$ rpki-client -vvf rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft File: xVGHsAsaczdfhFaIX2oQfuHZNc8.mft (raw, json) Hash identifier: 46l+i8peX3IGkinxMo7BZORdKbKwFK98t/jF7n7zrv0= Subject key identifier: 22:41:FD:3A:EC:90:B9:90:A2:5B:31:F0:B5:B2:78:B1:CC:7A:7E:3B Authority key identifier: C5:51:87:B0:0B:1A:73:37:5F:84:56:88:5F:6A:10:7E:E1:D9:35:CF Certificate issuer: /CN=A9173B29/serialNumber=C55187B00B1A73375F8456885F6A107EE1D935CF Certificate serial: 013B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft Manifest number: 0133 Signing time: Mon 03 Nov 2025 04:35:25 +0000 Manifest this update: Mon 03 Nov 2025 04:35:25 +0000 Manifest next update: Mon 10 Nov 2025 04:35:25 +0000 Files and hashes: 1: xVGHsAsaczdfhFaIX2oQfuHZNc8.crl (hash: TVziVP8TbxkFBJbftJMedkDb2bEb0cw4q37gByPjvO8=) 2: C9FDEC12E82411EE81065223C4F9AE02.roa (hash: AhOHyTR8Y1BKmfRUj0AuSJ2KJPys3xbmw5f4K4GCzjI=) 3: EF1E7F70E82411EE9005BA2DC4F9AE02.roa (hash: EKYVn1LnE/qYTW245x3NVrE53P336TlJMyIXtYLhWG4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.crl rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:35:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 315 (0x13b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173B29, serialNumber=C55187B00B1A73375F8456885F6A107EE1D935CF Validity Not Before: Nov 3 04:35:25 2025 GMT Not After : Nov 10 04:35:25 2025 GMT Subject: CN=6908310d-7c0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ae:bd:7e:54:1d:02:ca:2d:53:62:04:e9:76: fd:3f:08:1e:eb:5e:eb:80:3e:a8:e6:f6:aa:06:89: 22:31:da:ce:37:4f:1f:d5:06:ef:2d:24:29:0f:1f: 5f:d4:9d:f7:8e:14:6e:5e:7c:e7:ae:c0:04:dd:83: 52:b4:de:63:49:3b:22:5b:b5:02:09:c4:fd:fa:28: 87:39:51:32:25:0f:02:df:ea:ec:d8:5f:c6:31:76: 70:6c:5a:fc:dd:a0:a3:36:c3:da:5d:d2:57:c4:11: 71:43:c1:a1:a4:34:cf:a1:5a:9e:87:9a:9f:5a:b8: a3:d9:9a:50:0c:1e:16:64:51:18:34:ae:79:9c:8a: 48:45:c5:2a:cb:5e:45:20:a8:92:25:f4:57:40:f6: be:ae:f9:6f:ba:cf:96:3f:90:83:26:ea:21:15:8f: 7a:46:eb:da:35:70:da:d7:05:96:94:9b:42:f5:5d: 7e:8c:34:29:df:e6:11:00:64:d7:7b:57:41:35:db: 1d:df:28:54:2f:0e:9f:46:b7:ee:d7:3a:4a:1f:80: d3:08:19:03:fb:1a:e7:a8:23:f7:64:40:ba:46:22: f1:d6:68:ce:7f:3a:11:f2:12:02:67:31:7b:88:78: 46:d6:d5:0d:7b:45:a6:53:8f:62:75:53:d7:ab:fe: 76:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:41:FD:3A:EC:90:B9:90:A2:5B:31:F0:B5:B2:78:B1:CC:7A:7E:3B X509v3 Authority Key Identifier: