$ rpki-client -vvf rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft File: 0rolH4MRa7tToMiSMQ9P963v_es.mft (raw, json) Hash identifier: c/xkRTbGMXOgyBNhW55pejwi+x+puXcMeo6X8wrW68Q= Subject key identifier: AF:FF:49:5A:F7:6C:6C:F0:95:4C:18:FE:02:EA:90:71:0E:36:75:4D Authority key identifier: D2:BA:25:1F:83:11:6B:BB:53:A0:C8:92:31:0F:4F:F7:AD:EF:FD:EB Certificate issuer: /CN=A9175B42/serialNumber=D2BA251F83116BBB53A0C892310F4FF7ADEFFDEB Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft Manifest number: 5E Signing time: Mon 03 Nov 2025 07:04:45 +0000 Manifest this update: Mon 03 Nov 2025 07:04:45 +0000 Manifest next update: Mon 10 Nov 2025 07:04:45 +0000 Files and hashes: 1: 0rolH4MRa7tToMiSMQ9P963v_es.crl (hash: ZxzlbrcIW2pNNRoKxa0kQOLJ6jWG0l2H08hteEpKJUY=) 2: EABFF866266511F0A3060E66C4F9AE02.roa (hash: vMnU2L7BbF2F7HptBFQtmVOzrhuM46aGtKFKK+TOQcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.crl rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:04:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175B42, serialNumber=D2BA251F83116BBB53A0C892310F4FF7ADEFFDEB Validity Not Before: Nov 3 07:04:45 2025 GMT Not After : Nov 10 07:04:45 2025 GMT Subject: CN=6908540d-5fa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a1:c4:43:69:f3:96:84:84:32:d1:67:9a:15: 1f:78:4c:b8:86:05:da:4e:28:52:1c:6c:f5:b9:a2: 0f:a9:4b:95:af:91:e8:53:da:30:7a:65:e7:b5:76: 03:14:64:a0:08:ee:18:dd:a1:1e:ad:46:a8:21:34: 76:dd:38:05:10:08:fd:54:bc:f4:00:85:1c:3e:79: 37:87:a9:ec:09:07:70:1e:e1:8f:ac:4c:7a:9f:ca: 6d:73:bb:cb:17:52:4d:cb:ca:58:63:ad:bd:47:10: a0:da:2b:e2:e0:46:9f:6a:de:d6:18:18:71:7b:43: 49:07:88:bb:7e:15:01:7a:33:0c:ef:c3:e9:be:06: 21:ac:08:68:49:3d:8d:df:19:2f:de:7e:e8:8d:1f: 15:0c:a6:9d:e2:cc:1b:f6:be:30:21:5f:d2:1f:cf: a9:df:28:0e:64:cb:ca:0d:d9:20:4b:e4:12:74:6b: f3:8b:73:ac:15:a7:56:cc:15:2f:a5:c4:19:56:9d: f6:d8:dc:a1:84:02:e9:f8:92:ff:e2:5f:ba:0b:9a: 84:b8:7a:c6:c3:d2:9e:9c:51:c9:84:ca:4f:62:35: ac:88:fb:86:36:6d:18:02:34:2c:9b:67:8a:46:25: 4a:48:0f:c7:dd:b9:eb:99:16:c8:fd:8a:b3:05:56: a9:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:FF:49:5A:F7:6C:6C:F0:95:4C:18:FE:02:EA:90:71:0E:36:75:4D X509v3 Authority Key Identifier: keyid:D2:BA:25:1F:83:11:6B:BB:53:A0:C8:92:31:0F:4F:F7:AD:EF:FD:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:3f:04:c6:38:d7:03:11:75:66:f3:0b:79:f7:aa:55:37:b4: 