$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft File: MtNTdDyP4vCOl7IuW2CavBTM_js.mft (raw, json) Hash identifier: 0Wh1wytqdGN9woQr+Ltw9qjBpSw+WXDmuA+6ntYPhCA= Subject key identifier: 58:BD:5B:62:7C:CC:E4:44:72:1E:AD:C0:28:EE:EF:9E:1B:51:1B:D7 Authority key identifier: 32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B Certificate issuer: /CN=A9179F64/serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft Manifest number: F7 Signing time: Mon 03 Nov 2025 05:29:28 +0000 Manifest this update: Mon 03 Nov 2025 05:29:28 +0000 Manifest next update: Mon 10 Nov 2025 05:29:28 +0000 Files and hashes: 1: MtNTdDyP4vCOl7IuW2CavBTM_js.crl (hash: I4UX0YyA8ljp6gGiTZA+FPS2X/zHMnQ1hgbMc4sfEp4=) 2: F0CEC2E2663811F089040A3DC4F9AE02.roa (hash: 4eCQXPIoXqLFis62/nmMgnZplG75TTG2mCb5ZkTz7as=) 3: 144D9AA823F011F0B0D6F263C4F9AE02.roa (hash: lyaciBaHQ7wicHWM/adA9CDhCXcjs8ttP7h7VzDSE2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179F64, serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Validity Not Before: Nov 3 05:29:28 2025 GMT Not After : Nov 10 05:29:28 2025 GMT Subject: CN=69083db8-7060 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b3:9a:a7:f2:70:6b:e9:68:16:1f:52:cb:e2: 70:e2:21:8d:f8:8c:8e:be:27:bd:59:7f:ae:f4:a4: c6:56:9e:fd:52:ee:8e:84:f2:4f:40:91:d3:40:5c: fe:ea:b3:c7:1c:9d:d0:80:04:16:f2:11:db:83:00: f6:0e:22:e8:f3:2a:b1:bd:16:96:4f:09:a8:a3:db: c0:09:4a:fb:be:9b:f3:2f:71:c9:82:ba:62:9a:eb: 8b:44:2e:39:d1:3b:ad:cf:b7:60:e0:96:d8:91:f2: 24:b0:9e:b7:17:4f:ce:42:9b:53:a6:4e:94:5a:b6: 5e:f3:cc:74:1e:f8:0a:03:6e:e1:46:01:de:69:22: 53:82:ed:9f:2f:8f:34:31:2f:fb:f5:b0:72:5f:27: 1e:2b:dc:a6:48:cf:44:ae:6d:16:95:3c:2a:52:bc: 3e:23:35:40:1b:bd:9e:d4:6c:b7:b6:8b:2c:a6:48: ff:c0:6f:ac:e5:cf:ab:a3:6b:df:89:6a:e6:e3:07: e7:33:87:1a:a1:55:58:b0:3a:13:c7:55:66:cd:ae: c9:b6:db:10:16:47:32:72:07:df:26:7b:72:34:87: 8f:5f:24:5d:d4:f8:e5:a9:5a:bf:5c:d1:46:a7:6d: 4d:f0:a8:cc:5d:5d:d3:67:f0:38:e6:0e:f6:f1:16: 90:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:BD:5B:62:7C:CC:E4:44:72:1E:AD:C0:28:EE:EF:9E:1B:51:1B:D7 X509v3 Authority Key Identifier: keyid:32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:68:c6:42:b1:93:07:e7:f7:1e:22:de:1d:28:33:64:79:2d: 15:da:0d:82:6b:a0:c3:6c:0e:dc:cb:ac:a7:e2:3a:97:5d:d6: 2d:a5:b9:c4:df:38:0e:07:eb:5b:38:c2:69:c3:99:d3:82:a0: b8:60:95:11:d9:eb:2d:14:d8:c0:a8:d8:82:af:99:d2:d2:70: c4:1d:de:fe:5e:53:fd:dc:c1:62:bb:c9:ee:c0:4d:3f:c5:e3: 8c:ac:27:92:b1:bd:64:d4:1f:11:26:64:01:9c:70:09:49:7e: ab:a1:6d:0c:3f:8a:cb:32:59:c2:30:a4:57:bb:78:b9:ae:22: a8:3a:8e:19:cc:f9:c5:9e:5e:ac:ee:04:cc:58:96:a4:78:f3: 85:85:64:8b:a7:d4:5a:02:5c:d5:ff:62:cf:e6:3f:77:74:5f: 11:f0:56:5e:da:72:c5:98:12:a0:1d:d3:3a:11:c2:65:91:46: dc:85:c2:44:56:5a:f2:4b:3d:cb:9e:fd:99:8f:fc:ee:4d:0d: aa:24:68:f6:84:05:41:cc:e7:4b:9d:3e:dc:ae:3f:dd:a8:f4: 44:31:14:84:1b:e9:e2:e1:68:1b:ac:c3:dc:c3:ec:cf:bf:80: 4f:9a:21:7e:3a:37:49:d0:b5:de:49:3c:34:5c:95:7f:40:12: 73:bf:fe:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlGNjQxMTAvBgNVBAUTKDMyRDM1Mzc0M0M4RkUyRjA4RTk3QjIyRTVCNjA5QUJD MTRDQ0ZFM0IwHhcNMjUxMTAzMDUyOTI4WhcNMjUxMTEwMDUyOTI4WjAYMRYwFAYD VQQDEw02OTA4M2RiOC03MDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3rOap/Jwa+loFh9Sy+Jw4iGN+IyOvie9WX+u9KTGVp79Uu6OhPJPQJHTQFz+ 6rPHHJ3QgAQW8hHbgwD2DiLo8yqxvRaWTwmoo9vACUr7vpvzL3HJgrpimuuLRC45 0Tutz7dg4JbYkfIksJ63F0/OQptTpk6UWrZe88x0HvgKA27hRgHeaSJTgu2fL480 MS/79bByXyceK9ymSM9Erm0WlTwqUrw+IzVAG72e1Gy3tosspkj/wG+s5c+ro2vf iWrm4wfnM4caoVVYsDoTx1Vmza7JttsQFkcycgffJntyNIePXyRd1PjlqVq/XNFG p21N8KjMXV3TZ/A45g728RaQowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFi9W2J8 zOREch6twCju754bURvXMB8GA1UdIwQYMBaAFDLTU3Q8j+LwjpeyLltgmrwUzP47 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUY2NC83N0JGMDE5MjYy NEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2Q09sN0l1VzJDYXZCVE1f anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL010TlRkRHlQNHZDT2w3SXVXMkNhdkJUTV9qcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUY2NC83N0JGMDE5MjYyNEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2 Q09sN0l1VzJDYXZCVE1fanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBraMZCsZMH5/ceIt4dKDNkeS0V2g2Ca6DDbA7cy6yn4jqXXdYtpbnE 3zgOB+tbOMJpw5nTgqC4YJUR2estFNjAqNiCr5nS0nDEHd7+XlP93MFiu8nuwE0/ xeOMrCeSsb1k1B8RJmQBnHAJSX6roW0MP4rLMlnCMKRXu3i5riKoOo4ZzPnFnl6s 7gTMWJakePOFhWSLp9RaAlzV/2LP5j93dF8R8FZe2nLFmBKgHdM6EcJlkUbchcJE VlrySz3Lnv2Zj/zuTQ2qJGj2hAVBzOdLnT7crj/dqPREMRSEG+ni4WgbrMPcw+zP v4BPmiF+OjdJ0LXeSTw0XJV/QBJzv/5o -----END CERTIFICATE-----Generated at Wed Nov 5 05:14:33 2025 by rpki-client