$ rpki-client -vvf rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft File: cXGYzRpGea2dRS7h2wLQASpDdOw.mft (raw, json) Hash identifier: EgnFiouxxs1e5aA2EvCm49BbWZp6jbtHUL0dFf54Ays= Subject key identifier: D6:82:22:40:F0:48:91:3F:40:CE:5F:B6:1F:16:6A:F9:9F:0B:E3:4A Authority key identifier: 71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC Certificate issuer: /CN=A9169F49/serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft Manifest number: 7D Signing time: Wed 05 Nov 2025 06:55:15 +0000 Manifest this update: Wed 05 Nov 2025 06:55:15 +0000 Manifest next update: Wed 12 Nov 2025 06:55:15 +0000 Files and hashes: 1: cXGYzRpGea2dRS7h2wLQASpDdOw.crl (hash: ODoklqfm7MsrhB4/JZYf+F9u5O0ZrCq6rpvBGG0ixrU=) 2: 2B42D1D8F9B611EFB3AB154BC4F9AE02.roa (hash: qRFt1VDcs2OHFjFWZc9CCxRhXeBrmwOFxAL6+b0Q2Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169F49, serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Validity Not Before: Nov 5 06:55:15 2025 GMT Not After : Nov 12 06:55:15 2025 GMT Subject: CN=690af4d3-2c73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:cf:c6:aa:9c:38:b3:f4:41:15:47:c7:43:6c: 54:d6:39:1d:24:53:5a:92:7d:75:73:ef:79:91:1a: 2e:50:78:2e:fc:0b:00:9d:48:03:c6:1a:cf:a7:4b: f9:4e:e4:3a:43:0c:f2:aa:00:7d:f0:b7:bf:48:d5: d2:d3:cd:c6:fe:29:d5:4a:6c:25:d2:41:d9:71:37: f6:eb:38:9f:9a:03:c4:b8:e2:31:90:4b:97:cc:44: de:df:af:25:71:db:9d:f6:1a:66:cf:8f:da:11:26: 80:40:1b:9e:e0:bc:2f:9c:a3:90:c0:63:d2:e6:b7: ae:9a:fc:bb:ad:ec:61:ce:9e:c3:67:19:65:c3:8f: b4:28:1c:13:06:19:fa:11:c9:a0:97:32:ab:e8:32: 74:93:0f:02:10:c7:03:8c:21:89:2c:3f:3f:e2:16: 8e:ef:ad:6c:68:09:c1:50:ec:e4:72:55:d1:aa:29: 76:08:aa:97:d8:c4:ce:ff:05:dd:1f:a2:43:dc:43: 42:8f:f1:4f:23:05:d5:db:ab:1b:77:8c:b5:e9:2e: da:0e:87:13:c4:57:61:80:c1:6f:d9:83:3e:8d:96: d3:b1:d8:11:19:4b:2b:32:2a:e8:63:ff:b8:b3:1e: db:0f:c5:b6:b1:b6:ef:2d:db:03:f6:61:45:94:a5: b3:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:82:22:40:F0:48:91:3F:40:CE:5F:B6:1F:16:6A:F9:9F:0B:E3:4A X509v3 Authority Key Identifier: keyid:71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:b1:4c:eb:bb:f4:b0:e9:72:be:e2:fd:f0:27:b6:eb:62:5d: d3:4a:ca:93:9d:c6:0c:f2:7e:86:cf:57:25:3c:ae:a7:62:35: f8:0b:22:ee:1f:ba:cb:1b:98:ea:d8:63:a1:36:79:a1:90:f5: