$ rpki-client -vvf rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.mft File: CmlvYzZ3zH-l3H1bspnTmDD76UI.mft (raw, json) Hash identifier: Ka80IkZ27Q0PIzfFVXb7upfVgHdBW0JA3aKuyeAzpOg= Subject key identifier: 5C:ED:77:33:AA:16:93:1D:F2:0B:0B:6B:1B:C4:EF:B7:2F:8F:FF:D1 Authority key identifier: 0A:69:6F:63:36:77:CC:7F:A5:DC:7D:5B:B2:99:D3:98:30:FB:E9:42 Certificate issuer: /CN=A9165739/serialNumber=0A696F633677CC7FA5DC7D5BB299D39830FBE942 Certificate serial: 099D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmlvYzZ3zH-l3H1bspnTmDD76UI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.mft Manifest number: 0978 Signing time: Sun 02 Nov 2025 20:09:55 +0000 Manifest this update: Sun 02 Nov 2025 20:09:54 +0000 Manifest next update: Sun 09 Nov 2025 20:09:54 +0000 Files and hashes: 1: CmlvYzZ3zH-l3H1bspnTmDD76UI.crl (hash: /klGNxWBJIWSw/uSvBS+9g1rXMUM/i+APEGROsvaj0w=) 2: 5EFDD3C4641511EF92F73520C4F9AE02.roa (hash: lb657OxiZdu7OS/rkuzqIPL5kfvM5EeZVQrmP0Hrb44=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.crl rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmlvYzZ3zH-l3H1bspnTmDD76UI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:09:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2461 (0x99d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165739, serialNumber=0A696F633677CC7FA5DC7D5BB299D39830FBE942 Validity Not Before: Nov 2 20:09:54 2025 GMT Not After : Nov 9 20:09:54 2025 GMT Subject: CN=6907ba93-134c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:18:94:5d:01:6f:2f:f9:7c:05:da:ab:be:bc: 1c:3b:f2:a0:ed:48:99:28:f4:a6:3d:66:8e:1a:8e: c0:58:e5:18:18:cf:06:8f:4f:f1:29:0f:e6:4d:7b: bf:2e:e0:e4:4e:14:45:19:71:0b:23:37:97:c2:8f: d5:07:cd:99:b4:fc:0c:5c:25:d7:99:ce:de:d9:d3: 4c:99:8a:08:e8:da:22:b6:2c:ef:07:6b:af:7e:50: 9b:9a:b2:21:83:74:16:78:c5:de:f3:0d:27:9e:14: fa:c3:2a:9e:5f:17:be:7f:7a:22:5c:7c:fa:20:5a: a1:97:98:8b:5f:e8:59:9e:65:a3:46:f0:08:5e:97: 39:cd:b7:69:60:4f:f4:51:93:09:85:40:67:52:fd: 0a:67:f9:79:8f:ab:4f:72:e6:c4:b3:01:79:b6:65: 21:16:e7:d6:74:3b:9f:87:5a:32:b1:c2:03:91:ef: e1:8d:05:e4:5a:2a:b0:3f:d7:7d:3a:ea:fb:9c:71: 97:fa:19:b3:e6:ca:84:5a:27:ed:2d:d2:65:7d:21: a3:d8:29:78:18:04:b2:98:38:03:00:a8:16:ef:23: c3:86:a9:eb:3f:c3:e9:4d:ac:d9:e0:c8:18:49:bd: b7:93:44:51:77:6e:42:4b:1d:91:bd:72:2f:74:ab: af:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:ED:77:33:AA:16:93:1D:F2:0B:0B:6B:1B:C4:EF:B7:2F:8F:FF:D1 X509v3 Authority Key Identifier: