$ rpki-client -vvf rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft File: Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft (raw, json) Hash identifier: trJWCjAsFeGoJGx3ZgRFtYvE6439AaVxJj/lvh8AjMg= Subject key identifier: 6E:E6:ED:39:76:75:36:84:04:E9:41:ED:88:2E:F8:0E:56:1F:6C:F8 Authority key identifier: 45:C9:B9:BD:47:D8:21:84:85:99:A6:7D:7F:22:95:6E:09:13:C7:F6 Certificate issuer: /CN=A9178580/serialNumber=45C9B9BD47D821848599A67D7F22956E0913C7F6 Certificate serial: 0686 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft Manifest number: 0680 Signing time: Tue 04 Nov 2025 22:32:57 +0000 Manifest this update: Tue 04 Nov 2025 22:32:57 +0000 Manifest next update: Tue 11 Nov 2025 22:32:57 +0000 Files and hashes: 1: Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.crl (hash: xpx8EMxOGOC+o22DRreSLWhoNRbdxCBHwxrAGC23Bmc=) 2: EA266BB0965911EB9A717E21C4F9AE02.roa (hash: unXzVSB7rlCBOdPMYdpaMnBlAZNAT9x8+AUdN+A92PI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.crl rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:32:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1670 (0x686) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178580, serialNumber=45C9B9BD47D821848599A67D7F22956E0913C7F6 Validity Not Before: Nov 4 22:32:57 2025 GMT Not After : Nov 11 22:32:57 2025 GMT Subject: CN=690a7f19-a942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:aa:4d:43:e9:8a:bb:04:d7:e5:66:34:20:0d: b0:57:56:a8:58:9d:81:0d:5f:73:63:1f:87:8a:9d: fd:d5:a1:8a:47:12:7f:bf:40:13:91:30:5d:81:63: f2:2e:7c:60:85:3d:25:ff:96:0e:84:3c:4a:06:ca: 12:07:d3:db:26:20:36:34:e9:36:cf:43:e9:83:05: 35:39:ee:9f:36:f6:38:4e:48:2f:32:b0:6e:8f:c5: 90:d3:99:fc:11:9b:fc:a6:17:8d:f4:c6:b3:d7:c7: da:dd:21:02:f1:14:22:15:50:87:b1:90:e5:44:f2: c7:cd:4e:c4:87:49:b5:00:62:ad:84:4a:94:b2:07: 0b:6f:8d:b9:7a:3f:77:a8:e5:8e:01:3c:37:be:0b: 62:27:b2:15:ea:55:7f:52:55:01:46:23:e6:76:28: b6:a4:86:71:eb:9d:a8:a8:d0:e6:c5:44:42:1c:7a: 29:23:4a:0a:85:4f:dc:58:22:78:c5:ed:46:86:44: 7f:d0:b6:8e:17:2f:02:4d:e9:c7:be:eb:27:f1:92: 12:25:cc:75:65:0d:f0:02:1c:7f:df:d8:b8:84:f5: 0b:08:84:9d:b0:b6:1b:c6:38:3d:c6:06:0c:87:5d: d3:f7:2f:36:b0:45:d9:74:18:66:95:4e:2c:4e:3f: 96:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:E6:ED:39:76:75:36:84:04:E9:41:ED:88:2E:F8:0E:56:1F:6C:F8 X509v3 Authority Key Identifier: