$ rpki-client -vvf rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft File: 40IvTt5eaM7JqqfjxuMnjHMOHnw.mft (raw, json) Hash identifier: wYQub62jiOm1g0IcP3DFhmuHhYCQd+vOchGWii6/rdw= Subject key identifier: 87:55:A9:35:0F:43:22:E9:20:FC:F5:F6:EE:3D:92:0F:6F:F6:7B:FC Authority key identifier: E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C Certificate issuer: /CN=A9180DA4/serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Certificate serial: 34D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft Manifest number: 34D4 Signing time: Tue 04 Nov 2025 14:44:00 +0000 Manifest this update: Tue 04 Nov 2025 14:43:59 +0000 Manifest next update: Tue 11 Nov 2025 14:43:59 +0000 Files and hashes: 1: 40IvTt5eaM7JqqfjxuMnjHMOHnw.crl (hash: /vH14TWz5j3xj8FDqtMt6MokWjdFoHjFf9vxFbEY1bs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13524 (0x34d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180DA4, serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Validity Not Before: Nov 4 14:43:59 2025 GMT Not After : Nov 11 14:43:59 2025 GMT Subject: CN=690a1130-6c6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:04:a2:25:3e:b6:da:c6:3b:79:84:6e:b1:9c: 76:a4:24:23:cf:c1:16:3b:7c:a0:d5:45:78:90:42: d2:3f:08:6b:9a:bd:c1:3f:bc:df:fa:7b:54:9f:02: 4b:42:ac:61:40:71:5d:ea:6e:86:28:c4:56:a1:71: c4:59:27:52:90:ad:8a:7c:ed:f8:a2:33:5c:69:28: 45:5f:38:23:8c:89:b4:fc:27:55:7b:ad:24:9a:9f: e8:68:7e:83:84:1f:b1:f0:7b:e8:44:db:b4:73:21: ae:7b:b8:cd:d5:39:53:43:2b:cb:fd:91:cf:bf:fe: e3:5e:83:cb:ea:85:64:84:3c:a0:8e:8f:34:9c:84: 57:cf:37:2d:2e:00:e4:b8:be:2c:ec:c1:4d:31:f8: c0:4b:98:e8:40:85:1a:0a:b0:45:0f:1b:ee:fb:53: 84:c3:ea:a3:ae:50:73:bc:a1:5c:68:b0:6f:73:7a: 0a:97:8c:6e:a6:05:c8:22:6c:91:a0:7e:25:68:0d: 32:26:4b:ac:01:00:31:26:d2:01:00:63:b8:68:71: 30:86:2c:d4:0e:20:c2:8f:4a:3f:09:1d:fe:19:0a: 85:44:38:f2:ef:1c:8f:99:a7:b0:a3:b2:f7:db:f8: fb:df:d1:bd:6c:d5:3f:13:12:0b:db:fe:e6:69:e7: 8c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:55:A9:35:0F:43:22:E9:20:FC:F5:F6:EE:3D:92:0F:6F:F6:7B:FC X509v3 Authority Key Identifier: keyid:E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:93:d3:b1:01:5b:50:20:5f:1b:1c:87:7d:75:1b:18:c4:e6: 8c:f8:23:52:53:42:fa:a0:50:95:d6:50:c3:64:8e:f3:a0:79: 8a:59:96:43:ec:e8:19:ee:4b:57:48:fc:60:b7:8b:55:fe:e6: 3d:f9:d9:ba:b2:a4:91:32:84:2a:cc:cb:14:fe:e1:ae:86:3d: f4:b1:8d:11:8a:56:4d:c5:22:68:6c:4b:cb:d8:fc:d9:05:3d: 0c:5e:cc:4e:be:b3:ac:7d:40:55:3a:c9:e4:92:77:c7:0d:63: 8e:fd:7f:08:aa:54:8c:99:a7:98:a9:5a:99:6f:a3:90:2e:80: 00:e0:66:c8:af:be:96:ec:3b:85:74:3a:4c:6d:7c:df:30:ca: bd:b5:d6:b6:c0:49:13:bc:cd:60:c7:a0:cb:ba:2b:08:24:c7: 10:b2:5a:5a:ef:92:e4:95:bd:78:3b:52:28:64:91:c3:92:c5: 92:a8:1a:f8:f0:40:59:40:58:02:81:ac:2a:78:04:c9:be:8b: 48:17:6e:ca:ad:bf:9b:4c:2c:ca:19:48:ee:c2:64:6b:7b:0b: 04:86:9c:f5:00:65:6a:9b:88:63:0d:67:98:88:c3:86:89:ef: 45:58:63:6e:cc:03:45:95:a5:08:6b:8c:2d:3a:a8:9a:ba:e6: b5:22:be:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODBEQTQxMTAvBgNVBAUTKEUzNDIyRjRFREU1RTY4Q0VDOUFBQTdFM0M2RTMyNzhD NzMwRTFFN0MwHhcNMjUxMTA0MTQ0MzU5WhcNMjUxMTExMTQ0MzU5WjAYMRYwFAYD VQQDEw02OTBhMTEzMC02YzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwSiJT622sY7eYRusZx2pCQjz8EWO3yg1UV4kELSPwhrmr3BP7zf+ntUnwJL QqxhQHFd6m6GKMRWoXHEWSdSkK2KfO34ojNcaShFXzgjjIm0/CdVe60kmp/oaH6D hB+x8HvoRNu0cyGue7jN1TlTQyvL/ZHPv/7jXoPL6oVkhDygjo80nIRXzzctLgDk uL4s7MFNMfjAS5joQIUaCrBFDxvu+1OEw+qjrlBzvKFcaLBvc3oKl4xupgXIImyR oH4laA0yJkusAQAxJtIBAGO4aHEwhizUDiDCj0o/CR3+GQqFRDjy7xyPmaewo7L3 2/j739G9bNU/ExIL2/7maeeMawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIdVqTUP QyLpIPz19u49kg9v9nv8MB8GA1UdIwQYMBaAFONCL07eXmjOyaqn48bjJ4xzDh58 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MERBNC80NzNDNjQ1MDFE OEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFNN0pxcWZqeHVNbmpITU9I bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwSXZUdDVlYU03SnFxZmp4dU1uakhNT0hudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MERBNC80NzNDNjQ1MDFEOEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFN N0pxcWZqeHVNbmpITU9IbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9k9OxAVtQIF8bHId9dRsYxOaM+CNSU0L6oFCV1lDDZI7zoHmKWZZD 7OgZ7ktXSPxgt4tV/uY9+dm6sqSRMoQqzMsU/uGuhj30sY0RilZNxSJobEvL2PzZ BT0MXsxOvrOsfUBVOsnkknfHDWOO/X8IqlSMmaeYqVqZb6OQLoAA4GbIr76W7DuF dDpMbXzfMMq9tda2wEkTvM1gx6DLuisIJMcQslpa75Lklb14O1IoZJHDksWSqBr4 8EBZQFgCgawqeATJvotIF27Krb+bTCzKGUjuwmRrewsEhpz1AGVqm4hjDWeYiMOG ie9FWGNuzANFlaUIa4wtOqiauua1Ir70 -----END CERTIFICATE-----Generated at Wed Nov 5 12:46:51 2025 by rpki-client