$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft File: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft (raw, json) Hash identifier: 0YSoEFgpJJfF+D2/j1iG8YRVospzYYEw8T0N2YWqQH4= Subject key identifier: 7C:CE:CF:44:47:1C:AF:66:09:BD:CA:83:C8:5C:46:4D:74:D7:59:0C Authority key identifier: AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 Certificate issuer: /CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Certificate serial: 04DF Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft Manifest number: 04D9 Signing time: Tue 04 Nov 2025 23:53:15 +0000 Manifest this update: Tue 04 Nov 2025 23:53:15 +0000 Manifest next update: Tue 11 Nov 2025 23:53:14 +0000 Files and hashes: 1: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl (hash: a2H++4fUkXH3DtENx4ivMAJlILoInqwMVLEWlg1uy7k=) 2: 887BE0D0405D11ECA642D813C4F9AE02.roa (hash: qxVcUGlCZn4SUG82SOAXq9RSMSYslC+bAGjT3ytadTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:53:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1247 (0x4df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Validity Not Before: Nov 4 23:53:15 2025 GMT Not After : Nov 11 23:53:14 2025 GMT Subject: CN=690a91eb-19cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:74:69:f6:b3:e5:89:b5:c8:be:c2:13:5b:94: 39:54:ee:2f:f1:43:a7:d9:30:76:f6:71:72:e6:d1: d8:a0:d7:42:0b:a5:2f:17:24:e6:c1:41:51:a9:61: ac:93:40:d4:18:04:1e:4e:9d:66:14:04:d8:de:b1: 66:55:f8:1c:90:f7:91:05:7b:0d:5b:2e:c5:5a:35: e6:29:c5:fb:12:8f:97:36:ad:a3:9e:d0:e3:3d:a3: 58:c1:99:50:64:96:4b:6a:5a:2f:af:96:56:d1:07: cf:a3:9d:99:ab:97:c5:83:cb:cf:bd:67:20:c9:f7: 35:39:91:25:34:e8:26:79:7e:f6:38:b0:82:79:a9: ee:53:36:db:7f:66:e5:c4:59:63:15:02:bf:49:44: e2:e5:0d:16:7f:18:36:93:28:48:da:74:25:32:a8: 4c:0b:f7:10:ef:2e:d0:03:7a:34:17:57:55:8e:5a: cd:6c:50:92:68:ea:0f:4b:81:20:1b:6e:10:59:ce: c0:f6:0b:a7:c1:c0:41:68:13:e1:c0:df:90:b0:06: e4:a1:0c:5f:8b:09:29:e2:db:20:5c:a9:70:81:db: eb:55:9b:32:b4:aa:ab:5c:a2:1a:e6:e0:ad:d0:12: 1f:14:9a:93:d5:3f:49:25:b4:6d:f3:4a:4c:fe:d8: 4c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:CE:CF:44:47:1C:AF:66:09:BD:CA:83:C8:5C:46:4D:74:D7:59:0C X509v3 Authority Key Identifier: keyid:AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:68:fe:e8:0e:b7:1a:ba:93:03:ee:7b:9a:f4:ec:db:f2:20: c6:1b:18:96:41:7d:b8:f2:4b:00:bd:45:85:c1:09:db:b9:10: 06:55:35:11:e8:7a:5e:f1:87:68:ac:26:34:93:66:2a:d2:c0: ea:27:0e:ef:c3:fb:ac:46:c9:42:cd:24:7d:7e:f1:10:01:99: b3:18:eb:24:1b:ee:96:f9:f4:8b:f8:ad:81:37:63:63:24:5b: ff:a9:26:e0:ff:4c:2e:79:bb:7b:16:21:00:68:ac:2f:4a:8b: cd:d1:a8:c5:af:a5:05:d5:39:8d:20:9a:cf:92:73:21:44:47: a7:1f:91:c6:bb:0f:56:03:21:f6:63:37:b1:b3:da:25:60:82: eb:cf:b0:f3:15:9d:af:a8:63:70:c2:0c:7b:6e:cf:b8:5e:2c: fc:af:b6:0b:dd:7d:52:25:90:4d:f3:bf:b4:c9:e0:99:b3:88: 17:29:33:61:cc:4a:be:73:f4:91:c2:08:a4:53:e6:4f:bb:58: a7:04:b6:fb:4c:75:fd:7a:2c:b2:c1:8d:70:b6:15:3c:53:02: 75:8c:7c:d1:d4:aa:32:c0:42:34:f3:b1:c5:c6:80:dc:38:ab: 6b:84:d2:77:91:c4:17:2f:79:2f:1d:47:b6:a6:e0:52:bc:46: d0:6e:6d:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKEFCQzZGQkE0Qjc4NDI4Mzg3OTE5MERDNzE3RTM0QjRD RDg4MkRBMDgwHhcNMjUxMTA0MjM1MzE1WhcNMjUxMTExMjM1MzE0WjAYMRYwFAYD VQQDEw02OTBhOTFlYi0xOWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5HRp9rPlibXIvsITW5Q5VO4v8UOn2TB29nFy5tHYoNdCC6UvFyTmwUFRqWGs k0DUGAQeTp1mFATY3rFmVfgckPeRBXsNWy7FWjXmKcX7Eo+XNq2jntDjPaNYwZlQ ZJZLalovr5ZW0QfPo52Zq5fFg8vPvWcgyfc1OZElNOgmeX72OLCCeanuUzbbf2bl xFljFQK/SUTi5Q0Wfxg2kyhI2nQlMqhMC/cQ7y7QA3o0F1dVjlrNbFCSaOoPS4Eg G24QWc7A9gunwcBBaBPhwN+QsAbkoQxfiwkp4tsgXKlwgdvrVZsytKqrXKIa5uCt 0BIfFJqT1T9JJbRt80pM/thMoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzOz0RH HK9mCb3Kg8hcRk1011kMMB8GA1UdIwQYMBaAFKvG+6S3hCg4eRkNxxfjS0zYgtoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy81RDc4OTlGNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtEaDVHUTNIRi1OTFROaUMy Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL3E4YjdwTGVFS0RoNUdRM0hGLU5MVE5pQzJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy81RDc4OTlGNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtE aDVHUTNIRi1OTFROaUMyZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCraP7oDrcaupMD7nua9Ozb8iDGGxiWQX248ksAvUWFwQnbuRAGVTUR 6Hpe8YdorCY0k2Yq0sDqJw7vw/usRslCzSR9fvEQAZmzGOskG+6W+fSL+K2BN2Nj JFv/qSbg/0wuebt7FiEAaKwvSovN0ajFr6UF1TmNIJrPknMhREenH5HGuw9WAyH2 Yzexs9olYILrz7DzFZ2vqGNwwgx7bs+4Xiz8r7YL3X1SJZBN87+0yeCZs4gXKTNh zEq+c/SRwgikU+ZPu1inBLb7THX9eiyywY1wthU8UwJ1jHzR1KoywEI087HFxoDc OKtrhNJ3kcQXL3kvHUe2puBSvEbQbm3A -----END CERTIFICATE-----Generated at Thu Nov 6 01:36:59 2025 by rpki-client