$ rpki-client -vvf rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft File: aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft (raw, json) Hash identifier: /AH2PHtX3AMr4il9ddwx68V9IaWQtgaLn91CylI3Pa0= Subject key identifier: B2:FB:8B:DE:03:0A:D7:AB:B0:7B:CA:96:F5:1B:89:DF:AB:0C:C5:B7 Authority key identifier: 69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 Certificate issuer: /CN=A917C6D9/serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Certificate serial: 073A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft Manifest number: 0732 Signing time: Sun 02 Nov 2025 21:44:00 +0000 Manifest this update: Sun 02 Nov 2025 21:43:59 +0000 Manifest next update: Sun 09 Nov 2025 21:43:59 +0000 Files and hashes: 1: aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl (hash: Y299DO1fzdp3SASLTgXTV4SI/fu5x3IsIJbr0kzIaaI=) 2: 8F1629524FD411EB9F1A0673C4F9AE02.roa (hash: 0+1qqFR2dQAbs8bJZhkVHckF6TnHu8C+B8873r1KDqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1850 (0x73a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C6D9, serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Validity Not Before: Nov 2 21:43:59 2025 GMT Not After : Nov 9 21:43:59 2025 GMT Subject: CN=6907d09f-0b47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:7e:6f:f5:f1:b8:3e:7c:8a:68:1c:11:2f:cd: 4f:68:37:55:e8:63:b4:cf:f4:9f:d5:8f:f9:28:ff: 82:2a:fc:e1:42:6f:7a:80:68:b5:1f:cc:a9:2d:86: 70:f1:9b:02:85:02:5b:d1:e0:cb:cd:ad:ae:da:9f: 21:99:8e:65:19:3b:52:e8:d8:d6:5c:0a:c5:82:5b: 04:c6:fa:d1:cd:c2:c1:88:88:43:29:61:c9:ef:69: ba:59:b8:8e:19:46:de:a1:c0:a3:1a:10:b8:8f:9d: 39:9d:c7:a0:4d:fa:ea:53:0d:8d:9f:56:80:04:76: 25:ca:72:31:90:e7:e4:24:95:3c:75:28:50:46:da: 65:35:9f:34:a5:26:de:6a:23:56:e8:8e:d6:f1:91: 7c:5e:7a:5e:28:a0:22:5d:2b:e1:db:6e:2d:93:de: ec:6d:8a:0c:0b:ee:ff:87:b9:1c:2f:a8:dc:48:bb: 9b:f4:2b:d3:d9:2a:30:86:59:5a:44:9b:04:2f:b6: 34:13:ae:cd:c4:af:f7:a2:c2:53:a1:60:8b:5d:46: 07:8f:89:ac:0b:4b:b5:5e:4d:9a:14:fd:23:66:21: f0:58:dd:a4:31:0e:62:72:e4:e9:fe:4d:4c:6b:d3: 60:bd:30:bc:6e:cd:70:fd:d4:44:be:6f:0e:2f:b1: 90:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:FB:8B:DE:03:0A:D7:AB:B0:7B:CA:96:F5:1B:89:DF:AB:0C:C5:B7 X509v3 Authority Key Identifier: keyid:69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:38:fd:9a:ea:e8:f4:04:b5:ea:5c:65:35:db:9d:0b:21:5f: 98:e7:e6:2c:a3:d1:d9:e7:3e:a9:75:77:92:83:1d:48:b3:be: d6:7e:11:7f:7f:cc:c0:e6:25:80:e1:65:66:c5:a8:9e:b1:28: b7:29:1e:5f:42:f7:43:79:64:a2:da:50:b7:8e:c4:23:40:1c: a9:b0:81:07:d0:12:a4:1b:3a:27:43:7f:79:04:d0:fa:1d:ea: 02:8e:4a:6d:21:70:c3:12:fb:53:99:dc:ff:d7:aa:6b:14:24: 07:cc:38:b2:9a:c9:47:f2:b8:bf:99:5d:86:46:92:ed:5f:c2: 11:a4:2c:af:6e:f8:50:37:63:d4:b2:ea:32:6f:28:95:3f:ce: 2a:73:30:3c:d7:78:28:26:31:5a:08:37:67:7c:0d:42:bb:54: 74:27:12:5f:99:f7:02:e1:79:69:94:f8:3c:71:db:16:d0:37: 54:bf:86:ce:2f:44:ff:be:c4:16:ba:8c:ad:56:3f:b6:f0:f1: af:63:ad:46:1e:21:63:9d:f1:07:a3:c3:6e:8a:5e:ac:6d:98: ce:72:e9:92:2f:65:f6:a0:b5:14:2e:8b:b0:c9:e1:71:99:bf: 5c:ef:70:e6:2f:61:ad:9c:6b:0b:23:7f:45:a6:0c:48:08:0a: 3f:03:1e:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M2RDkxMTAvBgNVBAUTKDY5NjlEMTUwQUQwMzQ4MjA4MUJCMUJEN0MxM0JFNUYw MERDNTNBMzgwHhcNMjUxMTAyMjE0MzU5WhcNMjUxMTA5MjE0MzU5WjAYMRYwFAYD VQQDEw02OTA3ZDA5Zi0wYjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3n5v9fG4PnyKaBwRL81PaDdV6GO0z/Sf1Y/5KP+CKvzhQm96gGi1H8ypLYZw 8ZsChQJb0eDLza2u2p8hmY5lGTtS6NjWXArFglsExvrRzcLBiIhDKWHJ72m6WbiO GUbeocCjGhC4j505ncegTfrqUw2Nn1aABHYlynIxkOfkJJU8dShQRtplNZ80pSbe aiNW6I7W8ZF8XnpeKKAiXSvh224tk97sbYoMC+7/h7kcL6jcSLub9CvT2Sowhlla RJsEL7Y0E67NxK/3osJToWCLXUYHj4msC0u1Xk2aFP0jZiHwWN2kMQ5icuTp/k1M a9NgvTC8bs1w/dREvm8OL7GQ7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLL7i94D CtersHvKlvUbid+rDMW3MB8GA1UdIwQYMBaAFGlp0VCtA0gggbsb18E75fANxTo4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzZEOS82QTVGMTMyNDRG RDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFNDQ0J1eHZYd1R2bDhBM0ZP amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXblJVSzBEU0NDQnV4dlh3VHZsOEEzRk9qZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzZEOS82QTVGMTMyNDRGRDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFND Q0J1eHZYd1R2bDhBM0ZPamcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhOP2a6uj0BLXqXGU1250LIV+Y5+Yso9HZ5z6pdXeSgx1Is77WfhF/ f8zA5iWA4WVmxaiesSi3KR5fQvdDeWSi2lC3jsQjQBypsIEH0BKkGzonQ395BND6 HeoCjkptIXDDEvtTmdz/16prFCQHzDiymslH8ri/mV2GRpLtX8IRpCyvbvhQN2PU suoybyiVP84qczA813goJjFaCDdnfA1Cu1R0JxJfmfcC4XlplPg8cdsW0DdUv4bO L0T/vsQWuoytVj+28PGvY61GHiFjnfEHo8Nuil6sbZjOcumSL2X2oLUULouwyeFx mb9c73DmL2GtnGsLI39FpgxICAo/Ax7d -----END CERTIFICATE-----Generated at Tue Nov 4 21:34:29 2025 by rpki-client