$ rpki-client -vvf rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft File: 065iZEnDqd0Od5i86Ly7OWYqJ_8.mft (raw, json) Hash identifier: H9WBkX37a8Sqe7BboRR7/1E6I8amO1HSOGfnTInYL+Q= Subject key identifier: 41:6B:32:96:4B:92:12:DC:AF:A5:0D:D5:99:6D:FC:91:8A:F2:BB:93 Authority key identifier: D3:AE:62:64:49:C3:A9:DD:0E:77:98:BC:E8:BC:BB:39:66:2A:27:FF Certificate issuer: /CN=A9163B62/serialNumber=D3AE626449C3A9DD0E7798BCE8BCBB39662A27FF Certificate serial: 01D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft Manifest number: 01D1 Signing time: Thu 06 Nov 2025 22:47:45 +0000 Manifest this update: Thu 06 Nov 2025 22:47:45 +0000 Manifest next update: Thu 13 Nov 2025 22:47:45 +0000 Files and hashes: 1: 065iZEnDqd0Od5i86Ly7OWYqJ_8.crl (hash: 264c+QSABirKoknvCX/bji8/IV9fATgg469d0Oh6/tc=) 2: 52CA5FA4FBDA11EDBC5C2B51C4F9AE02.roa (hash: hdoIBFcsKBcfu2ieIGwj6SsbqU4NXl1pTKHhFjI1OAE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.crl rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Nov 2025 22:47:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163B62, serialNumber=D3AE626449C3A9DD0E7798BCE8BCBB39662A27FF Validity Not Before: Nov 6 22:47:45 2025 GMT Not After : Nov 13 22:47:45 2025 GMT Subject: CN=690d2591-d1dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ec:18:2f:2c:96:33:40:35:9e:c5:a2:b0:d3: 0b:ab:5b:bc:ac:75:cb:ea:af:a4:61:b9:3e:5e:80: c7:b9:29:0d:cc:98:90:14:b0:42:bb:01:ce:97:62: 81:ee:5c:f8:86:d2:31:2a:c3:b2:09:ab:65:5a:5b: a0:cb:42:56:c2:6d:a8:2f:7c:97:8c:e1:84:94:20: f3:62:04:bc:9c:02:4c:16:fd:ab:c3:30:b0:03:9a: 12:e1:74:65:61:34:ba:68:f7:8a:d7:23:69:a4:89: 25:88:2f:23:6e:a3:c8:5c:d1:95:e6:97:6c:46:9f: 1b:d2:50:fe:05:47:dc:7f:48:0c:c7:b5:23:54:c6: e1:75:1b:19:20:69:a7:0a:13:96:e1:7f:b4:3b:e2: 7f:ce:05:9e:fc:7f:4a:91:17:0b:68:51:47:a0:b6: d0:8d:c8:35:c3:b0:a0:ed:26:05:d3:16:90:36:7b: c6:49:ba:0b:60:c2:3c:04:33:c7:02:33:99:f5:fe: f6:17:8b:fc:15:08:21:4b:bf:b7:85:b1:56:1b:bf: cd:aa:6b:1b:3c:2a:4c:eb:23:07:1e:ae:49:e7:47: dd:68:29:52:3f:7c:00:69:74:9d:a0:d3:13:31:ea: 27:3e:ca:34:f7:5b:18:44:71:f9:06:dc:45:92:28: 5d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:6B:32:96:4B:92:12:DC:AF:A5:0D:D5:99:6D:FC:91:8A:F2:BB:93 X509v3 Authority Key Identifier: keyid:D3:AE:62:64:49:C3:A9:DD:0E:77:98:BC:E8:BC:BB:39:66:2A:27:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:a9:c5:e1:9c:a3:0e:a4:49:d2:fc:9c:4d:00:f1:99:b6:36: 