$ rpki-client -vvf rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft File: a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft (raw, json) Hash identifier: A3MqWik1bXDEz4PWWFG7AREbcXqIjVJiCXEgIwkOLsY= Subject key identifier: 3F:1B:48:5D:34:EC:42:81:3B:41:EA:CC:BE:8C:69:9D:74:9E:B4:94 Authority key identifier: 6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E Certificate issuer: /CN=A9165BD7/serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Certificate serial: 01F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft Manifest number: 01EC Signing time: Mon 03 Nov 2025 02:34:06 +0000 Manifest this update: Mon 03 Nov 2025 02:34:06 +0000 Manifest next update: Mon 10 Nov 2025 02:34:06 +0000 Files and hashes: 1: a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl (hash: yVCC/S0LNsqZeIU7uHxCgLWnriJVmx//z81tV+zZovI=) 2: A92EC53AC95B11ED9ABE6935C4F9AE02.roa (hash: gnoiGXKkrmhYTwfXU41IB03BpkGU00B0FHz74SrCkdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:34:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 496 (0x1f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165BD7, serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Validity Not Before: Nov 3 02:34:06 2025 GMT Not After : Nov 10 02:34:06 2025 GMT Subject: CN=6908149e-8075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:2c:73:ad:1b:6f:6b:f1:ba:8a:a6:c9:8c:3c: bc:a5:2d:1a:0f:85:b5:20:d3:81:7d:fa:96:d0:d3: 09:91:10:50:44:0b:1f:1b:cc:8d:59:d8:35:2a:87: 9b:f3:65:1b:f5:18:f1:6e:54:76:3e:0b:38:c7:ca: db:0e:f7:b4:b5:21:bc:59:4a:a2:e3:38:68:eb:0f: 5a:9a:4d:4e:88:bd:9a:56:c4:e4:2a:38:30:f2:42: 5f:7c:1c:05:93:80:16:4a:50:ef:5d:bc:26:23:69: 3a:6a:66:09:c5:5e:1b:f1:32:ff:0f:92:32:95:1d: b7:4a:f0:f0:58:79:70:5e:dc:3a:34:fa:f2:93:b9: 62:ad:64:7a:f9:e3:80:c1:6f:91:64:21:93:48:91: 58:78:d0:36:3f:38:93:7a:62:7c:6c:ae:1b:38:4e: cc:44:1c:6d:db:55:52:7d:17:92:43:88:04:8a:22: 80:dc:2e:5a:fd:20:22:03:de:28:bd:a4:c3:2a:02: 7a:f7:c9:1c:3b:db:fc:e1:db:0c:d3:25:cd:07:c4: c7:bb:72:e8:d7:a1:98:5d:70:28:44:cd:9c:98:69: f7:81:f5:15:d0:c7:d0:06:62:72:c1:f9:df:37:f1: 52:4b:a7:68:62:ca:e4:a2:ad:ce:77:be:42:eb:d6: 46:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:1B:48:5D:34:EC:42:81:3B:41:EA:CC:BE:8C:69:9D:74:9E:B4:94 X509v3 Authority Key Identifier: keyid:6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:b1:ac:c1:92:aa:38:e3:b2:93:7f:f1:9e:26:a0:cd:31:bc: d0:70:21:4c:ed:3d:15:6c:78:4f:d7:68:23:1b:c5:df:ec:50: dc:28:2e:d3:0e:f4:4d:5b:2c:83:fb:5b:56:51:df:6f:3c:4f: 56:45:6e:ff:59:2b:b5:fd:0e:58:18:b8:13:71:03:87:71:2d: 9c:d6:2a:ad:91:6d:5e:8e:9c:25:70:9b:0a:b4:75:94:2e:79: d7:aa:b5:1f:64:87:b4:06:32:39:36:bb:d1:60:bc:d6:49:1f: 01:3b:72:4a:69:3b:b7:ec:b4:9c:73:40:78:1f:66:af:04:2f: b6:0f:b1:79:90:88:8a:91:fb:26:cb:db:e4:62:32:c0:b8:ac: c2:f1:22:0f:12:8c:80:64:c5:e2:7c:bc:96:40:60:f6:6a:5e: e9:38:6e:7c:33:5c:6e:36:5f:5e:29:23:bd:16:8c:d0:7f:6e: 84:00:d9:cb:77:2c:b7:df:af:ff:19:2c:51:28:53:f0:d7:bd: 98:78:ce:91:02:d9:9b:c3:7b:b3:88:cb:a9:ea:c4:33:34:5d: 09:71:1c:dd:74:9a:25:05:7c:f8:e9:19:70:b1:76:e8:54:cd: 71:3a:e8:06:e7:2e:1d:07:e3:82:a4:d8:51:e3:4e:7f:54:f1: a7:24:d0:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCRDcxMTAvBgNVBAUTKDZCNDk1NzY2MkFENEMyMUJENDIyQTg3REI0MUI4QkNG QzlENkREOEUwHhcNMjUxMTAzMDIzNDA2WhcNMjUxMTEwMDIzNDA2WjAYMRYwFAYD VQQDEw02OTA4MTQ5ZS04MDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3yxzrRtva/G6iqbJjDy8pS0aD4W1INOBffqW0NMJkRBQRAsfG8yNWdg1Koeb 82Ub9RjxblR2Pgs4x8rbDve0tSG8WUqi4zho6w9amk1OiL2aVsTkKjgw8kJffBwF k4AWSlDvXbwmI2k6amYJxV4b8TL/D5IylR23SvDwWHlwXtw6NPryk7lirWR6+eOA wW+RZCGTSJFYeNA2PziTemJ8bK4bOE7MRBxt21VSfReSQ4gEiiKA3C5a/SAiA94o vaTDKgJ698kcO9v84dsM0yXNB8THu3Lo16GYXXAoRM2cmGn3gfUV0MfQBmJywfnf N/FSS6doYsrkoq3Od75C69ZGBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8bSF00 7EKBO0HqzL6MaZ10nrSUMB8GA1UdIwQYMBaAFGtJV2Yq1MIb1CKofbQbi8/J1t2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUJENy84QTYyQzgyQUM5 NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdodlVJcWg5dEJ1THo4blcz WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EwbFhaaXJVd2h2VUlxaDl0QnVMejhuVzNZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUJENy84QTYyQzgyQUM5NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdo dlVJcWg5dEJ1THo4blczWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUsazBkqo447KTf/GeJqDNMbzQcCFM7T0VbHhP12gjG8Xf7FDcKC7T DvRNWyyD+1tWUd9vPE9WRW7/WSu1/Q5YGLgTcQOHcS2c1iqtkW1ejpwlcJsKtHWU LnnXqrUfZIe0BjI5NrvRYLzWSR8BO3JKaTu37LScc0B4H2avBC+2D7F5kIiKkfsm y9vkYjLAuKzC8SIPEoyAZMXifLyWQGD2al7pOG58M1xuNl9eKSO9FozQf26EANnL dyy336//GSxRKFPw172YeM6RAtmbw3uziMup6sQzNF0JcRzddJolBXz46RlwsXbo VM1xOugG5y4dB+OCpNhR405/VPGnJNBy -----END CERTIFICATE-----Generated at Tue Nov 4 16:04:42 2025 by rpki-client