$ rpki-client -vvf rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft File: MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft (raw, json) Hash identifier: rqWXBqulyomFFKWm5KtBl5zQ7cSTNPQ2xHDEPnASTKM= Subject key identifier: 71:02:2D:28:50:6F:BF:AD:BD:73:A0:2F:18:3C:35:CF:72:9D:01:F2 Authority key identifier: 32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 Certificate issuer: /CN=A9172B41/serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Certificate serial: 04C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft Manifest number: 04BA Signing time: Tue 04 Nov 2025 23:58:40 +0000 Manifest this update: Tue 04 Nov 2025 23:58:40 +0000 Manifest next update: Tue 11 Nov 2025 23:58:40 +0000 Files and hashes: 1: MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl (hash: bZX9Hh4SmEoYZ0CYKtel0VToqnO7MEVKURb9+PY+NG8=) 2: 5C7731E64B7111EC8E9FCB48C4F9AE02.roa (hash: VtnOs46KlpQVSJ9THDVnSS8EzLS3A9xUSm3n/4RNrWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:58:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1216 (0x4c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172B41, serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Validity Not Before: Nov 4 23:58:40 2025 GMT Not After : Nov 11 23:58:40 2025 GMT Subject: CN=690a9330-2ee8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:e8:3f:92:a7:1f:21:5b:c1:7d:b3:b8:51:e7: e4:81:1c:e1:22:24:25:77:5f:fd:30:92:ef:5f:53: cd:e6:f0:5b:6d:17:e1:c8:01:93:db:be:2c:2d:59: 1d:94:ee:ea:25:21:b9:4d:de:e0:b1:f5:a1:e6:99: c7:57:54:06:55:2f:8f:b3:ae:9c:32:11:aa:9b:be: 6e:07:eb:6b:cd:6c:88:54:44:23:f5:e6:7c:71:9d: 67:c7:95:d4:6a:ff:11:20:82:6d:59:fc:f4:54:73: 69:b5:7d:17:28:b9:e3:72:65:b0:a5:f2:11:63:18: a2:eb:84:f2:77:17:c7:b9:85:5b:bb:da:a6:3e:73: b9:1b:c1:bb:b9:58:54:f2:ba:0f:d3:f6:f1:d4:c9: ae:43:e1:bb:b4:23:62:95:71:d9:36:63:cb:b5:16: 9f:aa:10:e4:a1:68:13:bf:49:07:65:16:3d:22:7f: bb:ac:92:4b:84:7b:3e:50:b8:f5:56:ca:8a:f2:69: 14:f3:1d:2d:5c:01:af:8d:6d:fe:29:99:22:d3:f3: e3:65:ab:b0:c0:11:68:9d:98:9e:d7:b1:cb:33:54: 85:47:ae:86:36:92:5a:a3:77:85:d9:e0:02:6c:f2: 46:a7:57:58:82:cb:6c:8d:9d:76:ad:8a:95:37:9c: 76:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:02:2D:28:50:6F:BF:AD:BD:73:A0:2F:18:3C:35:CF:72:9D:01:F2 X509v3 Authority Key Identifier: keyid:32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:67:ef:c8:7e:8d:88:07:e3:46:42:95:a7:e2:09:b6:02:34: d1:f0:6b:56:8a:78:a1:a9:a5:10:8e:12:b8:45:b9:45:57:27: 58:36:ea:fa:b9:99:a7:3c:16:d4:64:d3:3d:7a:09:33:59:c9: d4:e2:10:3f:63:a4:d3:29:2c:25:ad:45:dc:58:33:8c:b1:3b: eb:23:5e:8c:fe:5f:33:21:74:7c:8d:2f:e9:94:00:f1:a0:61: 0d:92:c4:ed:fc:2d:5c:b1:76:57:37:c5:6f:de:e9:64:bd:13: 59:93:62:d6:0e:1d:8c:d3:59:c7:15:46:82:dd:79:81:16:b3: 4c:2b:c9:a2:95:09:29:8a:a2:5c:2d:0a:bf:ca:0a:d3:01:0f: 9a:5b:ff:32:a7:70:5b:80:22:42:74:a5:40:8b:70:b4:db:42: 0b:bd:00:b5:65:2d:fe:bc:e4:74:1a:b7:b8:aa:7d:9f:be:9b: 26:93:2e:45:33:fd:67:f1:70:23:0f:c7:d7:bd:78:3a:4d:07: 94:fa:92:ce:4a:3f:98:aa:17:17:6b:b2:ba:1b:7e:e9:ae:67: db:06:de:6d:1e:57:0e:11:ad:e0:6e:0d:9f:82:11:c2:b3:6e: 97:e5:f6:51:59:c2:6d:04:f5:b7:37:78:dd:0c:0e:d3:9d:e1: 24:94:7a:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJCNDExMTAvBgNVBAUTKDMyRTBGNzAwRTM4NzI0NTFBMUE4MzJDRDdEREU0MTc1 QkZCQTgzNjkwHhcNMjUxMTA0MjM1ODQwWhcNMjUxMTExMjM1ODQwWjAYMRYwFAYD VQQDEw02OTBhOTMzMC0yZWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Og/kqcfIVvBfbO4UefkgRzhIiQld1/9MJLvX1PN5vBbbRfhyAGT274sLVkd lO7qJSG5Td7gsfWh5pnHV1QGVS+Ps66cMhGqm75uB+trzWyIVEQj9eZ8cZ1nx5XU av8RIIJtWfz0VHNptX0XKLnjcmWwpfIRYxii64TydxfHuYVbu9qmPnO5G8G7uVhU 8roP0/bx1MmuQ+G7tCNilXHZNmPLtRafqhDkoWgTv0kHZRY9In+7rJJLhHs+ULj1 VsqK8mkU8x0tXAGvjW3+KZki0/PjZauwwBFonZie17HLM1SFR66GNpJao3eF2eAC bPJGp1dYgstsjZ12rYqVN5x2gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHECLShQ b7+tvXOgLxg8Nc9ynQHyMB8GA1UdIwQYMBaAFDLg9wDjhyRRoagyzX3eQXW/uoNp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkI0MS8xNkMwQTcxNjRC NkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpGR2hxRExOZmQ1QmRiLTZn MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL011RDNBT09ISkZHaHFETE5mZDVCZGItNmcyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkI0MS8xNkMwQTcxNjRCNkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpG R2hxRExOZmQ1QmRiLTZnMmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOZ+/Ifo2IB+NGQpWn4gm2AjTR8GtWinihqaUQjhK4RblFVydYNur6 uZmnPBbUZNM9egkzWcnU4hA/Y6TTKSwlrUXcWDOMsTvrI16M/l8zIXR8jS/plADx oGENksTt/C1csXZXN8Vv3ulkvRNZk2LWDh2M01nHFUaC3XmBFrNMK8milQkpiqJc LQq/ygrTAQ+aW/8yp3BbgCJCdKVAi3C020ILvQC1ZS3+vOR0Gre4qn2fvpsmky5F M/1n8XAjD8fXvXg6TQeU+pLOSj+YqhcXa7K6G37prmfbBt5tHlcOEa3gbg2fghHC s26X5fZRWcJtBPW3N3jdDA7TneEklHov -----END CERTIFICATE-----Generated at Wed Nov 5 18:21:12 2025 by rpki-client