$ rpki-client -vvf rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft File: xDfVjxI6auBXxgjiFrtr_WWER2o.mft (raw, json) Hash identifier: dq3T/5mNApWaDCXqqcYEQo07sV1HlRRib8niAl/KRgw= Subject key identifier: 22:1E:67:CA:3C:17:4F:FD:67:A2:92:B3:A9:DF:E5:A4:F5:AF:D4:F2 Authority key identifier: C4:37:D5:8F:12:3A:6A:E0:57:C6:08:E2:16:BB:6B:FD:65:84:47:6A Certificate issuer: /CN=A9169903/serialNumber=C437D58F123A6AE057C608E216BB6BFD6584476A Certificate serial: 0609 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft Manifest number: 0603 Signing time: Sun 02 Nov 2025 22:53:20 +0000 Manifest this update: Sun 02 Nov 2025 22:53:20 +0000 Manifest next update: Sun 09 Nov 2025 22:53:20 +0000 Files and hashes: 1: xDfVjxI6auBXxgjiFrtr_WWER2o.crl (hash: G2lufGIEUgAOWzqvGCei1mnpT0GSv5jBl840aivrjJ0=) 2: ED31D84EC81D11EBA4C0E321C4F9AE02.roa (hash: bXFPKdh1DOKKzF1VDrO1xVCyooUJXcE+RZoWJywL3IM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.crl rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1545 (0x609) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169903, serialNumber=C437D58F123A6AE057C608E216BB6BFD6584476A Validity Not Before: Nov 2 22:53:20 2025 GMT Not After : Nov 9 22:53:20 2025 GMT Subject: CN=6907e0e0-bd20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8d:54:70:da:bb:80:9a:6e:3e:cb:c8:12:ac: ad:f5:6e:09:ec:49:d2:2e:30:e1:76:0c:af:27:55: 55:d2:ad:fc:90:28:b7:19:b0:ed:22:35:02:3a:25: 15:c2:ba:3e:32:84:da:1a:a4:8c:f6:04:61:eb:6a: 3b:4b:11:4e:ba:00:66:77:5b:67:7f:66:f8:30:96: ed:86:20:dc:f1:13:72:60:f8:00:c7:07:54:d3:43: 1c:a8:2a:d8:65:2b:27:71:b9:74:ad:91:1c:c9:20: fa:6a:e6:1a:43:db:5a:40:52:86:91:ce:c5:15:53: 9b:3d:af:4e:03:f6:2f:cc:a3:d2:c4:67:3b:2d:69: bf:22:fa:e4:66:5a:e9:a0:6d:1c:25:a9:1d:38:72: 63:2d:93:8e:24:32:4b:e3:a6:1f:a8:58:9d:e4:86: 24:5e:d8:a6:59:9a:45:00:5e:b9:45:58:a3:84:7b: 68:83:5e:14:b9:63:ff:d2:16:a3:d0:af:c5:00:12: b8:95:cd:cb:eb:05:b4:5e:8c:89:cf:f7:68:fb:54: 32:95:16:61:3f:57:ed:96:7c:17:2b:0b:71:20:11: 8f:1e:1d:ae:f9:c4:bf:3c:bc:38:57:d2:fc:25:c5: bd:38:14:7a:95:bf:d9:dd:4b:c5:b5:27:e8:08:9b: 47:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:1E:67:CA:3C:17:4F:FD:67:A2:92:B3:A9:DF:E5:A4:F5:AF:D4:F2 X509v3 Authority Key Identifier: keyid:C4:37:D5:8F:12:3A:6A:E0:57:C6:08:E2:16:BB:6B:FD:65:84:47:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:14:3e:0e:a7:d6:ec:d2:39:33:8c:51:28:a4:ce:90:4e:16: