$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft File: b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft (raw, json) Hash identifier: jrvUQd3sxtZiMH8DBRMkDQOWD4EysPOVAeXohd+O7no= Subject key identifier: 15:45:28:CD:D1:0C:D1:52:15:58:31:00:CC:22:99:94:FD:99:DD:87 Authority key identifier: 6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 Certificate issuer: /CN=A9173CCA/serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft Manifest number: E0 Signing time: Wed 05 Nov 2025 05:41:23 +0000 Manifest this update: Wed 05 Nov 2025 05:41:22 +0000 Manifest next update: Wed 12 Nov 2025 05:41:22 +0000 Files and hashes: 1: b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl (hash: xixw083GDAvhdzOzQ1vmYPLSHFZEVq2Vqr5SnuPZSP4=) 2: 3866993C6A6711EF929E6773C4F9AE02.roa (hash: blrLiUR2o+nqfH3V7oxiwVZEehZHbPAqakKDEvu+zf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:41:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CCA, serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Validity Not Before: Nov 5 05:41:22 2025 GMT Not After : Nov 12 05:41:22 2025 GMT Subject: CN=690ae382-120a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ad:c9:61:ac:ca:41:e8:56:e4:61:fb:cf:d6: e3:1e:aa:68:41:37:c4:9d:d4:d1:6e:16:9a:a7:e8: 2b:de:f7:d3:b1:22:ee:27:36:fc:35:f6:15:a8:b7: e2:6a:0a:31:ca:79:c0:21:30:5c:d2:76:fe:80:fb: d4:8d:74:77:ac:3a:50:63:5c:aa:de:8b:a1:3a:2f: 18:15:34:8f:31:c8:c3:2c:25:21:d2:77:19:f9:12: e3:cc:27:cc:0f:50:79:34:23:92:26:6a:08:ef:a3: 9d:b7:37:a9:42:f1:89:cd:a1:e7:92:b1:ff:22:ad: ed:27:a5:c4:d1:c2:06:7f:19:03:a3:3b:75:11:08: 6a:b8:b4:13:ef:33:e4:c0:a6:16:60:ea:c9:2b:cc: cd:d0:a4:cb:1a:00:b0:a3:f6:62:b1:9f:58:9e:6e: 2b:ae:56:bc:fc:c7:11:96:1e:57:83:8a:3e:b0:60: ef:78:ab:62:ea:be:0a:72:a7:e0:09:35:ad:76:6c: 15:3d:03:f1:ce:a7:8d:a1:64:9c:e0:88:40:95:a8: 68:a6:6b:93:a2:c2:fd:5a:ab:9b:33:49:55:11:51: e4:50:f6:bf:08:2d:0c:cc:1b:ea:83:e8:bb:4d:48: fc:0a:bc:f9:b8:87:04:02:85:f0:b0:d8:7b:f7:ae: eb:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:45:28:CD:D1:0C:D1:52:15:58:31:00:CC:22:99:94:FD:99:DD:87 X509v3 Authority Key Identifier: keyid:6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:55:00:19:52:86:99:4a:79:08:59:19:81:2a:df:97:2a:21: 6e:73:1f:ae:5a:2a:a7:3d:fd:85:1d:8f:72:a4:13:60:6d:8c: cf:33:bc:15:14:72:b7:ad:1a:02:6b:5b:88:2c:1f:27:72:90: fa:f1:03:fd:86:72:fa:91:ae:22:9b:ab:1d:9f:71:81:ef:73: 53:29:f2:1d:d5:c9:6b:3f:88:18:e8:2a:22:b5:bd:d7:20:28: 53:58:d3:c9:ca:39:72:64:7e:27:d6:a9:b6:c9:b5:8f:dc:7d: a0:66:7c:ed:20:f6:0e:fb:9d:e9:67:27:69:d6:58:f1:36:0f: d8:d6:04:28:e6:45:8d:b5:b2:ce:b6:db:46:a6:8c:7d:dd:47: 42:35:6d:91:51:f8:9c:c8:53:ea:2b:f1:9d:0f:96:1a:ab:b9: 4c:05:1c:1c:f2:ef:96:93:4c:1c:a5:16:9d:ab:c9:f3:13:1e: b6:1b:97:9d:b6:b2:61:f4:59:4a:c2:c3:2d:d9:97:5e:12:78: 46:c7:44:1e:ef:26:3d:2a:ca:28:2d:01:8d:f2:28:b5:d7:ab: 30:e8:2d:cf:10:65:20:2c:e5:09:ff:a8:da:ee:14:28:85:87: bf:4f:4e:26:66:d7:79:7a:5d:a9:ed:1d:bc:72:bf:fc:bc:35: 16:70:36:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDQ0ExMTAvBgNVBAUTKDZGRDVCNzQzMUU3MTUwRUQ2NTBGN0YyN0EzRENGOEM1 Q0VBQzc3NjQwHhcNMjUxMTA1MDU0MTIyWhcNMjUxMTEyMDU0MTIyWjAYMRYwFAYD VQQDEw02OTBhZTM4Mi0xMjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4a3JYazKQehW5GH7z9bjHqpoQTfEndTRbhaap+gr3vfTsSLuJzb8NfYVqLfi agoxynnAITBc0nb+gPvUjXR3rDpQY1yq3ouhOi8YFTSPMcjDLCUh0ncZ+RLjzCfM D1B5NCOSJmoI76OdtzepQvGJzaHnkrH/Iq3tJ6XE0cIGfxkDozt1EQhquLQT7zPk wKYWYOrJK8zN0KTLGgCwo/ZisZ9Ynm4rrla8/McRlh5Xg4o+sGDveKti6r4Kcqfg CTWtdmwVPQPxzqeNoWSc4IhAlahopmuTosL9WqubM0lVEVHkUPa/CC0MzBvqg+i7 TUj8Crz5uIcEAoXwsNh7967r+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVFKM3R DNFSFVgxAMwimZT9md2HMB8GA1UdIwQYMBaAFG/Vt0MecVDtZQ9/J6Pc+MXOrHdk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NDQS8xQ0E5QjgyNDY1 NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVPMWxEMzhubzl6NHhjNnNk MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5VzNReDV4VU8xbEQzOG5vOXo0eGM2c2QyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NDQS8xQ0E5QjgyNDY1NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVP MWxEMzhubzl6NHhjNnNkMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACVQAZUoaZSnkIWRmBKt+XKiFucx+uWiqnPf2FHY9ypBNgbYzPM7wV FHK3rRoCa1uILB8ncpD68QP9hnL6ka4im6sdn3GB73NTKfId1clrP4gY6Coitb3X IChTWNPJyjlyZH4n1qm2ybWP3H2gZnztIPYO+53pZydp1ljxNg/Y1gQo5kWNtbLO tttGpox93UdCNW2RUficyFPqK/GdD5Yaq7lMBRwc8u+Wk0wcpRadq8nzEx62G5ed trJh9FlKwsMt2ZdeEnhGx0Qe7yY9KsooLQGN8ii116sw6C3PEGUgLOUJ/6ja7hQo hYe/T04mZtd5el2p7R28cr/8vDUWcDZH -----END CERTIFICATE-----Generated at Wed Nov 5 12:03:38 2025 by rpki-client