$ rpki-client -vvf rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.mft File: w7rY8KXaBY6fklA30EqnHJKLoXM.mft (raw, json) Hash identifier: 6aBTsz8HwWLf0n3nTwAaPVrxVTrXgfeWLzd9g86dUJ0= Subject key identifier: 9F:42:F9:5F:64:66:36:99:60:BF:F1:91:D1:A7:9A:EB:65:3A:F9:7A Authority key identifier: C3:BA:D8:F0:A5:DA:05:8E:9F:92:50:37:D0:4A:A7:1C:92:8B:A1:73 Certificate issuer: /CN=A9189265/serialNumber=C3BAD8F0A5DA058E9F925037D04AA71C928BA173 Certificate serial: 1A14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7rY8KXaBY6fklA30EqnHJKLoXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.mft Manifest number: 1A09 Signing time: Sun 02 Nov 2025 16:22:26 +0000 Manifest this update: Sun 02 Nov 2025 16:22:25 +0000 Manifest next update: Sun 09 Nov 2025 16:22:25 +0000 Files and hashes: 1: w7rY8KXaBY6fklA30EqnHJKLoXM.crl (hash: MtgVSpOk1n4VCQPj4BuwVyHzkjMdLV+lpy28JEilIlA=) 2: 885DA760AA8811E799348329C4F9AE02.roa (hash: QtE9Adpom4Nm5iw3CCvblvKPpzJSJvhQFoud1x1FLEA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.crl rsync://rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7rY8KXaBY6fklA30EqnHJKLoXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:22:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6676 (0x1a14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189265, serialNumber=C3BAD8F0A5DA058E9F925037D04AA71C928BA173 Validity Not Before: Nov 2 16:22:25 2025 GMT Not After : Nov 9 16:22:25 2025 GMT Subject: CN=69078541-d21a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a8:40:49:86:e2:4e:ac:82:de:85:b2:f3:a6: 6a:75:a1:4e:af:b6:97:10:63:7a:26:b9:92:f8:bd: c2:d3:be:18:23:4c:e0:fd:64:bc:fd:00:90:c3:2e: 3f:9f:8d:6a:78:31:a6:07:b6:b6:a0:81:f3:13:db: b2:56:52:bb:2e:ed:cb:e4:3d:ed:81:fc:6d:8b:1a: 0a:a8:4f:50:f4:2e:e8:e8:17:22:df:f8:02:37:f9: a3:46:ca:2f:35:4c:7e:dd:11:ad:99:1c:5a:65:e6: 89:ca:84:95:fd:f0:8d:f5:3b:a8:2d:2f:8a:ae:fc: 2c:3f:8b:3c:81:5f:f5:a4:89:94:9f:08:c1:0c:43: 06:1f:d5:e5:96:79:f7:bf:ec:df:90:b6:30:3c:4c: c4:17:17:6b:2f:cd:79:2b:e5:81:b6:e7:15:ef:35: f4:07:c3:fb:45:2f:e5:45:cd:02:81:90:10:ee:72: 20:03:9f:a0:a4:12:72:56:2c:95:27:bf:eb:36:19: 64:5f:c1:f0:85:b8:d9:00:b8:9c:50:6f:9e:a5:38: 56:e5:3f:15:74:bd:01:44:0f:1b:5a:ec:b7:17:6d: a7:d3:e4:93:c1:4d:12:62:2d:67:23:16:3a:97:e1: 2f:f8:9e:b7:d7:19:53:bd:07:ad:09:9c:46:3c:3f: d1:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:42:F9:5F:64:66:36:99:60:BF:F1:91:D1:A7:9A:EB:65:3A:F9:7A