f1:a4:14:08:08:b2:4a:71:e4:fd:24:eb:35:52:2f:12:20:9b: 38:bc:d2:93:86:91:38:c2:3b:12:a6:a3:b9:0e:86:8d:1d:8a: 9e:b3:1b:5b:b5:a3:de:93:32:4a:04:66:fc:ce:89:19:1f:66: e7:a4:73:99:4f:de:a3:bb:ec:60:25:65:87:84:e2:43:4c:4c: 30:6d:39:9b:82:12:a8:e2:19:39:85:0a:f6:c7:42:11:42:d2: 74:89:a2:56:34:0e:0a:26:59:f1:c5:13:25:98:37:af:8f:6a: 20:b4:a2:6f:c3:17:e1:3f:bb:cf:40:1b:f1:c4:e7:26:96:0d: f4:b1:c3:93:25:0a:f7:28:bf:81:64:99:a0:f2:f2:a2:20:8d: 03:89:12:cb:6d:75:e3:5a:5f:11:cf:ac:ae:6c:61:a9:e3:37: ac:e5:e0:30:7c:80:55:9a:14:8e:26:d0:6b:fd:0e:fc:ed:b4: 6c:6e:cd:51:3d:7a:52:31:17:4f:f7:91:b3:e5:92:3b:73:b6: 91:76:5d:4a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OUY0OTExMC8GA1UEBRMoNzE3MTk4Q0QxQTQ2NzlBRDlENDUyRUUxREIwMkQwMDEy QTQzNzRFQzAeFw0yNTExMDUwNjU1MTVaFw0yNTExMTIwNjU1MTVaMBgxFjAUBgNV BAMTDTY5MGFmNGQzLTJjNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQz8aqnDiz9EEVR8dDbFTWOR0kU1qSfXVz73mRGi5QeC78CwCdSAPGGs+nS/lO 5DpDDPKqAH3wt79I1dLTzcb+KdVKbCXSQdlxN/brOJ+aA8S44jGQS5fMRN7fryVx 2532GmbPj9oRJoBAG57gvC+co5DAY9Lmt66a/Lut7GHOnsNnGWXDj7QoHBMGGfoR yaCXMqvoMnSTDwIQxwOMIYksPz/iFo7vrWxoCcFQ7ORyVdGqKXYIqpfYxM7/Bd0f okPcQ0KP8U8jBdXbqxt3jLXpLtoOhxPEV2GAwW/Zgz6NltOx2BEZSysyKuhj/7iz HtsPxbaxtu8t2wP2YUWUpbO5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1oIiQPBI kT9Azl+2HxZq+Z8L40owHwYDVR0jBBgwFoAUcXGYzRpGea2dRS7h2wLQASpDdOww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5RjQ5L0IyQzVGQjlBRjlC NTExRUZBNUQ3M0M0N0M0RjlBRTAyL2NYR1l6UnBHZWEyZFJTN2gyd0xRQVNwRGRP dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY1hHWXpScEdlYTJkUlM3aDJ3TFFBU3BEZE93LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5 RjQ5L0IyQzVGQjlBRjlCNTExRUZBNUQ3M0M0N0M0RjlBRTAyL2NYR1l6UnBHZWEy ZFJTN2gyd0xRQVNwRGRPdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGWxTOu79LDpcr7i/fAntutiXdNKypOdxgzyfobPVyU8rqdiNfgLIu4f ussbmOrYY6E2eaGQ9fGkFAgIskpx5P0k6zVSLxIgmzi80pOGkTjCOxKmo7kOho0d ip6zG1u1o96TMkoEZvzOiRkfZuekc5lP3qO77GAlZYeE4kNMTDBtOZuCEqjiGTmF CvbHQhFC0nSJolY0DgomWfHFEyWYN6+PaiC0om/DF+E/u89AG/HE5yaWDfSxw5Ml Cvcov4FkmaDy8qIgjQOJEsttdeNaXxHPrK5sYanjN6zl4DB8gFWaFI4m0Gv9Dvzt tGxuzVE9elIxF0/3kbPlkjtztpF2XUo= -----END CERTIFICATE-----Generated at Thu Nov 6 07:34:23 2025 by rpki-client