$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft File: G395gdniwsMPbyw0hxophthfiQ4.mft (raw, json) Hash identifier: BeCPXJltXtoU0hrloOrbG1cKiBhidUN968vSMhmuGz4= Subject key identifier: 09:35:AF:7E:B2:6B:D7:9C:66:9D:B2:1C:8C:42:C6:06:1E:4A:AC:3E Authority key identifier: 1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E Certificate issuer: /CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Certificate serial: 054F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft Manifest number: 054A Signing time: Tue 04 Nov 2025 23:30:31 +0000 Manifest this update: Tue 04 Nov 2025 23:30:30 +0000 Manifest next update: Tue 11 Nov 2025 23:30:30 +0000 Files and hashes: 1: G395gdniwsMPbyw0hxophthfiQ4.crl (hash: wv1U5yBm5kOxhhqdLh/ngy88Nw7q8hYgHZD5mGG+ci4=) 2: 5D7779A6108A11EC9E1F3D49C4F9AE02.roa (hash: PG236be1E8/bdu91IiVOrP0tedgETPtMVawr3zFO1mw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:30:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1359 (0x54f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AE9, serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Validity Not Before: Nov 4 23:30:30 2025 GMT Not After : Nov 11 23:30:30 2025 GMT Subject: CN=690a8c96-cf1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:69:e0:8c:5e:b2:df:f8:a4:1f:e5:1f:0f:2c: 45:fb:7b:90:23:04:2c:ae:dd:7b:96:1f:73:66:ac: 4e:f8:a8:b5:ac:2b:54:9f:a7:7a:cd:de:39:ea:a1: 16:2c:db:dd:12:1c:65:5d:07:59:25:3b:d6:b5:9d: aa:a6:bb:31:2a:d9:f1:81:c5:45:39:4c:f4:cb:96: 7c:4a:07:f1:78:66:de:ff:7b:e3:ac:01:6b:f4:c2: 74:13:d5:de:be:b4:23:29:9f:42:41:b9:cf:10:5b: 00:a5:51:a2:65:8c:bc:37:bd:03:aa:ea:b2:5e:20: 1c:51:43:0e:db:98:82:e7:d4:c6:3a:0e:1a:be:6f: 25:9f:bf:5b:fe:0a:0a:5e:ea:40:29:96:99:d9:bc: 5d:70:f1:6f:6f:ca:66:15:a5:bd:f5:25:0d:b6:a2: 59:1b:cf:66:a7:73:59:53:76:ca:b6:05:a1:9b:a0: f2:9c:67:cb:e8:ae:2e:46:e2:fd:aa:e7:e3:b8:58: 3f:73:fd:43:c6:97:46:5d:84:82:cb:de:cd:e2:cd: d8:cd:5e:22:a5:67:06:fa:19:73:05:3d:46:46:a7: ec:84:ef:f1:23:9d:02:f8:7e:ff:5a:77:81:db:f4: 26:14:a2:ca:bd:a5:3b:61:67:80:4a:6a:d6:9c:fa: c6:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:35:AF:7E:B2:6B:D7:9C:66:9D:B2:1C:8C:42:C6:06:1E:4A:AC:3E X509v3 Authority Key Identifier: keyid:1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:09:05:26:df:99:f3:85:c4:60:48:c3:af:86:71:da:89:25: 1c:7a:1a:57:10:c4:d6:27:e0:62:61:76:dc:58:34:01:4e:c6: 57:a2:8e:c7:a5:c4:5d:da:83:2f:8f:4c:f0:71:67:a2:b7:a7: 38:45:6b:ff:a4:b3:8d:a7:44:d1:77:b3:06:ce:e4:f7:77:74: 9d:88:50:e1:09:d8:de:9c:d0:d4:a3:58:be:ff:17:aa:c6:f2: 27:a2:e3:e7:58:e6:a3:7a:78:e9:da:4a:9d:63:27:ab:fb:ab: 29:10:23:fb:75:da:a2:6d:08:c9:ae:ce:db:29:00:a3:05:78: f2:8b:c4:bf:89:5c:8a:59:0b:1f:a1:c9:6a:ff:18:84:fd:8e: 19:ed:18:ca:7f:e7:27:97:cd:59:05:0d:23:4c:92:3c:1c:8f: 81:c8:20:24:92:bc:74:a3:56:c5:26:09:55:c2:fb:30:50:f1: 51:40:fa:49:5a:a2:9e:cd:7b:d4:5c:89:18:88:23:fb:ed:18: 51:0d:d4:6c:5b:77:c4:11:82:f0:0b:03:c5:72:c7:a4:b2:7a: 46:0f:94:25:05:f4:47:72:17:8f:e6:87:a7:c9:c7:d2:05:ce: ac:da:c8:34:71:6e:80:23:cf:d0:93:02:4a:39:af:a7:70:45: 90:e3:a2:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRTkxMTAvBgNVBAUTKDFCN0Y3OTgxRDlFMkMyQzMwRjZGMkMzNDg3MUEyOTg2 RDg1Rjg5MEUwHhcNMjUxMTA0MjMzMDMwWhcNMjUxMTExMjMzMDMwWjAYMRYwFAYD VQQDEw02OTBhOGM5Ni1jZjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6GngjF6y3/ikH+UfDyxF+3uQIwQsrt17lh9zZqxO+Ki1rCtUn6d6zd456qEW LNvdEhxlXQdZJTvWtZ2qprsxKtnxgcVFOUz0y5Z8SgfxeGbe/3vjrAFr9MJ0E9Xe vrQjKZ9CQbnPEFsApVGiZYy8N70DquqyXiAcUUMO25iC59TGOg4avm8ln79b/goK XupAKZaZ2bxdcPFvb8pmFaW99SUNtqJZG89mp3NZU3bKtgWhm6DynGfL6K4uRuL9 qufjuFg/c/1DxpdGXYSCy97N4s3YzV4ipWcG+hlzBT1GRqfshO/xI50C+H7/WneB 2/QmFKLKvaU7YWeASmrWnPrGcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAk1r36y a9ecZp2yHIxCxgYeSqw+MB8GA1UdIwQYMBaAFBt/eYHZ4sLDD28sNIcaKYbYX4kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFFOS8wOTEyMDM4MDEw ODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdzTVBieXcwaHhvcGh0aGZp UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0czOTVnZG5pd3NNUGJ5dzBoeG9waHRoZmlRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFFOS8wOTEyMDM4MDEwODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdz TVBieXcwaHhvcGh0aGZpUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASCQUm35nzhcRgSMOvhnHaiSUcehpXEMTWJ+BiYXbcWDQBTsZXoo7H pcRd2oMvj0zwcWeit6c4RWv/pLONp0TRd7MGzuT3d3SdiFDhCdjenNDUo1i+/xeq xvInouPnWOajenjp2kqdYyer+6spECP7ddqibQjJrs7bKQCjBXjyi8S/iVyKWQsf oclq/xiE/Y4Z7RjKf+cnl81ZBQ0jTJI8HI+ByCAkkrx0o1bFJglVwvswUPFRQPpJ WqKezXvUXIkYiCP77RhRDdRsW3fEEYLwCwPFcseksnpGD5QlBfRHcheP5oenycfS Bc6s2sg0cW6AI8/QkwJKOa+ncEWQ46Id -----END CERTIFICATE-----Generated at Wed Nov 5 13:51:01 2025 by rpki-client