$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: 0ey+kqdE49kx9vzEQhCMkn3F5GvDV1aQ/js1Kx/lX1c= Subject key identifier: 09:CA:25:54:FF:42:16:7C:1A:51:4B:17:0D:6D:2C:37:4E:4B:D5:5D Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 01F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: 01E9 Signing time: Mon 03 Nov 2025 02:40:23 +0000 Manifest this update: Mon 03 Nov 2025 02:40:23 +0000 Manifest next update: Mon 10 Nov 2025 02:40:23 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: snl41F1POIkeqKePXIYt1PxSSxeRW9gnARkDkXbtaLo=) 2: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: q+zKhGyTkhD9t3RA2sk/l2Z7I4u1fYSlG/t4K9NE2MA=) 3: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: 2muYFP9e+zpeHJKxcDs7l8Ftqcg1X7boruyyCY1igvQ=) 4: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: fA1bLFIYT/o1YfhIaSWGb0FrTvcVU+WRusOC3nOK6Gk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:40:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: Nov 3 02:40:23 2025 GMT Not After : Nov 10 02:40:23 2025 GMT Subject: CN=69081617-e536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:57:46:31:d9:d1:f1:85:ac:9b:47:b8:50:25: 54:a9:17:c8:8a:9b:9a:2b:72:06:6d:56:6e:47:55: 55:72:24:7b:d0:25:19:fb:c2:92:f8:2c:fe:ed:3d: a8:8c:4c:03:d6:a8:72:6a:2d:fb:98:b7:00:54:5a: 5d:3c:ec:49:60:bd:05:a0:0f:f3:d1:de:d8:32:84: e9:8d:35:19:3d:92:f1:14:37:24:b1:90:61:06:74: 09:17:b3:6c:9f:a0:6e:a5:62:86:34:ac:0b:fa:4e: da:75:69:62:e4:2c:bd:05:62:15:d5:8c:91:a9:9f: b9:78:de:a1:a1:ce:71:23:82:8b:7a:b0:68:a0:7a: 51:39:e4:cf:a3:a9:c5:cc:94:b9:2a:e9:31:f8:4e: ae:4a:86:3f:71:c2:17:c3:1c:21:9c:78:48:7f:5f: af:42:9b:0f:0b:f7:89:2d:6e:dc:85:0b:a5:da:71: 98:0c:14:e5:9c:6f:8e:78:e6:af:4a:b1:1b:a8:1f: 49:0e:03:82:f6:ac:c0:89:0c:4b:f7:74:27:87:61: 1b:df:70:51:55:20:f1:bc:46:06:6d:1e:30:75:43: 6f:1c:b2:6f:c7:25:65:b6:57:f5:9a:7f:f7:19:5e: 88:66:38:38:bc:5c:7f:2b:d5:cf:1d:1a:d4:dd:47: bd:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:CA:25:54:FF:42:16:7C:1A:51:4B:17:0D:6D:2C:37:4E:4B:D5:5D X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:e0:96:f6:07:e2:49:9b:1f:03:24:08:26:7b:b2:ff:f6:9e: 41:e6:1f:7c:52:02:66:cb:20:b1:97:a0:62:e8:52:6f:33:c2: 38:94:aa:f0:43:f7:5e:06:1b:ae:7f:28:76:34:49:98:0f:ba: 38:46:f0:2c:0b:b9:86:b7:19:5e:8e:ac:07:4e:63:8f:09:1f: b4:9f:4b:48:8d:dd:14:d8:52:03:dc:7a:16:68:c5:2a:54:f1: 90:9e:09:46:9f:51:1a:20:44:56:7a:6a:25:eb:cf:ae:72:ba: 93:11:d3:2d:ed:99:d8:95:4d:4d:27:f6:c6:aa:c3:3f:c8:22: 89:0b:cd:0c:b7:2d:02:59:33:51:41:18:c9:3e:d9:93:7b:56: 96:d5:89:a2:29:b8:28:10:d7:b3:9e:4d:39:00:7a:e8:ac:f6: 39:84:43:58:70:c0:a8:f1:a4:68:86:6d:5f:81:d8:07:5f:cc: 0e:d5:4f:64:d1:7a:5d:d4:25:11:93:ad:31:78:c9:83:a5:af: a0:ab:89:87:64:2e:8c:8b:37:df:c1:87:fa:bb:7a:1e:f8:2a: 34:4c:e1:5a:8e:c1:c2:c0:65:9d:49:4b:ba:74:af:a7:7a:70: b0:52:00:e2:c9:2f:78:01:a8:fa:70:a9:a6:88:4e:19:0c:23: 18:db:4c:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjUxMTAzMDI0MDIzWhcNMjUxMTEwMDI0MDIzWjAYMRYwFAYD VQQDEw02OTA4MTYxNy1lNTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7FdGMdnR8YWsm0e4UCVUqRfIipuaK3IGbVZuR1VVciR70CUZ+8KS+Cz+7T2o jEwD1qhyai37mLcAVFpdPOxJYL0FoA/z0d7YMoTpjTUZPZLxFDcksZBhBnQJF7Ns n6BupWKGNKwL+k7adWli5Cy9BWIV1YyRqZ+5eN6hoc5xI4KLerBooHpROeTPo6nF zJS5Kukx+E6uSoY/ccIXwxwhnHhIf1+vQpsPC/eJLW7chQul2nGYDBTlnG+OeOav SrEbqB9JDgOC9qzAiQxL93Qnh2Eb33BRVSDxvEYGbR4wdUNvHLJvxyVltlf1mn/3 GV6IZjg4vFx/K9XPHRrU3Ue9PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAnKJVT/ QhZ8GlFLFw1tLDdOS9VdMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC84Jb2B+JJmx8DJAgme7L/9p5B5h98UgJmyyCxl6Bi6FJvM8I4lKrw Q/deBhuufyh2NEmYD7o4RvAsC7mGtxlejqwHTmOPCR+0n0tIjd0U2FID3HoWaMUq VPGQnglGn1EaIERWemol68+ucrqTEdMt7ZnYlU1NJ/bGqsM/yCKJC80Mty0CWTNR QRjJPtmTe1aW1YmiKbgoENeznk05AHrorPY5hENYcMCo8aRohm1fgdgHX8wO1U9k 0Xpd1CURk60xeMmDpa+gq4mHZC6MizffwYf6u3oe+Co0TOFajsHCwGWdSUu6dK+n enCwUgDiyS94Aaj6cKmmiE4ZDCMY20yR -----END CERTIFICATE-----Generated at Tue Nov 4 16:03:41 2025 by rpki-client