20:73:87:38:10:40:9c:07:ae:ea:18:8c:59:4e:b7:0e:2a:df: 68:77:c1:31:2a:eb:68:30:b4:db:39:92:4d:9f:d4:be:14:96: 18:1e:3b:44:95:18:fa:11:2f:8d:6a:6a:5d:e1:91:4f:de:91: 9f:35:00:59:2d:78:10:f0:51:c2:d9:3a:d3:d0:d0:be:54:ae: 39:54:61:9f:33:4b:d2:4b:e6:26:6c:f8:b8:0d:c9:76:21:9c: ff:ce:9c:42:4e:4a:33:e2:d6:91:a5:06:96:2d:08:47:60:58: fe:21:32:fa:9a:5e:a3:34:50:5a:04:bb:f3:7e:f7:62:61:f2: 11:01:94:e0:40:b9:a4:4c:88:bc:7b:c6:a1:18:fe:a5:77:cb: f1:5e:94:79:c9:a1:24:0b:bc:72:d4:ae:26:7c:4d:f1:8d:23: 39:55:2b:ff:8f:9f:7f:0b:d3:35:36:0d:87:75:95:30:b3:4b: c9:f8:45:f9:00:99:53:e5:7b:16:8d:0d:06:23:21:55:d0:f5: 63:76:be:34:99:49:db:03:b8:b0:b3:82:7d:cc:7b:00:2c:c6: 95:56:d7:95:4d:9c:e3:11:d5:91:71:d6:49:59:8d:5b:35:91: e8:c3:32:cf -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NUI0MjExMC8GA1UEBRMoRDJCQTI1MUY4MzExNkJCQjUzQTBDODkyMzEwRjRGRjdB REVGRkRFQjAeFw0yNTExMDMwNzA0NDVaFw0yNTExMTAwNzA0NDVaMBgxFjAUBgNV BAMTDTY5MDg1NDBkLTVmYTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkocRDafOWhIQy0WeaFR94TLiGBdpOKFIcbPW5og+pS5WvkehT2jB6Zee1dgMU ZKAI7hjdoR6tRqghNHbdOAUQCP1UvPQAhRw+eTeHqewJB3Ae4Y+sTHqfym1zu8sX Uk3Lylhjrb1HEKDaK+LgRp9q3tYYGHF7Q0kHiLt+FQF6Mwzvw+m+BiGsCGhJPY3f GS/efuiNHxUMpp3izBv2vjAhX9Ifz6nfKA5ky8oN2SBL5BJ0a/OLc6wVp1bMFS+l xBlWnfbY3KGEAun4kv/iX7oLmoS4esbD0p6cUcmEyk9iNayI+4Y2bRgCNCybZ4pG JUpID8fdueuZFsj9irMFVqnnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUr/9JWvds bPCVTBj+AuqQcQ42dU0wHwYDVR0jBBgwFoAU0rolH4MRa7tToMiSMQ9P963v/esw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1QjQyLzQ4RkVCMUMwMjY2 NTExRjA4MDE1QUI2MkM0RjlBRTAyLzByb2xINE1SYTd0VG9NaVNNUTlQOTYzdl9l cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMHJvbEg0TVJhN3RUb01pU01ROVA5NjN2X2VzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 QjQyLzQ4RkVCMUMwMjY2NTExRjA4MDE1QUI2MkM0RjlBRTAyLzByb2xINE1SYTd0 VG9NaVNNUTlQOTYzdl9lcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK8/BMY41wMRdWbzC3n3qlU3tCBzhzgQQJwHruoYjFlOtw4q32h3wTEq 62gwtNs5kk2f1L4UlhgeO0SVGPoRL41qal3hkU/ekZ81AFkteBDwUcLZOtPQ0L5U rjlUYZ8zS9JL5iZs+LgNyXYhnP/OnEJOSjPi1pGlBpYtCEdgWP4hMvqaXqM0UFoE u/N+92Jh8hEBlOBAuaRMiLx7xqEY/qV3y/FelHnJoSQLvHLUriZ8TfGNIzlVK/+P n38L0zU2DYd1lTCzS8n4RfkAmVPlexaNDQYjIVXQ9WN2vjSZSdsDuLCzgn3MewAs xpVW15VNnOMR1ZFx1klZjVs1kejDMs8= -----END CERTIFICATE-----Generated at Tue Nov 4 16:06:21 2025 by rpki-client