$ rpki-client -vvf rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.mft File: lFOfgqNeshWO18Ni1boVQz5-0uE.mft (raw, json) Hash identifier: BuvDlkAg2+u1AsfizgoE6D9vrMhYHzpDYfvnu8ApGkY= Subject key identifier: E9:A3:44:85:A2:DD:BA:DF:13:CD:7B:7F:57:59:D7:3F:57:19:A0:A8 Authority key identifier: 94:53:9F:82:A3:5E:B2:15:8E:D7:C3:62:D5:BA:15:43:3E:7E:D2:E1 Certificate issuer: /CN=A9179EAE/serialNumber=94539F82A35EB2158ED7C362D5BA15433E7ED2E1 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lFOfgqNeshWO18Ni1boVQz5-0uE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.mft Manifest number: C9 Signing time: Wed 05 Nov 2025 06:02:26 +0000 Manifest this update: Wed 05 Nov 2025 06:02:25 +0000 Manifest next update: Wed 12 Nov 2025 06:02:25 +0000 Files and hashes: 1: lFOfgqNeshWO18Ni1boVQz5-0uE.crl (hash: +7ySNjFBhLNQhNo+Ceoh+m3yvDDUBO4gzH0ipH5pkkI=) 2: B3DA6A52A96511EFB3EB6721C4F9AE02.roa (hash: FFio9OtmebaEzCJyFXTCLhGivXqzWOQVgzKrbso6U2U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.crl rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lFOfgqNeshWO18Ni1boVQz5-0uE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:02:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179EAE, serialNumber=94539F82A35EB2158ED7C362D5BA15433E7ED2E1 Validity Not Before: Nov 5 06:02:25 2025 GMT Not After : Nov 12 06:02:25 2025 GMT Subject: CN=690ae871-214d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:91:1a:f9:e0:6f:8b:9e:3b:c8:3b:1d:20:d5: 63:9f:82:0d:01:7c:83:ee:2a:66:10:89:62:72:a8: b4:d6:cb:90:d8:d3:26:7a:f4:b1:2b:20:a5:d2:b9: af:cf:7a:b9:34:71:20:43:54:2a:bb:2f:f1:48:98: 42:3a:24:af:a5:a3:4e:f6:99:45:4a:0d:b9:07:5b: 1c:45:bc:19:64:a4:83:1e:da:02:d5:74:bb:17:97: c8:59:c0:5e:dd:38:1e:13:18:d6:cd:d0:64:c9:13: 0d:8a:0d:df:2e:e3:35:3a:81:14:81:e7:94:aa:93: 5e:f9:15:49:48:96:7d:5b:c1:89:29:b4:48:11:6a: cc:13:ba:c2:e5:5b:db:d4:d0:d4:8e:e6:c0:59:bd: fc:b8:6f:84:ea:c1:13:a3:03:d7:86:f2:e6:b4:dd: ca:d2:f2:20:25:94:39:c7:75:b0:4d:8b:a2:9b:57: dc:4f:d5:01:cd:bf:93:29:ad:3a:17:fe:51:62:21: 35:38:20:54:c0:76:c8:73:1e:eb:2c:e4:72:5e:18: f7:e1:97:46:9c:27:77:4f:04:c0:f0:c6:ca:42:e3: 3b:5d:81:ea:64:c5:87:a7:87:27:f5:12:c8:54:58: 56:ad:be:8d:50:0d:d5:87:5f:22:60:55:26:1c:c7: fc:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:A3:44:85:A2:DD:BA:DF:13:CD:7B:7F:57:59:D7:3F:57:19:A0:A8 X509v3 Authority Key Identifier: