$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft File: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft (raw, json) Hash identifier: 2mKcmlVQysFeZrofl/5tn+WEmEZE99Kz49WOvvkISQw= Subject key identifier: 5B:EB:67:69:36:07:D9:DB:A2:36:73:3D:75:40:4A:C6:B9:5F:FD:D9 Authority key identifier: 33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 Certificate issuer: /CN=A9171A59/serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Certificate serial: 0501 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft Manifest number: 04FC Signing time: Tue 04 Nov 2025 23:45:52 +0000 Manifest this update: Tue 04 Nov 2025 23:45:51 +0000 Manifest next update: Tue 11 Nov 2025 23:45:51 +0000 Files and hashes: 1: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl (hash: 3mZf9Et1QojjvC1epx1fxHd6Zgr0jT+m6Jp1ysfiMIA=) 2: ABD9CB4630C711ECA2491515C4F9AE02.roa (hash: CoT7676o1FhYn/hTok256b21HFRTMynmtKsMLIXyZyA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:45:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1281 (0x501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A59, serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Validity Not Before: Nov 4 23:45:51 2025 GMT Not After : Nov 11 23:45:51 2025 GMT Subject: CN=690a9030-1b90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d0:81:66:64:bd:e1:49:cf:4c:7d:82:77:af: 28:dc:99:4c:c8:b7:18:77:5e:2d:b5:0e:c1:4d:6c: 0e:7f:6e:d9:fb:8c:47:81:aa:4d:6f:cf:d8:82:f1: 3e:c3:f4:5c:91:7d:5f:4e:21:73:5a:48:09:85:c5: a1:1c:bd:7f:0e:78:e9:3e:66:50:cb:b3:7d:3b:2d: 3c:5c:20:50:54:60:c6:7a:c0:11:a5:ea:10:1d:5c: 5b:7a:61:31:9e:8c:f6:1e:d0:b4:af:7c:00:6c:c0: fe:e7:00:fa:94:ad:01:9c:c8:70:f4:01:ec:ff:df: 59:70:16:9b:ac:85:fd:d1:04:21:92:3a:a3:a8:99: 04:de:ef:d0:9b:86:c8:0f:33:13:84:55:98:f9:1d: 55:1a:35:5b:dc:1b:a8:a8:d4:91:a7:57:ce:7d:32: ad:b9:15:0e:9d:73:b2:8f:39:70:4c:79:6a:10:1b: 42:c7:b6:7c:95:42:47:4a:5c:20:3d:95:db:d9:e6: cb:b1:ea:d6:a2:16:59:cc:07:0c:c1:4f:64:9b:a0: 19:d8:5e:c5:07:44:a5:cb:b9:66:14:7e:9d:66:8a: 73:15:cc:cb:90:92:d2:ac:76:79:59:44:0c:b1:26: b6:6a:82:1b:39:7c:81:ff:fe:42:3a:16:5b:4e:2f: cd:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:EB:67:69:36:07:D9:DB:A2:36:73:3D:75:40:4A:C6:B9:5F:FD:D9 X509v3 Authority Key Identifier: keyid:33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:e7:bb:10:a1:4f:b2:fd:e1:d7:06:05:5d:84:1a:13:bc:a0: 2a:db:91:fa:aa:79:88:15:1d:0d:86:cd:d6:f1:bc:70:7e:e5: e5:53:b1:8a:3e:4c:ff:24:6e:d2:22:d7:28:34:2a:d3:83:91: 46:ec:e1:71:1c:99:e4:52:4b:be:56:f5:35:e1:f5:a0:f2:6a: 61:3b:91:59:44:d6:1c:70:8d:32:f4:05:eb:4d:8e:0b:cf:e4: 75:5c:ce:94:f7:7e:43:f7:4a:e0:30:1b:a8:8a:b4:8d:8c:a7: 2e:bc:4e:ac:1b:5a:0a:01:9c:46:ee:ec:13:8e:32:bb:59:40: a8:b6:a0:ef:f1:59:b5:d5:0e:18:dc:db:ea:77:e3:63:ad:71: da:00:b1:1d:ac:12:83:62:53:b8:27:0b:d1:b3:9e:b4:4f:5f: 17:34:95:54:3f:03:14:69:77:e1:4f:19:27:e9:cf:ae:68:f5: 3e:5e:fa:a6:2c:52:e6:7d:3c:33:ac:d4:34:32:5b:14:f8:7b: 44:0d:f5:1f:11:40:45:f0:64:de:7a:99:15:0f:9c:41:8c:ea: 25:48:13:0e:16:ab:04:d9:34:71:89:0d:12:de:fa:80:a8:33: e2:dc:d2:48:83:8f:f0:c0:b3:72:65:4d:e5:3f:96:9b:83:25: f0:9e:c3:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBNTkxMTAvBgNVBAUTKDMzM0VDNTAzMDE0RDA2NzRBRjE2NzQxOTk0MTBGOUIw OTFCOEZCOTQwHhcNMjUxMTA0MjM0NTUxWhcNMjUxMTExMjM0NTUxWjAYMRYwFAYD VQQDEw02OTBhOTAzMC0xYjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2NCBZmS94UnPTH2Cd68o3JlMyLcYd14ttQ7BTWwOf27Z+4xHgapNb8/YgvE+ w/RckX1fTiFzWkgJhcWhHL1/DnjpPmZQy7N9Oy08XCBQVGDGesARpeoQHVxbemEx noz2HtC0r3wAbMD+5wD6lK0BnMhw9AHs/99ZcBabrIX90QQhkjqjqJkE3u/Qm4bI DzMThFWY+R1VGjVb3BuoqNSRp1fOfTKtuRUOnXOyjzlwTHlqEBtCx7Z8lUJHSlwg PZXb2ebLserWohZZzAcMwU9km6AZ2F7FB0Sly7lmFH6dZopzFczLkJLSrHZ5WUQM sSa2aoIbOXyB//5COhZbTi/NKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFvrZ2k2 B9nbojZzPXVASsa5X/3ZMB8GA1UdIwQYMBaAFDM+xQMBTQZ0rxZ0GZQQ+bCRuPuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUE1OS84QUI5MzNFQTMw QzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJuU3ZGblFabEJENXNKRzQt NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL016N0ZBd0ZOQm5TdkZuUVpsQkQ1c0pHNC01US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUE1OS84QUI5MzNFQTMwQzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJu U3ZGblFabEJENXNKRzQtNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA657sQoU+y/eHXBgVdhBoTvKAq25H6qnmIFR0Nhs3W8bxwfuXlU7GK Pkz/JG7SItcoNCrTg5FG7OFxHJnkUku+VvU14fWg8mphO5FZRNYccI0y9AXrTY4L z+R1XM6U935D90rgMBuoirSNjKcuvE6sG1oKAZxG7uwTjjK7WUCotqDv8Vm11Q4Y 3Nvqd+NjrXHaALEdrBKDYlO4JwvRs560T18XNJVUPwMUaXfhTxkn6c+uaPU+Xvqm LFLmfTwzrNQ0MlsU+HtEDfUfEUBF8GTeepkVD5xBjOolSBMOFqsE2TRxiQ0S3vqA qDPi3NJIg4/wwLNyZU3lP5abgyXwnsNZ -----END CERTIFICATE-----Generated at Wed Nov 5 15:05:37 2025 by rpki-client