e7:e8:b4:69:a7:47:3b:9d:30:b5:6e:9f:92:7e:61:bb:88:1e: 2b:ac:0d:56:00:fa:0a:cf:1e:16:be:d5:fb:9e:4a:ca:ee:bb: 78:48:e3:37:23:2a:0e:91:e9:85:9a:e0:5e:e1:30:04:f4:5c: a6:0a:85:6a:a2:e7:ac:ae:9b:33:3d:bc:d6:d5:a5:51:1c:9a: a4:29:94:2b:bb:5d:98:c6:db:66:3a:a1:cc:4d:27:94:a3:da: 30:c9:83:ea:fb:30:f1:fe:db:fd:4d:cf:a3:c0:5a:33:0e:1f: 3f:bb:6f:1a:04:cf:c1:52:df:7d:76:6f:da:67:64:f4:8f:29: e2:5e:e1:06:86:85:97:65:c0:7a:5c:9a:86:7b:f8:4d:0e:53: 47:aa:34:3a:a2:c1:76:99:96:55:67:26:3b:f3:57:5e:9d:38: 5c:8f:2e:cf:c2:af:9d:3e:8e:f9:01:3d:c4:48:f5:85:86:d6: 1b:ab:ad:b8:c5:d2:3b:77:8d:22:bd:f3:db:5b:de:96:07:f9: ee:49:1d:bb:12:0a:b0:ba:39:f4:1e:e4:31:a6:96:e8:ad:19: c9:d2:31:46:d6:ce:fd:b4:a0:91:63:fc:89:87:35:f1:40:31: fe:a7:0b:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk5MDMxMTAvBgNVBAUTKEM0MzdENThGMTIzQTZBRTA1N0M2MDhFMjE2QkI2QkZE NjU4NDQ3NkEwHhcNMjUxMTAyMjI1MzIwWhcNMjUxMTA5MjI1MzIwWjAYMRYwFAYD VQQDEw02OTA3ZTBlMC1iZDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw41UcNq7gJpuPsvIEqyt9W4J7EnSLjDhdgyvJ1VV0q38kCi3GbDtIjUCOiUV wro+MoTaGqSM9gRh62o7SxFOugBmd1tnf2b4MJbthiDc8RNyYPgAxwdU00McqCrY ZSsncbl0rZEcySD6auYaQ9taQFKGkc7FFVObPa9OA/YvzKPSxGc7LWm/IvrkZlrp oG0cJakdOHJjLZOOJDJL46YfqFid5IYkXtimWZpFAF65RVijhHtog14UuWP/0haj 0K/FABK4lc3L6wW0XoyJz/do+1QylRZhP1ftlnwXKwtxIBGPHh2u+cS/PLw4V9L8 JcW9OBR6lb/Z3UvFtSfoCJtHuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCIeZ8o8 F0/9Z6KSs6nf5aT1r9TyMB8GA1UdIwQYMBaAFMQ31Y8SOmrgV8YI4ha7a/1lhEdq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTkwMy9FRTZCNzQxOEM4 MTgxMUVCODNDRUVCNEFDNEY5QUUwMi94RGZWanhJNmF1Qlh4Z2ppRnJ0cl9XV0VS Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hEZlZqeEk2YXVCWHhnamlGcnRyX1dXRVIyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTkwMy9FRTZCNzQxOEM4MTgxMUVCODNDRUVCNEFDNEY5QUUwMi94RGZWanhJNmF1 Qlh4Z2ppRnJ0cl9XV0VSMm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4FD4Op9bs0jkzjFEopM6QThbn6LRpp0c7nTC1bp+SfmG7iB4rrA1W APoKzx4WvtX7nkrK7rt4SOM3IyoOkemFmuBe4TAE9FymCoVqouesrpszPbzW1aVR HJqkKZQru12YxttmOqHMTSeUo9owyYPq+zDx/tv9Tc+jwFozDh8/u28aBM/BUt99 dm/aZ2T0jyniXuEGhoWXZcB6XJqGe/hNDlNHqjQ6osF2mZZVZyY781denThcjy7P wq+dPo75AT3ESPWFhtYbq624xdI7d40ivfPbW96WB/nuSR27Egqwujn0HuQxppbo rRnJ0jFG1s79tKCRY/yJhzXxQDH+pwuA -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:05 2025 by rpki-client