$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft File: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft (raw, json) Hash identifier: fNYcpYkntEIyiEw/C7Y/S9Sjarp0sL0etc8e4N5KHv8= Subject key identifier: 06:93:45:61:7D:40:86:46:17:DC:78:4F:F5:51:A9:1B:7F:75:C0:BE Authority key identifier: B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C Certificate issuer: /CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Certificate serial: 062D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft Manifest number: 0623 Signing time: Sun 02 Nov 2025 22:46:39 +0000 Manifest this update: Sun 02 Nov 2025 22:46:38 +0000 Manifest next update: Sun 09 Nov 2025 22:46:38 +0000 Files and hashes: 1: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl (hash: 0rzvnRyN5kIBPPGQGgT4zN5Qlhve9nd06++aIhCCCS8=) 2: 3C2408105CBF11ECACDFE47BC4F9AE02.roa (hash: 0H9iVWOcGuVvN/MVa3XeV+I+PG+LvrsVTNSfk98zbHw=) 3: B3DED5C6BAC911EB8533B615C4F9AE02.roa (hash: DsgHJydaVuiP2/JOiaGz7+8hzbblvMVmJcBWMtJLoOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1581 (0x62d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C95, serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Validity Not Before: Nov 2 22:46:38 2025 GMT Not After : Nov 9 22:46:38 2025 GMT Subject: CN=6907df4e-dcbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b9:13:b9:86:40:df:4b:03:57:66:36:a6:0b: b3:68:86:6b:b9:c8:a0:47:32:d8:65:45:f9:7d:12: 79:b6:f2:d6:14:eb:e5:59:55:d7:f2:1c:c0:90:d0: f6:1e:58:da:00:6d:ae:c5:d6:70:97:38:eb:48:e1: 22:04:b5:01:08:3a:e7:ca:44:fd:f9:a1:27:34:00: a5:c8:52:31:f0:f2:fd:ca:57:3f:be:47:df:bd:12: 5b:53:48:82:67:9a:a9:82:e2:7d:7a:82:0a:f6:27: ee:f4:4e:5b:1d:b5:54:d0:2f:c4:f5:6e:b6:ab:eb: 97:fb:57:bf:fc:ff:bf:2b:2e:27:eb:fa:db:01:e0: 6a:f6:72:05:ea:8e:38:bf:61:e5:61:af:2a:e6:d7: cc:d0:0c:4a:c8:62:38:1a:3e:d8:b7:d4:9d:fc:eb: 00:d5:41:eb:0b:b5:04:e2:39:1f:a8:d4:9d:d7:d1: 13:11:d5:4d:d0:c0:de:27:2f:60:5e:55:53:4f:47: a9:76:ab:35:5e:2e:4d:71:ce:a8:a6:a6:13:97:ef: e0:9a:9b:65:5a:cb:4b:cb:45:41:81:ea:c0:59:7d: c9:85:ec:4b:f3:af:fe:57:7e:af:3d:d9:12:10:f8: f2:e7:1e:95:8c:7a:ed:f3:74:9c:d6:c9:a6:ef:dc: 7f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:93:45:61:7D:40:86:46:17:DC:78:4F:F5:51:A9:1B:7F:75:C0:BE X509v3 Authority Key Identifier: keyid:B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:cc:c8:97:68:34:e0:76:73:a6:ba:3c:64:8b:c0:d2:5e:1e: 73:76:4e:2c:6a:1c:3b:5f:df:9e:b5:93:9a:a2:c5:4a:cd:f5: ce:08:68:87:54:ae:1c:f3:e7:ee:21:a3:7e:e4:c3:fc:ce:d8: 0b:01:4f:4f:9b:11:ce:4e:ca:b1:ae:e2:58:f9:86:33:d5:19: aa:1e:41:a5:39:94:f3:91:10:41:a7:e4:8e:2d:26:4e:76:e4: 0d:f6:ed:b4:fc:14:7e:dd:87:b7:78:1d:0e:44:c7:a1:0f:84: 2f:ba:2b:ea:7b:b8:b1:1b:a8:05:d1:e4:1b:9e:52:85:5c:7b: f9:7b:a6:bb:d2:66:2c:51:d6:47:76:38:d4:5a:74:99:b2:74: 55:4b:a1:76:62:a3:4d:02:c3:e8:32:ae:c8:87:cf:16:c5:5a: 14:3c:ba:e4:a9:2f:6d:61:f9:8b:84:2c:35:a4:a0:15:ca:5b: 91:30:50:28:4b:b9:c7:bd:1e:fc:45:77:e8:74:5f:df:a9:c3: f0:8d:b0:76:bc:3d:90:d6:09:34:72:fc:da:0b:31:d3:ac:de: 0f:4a:b6:95:9f:a7:c9:a2:ad:f3:30:3a:b3:5c:4a:f1:2d:0c: 52:f9:92:6f:ec:65:7b:fc:43:19:74:7f:a0:11:e1:03:18:57: f2:37:84:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDOTUxMTAvBgNVBAUTKEI0OEU0MDczQjgxMEJDRjlDNzk0ODE5QzgwRkRFNzFE NTNGMkRFMkMwHhcNMjUxMTAyMjI0NjM4WhcNMjUxMTA5MjI0NjM4WjAYMRYwFAYD VQQDEw02OTA3ZGY0ZS1kY2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrkTuYZA30sDV2Y2pguzaIZrucigRzLYZUX5fRJ5tvLWFOvlWVXX8hzAkND2 HljaAG2uxdZwlzjrSOEiBLUBCDrnykT9+aEnNAClyFIx8PL9ylc/vkffvRJbU0iC Z5qpguJ9eoIK9ifu9E5bHbVU0C/E9W62q+uX+1e//P+/Ky4n6/rbAeBq9nIF6o44 v2HlYa8q5tfM0AxKyGI4Gj7Yt9Sd/OsA1UHrC7UE4jkfqNSd19ETEdVN0MDeJy9g XlVTT0epdqs1Xi5Ncc6opqYTl+/gmptlWstLy0VBgerAWX3JhexL86/+V36vPdkS EPjy5x6VjHrt83Sc1smm79x/gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAaTRWF9 QIZGF9x4T/VRqRt/dcC+MB8GA1UdIwQYMBaAFLSOQHO4ELz5x5SBnID95x1T8t4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM5NS9ERTJGRjFGNEJB QzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQbkhsSUdjZ1AzbkhWUHkz aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJNUFjN2dRdlBuSGxJR2NnUDNuSFZQeTNpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEM5NS9ERTJGRjFGNEJBQzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQ bkhsSUdjZ1AzbkhWUHkzaXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSzMiXaDTgdnOmujxki8DSXh5zdk4sahw7X9+etZOaosVKzfXOCGiH VK4c8+fuIaN+5MP8ztgLAU9PmxHOTsqxruJY+YYz1RmqHkGlOZTzkRBBp+SOLSZO duQN9u20/BR+3Ye3eB0ORMehD4Qvuivqe7ixG6gF0eQbnlKFXHv5e6a70mYsUdZH djjUWnSZsnRVS6F2YqNNAsPoMq7Ih88WxVoUPLrkqS9tYfmLhCw1pKAVyluRMFAo S7nHvR78RXfodF/fqcPwjbB2vD2Q1gk0cvzaCzHTrN4PSraVn6fJoq3zMDqzXErx LQxS+ZJv7GV7/EMZdH+gEeEDGFfyN4Q7 -----END CERTIFICATE-----Generated at Tue Nov 4 21:34:47 2025 by rpki-client