keyid:94:53:9F:82:A3:5E:B2:15:8E:D7:C3:62:D5:BA:15:43:3E:7E:D2:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lFOfgqNeshWO18Ni1boVQz5-0uE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:14:4d:c8:e6:12:e9:3d:00:e8:c4:d2:77:81:06:79:8f:bf: 81:3e:3d:57:9f:ef:f1:58:2e:27:ab:f2:fb:5c:bc:9a:4d:9e: cc:8b:7a:6a:ed:76:75:ee:55:0e:54:ed:9b:a9:dd:d9:56:40: e0:7d:bf:d9:33:50:9c:c9:2e:af:72:a1:8a:9a:f0:b0:5c:53: e3:86:83:91:6f:ad:79:d8:d5:fc:1f:bc:2c:2c:58:f6:07:fc: d7:75:7f:b9:b2:29:c2:97:e0:bd:39:20:77:1c:9e:88:db:ea: 70:5e:e6:03:29:15:61:8f:5b:62:e1:2c:cf:31:fe:91:ab:7f: 5a:52:7e:de:eb:ff:87:86:31:33:e5:26:0c:ac:c2:85:6e:10: af:d0:7a:ec:f4:b0:d0:35:52:e7:92:22:5f:2a:3f:b6:f9:f2: a7:51:ff:aa:9f:9b:f0:f4:07:5d:d1:20:70:14:c3:a0:67:e1: f6:37:8e:7e:9d:2d:63:72:7d:4c:14:4b:75:99:8e:73:41:65: 13:de:2a:90:5a:3d:b2:46:6c:4c:f5:6d:1a:ee:c4:65:09:32: 7d:83:4d:9e:03:7d:c4:47:83:62:03:62:39:1a:a9:95:04:b2: 76:58:26:07:3b:2a:72:e8:4e:36:f2:be:df:dd:91:3f:74:a1: 46:51:b0:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlFQUUxMTAvBgNVBAUTKDk0NTM5RjgyQTM1RUIyMTU4RUQ3QzM2MkQ1QkExNTQz M0U3RUQyRTEwHhcNMjUxMTA1MDYwMjI1WhcNMjUxMTEyMDYwMjI1WjAYMRYwFAYD VQQDEw02OTBhZTg3MS0yMTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZEa+eBvi547yDsdINVjn4INAXyD7ipmEIlicqi01suQ2NMmevSxKyCl0rmv z3q5NHEgQ1Qquy/xSJhCOiSvpaNO9plFSg25B1scRbwZZKSDHtoC1XS7F5fIWcBe 3TgeExjWzdBkyRMNig3fLuM1OoEUgeeUqpNe+RVJSJZ9W8GJKbRIEWrME7rC5Vvb 1NDUjubAWb38uG+E6sETowPXhvLmtN3K0vIgJZQ5x3WwTYuim1fcT9UBzb+TKa06 F/5RYiE1OCBUwHbIcx7rLORyXhj34ZdGnCd3TwTA8MbKQuM7XYHqZMWHp4cn9RLI VFhWrb6NUA3Vh18iYFUmHMf8ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOmjRIWi 3brfE817f1dZ1z9XGaCoMB8GA1UdIwQYMBaAFJRTn4KjXrIVjtfDYtW6FUM+ftLh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUVBRS9BNDlDRERCODhE MEUxMUVGQThGRTkzNzFDNEY5QUUwMi9sRk9mZ3FOZXNoV08xOE5pMWJvVlF6NS0w dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xGT2ZncU5lc2hXTzE4TmkxYm9WUXo1LTB1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUVBRS9BNDlDRERCODhEMEUxMUVGQThGRTkzNzFDNEY5QUUwMi9sRk9mZ3FOZXNo V08xOE5pMWJvVlF6NS0wdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClFE3I5hLpPQDoxNJ3gQZ5j7+BPj1Xn+/xWC4nq/L7XLyaTZ7Mi3pq 7XZ17lUOVO2bqd3ZVkDgfb/ZM1CcyS6vcqGKmvCwXFPjhoORb6152NX8H7wsLFj2 B/zXdX+5sinCl+C9OSB3HJ6I2+pwXuYDKRVhj1ti4SzPMf6Rq39aUn7e6/+HhjEz 5SYMrMKFbhCv0Hrs9LDQNVLnkiJfKj+2+fKnUf+qn5vw9Add0SBwFMOgZ+H2N45+ nS1jcn1MFEt1mY5zQWUT3iqQWj2yRmxM9W0a7sRlCTJ9g02eA33ER4NiA2I5GqmV BLJ2WCYHOypy6E428r7f3ZE/dKFGUbB1 -----END CERTIFICATE-----Generated at Wed Nov 5 17:07:03 2025 by rpki-client