$ rpki-client -vvf rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft File: cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft (raw, json) Hash identifier: G7/eTT/U54B7mzTG1BzVZWB5b+yQEaUrzKTlL9XS5ho= Subject key identifier: CE:91:91:99:60:7B:71:F3:B1:94:78:71:29:FC:45:51:58:E1:8F:B8 Authority key identifier: 72:03:8A:88:A6:1D:25:C4:F4:06:50:25:FC:26:B8:CE:3B:8A:7A:02 Certificate issuer: /CN=A9169411/serialNumber=72038A88A61D25C4F4065025FC26B8CE3B8A7A02 Certificate serial: 02C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cgOKiKYdJcT0BlAl_Ca4zjuKegI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft Manifest number: 02B7 Signing time: Wed 05 Nov 2025 01:36:13 +0000 Manifest this update: Wed 05 Nov 2025 01:36:12 +0000 Manifest next update: Wed 12 Nov 2025 01:36:12 +0000 Files and hashes: 1: cgOKiKYdJcT0BlAl_Ca4zjuKegI.crl (hash: 7BHbAj/bC4kw/cWC/WkRJVmwaNeyxSAlbuXvpDIETkA=) 2: DD976958C2A611EFBB1B9264C4F9AE02.roa (hash: hbJJRaC5M5LUQTbnkq8W618J1VcGyMM13Drb0UsxWGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.crl rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cgOKiKYdJcT0BlAl_Ca4zjuKegI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:36:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 705 (0x2c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169411, serialNumber=72038A88A61D25C4F4065025FC26B8CE3B8A7A02 Validity Not Before: Nov 5 01:36:12 2025 GMT Not After : Nov 12 01:36:12 2025 GMT Subject: CN=690aaa0c-d776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:54:9e:78:5e:ef:45:e0:8a:76:89:14:4a:bd: 73:00:f3:ff:f6:5d:a5:24:86:dc:22:a6:0f:a7:04: c8:61:d3:73:78:18:03:69:df:9d:06:6c:b2:e5:fa: fa:42:df:ec:1c:b3:10:f6:a3:6c:c1:fb:7f:e1:20: a6:5b:84:78:38:a3:78:47:77:5c:b2:d8:db:9c:bb: f7:fa:ad:d1:48:d1:a5:8a:5a:1c:be:53:93:1a:86: d6:d0:7a:11:e0:f0:61:1a:1e:00:25:23:0e:9b:f1: ec:c7:ab:95:52:10:3e:20:31:92:77:47:fc:6a:f2: e5:27:41:b1:d7:e8:57:36:fa:32:f6:e6:19:31:40: 5f:81:c7:24:2e:cb:f0:18:57:4f:3a:77:91:27:02: ea:6c:b3:30:33:18:c7:d3:4e:c8:49:cd:e2:e0:01: 01:21:42:02:a0:3d:0d:fa:f9:79:f8:b5:6d:39:df: 49:9b:1a:fb:44:ba:df:90:c0:58:79:65:1a:95:1b: 60:18:ab:8a:36:c9:22:93:9c:2e:6b:ee:6a:bb:f2: ae:8e:fc:61:28:ff:8e:78:d6:88:f8:e9:a0:59:67: 71:c6:f9:85:ad:51:21:bf:5e:ce:28:d2:dd:0d:b3: 74:f2:53:33:3e:c9:6d:98:c1:32:ce:d2:fb:b3:23: 30:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:91:91:99:60:7B:71:F3:B1:94:78:71:29:FC:45:51:58:E1:8F:B8 X509v3 Authority Key Identifier: keyid:72:03:8A:88:A6:1D:25:C4:F4:06:50:25:FC:26:B8:CE:3B:8A:7A:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cgOKiKYdJcT0BlAl_Ca4zjuKegI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:08:12:59:00:09:73:8d:b8:c5:4a:b1:0d:a6:21:59:cd:45: 39:9a:c7:ae:87:37:30:06:4d:d2:71:d4:7e:79:7a:d1:53:2f: 7c:9f:45:5f:84:01:b2:62:eb:e1:a1:d1:3e:ba:e8:54:b1:6a: 17:0e:9d:d0:de:83:eb:7a:3a:6e:bb:31:56:33:79:58:36:d4: 93:7a:29:e1:c9:2e:c4:62:36:70:12:20:10:70:12:26:96:5d: 83:26:b4:fa:3d:12:16:a9:79:b7:6d:73:95:f7:4f:20:c4:f0: 7d:bd:b7:d0:df:4b:fc:e0:cb:45:a4:1c:e5:13:1b:f4:4b:86: c5:8e:10:78:aa:41:f0:c7:93:b3:4b:03:df:e0:75:e2:58:8f: 31:5d:84:e0:40:d9:6d:af:14:0f:62:a2:cb:a8:88:aa:42:d9: f2:f6:fc:fe:78:dd:d8:8e:d0:73:69:de:ff:38:9b:8f:bd:59: be:cc:22:22:dc:c7:81:ca:cc:10:ab:cc:69:8e:ce:6a:20:50: eb:b4:d5:98:a2:06:91:e5:eb:c6:8c:8c:03:91:25:41:b8:78: 4f:10:db:9a:ca:da:b2:fc:0f:14:d6:8f:21:bb:b8:fa:07:a6: 75:24:d1:2d:f8:5b:f0:bc:9d:41:37:92:4c:39:a2:00:0f:81: bf:94:6c:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk0MTExMTAvBgNVBAUTKDcyMDM4QTg4QTYxRDI1QzRGNDA2NTAyNUZDMjZCOENF M0I4QTdBMDIwHhcNMjUxMTA1MDEzNjEyWhcNMjUxMTEyMDEzNjEyWjAYMRYwFAYD VQQDEw02OTBhYWEwYy1kNzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVSeeF7vReCKdokUSr1zAPP/9l2lJIbcIqYPpwTIYdNzeBgDad+dBmyy5fr6 Qt/sHLMQ9qNswft/4SCmW4R4OKN4R3dcstjbnLv3+q3RSNGlilocvlOTGobW0HoR 4PBhGh4AJSMOm/Hsx6uVUhA+IDGSd0f8avLlJ0Gx1+hXNvoy9uYZMUBfgcckLsvw GFdPOneRJwLqbLMwMxjH007ISc3i4AEBIUICoD0N+vl5+LVtOd9Jmxr7RLrfkMBY eWUalRtgGKuKNskik5wua+5qu/KujvxhKP+OeNaI+OmgWWdxxvmFrVEhv17OKNLd DbN08lMzPsltmMEyztL7syMwmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM6RkZlg e3HzsZR4cSn8RVFY4Y+4MB8GA1UdIwQYMBaAFHIDioimHSXE9AZQJfwmuM47inoC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTQxMS85MTg1M0EwNjE4 QkYxMUVEQUREQzkyM0FDNEY5QUUwMi9jZ09LaUtZZEpjVDBCbEFsX0NhNHpqdUtl Z0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NnT0tpS1lkSmNUMEJsQWxfQ2E0emp1S2VnSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTQxMS85MTg1M0EwNjE4QkYxMUVEQUREQzkyM0FDNEY5QUUwMi9jZ09LaUtZZEpj VDBCbEFsX0NhNHpqdUtlZ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbCBJZAAlzjbjFSrENpiFZzUU5mseuhzcwBk3ScdR+eXrRUy98n0Vf hAGyYuvhodE+uuhUsWoXDp3Q3oPrejpuuzFWM3lYNtSTeinhyS7EYjZwEiAQcBIm ll2DJrT6PRIWqXm3bXOV908gxPB9vbfQ30v84MtFpBzlExv0S4bFjhB4qkHwx5Oz SwPf4HXiWI8xXYTgQNltrxQPYqLLqIiqQtny9vz+eN3YjtBzad7/OJuPvVm+zCIi 3MeByswQq8xpjs5qIFDrtNWYogaR5evGjIwDkSVBuHhPENuaytqy/A8U1o8hu7j6 B6Z1JNEt+FvwvJ1BN5JMOaIAD4G/lGyX -----END CERTIFICATE-----Generated at Wed Nov 5 06:30:56 2025 by rpki-client