keyid:0A:69:6F:63:36:77:CC:7F:A5:DC:7D:5B:B2:99:D3:98:30:FB:E9:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmlvYzZ3zH-l3H1bspnTmDD76UI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165739/6BA03288AC5511EAA8159E5CC4F9AE02/CmlvYzZ3zH-l3H1bspnTmDD76UI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:ab:37:2a:d6:7f:41:3f:0a:91:75:15:5d:79:9f:c7:e2:60: 59:8b:d6:cf:13:9b:d2:4f:5d:29:a6:cf:2c:3c:60:4b:fe:c8: d4:da:1a:b4:67:6a:e5:dc:6e:77:b5:84:fb:0e:fa:b9:c9:5e: 5d:f7:9a:90:f9:15:d1:b4:6e:e6:7e:3e:75:75:9f:a3:21:5c: 3a:06:7a:d1:17:3a:05:35:06:6a:9c:45:1a:21:bd:bb:ac:3b: 91:88:e4:95:ab:cb:bf:65:30:a3:68:ea:aa:ab:57:46:10:78: e5:4d:2e:4e:be:f9:b6:6b:aa:05:30:a9:7b:dc:89:d2:cf:10: 6c:4c:d0:d9:3e:48:13:20:42:3e:58:85:9c:38:1c:18:5d:47: ef:49:45:29:b1:8b:f0:97:65:17:bb:3f:5a:e2:4b:6e:0b:b5: 28:09:7c:5d:58:fb:78:79:f1:88:bb:89:c7:fd:08:41:c8:32: e0:01:bf:26:75:fb:74:ad:c7:57:2b:cb:1f:39:1e:0e:3b:58: a6:b6:07:c7:39:6d:85:af:82:93:cb:f2:51:13:3e:7a:55:48: 90:a4:f7:d0:99:75:3c:da:3b:c9:c1:ba:b3:51:31:00:60:d6: cd:de:38:9c:5d:e3:27:91:0b:a2:f3:63:5e:19:84:85:65:40: a5:6b:bb:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU3MzkxMTAvBgNVBAUTKDBBNjk2RjYzMzY3N0NDN0ZBNURDN0Q1QkIyOTlEMzk4 MzBGQkU5NDIwHhcNMjUxMTAyMjAwOTU0WhcNMjUxMTA5MjAwOTU0WjAYMRYwFAYD VQQDEw02OTA3YmE5My0xMzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhiUXQFvL/l8BdqrvrwcO/Kg7UiZKPSmPWaOGo7AWOUYGM8Gj0/xKQ/mTXu/ LuDkThRFGXELIzeXwo/VB82ZtPwMXCXXmc7e2dNMmYoI6NoitizvB2uvflCbmrIh g3QWeMXe8w0nnhT6wyqeXxe+f3oiXHz6IFqhl5iLX+hZnmWjRvAIXpc5zbdpYE/0 UZMJhUBnUv0KZ/l5j6tPcubEswF5tmUhFufWdDufh1oyscIDke/hjQXkWiqwP9d9 Our7nHGX+hmz5sqEWiftLdJlfSGj2Cl4GASymDgDAKgW7yPDhqnrP8PpTazZ4MgY Sb23k0RRd25CSx2RvXIvdKuvRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFztdzOq FpMd8gsLaxvE77cvj//RMB8GA1UdIwQYMBaAFAppb2M2d8x/pdx9W7KZ05gw++lC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTczOS82QkEwMzI4OEFD NTUxMUVBQTgxNTlFNUNDNEY5QUUwMi9DbWx2WXpaM3pILWwzSDFic3BuVG1ERDc2 VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtbHZZelozekgtbDNIMWJzcG5UbURENzZVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTczOS82QkEwMzI4OEFDNTUxMUVBQTgxNTlFNUNDNEY5QUUwMi9DbWx2WXpaM3pI LWwzSDFic3BuVG1ERDc2VUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJqzcq1n9BPwqRdRVdeZ/H4mBZi9bPE5vST10pps8sPGBL/sjU2hq0 Z2rl3G53tYT7Dvq5yV5d95qQ+RXRtG7mfj51dZ+jIVw6BnrRFzoFNQZqnEUaIb27 rDuRiOSVq8u/ZTCjaOqqq1dGEHjlTS5Ovvm2a6oFMKl73InSzxBsTNDZPkgTIEI+ WIWcOBwYXUfvSUUpsYvwl2UXuz9a4ktuC7UoCXxdWPt4efGIu4nH/QhByDLgAb8m dft0rcdXK8sfOR4OO1imtgfHOW2Fr4KTy/JREz56VUiQpPfQmXU82jvJwbqzUTEA YNbN3jicXeMnkQui82NeGYSFZUCla7tc -----END CERTIFICATE-----Generated at Tue Nov 4 08:05:09 2025 by rpki-client