$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft File: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft (raw, json) Hash identifier: Yx7ooYfHUtnepautMJF5C/chejljfNYyDaMXjw2ir3Q= Subject key identifier: EE:A5:2F:CB:E7:CD:2D:03:07:A7:B4:AA:CD:A2:EB:FB:EA:BD:01:00 Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0CFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft Manifest number: 0CBC Signing time: Tue 04 Nov 2025 18:27:10 +0000 Manifest this update: Tue 04 Nov 2025 18:27:10 +0000 Manifest next update: Tue 11 Nov 2025 18:27:10 +0000 Files and hashes: 1: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl (hash: jBAs7tDPaUiFDPcJ/JqEmPy7ixyNLHwO0YykKxDegLQ=) 2: 0EF9BE4E276F11EEB328204AC4F9AE02.roa (hash: ySE2YBsbAXt0k1PEdiGam1s5GhhHLonIBlG28ashrzw=) 3: 451C283AFE4911ED9352E438C4F9AE02.roa (hash: 9xj2eLyG/tdesiN53tFy07gS2PXLIBFRo+Pfj6Aj7f4=) 4: D47B21C24FFE11EAA0E4ED42C4F9AE02.roa (hash: dJZrsN09jQhR1tV/MBGDtF9J2z2S5+/G8ySEaBQlIWI=) 5: 76BF7682061B11EAAD56521BC4F9AE02.roa (hash: 5k3lhIIOE5jK/yOHyIZ8i0wDdX2SrJVnqaK6Nl9SYpA=) 6: 430342A4C02B11EA85244830C4F9AE02.roa (hash: 0bKIGEsq8hLfPMAMaZjPiHvxpIZHU52fzssXfn7yiXU=) 7: E397AB78866F11EBA76EED3EC4F9AE02.roa (hash: DBPGuu5yRvDvP4FC/IjV2H3T+xTKFbXciVMjwanRb/4=) 8: E0848D606F7611EDB491621FC4F9AE02.roa (hash: /EuxmPPRYBaK5xLwAa5WDWDWOcYmzlBlj89Amjexk/E=) 9: CF257402276E11EEBE7B7B49C4F9AE02.roa (hash: DfS1XhJ0VY2l1Vl6FaTOWiiwrvVb4J6NRESIx8xEXkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:27:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3325 (0xcfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5, serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: Nov 4 18:27:10 2025 GMT Not After : Nov 11 18:27:10 2025 GMT Subject: CN=690a457e-b862 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ca:6b:8b:1e:ab:5d:df:1a:87:fa:ab:0d:4e: fc:79:ff:15:d8:02:3f:3f:9a:03:a4:f7:59:db:00: 71:1d:13:5a:92:7b:06:c7:95:12:5f:ad:8d:c7:21: f1:35:a9:97:ee:be:8a:fc:d2:2a:9c:c0:dc:cf:af: 14:5b:56:4d:1b:bb:68:76:fd:20:1b:d0:20:eb:5e: 9a:97:97:dd:a7:7d:5b:73:2c:3c:7c:bc:28:58:1e: 14:1e:bc:67:71:4e:01:52:fd:c2:0e:d4:d1:8e:cc: 7d:c2:52:63:b5:dc:dd:4b:7d:c2:99:bd:3b:e0:3c: 2e:8f:62:b2:13:7c:24:df:11:6f:27:ef:e9:19:91: 61:2e:a8:b8:a8:d8:fc:8a:5f:1e:71:7f:d9:76:9e: 35:48:82:36:79:20:20:a7:56:7e:b2:78:fb:70:ca: 04:6e:0b:a9:bc:ee:23:aa:83:98:87:5a:df:0c:b0: 3b:66:e2:f0:a7:da:a5:0d:19:2a:5d:8d:85:19:ac: 