$ rpki-client -vvf rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/rfD1q6_7mEW1XLNhoJL1bU5ABd0.mft File: rfD1q6_7mEW1XLNhoJL1bU5ABd0.mft (raw, json) Hash identifier: JN5+OCMcNywewVN/B9FNKXg5X6dsA5qluMppzOf3tYE= Subject key identifier: C3:27:2E:B1:96:26:49:D4:54:B8:F2:D5:BD:3D:14:14:90:45:33:FC Authority key identifier: AD:F0:F5:AB:AF:FB:98:45:B5:5C:B3:61:A0:92:F5:6D:4E:40:05:DD Certificate issuer: /CN=A9164E50/serialNumber=ADF0F5ABAFFB9845B55CB361A092F56D4E4005DD Certificate serial: 06BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rfD1q6_7mEW1XLNhoJL1bU5ABd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/rfD1q6_7mEW1XLNhoJL1bU5ABd0.mft Manifest number: 06B8 Signing time: Tue 04 Nov 2025 22:14:54 +0000 Manifest this update: Tue 04 Nov 2025 22:14:53 +0000 Manifest next update: Tue 11 Nov 2025 22:14:53 +0000 Files and hashes: 1: rfD1q6_7mEW1XLNhoJL1bU5ABd0.crl (hash: cDz9hzaraW1xrQGZOj++CVgXcLZK1Otism49WIGdVws=) 2: D18881E6807A11EBB44A0A58C4F9AE02.roa (hash: BgYstOucC84ZHYmnH6LDnjDF0uTc0h31+Q9K97MIQUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/rfD1q6_7mEW1XLNhoJL1bU5ABd0.crl rsync://rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/rfD1q6_7mEW1XLNhoJL1bU5ABd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rfD1q6_7mEW1XLNhoJL1bU5ABd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:14:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1726 (0x6be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164E50, serialNumber=ADF0F5ABAFFB9845B55CB361A092F56D4E4005DD Validity Not Before: Nov 4 22:14:53 2025 GMT Not After : Nov 11 22:14:53 2025 GMT Subject: CN=690a7ade-346d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:46:b9:23:9e:f0:60:89:72:9e:30:c0:cb:04: bc:2a:ed:0e:d8:d1:f6:f4:bd:a5:e2:06:dc:92:27: a7:75:2c:9a:97:4c:20:ee:be:dc:90:ea:57:d8:42: c2:eb:c2:df:bb:a9:49:81:2d:26:b6:c1:a0:25:9e: 00:90:ab:62:88:9e:17:5a:e1:98:1a:0a:6c:76:31: 29:5e:00:b1:11:50:1b:50:b5:d0:c6:f5:90:39:b5: 16:40:48:31:74:d5:1c:3f:c3:3c:6b:3c:10:da:d0: 4b:27:44:ed:0b:73:4a:b7:98:1a:78:e6:28:30:40: 55:c0:e9:f6:1a:d4:cf:27:7c:42:a1:6c:5a:72:42: 6e:38:c1:1a:75:35:80:09:77:3b:c7:b2:b3:f2:5f: 8f:57:c9:26:d2:39:00:9d:ab:44:b3:e9:2e:82:7e: cc:85:c6:29:be:94:ef:87:f4:1e:93:e0:d0:5b:69: d7:0d:08:08:76:a7:2f:8f:4b:8c:42:98:19:af:04: 68:98:52:af:19:12:15:44:d3:52:ac:73:a8:92:d5: 06:f0:34:56:f9:9f:1d:6e:7e:cf:51:ff:1c:b7:f5: 3d:80:38:ba:90:b9:83:c4:71:f1:98:e3:ac:62:78: 7c:b6:7b:1a:65:75:67:cd:3b:65:4b:54:83:70:25: 2d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:27:2E:B1:96:26:49:D4:54:B8:F2:D5:BD:3D:14:14:90:45:33:FC X509v3 Authority Key Identifier: