$ rpki-client -vvf rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.mft File: e0Coz49PGgbDbiA08Yo4v5jKWxg.mft (raw, json) Hash identifier: lEUw6vqrJkLHqZnvLlU6yleUhypBuIjcS0J/6FzVnrA= Subject key identifier: 46:19:02:AD:C6:AA:1C:CB:7E:51:A7:E0:8A:3D:19:14:C4:D2:31:AC Authority key identifier: 7B:40:A8:CF:8F:4F:1A:06:C3:6E:20:34:F1:8A:38:BF:98:CA:5B:18 Certificate issuer: /CN=A9166123/serialNumber=7B40A8CF8F4F1A06C36E2034F18A38BF98CA5B18 Certificate serial: 01D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e0Coz49PGgbDbiA08Yo4v5jKWxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.mft Manifest number: 01D2 Signing time: Mon 03 Nov 2025 02:49:30 +0000 Manifest this update: Mon 03 Nov 2025 02:49:29 +0000 Manifest next update: Mon 10 Nov 2025 02:49:29 +0000 Files and hashes: 1: e0Coz49PGgbDbiA08Yo4v5jKWxg.crl (hash: BQ07DoeheIyM77wEshsbWSt5mFr0KcLnsv3TXOevikI=) 2: A74C3132F49211ED8659177BC4F9AE02.roa (hash: 306udLdXsDXkERPewXDbNH98O47h8mfNTv4RCgj1cHQ=) 3: 2F9915D8718D11EE97E3E022C4F9AE02.roa (hash: coH1x8KY/cq3OGm3WBXbeivefI4OPLTpBCpIkFV1i7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.crl rsync://rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e0Coz49PGgbDbiA08Yo4v5jKWxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:49:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166123, serialNumber=7B40A8CF8F4F1A06C36E2034F18A38BF98CA5B18 Validity Not Before: Nov 3 02:49:29 2025 GMT Not After : Nov 10 02:49:29 2025 GMT Subject: CN=69081839-0959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0e:0d:55:de:9f:3c:d0:73:9d:65:a9:83:e5: b9:bd:38:d5:f9:ab:b5:3c:43:60:25:59:71:22:11: b3:1d:8d:ae:ef:72:23:b4:8e:77:a8:06:77:3c:bc: 7e:51:89:17:4f:86:8c:47:3a:82:d8:f8:fe:ab:f6: 0c:cb:e4:0e:27:1e:2e:9e:2f:dd:04:e1:b8:2e:bc: 6d:d3:6d:10:48:02:3c:85:cf:2a:bf:32:4a:85:5f: e4:b7:bf:64:2c:05:64:04:81:ca:d0:98:41:6c:62: af:c2:12:c1:9b:2c:61:53:62:2d:57:b7:e1:b1:9a: 6c:32:bd:d7:e8:48:f0:a4:37:79:9e:80:db:b3:9c: b4:95:58:d8:fd:6b:81:b6:52:43:4d:ba:c3:72:89: c4:ac:ef:bd:23:ff:32:d3:27:c0:03:ca:09:5c:ef: b5:d0:76:39:f6:4d:47:34:e9:96:a3:a6:6e:e7:37: 88:38:75:e7:17:cc:ce:2e:2b:81:45:50:ef:0d:2f: 44:4e:77:84:80:d1:73:fa:39:5a:d4:94:89:fe:0f: d5:f2:62:70:f5:50:32:ef:48:c9:13:8a:29:42:99: 6b:4c:29:04:98:d8:f2:ee:9b:40:d6:f3:ba:b1:d2: 1e:80:34:7a:7e:f4:2c:a8:fa:dc:3b:3d:b2:d9:c9: f8:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:19:02:AD:C6:AA:1C:CB:7E:51:A7:E0:8A:3D:19:14:C4:D2:31:AC X509v3 Authority Key Identifier: keyid:7B:40:A8:CF:8F:4F:1A:06:C3:6E:20:34:F1:8A:38:BF:98:CA:5B:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e0Coz49PGgbDbiA08Yo4v5jKWxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:d9:f3:c0:22:28:82:74:4a:05:cf:1b:51:f6:d1:e0:2a:ca: 1a:9a:27:78:f6:4c:1e:82:e1:b5:f8:f1:4a:80:1b:f7:65:4c: 21:40:6d:04:ad:b1:25:63:00:bf:ea:75:0f:40:b1:c6:99:ea: c7:e5:8a:bc:35:81:e3:aa:3a:c4:cd:6e:d5:26:1c:71:c9:48: 38:23:8a:45:79:71:91:13:07:5a:4c:55:68:1a:9f:ce:9e:9b: 71:8d:ab:d1:d4:ac:c8:0d:79:9f:ed:7c:34:f9:c0:21:45:2f: 5a:20:a1:65:56:4e:ad:3c:e3:6e:e1:12:2c:5b:28:66:63:6c: 0d:51:98:54:23:66:41:8e:b4:e4:6c:29:7d:08:5a:15:95:fd: 5b:c4:40:53:9b:5f:7d:8b:fa:a0:03:92:66:4a:93:39:6e:43: 0f:08:dc:cf:20:60:0e:44:2d:58:39:fb:e0:6a:b9:25:19:ec: 54:5e:48:19:d1:64:8b:eb:88:58:b0:cd:b4:2b:13:2c:da:7b: d8:e7:cd:e4:df:be:dd:8f:75:1a:82:86:3e:fb:e6:72:1c:21: ac:7f:b1:31:fa:70:e5:04:de:12:76:57:61:87:0c:30:27:9e: 68:8b:13:e3:3a:48:49:a0:13:f2:be:9e:f8:7e:77:5b:75:5c: 2f:eb:23:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjYxMjMxMTAvBgNVBAUTKDdCNDBBOENGOEY0RjFBMDZDMzZFMjAzNEYxOEEzOEJG OThDQTVCMTgwHhcNMjUxMTAzMDI0OTI5WhcNMjUxMTEwMDI0OTI5WjAYMRYwFAYD VQQDEw02OTA4MTgzOS0wOTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvg4NVd6fPNBznWWpg+W5vTjV+au1PENgJVlxIhGzHY2u73IjtI53qAZ3PLx+ UYkXT4aMRzqC2Pj+q/YMy+QOJx4uni/dBOG4Lrxt020QSAI8hc8qvzJKhV/kt79k LAVkBIHK0JhBbGKvwhLBmyxhU2ItV7fhsZpsMr3X6EjwpDd5noDbs5y0lVjY/WuB tlJDTbrDconErO+9I/8y0yfAA8oJXO+10HY59k1HNOmWo6Zu5zeIOHXnF8zOLiuB RVDvDS9ETneEgNFz+jla1JSJ/g/V8mJw9VAy70jJE4opQplrTCkEmNjy7ptA1vO6 sdIegDR6fvQsqPrcOz2y2cn4aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYZAq3G qhzLflGn4Io9GRTE0jGsMB8GA1UdIwQYMBaAFHtAqM+PTxoGw24gNPGKOL+YylsY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NjEyMy8xQjAwRUFFOEY0 OEMxMUVEQTg4OTU0NTNDNEY5QUUwMi9lMENvejQ5UEdnYkRiaUEwOFlvNHY1aktX eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2UwQ296NDlQR2diRGJpQTA4WW80djVqS1d4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NjEyMy8xQjAwRUFFOEY0OEMxMUVEQTg4OTU0NTNDNEY5QUUwMi9lMENvejQ5UEdn YkRiaUEwOFlvNHY1aktXeGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB2fPAIiiCdEoFzxtR9tHgKsoamid49kweguG1+PFKgBv3ZUwhQG0E rbElYwC/6nUPQLHGmerH5Yq8NYHjqjrEzW7VJhxxyUg4I4pFeXGREwdaTFVoGp/O nptxjavR1KzIDXmf7Xw0+cAhRS9aIKFlVk6tPONu4RIsWyhmY2wNUZhUI2ZBjrTk bCl9CFoVlf1bxEBTm199i/qgA5JmSpM5bkMPCNzPIGAORC1YOfvgarklGexUXkgZ 0WSL64hYsM20KxMs2nvY583k377dj3UagoY+++ZyHCGsf7Ex+nDlBN4Sdldhhwww J55oixPjOkhJoBPyvp74fndbdVwv6yOV -----END CERTIFICATE-----Generated at Tue Nov 4 02:14:59 2025 by rpki-client