41:8d:8e:41:48:e2:e4:95:35:37:76:56:bf:54:29: be:d0:9c:3d:2b:e6:3c:d7:0c:6e:c6:9e:eb:7b:51: 2a:03:29:c7:0d:be:3f:8a:37:3e:46:54:ff:f5:a7: bb:ed:5c:3f:9f:9d:d5:9a:d7:5a:a4:34:49:cf:84: 22:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:A5:2F:CB:E7:CD:2D:03:07:A7:B4:AA:CD:A2:EB:FB:EA:BD:01:00 X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:39:e5:0f:70:33:9b:ac:2f:82:ee:46:c3:92:c9:65:7d:7f: d7:ab:85:bb:8e:5b:98:44:5b:44:f2:25:61:a4:76:3e:c7:3b: 09:71:88:1c:36:e5:ea:5a:45:59:27:a4:35:b3:4a:e4:01:79: ff:ae:61:b1:d7:40:1c:b4:b9:c8:ef:0d:3f:af:b9:44:28:c6: 6c:37:6d:72:26:0b:11:2a:8c:aa:5a:4c:40:ec:8c:83:be:d6: 0c:15:4f:37:1b:b8:f5:7d:91:95:95:ae:6c:7a:4d:a1:97:9e: 56:df:bf:e5:b2:9b:ed:4a:17:22:7e:4c:d5:3e:8d:ad:97:f6: 32:8f:c0:7f:d4:be:5b:e8:29:86:ef:85:6a:68:50:9b:71:15: 3d:79:87:d4:5a:e6:9e:57:b8:a1:ed:90:b9:df:40:15:47:53: 15:a1:50:88:e7:cf:c2:61:17:ee:d9:11:23:ef:7a:a9:8d:41: 3a:ea:62:28:e1:e0:21:78:da:6c:16:94:ff:b2:d7:ec:f3:28: 1a:e6:ec:da:60:ef:a6:83:f9:55:98:24:cb:71:51:dc:61:af: 44:2c:f3:e8:8c:6a:e3:d7:da:8d:e1:a8:39:8d:df:b9:03:92: e4:a3:c5:91:cf:94:48:78:a9:52:18:45:a2:08:70:40:6a:0a: 07:4b:6e:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjUxMTA0MTgyNzEwWhcNMjUxMTExMTgyNzEwWjAYMRYwFAYD VQQDEw02OTBhNDU3ZS1iODYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2cprix6rXd8ah/qrDU78ef8V2AI/P5oDpPdZ2wBxHRNaknsGx5USX62NxyHx NamX7r6K/NIqnMDcz68UW1ZNG7todv0gG9Ag616al5fdp31bcyw8fLwoWB4UHrxn cU4BUv3CDtTRjsx9wlJjtdzdS33Cmb074Dwuj2KyE3wk3xFvJ+/pGZFhLqi4qNj8 il8ecX/Zdp41SII2eSAgp1Z+snj7cMoEbgupvO4jqoOYh1rfDLA7ZuLwp9qlDRkq XY2FGaxBjY5BSOLklTU3dla/VCm+0Jw9K+Y81wxuxp7re1EqAynHDb4/ijc+RlT/ 9ae77Vw/n53VmtdapDRJz4QiVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO6lL8vn zS0DB6e0qs2i6/vqvQEAMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEVCNS9BRkVBMjlDMjA2MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1w SWJobVpPTUx4WHdnN1JxTVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBOeUPcDObrC+C7kbDksllfX/Xq4W7jluYRFtE8iVhpHY+xzsJcYgc NuXqWkVZJ6Q1s0rkAXn/rmGx10ActLnI7w0/r7lEKMZsN21yJgsRKoyqWkxA7IyD vtYMFU83G7j1fZGVla5sek2hl55W37/lspvtShcifkzVPo2tl/Yyj8B/1L5b6CmG 74VqaFCbcRU9eYfUWuaeV7ih7ZC530AVR1MVoVCI58/CYRfu2REj73qpjUE66mIo 4eAheNpsFpT/stfs8yga5uzaYO+mg/lVmCTLcVHcYa9ELPPojGrj19qN4ag5jd+5 A5Lko8WRz5RIeKlSGEWiCHBAagoHS24N -----END CERTIFICATE-----Generated at Wed Nov 5 10:25:23 2025 by rpki-client