$ rpki-client -vvf rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft File: MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft (raw, json) Hash identifier: tmJ7kVFD9xufGKmSF/V/hcOYsBiTTD5IbNHb8ojOk+M= Subject key identifier: 72:89:20:03:5E:5C:7E:20:AE:B8:6D:9A:7D:9B:D6:54:89:E4:0B:B0 Authority key identifier: 32:15:C5:51:6A:FB:54:D8:E6:12:D1:EC:3D:51:82:D3:21:E5:31:71 Certificate issuer: /CN=A9180127/serialNumber=3215C5516AFB54D8E612D1EC3D5182D321E53171 Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhXFUWr7VNjmEtHsPVGC0yHlMXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft Manifest number: 018D Signing time: Wed 05 Nov 2025 03:41:07 +0000 Manifest this update: Wed 05 Nov 2025 03:41:06 +0000 Manifest next update: Wed 12 Nov 2025 03:41:06 +0000 Files and hashes: 1: MhXFUWr7VNjmEtHsPVGC0yHlMXE.crl (hash: 9Sv1kbZaZeABaFYXuHAq3NlufuOCak5178sObyIKWrk=) 2: 80A66D902A6411F09ACA5C61C4F9AE02.roa (hash: VkiCTpbHNMdBRPiF1oBiRg7dOTIy/YEbnzSkLjMcvbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.crl rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhXFUWr7VNjmEtHsPVGC0yHlMXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:41:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180127, serialNumber=3215C5516AFB54D8E612D1EC3D5182D321E53171 Validity Not Before: Nov 5 03:41:06 2025 GMT Not After : Nov 12 03:41:06 2025 GMT Subject: CN=690ac752-f5f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8d:c3:8c:3b:c3:16:db:18:6b:1a:92:ee:e6: ef:a9:63:16:ef:38:40:72:5b:e7:46:99:2a:10:40: 49:02:03:ef:5b:47:f2:a3:70:7c:d8:2f:64:c8:1c: d1:ad:57:9b:59:4a:46:7e:49:f6:22:7a:3c:67:89: 27:1d:cf:e2:ba:1b:c2:5d:ff:8b:75:05:67:31:71: 9a:b8:6c:db:83:68:5f:7a:c8:5d:e7:53:90:16:f0: e7:53:ce:e5:fa:58:59:e1:8d:38:13:86:b4:62:85: 50:1c:4d:f3:cb:3e:79:ee:41:07:d5:fa:88:9b:2d: d0:fc:21:91:46:71:f7:11:e8:5c:ea:1f:45:53:f2: 47:fe:1a:02:3c:8f:d8:e5:43:a6:12:31:7e:02:b4: e2:0f:6d:f2:05:74:16:80:fc:84:7c:84:65:a4:6e: c9:6f:61:52:75:36:f7:3b:00:ec:87:b8:7b:af:56: 25:b5:2a:62:f9:6a:07:eb:fe:78:fb:27:b8:b6:4a: bf:d2:c8:54:43:4d:92:65:00:7f:10:0a:66:a9:9e: 9e:f8:c1:1d:f6:b4:12:7e:21:cd:af:5c:57:e5:e9: 01:48:0d:d4:52:57:7d:f7:eb:94:22:b7:b5:5f:4a: b5:0e:83:30:ac:01:f4:70:19:27:9a:e9:d1:04:35: 03:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:89:20:03:5E:5C:7E:20:AE:B8:6D:9A:7D:9B:D6:54:89:E4:0B:B0 X509v3 Authority Key Identifier: keyid:32:15:C5:51:6A:FB:54:D8:E6:12:D1:EC:3D:51:82:D3:21:E5:31:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhXFUWr7VNjmEtHsPVGC0yHlMXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:a7:f2:6a:bf:da:b2:af:bb:94:a7:cd:bf:fd:9b:b9:62:a2: d3:cd:bf:e9:28:cd:b1:4e:fc:2d:80:ba:a0:a2:f1:b7:e1:30: 9d:f6:6e:bb:04:25:17:29:f3:58:13:c9:69:ec:f5:bd:bf:90: 05:ab:43:f3:a5:b0:93:7e:8c:ae:d0:f9:42:d8:47:e5:ce:b4: 7f:95:d5:05:6b:31:28:20:26:36:08:9d:ad:df:cb:6f:dd:20: 35:0e:2e:2a:44:33:fc:58:09:a7:38:4a:0a:6a:fb:5e:e6:a2: 40:3d:b0:7c:81:a0:35:f0:f8:60:89:df:db:b6:1f:d5:0d:16: 15:b8:79:92:9b:52:f8:7f:b0:b6:8e:df:47:d0:34:bc:88:30: 6f:f8:4b:06:32:0c:cb:59:65:b9:79:80:55:c6:1b:76:a7:69: 8b:dd:ef:09:1b:6e:b1:bf:8a:29:01:9d:7d:1c:71:db:53:b5: 14:ef:c1:d9:f5:c1:89:dc:80:ad:50:b0:b0:06:de:09:f6:0e: 87:8a:64:86:d8:b5:17:17:ec:4c:11:20:c1:0e:bf:83:42:95: 7b:58:3d:28:34:54:c3:af:12:80:d0:d3:cc:33:f0:8f:f7:08: d2:be:f9:7d:1b:79:64:57:98:9c:f2:6c:fb:6c:6c:b3:4d:f9: 96:9e:d5:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAxMjcxMTAvBgNVBAUTKDMyMTVDNTUxNkFGQjU0RDhFNjEyRDFFQzNENTE4MkQz MjFFNTMxNzEwHhcNMjUxMTA1MDM0MTA2WhcNMjUxMTEyMDM0MTA2WjAYMRYwFAYD VQQDEw02OTBhYzc1Mi1mNWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1I3DjDvDFtsYaxqS7ubvqWMW7zhAclvnRpkqEEBJAgPvW0fyo3B82C9kyBzR rVebWUpGfkn2Ino8Z4knHc/iuhvCXf+LdQVnMXGauGzbg2hfeshd51OQFvDnU87l +lhZ4Y04E4a0YoVQHE3zyz557kEH1fqImy3Q/CGRRnH3Eehc6h9FU/JH/hoCPI/Y 5UOmEjF+ArTiD23yBXQWgPyEfIRlpG7Jb2FSdTb3OwDsh7h7r1YltSpi+WoH6/54 +ye4tkq/0shUQ02SZQB/EApmqZ6e+MEd9rQSfiHNr1xX5ekBSA3UUld99+uUIre1 X0q1DoMwrAH0cBknmunRBDUDnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHKJIANe XH4grrhtmn2b1lSJ5AuwMB8GA1UdIwQYMBaAFDIVxVFq+1TY5hLR7D1RgtMh5TFx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDEyNy8xNkFGMUQyMDVC N0YxMUVFQkUzMjBFMzVDNEY5QUUwMi9NaFhGVVdyN1ZOam1FdEhzUFZHQzB5SGxN WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01oWEZVV3I3Vk5qbUV0SHNQVkdDMHlIbE1YRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDEyNy8xNkFGMUQyMDVCN0YxMUVFQkUzMjBFMzVDNEY5QUUwMi9NaFhGVVdyN1ZO am1FdEhzUFZHQzB5SGxNWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHp/Jqv9qyr7uUp82//Zu5YqLTzb/pKM2xTvwtgLqgovG34TCd9m67 BCUXKfNYE8lp7PW9v5AFq0PzpbCTfoyu0PlC2EflzrR/ldUFazEoICY2CJ2t38tv 3SA1Di4qRDP8WAmnOEoKavte5qJAPbB8gaA18Phgid/bth/VDRYVuHmSm1L4f7C2 jt9H0DS8iDBv+EsGMgzLWWW5eYBVxht2p2mL3e8JG26xv4opAZ19HHHbU7UU78HZ 9cGJ3ICtULCwBt4J9g6HimSG2LUXF+xMESDBDr+DQpV7WD0oNFTDrxKA0NPMM/CP 9wjSvvl9G3lkV5ic8mz7bGyzTfmWntWi -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:10 2025 by rpki-client