02:59:ea:aa:78:a6:38:23:58:b9:ab:95:00:a3:74:71:b8:96: 61:98:4d:ce:09:b8:ed:ae:85:21:96:55:97:5a:3c:6e:d3:bb: 14:72:6e:3d:76:67:c9:4a:7e:14:c0:88:40:6d:b6:c3:a0:39: 82:d4:f5:1a:3c:13:95:b4:1a:bc:f1:4d:7d:bb:4d:de:f4:6d: a8:15:a8:ab:a5:5f:b8:51:61:b7:ff:5c:1f:6c:11:5e:7a:15: 80:9f:ab:11:c7:ea:f5:63:9b:e7:40:96:cf:b7:6f:e5:2f:12: 79:2a:0f:6e:1b:4e:ec:ac:7c:23:fd:e3:ce:7d:c9:cd:6c:70: 7e:87:f4:8e:e6:56:50:ff:e3:8d:83:ab:9e:40:12:19:59:e4: 7c:a2:53:3c:ff:ad:d9:5b:b3:ea:ad:cb:6b:31:4d:e4:85:7d: 69:f7:85:7c:b9:de:b9:38:7d:cf:d7:f2:c5:b9:e0:f7:77:52: d0:2d:b3:2a:00:79:8e:0d:fa:a2:8e:e0:e7:c6:01:7a:52:30: 4b:52:e2:4e:a2:6b:79:a9:02:83:20:fc:3a:a1:3e:7d:f2:54: 23:5f:6c:d2:f7:39:b2:ad:05:22:79:58:b9:cb:f4:04:bc:c1: 56:a3:a3:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNCNjIxMTAvBgNVBAUTKEQzQUU2MjY0NDlDM0E5REQwRTc3OThCQ0U4QkNCQjM5 NjYyQTI3RkYwHhcNMjUxMTA2MjI0NzQ1WhcNMjUxMTEzMjI0NzQ1WjAYMRYwFAYD VQQDEw02OTBkMjU5MS1kMWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3OwYLyyWM0A1nsWisNMLq1u8rHXL6q+kYbk+XoDHuSkNzJiQFLBCuwHOl2KB 7lz4htIxKsOyCatlWlugy0JWwm2oL3yXjOGElCDzYgS8nAJMFv2rwzCwA5oS4XRl YTS6aPeK1yNppIkliC8jbqPIXNGV5pdsRp8b0lD+BUfcf0gMx7UjVMbhdRsZIGmn ChOW4X+0O+J/zgWe/H9KkRcLaFFHoLbQjcg1w7Cg7SYF0xaQNnvGSboLYMI8BDPH AjOZ9f72F4v8FQghS7+3hbFWG7/NqmsbPCpM6yMHHq5J50fdaClSP3wAaXSdoNMT MeonPso091sYRHH5BtxFkihdswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEFrMpZL khLcr6UN1Zlt/JGK8ruTMB8GA1UdIwQYMBaAFNOuYmRJw6ndDneYvOi8uzlmKif/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0I2Mi80RTlCNzZEMkZC RDIxMUVEQTA4NjQzNDVDNEY5QUUwMi8wNjVpWkVuRHFkME9kNWk4Nkx5N09XWXFK XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA2NWlaRW5EcWQwT2Q1aTg2THk3T1dZcUpfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0I2Mi80RTlCNzZEMkZCRDIxMUVEQTA4NjQzNDVDNEY5QUUwMi8wNjVpWkVuRHFk ME9kNWk4Nkx5N09XWXFKXzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdqcXhnKMOpEnS/JxNAPGZtjYCWeqqeKY4I1i5q5UAo3RxuJZhmE3O CbjtroUhllWXWjxu07sUcm49dmfJSn4UwIhAbbbDoDmC1PUaPBOVtBq88U19u03e 9G2oFairpV+4UWG3/1wfbBFeehWAn6sRx+r1Y5vnQJbPt2/lLxJ5Kg9uG07srHwj /ePOfcnNbHB+h/SO5lZQ/+ONg6ueQBIZWeR8olM8/63ZW7PqrctrMU3khX1p94V8 ud65OH3P1/LFueD3d1LQLbMqAHmODfqijuDnxgF6UjBLUuJOomt5qQKDIPw6oT59 8lQjX2zS9zmyrQUieVi5y/QEvMFWo6M1 -----END CERTIFICATE-----Generated at Fri Nov 7 16:14:34 2025 by rpki-client