$ rpki-client -vvf rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft File: 1ppgVl8zchSc5uL8nnI9SQZ2doo.mft (raw, json) Hash identifier: hwp9IUFgnJi7bbyF+YSgTjPZ08/k72fe01vg7dqEnOc= Subject key identifier: 77:00:14:3F:98:DC:B4:13:66:C8:1B:79:47:BD:04:84:36:F1:39:EF Authority key identifier: D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A Certificate issuer: /CN=A9185F7D/serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Certificate serial: 34D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft Manifest number: 34D5 Signing time: Tue 04 Nov 2025 15:01:35 +0000 Manifest this update: Tue 04 Nov 2025 15:01:34 +0000 Manifest next update: Tue 11 Nov 2025 15:01:34 +0000 Files and hashes: 1: 1ppgVl8zchSc5uL8nnI9SQZ2doo.crl (hash: OayUwYGik4/J1InD68baqTb1nDJJTdrrLR/59SF0CZc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13525 (0x34d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185F7D, serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Validity Not Before: Nov 4 15:01:34 2025 GMT Not After : Nov 11 15:01:34 2025 GMT Subject: CN=690a154e-55fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b4:b6:7a:28:73:97:ec:5f:2d:a7:b0:38:86: b8:e2:2a:38:16:20:32:a6:3e:b1:ea:7e:f6:54:c4: d6:c3:04:d5:3b:98:20:4e:ed:ba:87:f7:42:3a:44: 9f:2a:70:fe:2d:59:47:55:a3:9d:be:a0:46:52:70: da:63:50:e4:d9:bb:dd:62:39:50:58:9f:78:59:21: ed:c0:83:fe:59:ff:a8:01:e2:fe:c3:83:aa:d5:ff: 3a:51:ed:36:50:00:ad:32:fa:33:8a:d3:b2:39:a9: 5e:3d:1e:d1:d0:e9:ed:78:c9:e7:2b:6a:b2:f2:4a: 10:2e:c4:40:2d:7d:e5:2c:97:8b:3c:46:da:de:14: a1:dd:a5:09:fa:72:c4:22:cf:be:2c:2e:54:20:80: 7a:47:fd:bd:ab:47:58:4b:e3:55:a2:13:c0:4f:1b: 10:fd:28:5b:93:a0:61:d4:3e:77:16:ac:ef:33:48: cf:fb:85:67:e8:4b:0f:4a:a4:29:3d:40:99:c6:92: 95:35:55:93:40:01:f9:24:2e:59:c9:78:4c:96:85: 9a:2c:ee:47:12:4b:1f:e9:7b:a7:ce:cb:34:39:13: 56:80:15:85:c6:d7:e1:1d:47:4d:f4:ae:b9:4b:5c: 68:c8:ed:3e:55:9d:37:be:6c:c3:1d:c4:13:fb:1e: 15:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:00:14:3F:98:DC:B4:13:66:C8:1B:79:47:BD:04:84:36:F1:39:EF X509v3 Authority Key Identifier: keyid:D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:97:7b:b6:28:9d:a0:0b:c1:97:da:31:3e:cb:e7:0a:91:6d: 19:fa:d6:dc:d0:b8:18:80:a7:68:bb:c5:e3:8c:97:93:44:63: 39:46:83:27:ca:14:39:dd:1a:14:ca:5f:af:b1:80:34:8e:40: 67:34:14:02:d4:aa:71:6b:3a:d3:ba:5c:2a:23:aa:a7:b7:c6: f5:40:df:b3:61:15:6a:55:30:67:bf:59:20:97:3e:29:ee:83: a5:14:4b:72:d9:35:bf:2a:b2:da:27:49:eb:74:6e:6b:50:e3: 2f:79:db:13:de:5b:cd:50:e1:63:40:67:62:16:e1:61:14:76: 6d:b9:ab:d7:fc:8f:cf:64:8f:66:4e:59:a1:4f:6e:e4:64:76: 26:98:fa:7e:44:93:cf:91:5e:ba:4d:1f:74:15:a2:8e:fd:57: 53:b4:af:c4:e1:58:0b:a9:20:70:db:25:7b:32:2f:ef:56:a3: 7b:ab:df:84:31:a2:e2:ad:a1:1b:ed:88:f4:f9:dd:58:f1:09: aa:7f:b3:eb:44:e4:c5:bc:3b:bf:b1:b6:23:4d:10:46:3d:84: f6:61:4d:f8:7f:a7:f9:4a:9f:35:e6:ff:bf:96:51:ac:71:3e: c6:5d:fa:11:75:57:d2:62:b1:ac:cb:30:3d:de:a0:b8:3a:d3: 64:1b:4c:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVGN0QxMTAvBgNVBAUTKEQ2OUE2MDU2NUYzMzcyMTQ5Q0U2RTJGQzlFNzIzRDQ5 MDY3Njc2OEEwHhcNMjUxMTA0MTUwMTM0WhcNMjUxMTExMTUwMTM0WjAYMRYwFAYD VQQDEw02OTBhMTU0ZS01NWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrS2eihzl+xfLaewOIa44io4FiAypj6x6n72VMTWwwTVO5ggTu26h/dCOkSf KnD+LVlHVaOdvqBGUnDaY1Dk2bvdYjlQWJ94WSHtwIP+Wf+oAeL+w4Oq1f86Ue02 UACtMvozitOyOalePR7R0OnteMnnK2qy8koQLsRALX3lLJeLPEba3hSh3aUJ+nLE Is++LC5UIIB6R/29q0dYS+NVohPATxsQ/Shbk6Bh1D53FqzvM0jP+4Vn6EsPSqQp PUCZxpKVNVWTQAH5JC5ZyXhMloWaLO5HEksf6Xunzss0ORNWgBWFxtfhHUdN9K65 S1xoyO0+VZ03vmzDHcQT+x4V2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHcAFD+Y 3LQTZsgbeUe9BIQ28TnvMB8GA1UdIwQYMBaAFNaaYFZfM3IUnObi/J5yPUkGdnaK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUY3RC82OTc1M0Y1ODFE OUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNoU2M1dUw4bm5JOVNRWjJk b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwcGdWbDh6Y2hTYzV1TDhubkk5U1FaMmRvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUY3RC82OTc1M0Y1ODFEOUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNo U2M1dUw4bm5JOVNRWjJkb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrl3u2KJ2gC8GX2jE+y+cKkW0Z+tbc0LgYgKdou8XjjJeTRGM5RoMn yhQ53RoUyl+vsYA0jkBnNBQC1KpxazrTulwqI6qnt8b1QN+zYRVqVTBnv1kglz4p 7oOlFEty2TW/KrLaJ0nrdG5rUOMvedsT3lvNUOFjQGdiFuFhFHZtuavX/I/PZI9m TlmhT27kZHYmmPp+RJPPkV66TR90FaKO/VdTtK/E4VgLqSBw2yV7Mi/vVqN7q9+E MaLiraEb7Yj0+d1Y8Qmqf7PrROTFvDu/sbYjTRBGPYT2YU34f6f5Sp815v+/llGs cT7GXfoRdVfSYrGsyzA93qC4OtNkG0xo -----END CERTIFICATE-----Generated at Wed Nov 5 03:44:08 2025 by rpki-client