keyid:45:C9:B9:BD:47:D8:21:84:85:99:A6:7D:7F:22:95:6E:09:13:C7:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:5d:a7:20:a0:f6:4d:4f:69:e4:c1:3e:45:bc:79:7d:2c:a4: f6:42:28:8c:3f:be:35:16:c8:e1:88:33:d0:13:45:8e:86:2e: ca:84:90:74:28:38:69:da:f4:10:07:ad:cd:4a:6a:84:6b:6b: f7:12:be:6e:63:1f:73:9b:57:3e:bb:31:88:8c:a6:a6:1d:3b: c6:00:56:49:af:3e:a4:25:c6:1f:c3:4e:bf:7c:bc:d9:f9:81: 33:a8:e2:96:3c:d4:7e:95:e7:b1:11:7c:03:4f:0b:a0:35:87: 23:19:5c:30:c6:6e:84:f8:43:94:e6:dc:55:ed:2f:8b:c6:4e: 15:d3:5e:48:97:f8:62:f1:c8:4c:b5:24:be:7d:d7:ff:a3:ed: 06:4f:c3:3d:17:60:fc:16:4d:4f:2d:fc:4c:13:98:96:0a:ed: a2:b1:75:36:59:66:f1:76:70:3c:66:db:d9:ce:d8:23:21:6c: d8:12:72:f3:63:21:06:99:16:5c:2b:0f:33:c1:b4:05:c2:e6: d7:5d:71:a4:f3:51:f1:11:53:59:b6:e5:42:fa:99:df:a3:7a: cf:73:9f:5e:34:80:c2:6d:1c:e7:3e:9a:30:df:2f:f9:a2:8a: ec:8a:55:c3:be:f7:9d:4f:5d:ab:64:35:bf:a8:fd:b2:cb:a2: 9e:7c:87:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg1ODAxMTAvBgNVBAUTKDQ1QzlCOUJENDdEODIxODQ4NTk5QTY3RDdGMjI5NTZF MDkxM0M3RjYwHhcNMjUxMTA0MjIzMjU3WhcNMjUxMTExMjIzMjU3WjAYMRYwFAYD VQQDEw02OTBhN2YxOS1hOTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9KpNQ+mKuwTX5WY0IA2wV1aoWJ2BDV9zYx+Hip391aGKRxJ/v0ATkTBdgWPy LnxghT0l/5YOhDxKBsoSB9PbJiA2NOk2z0PpgwU1Oe6fNvY4TkgvMrBuj8WQ05n8 EZv8pheN9Maz18fa3SEC8RQiFVCHsZDlRPLHzU7Eh0m1AGKthEqUsgcLb425ej93 qOWOATw3vgtiJ7IV6lV/UlUBRiPmdii2pIZx652oqNDmxURCHHopI0oKhU/cWCJ4 xe1GhkR/0LaOFy8CTenHvusn8ZISJcx1ZQ3wAhx/39i4hPULCISdsLYbxjg9xgYM h13T9y82sEXZdBhmlU4sTj+WawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG7m7Tl2 dTaEBOlB7Ygu+A5WH2z4MB8GA1UdIwQYMBaAFEXJub1H2CGEhZmmfX8ilW4JE8f2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODU4MC8zOUY5NjZGODk2 NTgxMUVCQURGNDY0MUZDNEY5QUUwMi9SY201dlVmWUlZU0ZtYVo5ZnlLVmJna1R4 X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JjbTV2VWZZSVlTRm1hWjlmeUtWYmdrVHhfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODU4MC8zOUY5NjZGODk2NTgxMUVCQURGNDY0MUZDNEY5QUUwMi9SY201dlVmWUlZ U0ZtYVo5ZnlLVmJna1R4X1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAXacgoPZNT2nkwT5FvHl9LKT2QiiMP741FsjhiDPQE0WOhi7KhJB0 KDhp2vQQB63NSmqEa2v3Er5uYx9zm1c+uzGIjKamHTvGAFZJrz6kJcYfw06/fLzZ +YEzqOKWPNR+leexEXwDTwugNYcjGVwwxm6E+EOU5txV7S+Lxk4V015Il/hi8chM tSS+fdf/o+0GT8M9F2D8Fk1PLfxME5iWCu2isXU2WWbxdnA8ZtvZztgjIWzYEnLz YyEGmRZcKw8zwbQFwubXXXGk81HxEVNZtuVC+pnfo3rPc59eNIDCbRznPpow3y/5 oorsilXDvvedT12rZDW/qP2yy6KefIdu -----END CERTIFICATE-----Generated at Wed Nov 5 15:16:56 2025 by rpki-client