$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft File: iuWu7yqR89-GYD7cVP6ExbtXnBU.mft (raw, json) Hash identifier: a3Ywj2c/SM8O4EXlAGa6YeXsneaoFeEinWOLRf+3dLc= Subject key identifier: A1:56:BB:77:88:53:A0:8F:6B:6A:A4:82:EA:31:FF:36:7E:1D:D9:6F Authority key identifier: 8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 Certificate issuer: /CN=A9167CB5/serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft Manifest number: 010D Signing time: Mon 03 Nov 2025 04:58:22 +0000 Manifest this update: Mon 03 Nov 2025 04:58:22 +0000 Manifest next update: Mon 10 Nov 2025 04:58:22 +0000 Files and hashes: 1: iuWu7yqR89-GYD7cVP6ExbtXnBU.crl (hash: PvRqWMU/GrJhD8o99F1RHmbrZGT8aEzQGzy0QwHwO/k=) 2: DC857BE8843111F09719836AC4F9AE02.roa (hash: qHV4LLtdLNsakUr43NtlwblQMKyqVyTmPBHeJjQSZeE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:58:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5, serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Validity Not Before: Nov 3 04:58:22 2025 GMT Not After : Nov 10 04:58:22 2025 GMT Subject: CN=6908366e-c10d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:59:7e:c0:08:75:45:26:50:a9:b9:59:c1:ef: be:e4:5f:df:b8:bb:bf:46:83:a5:18:59:fd:0d:cd: 84:69:ba:c5:f7:b8:6f:c9:99:14:38:99:40:ac:c5: 26:43:a3:83:4f:a6:30:16:4b:a9:3e:32:05:41:c6: ad:e1:08:fb:8e:16:51:13:ab:db:b7:69:08:48:7f: 94:49:87:ad:d3:8b:67:51:39:16:b1:af:1a:53:f7: 7b:5a:75:34:85:16:40:9a:19:d6:3c:d7:7e:1d:28: 1e:a5:23:3f:48:1f:9d:0a:29:c1:25:b8:74:24:28: 8c:9a:21:00:d2:9d:35:f0:43:b7:91:3c:ec:ed:86: dc:9b:b3:13:52:7b:96:ff:d9:f2:0b:4e:b9:0e:c9: be:16:62:e2:de:44:8a:76:c5:f0:ec:3a:c4:36:d2: de:73:2c:f0:b7:14:70:bb:5e:62:e1:df:20:3a:13: 7e:cd:8b:78:cc:ab:1e:39:22:1e:5a:ec:12:99:c5: e7:59:33:81:03:b4:5b:36:3f:87:2e:4a:70:5a:bd: 06:4b:8f:ab:48:a0:9e:b9:64:bb:78:de:d1:88:28: 4b:f8:70:43:b1:f8:55:d9:80:e4:7f:3d:9f:cb:ac: ce:c3:be:b5:87:77:2c:12:eb:90:4f:9c:ea:13:6e: 65:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:56:BB:77:88:53:A0:8F:6B:6A:A4:82:EA:31:FF:36:7E:1D:D9:6F X509v3 Authority Key Identifier: keyid:8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:99:a2:79:95:17:62:87:91:a0:7b:94:02:bb:b4:3e:bc:c9: 29:07:6c:ca:8a:93:b7:24:ba:90:09:d4:25:79:5b:78:82:62: 00:6b:1b:51:96:33:d6:f7:5c:f3:25:61:80:1e:63:e5:09:94: ea:c2:db:45:75:5a:41:ea:66:97:51:0e:5f:e6:fe:8a:95:42: d2:73:f0:26:7b:04:ff:59:2e:26:6b:c3:ff:7f:4e:2a:62:61: 60:fe:d2:13:d8:51:da:44:7f:22:49:dd:06:97:89:31:c7:cd: e9:ad:46:d3:56:d0:31:c5:25:bc:43:2e:9f:51:81:6e:4f:73: 7d:6f:ac:c0:db:a5:f6:55:eb:4b:68:9c:de:6b:e3:98:a2:a5: cf:d4:43:f2:e2:be:44:67:91:66:bc:51:5c:9b:d7:b6:64:4d: e0:92:7d:29:02:e3:50:c4:49:f1:2f:68:a4:eb:1a:35:89:80: a3:65:b4:b7:d6:ec:95:46:39:da:e2:08:3e:62:38:a3:84:3d: 71:ca:1c:87:9b:85:b4:a6:16:e9:05:78:88:4a:86:ab:ae:a6: 03:56:6d:09:90:9f:76:43:02:92:c6:61:e0:5d:67:f8:6d:d2: 09:2b:cf:55:66:8b:c6:f0:08:d0:dc:1c:2f:73:a5:f6:a5:60: c6:0a:c4:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKDhBRTVBRUVGMkE5MUYzREY4NjYwM0VEQzU0RkU4NEM1 QkI1NzlDMTUwHhcNMjUxMTAzMDQ1ODIyWhcNMjUxMTEwMDQ1ODIyWjAYMRYwFAYD VQQDEw02OTA4MzY2ZS1jMTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVl+wAh1RSZQqblZwe++5F/fuLu/RoOlGFn9Dc2EabrF97hvyZkUOJlArMUm Q6ODT6YwFkupPjIFQcat4Qj7jhZRE6vbt2kISH+USYet04tnUTkWsa8aU/d7WnU0 hRZAmhnWPNd+HSgepSM/SB+dCinBJbh0JCiMmiEA0p018EO3kTzs7Ybcm7MTUnuW /9nyC065Dsm+FmLi3kSKdsXw7DrENtLecyzwtxRwu15i4d8gOhN+zYt4zKseOSIe WuwSmcXnWTOBA7RbNj+HLkpwWr0GS4+rSKCeuWS7eN7RiChL+HBDsfhV2YDkfz2f y6zOw761h3csEuuQT5zqE25lsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKFWu3eI U6CPa2qkguox/zZ+HdlvMB8GA1UdIwQYMBaAFIrlru8qkfPfhmA+3FT+hMW7V5wV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9FRkQ0N0Q1NDIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9pdVd1N3lxUjg5LUdZRDdjVlA2RXhidFhu QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2l1V3U3eXFSODktR1lEN2NWUDZFeGJ0WG5CVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9FRkQ0N0Q1NDIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9pdVd1N3lxUjg5 LUdZRDdjVlA2RXhidFhuQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTmaJ5lRdih5Gge5QCu7Q+vMkpB2zKipO3JLqQCdQleVt4gmIAaxtR ljPW91zzJWGAHmPlCZTqwttFdVpB6maXUQ5f5v6KlULSc/AmewT/WS4ma8P/f04q YmFg/tIT2FHaRH8iSd0Gl4kxx83prUbTVtAxxSW8Qy6fUYFuT3N9b6zA26X2VetL aJzea+OYoqXP1EPy4r5EZ5FmvFFcm9e2ZE3gkn0pAuNQxEnxL2ik6xo1iYCjZbS3 1uyVRjna4gg+YjijhD1xyhyHm4W0phbpBXiISoarrqYDVm0JkJ92QwKSxmHgXWf4 bdIJK89VZovG8AjQ3Bwvc6X2pWDGCsQd -----END CERTIFICATE-----Generated at Wed Nov 5 05:15:48 2025 by rpki-client