keyid:AD:F0:F5:AB:AF:FB:98:45:B5:5C:B3:61:A0:92:F5:6D:4E:40:05:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/rfD1q6_7mEW1XLNhoJL1bU5ABd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rfD1q6_7mEW1XLNhoJL1bU5ABd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/rfD1q6_7mEW1XLNhoJL1bU5ABd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:3d:08:27:d6:64:89:b6:81:cb:8b:22:e4:87:65:ae:91:7a: e2:92:d9:f7:f3:b5:60:09:75:0c:94:69:df:a1:43:41:2d:5c: ed:66:4e:51:39:ee:b6:3c:ce:f5:49:0d:03:ee:45:96:5f:c7: 13:00:9a:1f:cb:f5:b6:89:55:0e:4d:8a:eb:df:42:65:46:c5: d4:9c:71:74:67:74:d2:2b:aa:c8:3a:34:9f:1e:ae:73:07:a8: 3f:88:43:c4:22:a8:0b:7b:ff:fb:49:c4:51:8f:d1:3c:ba:6e: e4:77:15:4a:10:b5:79:79:03:84:25:a2:0f:90:a6:97:0d:40: d4:21:03:03:10:6f:8d:e7:5a:15:dd:76:93:1c:92:5a:f5:ed: 9b:ea:47:35:44:65:01:62:9d:fe:3a:a4:2c:91:40:ee:aa:b4: 0a:01:aa:22:c7:05:ed:7d:7c:8c:2b:09:77:cb:cf:ac:41:51: c5:7c:ae:3d:ee:38:9e:ee:b7:20:e4:89:9f:47:eb:51:75:f2: 78:d1:61:0a:92:8e:25:11:6a:59:ec:c8:af:54:15:7a:ed:ae: f9:8b:4d:54:2e:aa:fb:88:c3:71:e3:f8:a2:c0:d0:50:2a:2d: d5:3c:72:67:4b:18:1e:9c:b2:d6:ab:71:8a:a4:1e:bf:67:f0: f9:3f:87:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRFNTAxMTAvBgNVBAUTKEFERjBGNUFCQUZGQjk4NDVCNTVDQjM2MUEwOTJGNTZE NEU0MDA1REQwHhcNMjUxMTA0MjIxNDUzWhcNMjUxMTExMjIxNDUzWjAYMRYwFAYD VQQDEw02OTBhN2FkZS0zNDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEa5I57wYIlynjDAywS8Ku0O2NH29L2l4gbckiendSyal0wg7r7ckOpX2ELC 68Lfu6lJgS0mtsGgJZ4AkKtiiJ4XWuGYGgpsdjEpXgCxEVAbULXQxvWQObUWQEgx dNUcP8M8azwQ2tBLJ0TtC3NKt5gaeOYoMEBVwOn2GtTPJ3xCoWxackJuOMEadTWA CXc7x7Kz8l+PV8km0jkAnatEs+kugn7MhcYpvpTvh/Qek+DQW2nXDQgIdqcvj0uM QpgZrwRomFKvGRIVRNNSrHOoktUG8DRW+Z8dbn7PUf8ct/U9gDi6kLmDxHHxmOOs Ynh8tnsaZXVnzTtlS1SDcCUtRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMMnLrGW JknUVLjy1b09FBSQRTP8MB8GA1UdIwQYMBaAFK3w9auv+5hFtVyzYaCS9W1OQAXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEU1MC9BNDBBMjQyMDgw NkQxMUVCQThCRjk5NzZDNEY5QUUwMi9yZkQxcTZfN21FVzFYTE5ob0pMMWJVNUFC ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JmRDFxNl83bUVXMVhMTmhvSkwxYlU1QUJkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NEU1MC9BNDBBMjQyMDgwNkQxMUVCQThCRjk5NzZDNEY5QUUwMi9yZkQxcTZfN21F VzFYTE5ob0pMMWJVNUFCZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXPQgn1mSJtoHLiyLkh2WukXriktn387VgCXUMlGnfoUNBLVztZk5R Oe62PM71SQ0D7kWWX8cTAJofy/W2iVUOTYrr30JlRsXUnHF0Z3TSK6rIOjSfHq5z B6g/iEPEIqgLe//7ScRRj9E8um7kdxVKELV5eQOEJaIPkKaXDUDUIQMDEG+N51oV 3XaTHJJa9e2b6kc1RGUBYp3+OqQskUDuqrQKAaoixwXtfXyMKwl3y8+sQVHFfK49 7jie7rcg5ImfR+tRdfJ40WEKko4lEWpZ7MivVBV67a75i01ULqr7iMNx4/iiwNBQ Ki3VPHJnSxgenLLWq3GKpB6/Z/D5P4c2 -----END CERTIFICATE-----Generated at Wed Nov 5 11:56:35 2025 by rpki-client