keyid:C5:51:87:B0:0B:1A:73:37:5F:84:56:88:5F:6A:10:7E:E1:D9:35:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:7e:75:cd:fc:74:e5:d6:92:7c:6f:48:f7:60:1b:11:f3:c0: b5:4d:b0:86:49:b4:bf:84:bb:8d:f2:fd:4c:95:e9:89:25:8e: 5e:9f:18:16:60:72:b5:09:12:45:2d:4c:1f:31:51:19:c8:2c: d1:d5:b8:0b:65:14:59:38:64:0a:63:fe:13:67:ce:9c:e3:0a: c1:63:f6:01:9d:21:92:b5:ef:5f:1c:a6:62:9b:dc:97:7c:e3: e9:44:62:5e:d4:66:53:e8:3a:2d:21:38:52:b5:14:e7:1e:a9: 87:6c:81:f4:ff:d6:01:2c:18:34:ef:a9:34:85:ea:6c:9b:f6: eb:82:25:58:7b:8c:30:51:e5:d2:8a:f3:b7:24:57:d0:b4:3f: df:ed:bc:ec:3c:96:6a:af:c4:26:cf:42:0f:3d:e5:ab:51:48: d2:e5:51:c5:0a:03:81:c3:c8:30:7a:57:0c:e5:1f:66:ab:14: 5d:d7:eb:74:62:36:b5:0e:e0:07:33:b4:7f:89:b8:25:0e:6c: 04:4b:88:be:c7:4c:54:7a:a7:95:e9:f8:3c:6b:33:ff:e3:f4: e8:ba:e8:34:c6:3d:75:bc:bf:fd:05:b1:d8:bd:0f:af:21:e8: 4c:f7:f1:f2:e3:84:6e:5b:70:f4:3c:19:c2:a8:99:10:5b:0d: d7:4d:ea:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCMjkxMTAvBgNVBAUTKEM1NTE4N0IwMEIxQTczMzc1Rjg0NTY4ODVGNkExMDdF RTFEOTM1Q0YwHhcNMjUxMTAzMDQzNTI1WhcNMjUxMTEwMDQzNTI1WjAYMRYwFAYD VQQDEw02OTA4MzEwZC03YzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyq69flQdAsotU2IE6Xb9Pwge617rgD6o5vaqBokiMdrON08f1QbvLSQpDx9f 1J33jhRuXnznrsAE3YNStN5jSTsiW7UCCcT9+iiHOVEyJQ8C3+rs2F/GMXZwbFr8 3aCjNsPaXdJXxBFxQ8GhpDTPoVqeh5qfWrij2ZpQDB4WZFEYNK55nIpIRcUqy15F IKiSJfRXQPa+rvlvus+WP5CDJuohFY96RuvaNXDa1wWWlJtC9V1+jDQp3+YRAGTX e1dBNdsd3yhULw6fRrfu1zpKH4DTCBkD+xrnqCP3ZEC6RiLx1mjOfzoR8hICZzF7 iHhG1tUNe0WmU49idVPXq/52mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJB/Trs kLmQolsx8LWyeLHMen47MB8GA1UdIwQYMBaAFMVRh7ALGnM3X4RWiF9qEH7h2TXP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0IyOS82MTdFOTQ0OEU4 MjQxMUVFQUZCN0RBN0RDNEY5QUUwMi94VkdIc0FzYWN6ZGZoRmFJWDJvUWZ1SFpO YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hWR0hzQXNhY3pkZmhGYUlYMm9RZnVIWk5jOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0IyOS82MTdFOTQ0OEU4MjQxMUVFQUZCN0RBN0RDNEY5QUUwMi94VkdIc0FzYWN6 ZGZoRmFJWDJvUWZ1SFpOYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2fnXN/HTl1pJ8b0j3YBsR88C1TbCGSbS/hLuN8v1MlemJJY5enxgW YHK1CRJFLUwfMVEZyCzR1bgLZRRZOGQKY/4TZ86c4wrBY/YBnSGSte9fHKZim9yX fOPpRGJe1GZT6DotIThStRTnHqmHbIH0/9YBLBg076k0hepsm/brgiVYe4wwUeXS ivO3JFfQtD/f7bzsPJZqr8Qmz0IPPeWrUUjS5VHFCgOBw8gwelcM5R9mqxRd1+t0 Yja1DuAHM7R/ibglDmwES4i+x0xUeqeV6fg8azP/4/Touug0xj11vL/9BbHYvQ+v IehM9/Hy44RuW3D0PBnCqJkQWw3XTeqh -----END CERTIFICATE-----Generated at Tue Nov 4 22:20:48 2025 by rpki-client