$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft File: ulHQnhOT5woFhzID_3zE4f1-pw8.mft (raw, json) Hash identifier: kEChtWbNTl5KNw6GD6XSG3kTM8PbFGGka5jWZ82cimQ= Subject key identifier: 4E:15:A5:8E:A6:C2:F0:FB:FB:84:3F:06:5B:26:5D:83:2F:27:AC:D2 Authority key identifier: BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F Certificate issuer: /CN=A9168B03/serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Certificate serial: 1C2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft Manifest number: 1C20 Signing time: Sun 02 Nov 2025 16:13:24 +0000 Manifest this update: Sun 02 Nov 2025 16:13:23 +0000 Manifest next update: Sun 09 Nov 2025 16:13:23 +0000 Files and hashes: 1: ulHQnhOT5woFhzID_3zE4f1-pw8.crl (hash: 2Fg5UXWzNo9rv2A8Sv2b0ijvt6O96xFgNKkMQWORc4M=) 2: D3EAE1500B5911EA8CC1114BC4F9AE02.roa (hash: iw8R7e0/cuiLe2UpbocEUV4DYRPW2H32JZcJjyrYF2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:13:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7214 (0x1c2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B03, serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Validity Not Before: Nov 2 16:13:23 2025 GMT Not After : Nov 9 16:13:23 2025 GMT Subject: CN=69078323-0b14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f3:0e:b2:90:27:8b:fd:01:8e:12:e6:23:85: e3:e9:ee:27:4c:f1:a5:df:6a:f2:6c:82:89:14:7e: 42:52:95:a9:19:46:ed:92:c6:46:8f:2d:cb:b6:7e: 68:45:be:9f:dc:81:24:f3:7b:fd:fa:9a:7a:df:42: 30:17:ae:3a:b9:3a:27:61:8d:31:2d:71:21:11:47: e9:1b:e4:6e:60:6d:be:1b:8b:f5:33:b1:df:b7:80: 79:89:43:ed:56:ed:eb:c8:0b:ce:17:d9:04:a2:31: 57:52:8e:4c:7b:cf:de:f6:fc:0c:8a:0c:6d:a4:c6: 54:58:34:0c:07:e7:fc:ca:44:fe:21:47:79:32:5c: 50:9a:f7:d9:ff:69:7b:c4:0a:c9:b4:82:5c:3e:d9: a0:a3:1b:64:85:5a:7c:96:40:f7:bf:cf:4b:fb:cd: a7:ae:50:3c:72:5f:1d:ea:83:bb:f8:b1:3b:3d:f3: 10:cd:aa:a6:de:83:b5:ea:cb:5d:f9:28:8d:df:55: 2a:42:0a:7a:de:0f:1e:b2:cd:3c:f0:d9:30:fe:41: d1:52:fc:19:bb:a7:80:22:f8:17:da:9e:18:fe:56: a5:48:bc:74:d6:30:33:c2:07:2a:bd:11:42:f3:3d: c0:58:d9:24:78:39:42:98:dd:e9:e2:96:98:e7:4a: 17:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:15:A5:8E:A6:C2:F0:FB:FB:84:3F:06:5B:26:5D:83:2F:27:AC:D2 X509v3 Authority Key Identifier: keyid:BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:6d:57:54:48:67:58:68:44:b0:37:d2:0f:9e:17:00:05:94: d4:0e:fe:db:6b:65:4e:79:1d:32:e8:19:bb:27:7d:6e:9a:23: 04:75:97:df:3b:ca:6a:e4:db:f3:c5:84:c5:c5:e3:38:b4:00: ae:48:bd:26:b3:87:b5:47:d4:f7:ba:50:52:9b:be:ef:cf:f6: 35:42:df:48:8a:b0:4c:c1:7c:9b:90:57:05:5c:8e:be:b5:fd: bb:ab:53:f1:0a:e1:91:ce:19:eb:51:7d:33:d8:d0:5a:79:1e: 60:ce:8e:cf:7a:cf:23:2e:1b:2f:b3:92:46:63:cf:2c:8a:31: 1c:a1:37:bf:d7:b7:3f:be:d2:12:67:b7:af:9e:42:34:01:67: 21:47:44:77:1f:60:f2:06:85:58:87:6d:30:3d:22:a6:a1:01: 90:8c:5d:df:4f:47:9e:57:1b:14:1c:04:c2:8b:bd:87:9c:6a: ab:0a:c4:a6:d1:35:44:7c:12:1a:39:f9:f7:11:f8:8c:df:41: 3d:52:64:e2:d8:0a:71:a4:c1:b6:c7:4c:4c:77:f9:df:fa:aa: bf:b5:40:3b:9a:ba:6d:ab:f1:69:93:f5:ab:96:51:05:aa:d9: 13:58:e9:ac:3d:6f:73:c9:f8:1d:cc:6b:46:94:c4:99:2f:a7: 13:22:ce:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCMDMxMTAvBgNVBAUTKEJBNTFEMDlFMTM5M0U3MEEwNTg3MzIwM0ZGN0NDNEUx RkQ3RUE3MEYwHhcNMjUxMTAyMTYxMzIzWhcNMjUxMTA5MTYxMzIzWjAYMRYwFAYD VQQDEw02OTA3ODMyMy0wYjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApvMOspAni/0BjhLmI4Xj6e4nTPGl32rybIKJFH5CUpWpGUbtksZGjy3Ltn5o Rb6f3IEk83v9+pp630IwF646uTonYY0xLXEhEUfpG+RuYG2+G4v1M7Hft4B5iUPt Vu3ryAvOF9kEojFXUo5Me8/e9vwMigxtpMZUWDQMB+f8ykT+IUd5MlxQmvfZ/2l7 xArJtIJcPtmgoxtkhVp8lkD3v89L+82nrlA8cl8d6oO7+LE7PfMQzaqm3oO16std +SiN31UqQgp63g8ess088Nkw/kHRUvwZu6eAIvgX2p4Y/lalSLx01jAzwgcqvRFC 8z3AWNkkeDlCmN3p4paY50oXEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4VpY6m wvD7+4Q/BlsmXYMvJ6zSMB8GA1UdIwQYMBaAFLpR0J4Tk+cKBYcyA/98xOH9fqcP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEIwMy9EMTE4RTY3OEY5 OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3b0ZoeklEXzN6RTRmMS1w dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VsSFFuaE9UNXdvRmh6SURfM3pFNGYxLXB3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEIwMy9EMTE4RTY3OEY5OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3 b0ZoeklEXzN6RTRmMS1wdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWbVdUSGdYaESwN9IPnhcABZTUDv7ba2VOeR0y6Bm7J31umiMEdZff O8pq5NvzxYTFxeM4tACuSL0ms4e1R9T3ulBSm77vz/Y1Qt9IirBMwXybkFcFXI6+ tf27q1PxCuGRzhnrUX0z2NBaeR5gzo7Pes8jLhsvs5JGY88sijEcoTe/17c/vtIS Z7evnkI0AWchR0R3H2DyBoVYh20wPSKmoQGQjF3fT0eeVxsUHATCi72HnGqrCsSm 0TVEfBIaOfn3EfiM30E9UmTi2ApxpMG2x0xMd/nf+qq/tUA7mrptq/Fpk/WrllEF qtkTWOmsPW9zyfgdzGtGlMSZL6cTIs7k -----END CERTIFICATE-----Generated at Tue Nov 4 12:36:07 2025 by rpki-client