$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: YiU+WzImNqzOrdKdE4VbwCGHMdNLHu5jQyUXbiA/8Mg= Subject key identifier: CA:E5:B9:13:21:79:15:33:45:AB:55:30:EE:E5:43:96:41:3E:4B:CF Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0C91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0C79 Signing time: Tue 04 Nov 2025 18:37:41 +0000 Manifest this update: Tue 04 Nov 2025 18:37:40 +0000 Manifest next update: Tue 11 Nov 2025 18:37:40 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: 7tLkgyeKY/8hL09xFpFeeI5LzcypUyfaytZqOnp3QY0=) 2: 2D0509BC078511ED87041524C4F9AE02.roa (hash: OhD3vjT84Ykw6Uqb+DhKbwC3X7GSCVv4M4crx5/Gxaw=) 3: 20F1E6906B8C11F0A612561BC4F9AE02.roa (hash: sNHYoYiLZid3XR7DYoExAvwJFzWoz5zJp9zNVyLdkkQ=) 4: 2BA0624C078511ED87041524C4F9AE02.roa (hash: OgDpE/kLbNvrNHxmlaFE7wjr3tmLX0c3S1JS4qIXLMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:37:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3217 (0xc91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Nov 4 18:37:40 2025 GMT Not After : Nov 11 18:37:40 2025 GMT Subject: CN=690a47f4-6cc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:63:99:d7:3d:f3:7f:bb:6c:98:71:01:e6:cb: 22:97:e3:83:a4:7b:a4:33:f6:2c:a6:12:0b:ba:63: 7e:64:af:ea:cc:3c:77:15:f7:36:f3:95:aa:6e:76: d1:d0:f6:54:4c:ac:47:69:9f:df:42:83:45:c5:86: 50:2e:b1:b2:0f:17:f9:9f:a6:fd:8c:08:dc:84:98: 0b:3a:7f:9d:27:2e:cb:5c:76:fc:40:93:a8:36:2e: 39:42:d7:4a:26:0d:b3:0d:41:f6:63:b5:2d:81:f0: 17:e5:64:10:dd:9a:af:55:61:f0:ff:57:83:09:ba: c9:81:aa:f8:2e:79:b1:07:f1:c4:fe:58:47:05:71: 0b:0f:8a:44:3c:64:b2:b6:5d:03:73:a9:ce:9e:cc: 31:d8:37:74:cd:56:e4:f8:86:d3:ac:f7:05:ba:14: fc:a2:48:d1:8c:7e:09:f6:45:43:61:7e:1d:5d:30: e0:7f:09:b4:b0:0e:69:38:46:42:97:1e:cf:9a:3d: 44:b7:f4:6c:1d:cb:9c:37:4a:30:1c:32:71:b6:b6: 46:8b:2e:48:f2:56:da:cb:00:df:d2:14:bd:41:f2: 4c:e2:3f:2c:1b:40:2d:24:97:8d:ea:dc:d8:2a:41: 45:a1:17:1b:72:28:ba:a9:6e:84:0c:20:26:c2:19: 24:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:E5:B9:13:21:79:15:33:45:AB:55:30:EE:E5:43:96:41:3E:4B:CF X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:48:be:c1:e7:ad:6e:f1:b9:e5:5e:68:7f:dd:3d:94:02:e2: c4:7e:49:2b:4a:94:64:2d:0a:88:12:6f:1a:be:c1:cd:60:5e: 10:52:e2:23:e9:12:e8:eb:2b:88:3a:da:5a:37:28:97:fb:10: 59:f5:6c:e4:a0:ce:d0:4c:b5:6b:9d:6f:61:23:4e:c5:83:9b: 6d:1f:1d:fc:cb:95:29:b0:44:9e:eb:f4:bd:a2:67:a5:e6:fb: c4:b1:c2:19:10:e5:7c:3d:2e:f9:ac:5a:bc:a4:81:1a:b3:8f: 1e:cb:03:bf:4e:a7:1f:71:2e:2e:41:95:78:64:5f:c4:a9:e3: e0:08:0c:5f:f6:b4:86:43:2f:b0:40:8d:04:49:7c:cf:6f:0b: 17:3f:7f:52:42:9a:c0:be:d2:b0:de:a8:85:38:8d:32:77:f8: 9e:6d:66:6b:a1:9c:ea:b8:d6:32:20:41:b2:c5:0c:6f:c1:b7: a4:32:5b:45:f7:46:2a:78:07:9d:91:89:a5:66:d5:bf:68:6f: 7b:08:b5:03:ec:e3:1f:0c:70:c0:b5:05:bd:ae:d1:94:48:02: d1:9e:e8:f1:01:45:c6:5b:4b:55:ca:d3:6e:20:61:44:ca:af: 75:f7:03:37:33:de:cf:1d:7a:27:84:82:91:06:fa:4c:b3:c2: 6f:27:6d:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjUxMTA0MTgzNzQwWhcNMjUxMTExMTgzNzQwWjAYMRYwFAYD VQQDEw02OTBhNDdmNC02Y2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA12OZ1z3zf7tsmHEB5ssil+ODpHukM/YsphILumN+ZK/qzDx3Ffc285WqbnbR 0PZUTKxHaZ/fQoNFxYZQLrGyDxf5n6b9jAjchJgLOn+dJy7LXHb8QJOoNi45QtdK Jg2zDUH2Y7UtgfAX5WQQ3ZqvVWHw/1eDCbrJgar4LnmxB/HE/lhHBXELD4pEPGSy tl0Dc6nOnswx2Dd0zVbk+IbTrPcFuhT8okjRjH4J9kVDYX4dXTDgfwm0sA5pOEZC lx7Pmj1Et/RsHcucN0owHDJxtrZGiy5I8lbaywDf0hS9QfJM4j8sG0AtJJeN6tzY KkFFoRcbcii6qW6EDCAmwhkkSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMrluRMh eRUzRatVMO7lQ5ZBPkvPMB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBESL7B561u8bnlXmh/3T2UAuLEfkkrSpRkLQqIEm8avsHNYF4QUuIj 6RLo6yuIOtpaNyiX+xBZ9WzkoM7QTLVrnW9hI07Fg5ttHx38y5UpsESe6/S9omel 5vvEscIZEOV8PS75rFq8pIEas48eywO/TqcfcS4uQZV4ZF/EqePgCAxf9rSGQy+w QI0ESXzPbwsXP39SQprAvtKw3qiFOI0yd/iebWZroZzquNYyIEGyxQxvwbekMltF 90YqeAedkYmlZtW/aG97CLUD7OMfDHDAtQW9rtGUSALRnujxAUXGW0tVytNuIGFE yq919wM3M97PHXonhIKRBvpMs8JvJ22e -----END CERTIFICATE-----Generated at Wed Nov 5 10:25:15 2025 by rpki-client