$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft File: 0XRFPpVj66_LuzKsxs-Gb72OIvA.mft (raw, json) Hash identifier: m4aygsev5XSkLw5IWogZBLrBtF3744cmxhNHCOgl+T0= Subject key identifier: 3B:0B:55:64:6E:07:37:83:08:BC:E9:B2:32:64:2F:8B:A8:DE:FD:FC Authority key identifier: D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 Certificate issuer: /CN=A9187325/serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft Manifest number: AF Signing time: Mon 03 Nov 2025 06:06:13 +0000 Manifest this update: Mon 03 Nov 2025 06:06:13 +0000 Manifest next update: Mon 10 Nov 2025 06:06:13 +0000 Files and hashes: 1: 0XRFPpVj66_LuzKsxs-Gb72OIvA.crl (hash: 8w59qqhzEEgvCYb+JwtfbGnINm9JIdu3Vf6DuqBQj5s=) 2: D9DB29CCAAEF11EF9187EE2AC4F9AE02.roa (hash: zhUDBt2wZDhknIJUCNitYM8EJRnUn0t65SOwAtO1PEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.crl rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:06:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Validity Not Before: Nov 3 06:06:13 2025 GMT Not After : Nov 10 06:06:13 2025 GMT Subject: CN=69084655-acb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:84:b1:07:1a:db:c3:3e:25:5d:67:e2:a8:4b: 8b:c7:9c:da:4a:51:84:03:a3:d4:e6:c5:cf:c5:25: c3:5f:29:11:73:64:d4:69:d2:55:31:2f:69:c1:db: 0f:92:2e:0a:f6:cf:91:75:6c:07:cc:09:8f:09:79: b7:ff:a3:b5:69:1c:b2:9b:15:b0:03:db:4a:db:85: 8c:37:81:ee:b2:e2:e5:9d:31:e6:cb:4a:40:8d:d2: 88:55:41:40:e7:55:bf:f1:4d:4c:7e:d1:05:db:22: 9b:f2:67:4e:f0:13:06:62:2d:21:72:5a:95:98:cb: b7:27:88:cf:8f:b5:24:49:5c:cd:d2:98:e7:de:6e: ff:f1:6f:22:e6:b5:91:8f:7c:98:f1:b8:19:91:7b: c9:8f:a4:39:12:58:90:c4:8c:1e:5a:1d:1e:c8:55: 6b:a8:a7:3c:ef:f0:6e:08:21:6a:38:7f:f4:77:57: 65:d3:6e:fe:de:03:2c:1b:93:5e:7d:4b:86:7d:24: 52:6c:83:de:a4:14:d2:0c:af:26:45:50:cb:46:ef: 18:6c:f8:56:66:2c:68:51:d5:b9:c2:28:fa:e4:2a: e6:65:13:fb:dd:ec:36:f9:a1:c8:fd:4b:7c:9b:f0: 1e:69:23:45:9b:43:46:9e:7b:ea:3f:0f:03:43:b4: 32:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:0B:55:64:6E:07:37:83:08:BC:E9:B2:32:64:2F:8B:A8:DE:FD:FC X509v3 Authority Key Identifier: keyid:D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e5:32:eb:73:f7:bc:4a:42:2e:24:d0:8c:38:b3:59:b6:85:d7: 69:31:a1:7d:81:d4:c4:77:a8:44:eb:5b:fc:1b:bc:6f:dc:aa: f2:d5:67:16:80:9f:db:4d:1b:3b:ca:86:9c:c2:0a:f1:42:e0: 07:5e:3f:1e:d4:7b:6a:52:48:9e:c7:46:d2:82:34:da:20:0b: fa:7f:a1:7e:56:02:3c:09:23:c2:e1:8a:07:48:02:5a:6d:55: 37:a8:9b:d2:d0:4a:7c:b6:a2:ba:0c:c1:3a:4c:f1:84:af:61: ca:3f:b9:02:8a:e6:5b:b8:86:2e:9f:6d:46:58:2d:78:c5:08: 48:22:9d:02:cd:b1:fb:5b:ce:80:57:4d:9e:45:1c:85:ff:0f: 16:f8:44:94:40:94:bf:f6:1c:98:ea:42:42:d1:7f:31:09:0b: 70:06:12:97:7f:20:5b:eb:96:9d:17:0a:e3:2d:c8:7a:e1:60: 00:f1:de:42:ef:ae:fc:4c:7a:2d:28:d7:43:4d:1f:63:54:53: 1b:4c:8f:8f:25:e2:4a:1b:70:31:d1:3d:2e:fb:b4:b8:11:8b: 97:b5:2c:1f:fc:f8:67:6e:7a:b1:c6:61:47:c0:55:d5:a0:f2: d2:4e:7d:7d:55:35:f9:6f:22:09:cf:76:c8:47:96:64:9e:a0: d8:b8:85:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczMjUxMTAvBgNVBAUTKEQxNzQ0NTNFOTU2M0VCQUZDQkJCMzJBQ0M2Q0Y4NjZG QkQ4RTIyRjAwHhcNMjUxMTAzMDYwNjEzWhcNMjUxMTEwMDYwNjEzWjAYMRYwFAYD VQQDEw02OTA4NDY1NS1hY2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0oSxBxrbwz4lXWfiqEuLx5zaSlGEA6PU5sXPxSXDXykRc2TUadJVMS9pwdsP ki4K9s+RdWwHzAmPCXm3/6O1aRyymxWwA9tK24WMN4HusuLlnTHmy0pAjdKIVUFA 51W/8U1MftEF2yKb8mdO8BMGYi0hclqVmMu3J4jPj7UkSVzN0pjn3m7/8W8i5rWR j3yY8bgZkXvJj6Q5EliQxIweWh0eyFVrqKc87/BuCCFqOH/0d1dl027+3gMsG5Ne fUuGfSRSbIPepBTSDK8mRVDLRu8YbPhWZixoUdW5wij65CrmZRP73ew2+aHI/Ut8 m/AeaSNFm0NGnnvqPw8DQ7QycwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDsLVWRu BzeDCLzpsjJkL4uo3v38MB8GA1UdIwQYMBaAFNF0RT6VY+uvy7syrMbPhm+9jiLw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMyNS83QjMzNEE0QUFB RTkxMUVGQjcyMUMyNURDNEY5QUUwMi8wWFJGUHBWajY2X0x1ektzeHMtR2I3Mk9J dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBYUkZQcFZqNjZfTHV6S3N4cy1HYjcyT0l2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzMyNS83QjMzNEE0QUFBRTkxMUVGQjcyMUMyNURDNEY5QUUwMi8wWFJGUHBWajY2 X0x1ektzeHMtR2I3Mk9JdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDlMutz97xKQi4k0Iw4s1m2hddpMaF9gdTEd6hE61v8G7xv3Kry1WcW gJ/bTRs7yoacwgrxQuAHXj8e1HtqUkiex0bSgjTaIAv6f6F+VgI8CSPC4YoHSAJa bVU3qJvS0Ep8tqK6DME6TPGEr2HKP7kCiuZbuIYun21GWC14xQhIIp0CzbH7W86A V02eRRyF/w8W+ESUQJS/9hyY6kJC0X8xCQtwBhKXfyBb65adFwrjLch64WAA8d5C 7678THotKNdDTR9jVFMbTI+PJeJKG3Ax0T0u+7S4EYuXtSwf/PhnbnqxxmFHwFXV oPLSTn19VTX5byIJz3bIR5ZknqDYuIX5 -----END CERTIFICATE-----Generated at Wed Nov 5 05:15:36 2025 by rpki-client