwHhcNMjUxMTA0MTgyNzQ2WhcNMjUxMTExMTgyNzQ2WjAYMRYwFAYD VQQDEw02OTBhNDVhMy1kOGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21lJpaelpVAyqzjsNO/uIJhxFs5t47yMPhhx5oFkvy9VDS9FNsKqJ7m7Aryt 0kmjtsfnz4B20FvNZWIgO+WXKXw89FPgtHGJnp/lVfO3V+uTTWMF3IuJyt7TUe6L jAgzuujvEncOrgO/mdJech1shQiWp3WjsmsjNwbFQEunMjQXTXEWfN+PKDB2fWdG 52QoQIW4WzKIL7PCfE6qozzC/ibydA4Mm3JvyTcJpaqWiw2JlfoZu0AUuDrF2ztK l0iEL2fV5mpWfyOfDp73atkchPV07IEz4nOl22pqbkvNHnf330x3LOG9jFU64nFZ 91L+KPcAMPAyGUK/GDa1JAH2lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFa4IX7B NGcgSUo6nr1Bpu/ykRYfMB8GA1UdIwQYMBaAFG9PRo5DCLANDfX+rIQoZtVOd/XT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDFBMi9ERkQxMUYyODA2 QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNBME45ZjZzaENobTFVNTM5 ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IwOUdqa01Jc0EwTjlmNnNoQ2htMVU1MzlkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDFBMi9ERkQxMUYyODA2QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNB ME45ZjZzaENobTFVNTM5ZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqUorEdYsOa0m17W414IsKq4gBgtrTSeWTfi4OSJ0UED2zYopY0rgs w8KvtJ8jnW3GUidz7iUE+QVpec7vR48VUMcz7U5/4eypokgL5rRnEeBhvLgtjVGp 57wMja19Z5CPGK5ZyqAuO86ltGsRsR6NE4jwmtVYicujXAo3eYVm42tEn5OeBF4X r9rap6KsWHPrSb0lTy093YQyZKcQ1ctVWbhhT0YwciSKIy8D9xSP4WHOVXxQRDSi jJQdVJUY8x3oVu+WfvB0pw7dnay/OU2BiOaZ0jFZBHVsNPLOPri2XqtkZbCYF7lM RpNVUbQ2RpkgRNbfM2RKq8Ps/VSf+M+f -----END CERTIFICATE-----Generated at Wed Nov 5 09:23:17 2025 by rpki-client