$ rpki-client -vvf rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft File: A0ZyQIbx848yyqFygmhZGcfIu28.mft (raw, json) Hash identifier: vce47/9NVdtFkMHQUPjMhBj6zx+Nd+oNbXjOL2st//g= Subject key identifier: 4F:B8:34:E7:A0:19:A5:A2:4A:D3:9F:EC:F6:FF:32:B1:02:BA:29:4E Authority key identifier: 03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F Certificate issuer: /CN=A9173591/serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Certificate serial: 0C12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft Manifest number: 0C10 Signing time: Tue 04 Nov 2025 18:51:44 +0000 Manifest this update: Tue 04 Nov 2025 18:51:43 +0000 Manifest next update: Tue 11 Nov 2025 18:51:43 +0000 Files and hashes: 1: A0ZyQIbx848yyqFygmhZGcfIu28.crl (hash: 9ZueaUtQ0+bFluUg70owBYM2HNy50l9j+Gzt8MbKegs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:51:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3090 (0xc12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173591, serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Validity Not Before: Nov 4 18:51:43 2025 GMT Not After : Nov 11 18:51:43 2025 GMT Subject: CN=690a4b40-b3ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:33:c2:fa:bc:32:bc:0d:69:4b:82:ed:8b:1c: 56:68:43:4a:34:8e:75:1c:2b:7e:43:26:7e:9f:e5: a8:e6:60:e3:6a:bf:2c:5c:f7:33:e2:79:1a:16:92: 60:99:5f:9e:1a:c9:fd:7c:e3:a5:a4:7b:34:f6:ae: e9:5c:35:47:ef:04:4b:2b:a7:f5:29:ac:ad:51:e9: 35:e9:a9:3f:75:4f:66:7f:b9:37:4d:ca:47:85:0e: f9:d0:f9:2f:ac:d3:ff:ec:f1:a2:b6:fa:e8:0f:68: 03:81:cb:ba:51:dc:dc:6c:b3:e7:f7:ae:9d:aa:11: 8c:f3:26:97:b8:09:24:5e:ae:36:75:07:9d:0c:ed: cb:2a:51:a3:44:59:02:39:83:81:28:b8:0c:2c:f2: 80:d1:c8:3b:58:c5:79:ac:a7:89:9f:51:21:aa:63: f7:c5:84:ee:6b:d9:64:cb:9b:a4:81:09:3b:1f:23: ae:97:51:01:94:fb:95:91:fb:49:0b:40:25:87:07: 87:05:15:5b:7a:ea:62:c9:63:b2:f6:5f:a3:a4:1c: 35:43:2c:c2:f9:5e:1d:6a:dc:3a:f4:6f:e3:f8:ec: 67:d0:33:7f:98:a6:66:d5:73:c9:66:1d:00:6b:1f: d3:7c:2d:bf:df:4d:61:9d:43:50:ab:a4:0c:d6:4e: e0:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:B8:34:E7:A0:19:A5:A2:4A:D3:9F:EC:F6:FF:32:B1:02:BA:29:4E X509v3 Authority Key Identifier: keyid:03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:31:62:ad:f2:69:f8:93:01:40:b4:a5:b9:b2:bf:22:37:ab: c1:b2:f3:3d:bb:a0:83:d0:3e:57:46:a1:60:51:70:fc:36:a5: 95:c5:b1:c0:e7:14:65:d2:59:36:b0:ba:8e:d9:58:71:b0:ba: 94:d1:1f:02:ad:0d:6f:1b:a4:d7:a2:31:5f:c4:d5:da:b0:6d: 10:55:80:eb:5f:ca:99:64:19:7f:8c:4d:21:f9:9f:36:ca:32: 12:2c:47:e5:d5:02:5f:92:62:c2:a8:72:35:34:6e:ec:3f:0f: 90:e1:44:7c:05:96:2a:6b:94:46:be:02:e3:d2:82:59:00:34: cd:55:ab:13:90:0a:71:f7:ef:f8:9e:fd:46:f5:4d:1d:e8:e4: 3c:21:19:0e:dd:8b:c2:57:fc:a7:63:02:d6:ff:b1:e8:20:d5: ff:8f:87:69:bd:fd:18:20:d6:62:3d:cf:6c:36:68:b8:55:c5: af:20:ca:b4:70:6c:de:c9:6d:bf:62:92:a8:b4:58:a1:56:e8: 35:41:b0:2d:83:ce:08:79:7b:69:98:07:ab:f4:cf:1f:a7:a0: 2c:75:d1:d2:6d:6c:ed:58:90:43:f4:41:ef:1e:5b:43:28:78: 51:73:41:5a:16:c6:d7:5d:64:bd:63:83:b9:04:21:57:f4:16: 3e:07:25:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1OTExMTAvBgNVBAUTKDAzNDY3MjQwODZGMUYzOEYzMkNBQTE3MjgyNjg1OTE5 QzdDOEJCNkYwHhcNMjUxMTA0MTg1MTQzWhcNMjUxMTExMTg1MTQzWjAYMRYwFAYD VQQDEw02OTBhNGI0MC1iM2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7jPC+rwyvA1pS4LtixxWaENKNI51HCt+QyZ+n+Wo5mDjar8sXPcz4nkaFpJg mV+eGsn9fOOlpHs09q7pXDVH7wRLK6f1KaytUek16ak/dU9mf7k3TcpHhQ750Pkv rNP/7PGitvroD2gDgcu6UdzcbLPn966dqhGM8yaXuAkkXq42dQedDO3LKlGjRFkC OYOBKLgMLPKA0cg7WMV5rKeJn1EhqmP3xYTua9lky5ukgQk7HyOul1EBlPuVkftJ C0AlhweHBRVbeupiyWOy9l+jpBw1QyzC+V4datw69G/j+Oxn0DN/mKZm1XPJZh0A ax/TfC2/301hnUNQq6QM1k7g4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+4NOeg GaWiStOf7Pb/MrECuilOMB8GA1UdIwQYMBaAFANGckCG8fOPMsqhcoJoWRnHyLtv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU5MS8yNzY4RkJBNjFE NkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0OHl5cUZ5Z21oWkdjZkl1 MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwWnlRSWJ4ODQ4eXlxRnlnbWhaR2NmSXUyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU5MS8yNzY4RkJBNjFENkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0 OHl5cUZ5Z21oWkdjZkl1MjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfMWKt8mn4kwFAtKW5sr8iN6vBsvM9u6CD0D5XRqFgUXD8NqWVxbHA 5xRl0lk2sLqO2VhxsLqU0R8CrQ1vG6TXojFfxNXasG0QVYDrX8qZZBl/jE0h+Z82 yjISLEfl1QJfkmLCqHI1NG7sPw+Q4UR8BZYqa5RGvgLj0oJZADTNVasTkApx9+/4 nv1G9U0d6OQ8IRkO3YvCV/ynYwLW/7HoINX/j4dpvf0YINZiPc9sNmi4VcWvIMq0 cGzeyW2/YpKotFihVug1QbAtg84IeXtpmAer9M8fp6AsddHSbWztWJBD9EHvHltD KHhRc0FaFsbXXWS9Y4O5BCFX9BY+ByVn -----END CERTIFICATE-----Generated at Wed Nov 5 04:49:35 2025 by rpki-client