X509v3 Authority Key Identifier: keyid:C3:BA:D8:F0:A5:DA:05:8E:9F:92:50:37:D0:4A:A7:1C:92:8B:A1:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7rY8KXaBY6fklA30EqnHJKLoXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:3a:65:e4:74:12:cb:42:b3:a2:b3:58:ab:66:29:9c:6c:67: 31:c7:07:a4:4d:76:27:e7:ab:74:56:38:c6:9f:98:17:81:97: 3a:10:9d:64:55:b0:02:71:5c:32:eb:de:52:f3:bd:ce:50:51: 8f:13:29:69:64:db:7a:7f:1f:f9:60:02:40:1c:5f:35:16:fa: 9f:03:4a:0c:7d:66:a3:5f:22:a4:d1:d6:c7:5f:33:b7:e7:fe: 86:25:3f:73:27:6e:c8:77:3c:e1:91:a7:d0:26:6f:de:d4:16: 98:9d:a7:5d:8d:01:20:25:f1:81:f4:c3:f6:b9:f0:4d:91:8e: ef:e3:d3:e4:a4:59:ff:3f:b2:6a:f1:67:78:ba:aa:97:c2:26: e3:92:07:85:35:a0:a4:e2:5d:02:29:44:20:06:37:eb:6e:af: 1f:bf:a4:c7:a3:e5:e0:e8:cb:10:08:64:47:e1:1a:78:7d:6c: b9:6e:ee:62:c8:85:18:76:67:0e:8d:32:95:fa:28:82:ab:c3: f0:ba:60:ba:54:08:0a:20:06:58:bd:0b:d6:06:6b:e8:f5:06: e9:8d:b5:72:4c:f0:69:2b:58:ea:b5:c3:68:7b:2a:c6:35:ae: de:85:e2:bf:89:aa:24:6d:a6:57:aa:fa:02:c9:6f:e6:05:c4: a3:88:a6:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyNjUxMTAvBgNVBAUTKEMzQkFEOEYwQTVEQTA1OEU5RjkyNTAzN0QwNEFBNzFD OTI4QkExNzMwHhcNMjUxMTAyMTYyMjI1WhcNMjUxMTA5MTYyMjI1WjAYMRYwFAYD VQQDEw02OTA3ODU0MS1kMjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKhASYbiTqyC3oWy86ZqdaFOr7aXEGN6JrmS+L3C074YI0zg/WS8/QCQwy4/ n41qeDGmB7a2oIHzE9uyVlK7Lu3L5D3tgfxtixoKqE9Q9C7o6Bci3/gCN/mjRsov NUx+3RGtmRxaZeaJyoSV/fCN9TuoLS+KrvwsP4s8gV/1pImUnwjBDEMGH9Xllnn3 v+zfkLYwPEzEFxdrL815K+WBtucV7zX0B8P7RS/lRc0CgZAQ7nIgA5+gpBJyViyV J7/rNhlkX8HwhbjZALicUG+epThW5T8VdL0BRA8bWuy3F22n0+STwU0SYi1nIxY6 l+Ev+J631xlTvQetCZxGPD/RvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ9C+V9k ZjaZYL/xkdGnmutlOvl6MB8GA1UdIwQYMBaAFMO62PCl2gWOn5JQN9BKpxySi6Fz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTI2NS9EOEI0QjYxRTYw MjIxMUU3Qjk2RkMyNjRDNEY5QUUwMi93N3JZOEtYYUJZNmZrbEEzMEVxbkhKS0xv WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3c3clk4S1hhQlk2ZmtsQTMwRXFuSEpLTG9YTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTI2NS9EOEI0QjYxRTYwMjIxMUU3Qjk2RkMyNjRDNEY5QUUwMi93N3JZOEtYYUJZ NmZrbEEzMEVxbkhKS0xvWE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDOmXkdBLLQrOis1irZimcbGcxxwekTXYn56t0VjjGn5gXgZc6EJ1k VbACcVwy695S873OUFGPEylpZNt6fx/5YAJAHF81FvqfA0oMfWajXyKk0dbHXzO3 5/6GJT9zJ27IdzzhkafQJm/e1BaYnaddjQEgJfGB9MP2ufBNkY7v49PkpFn/P7Jq 8Wd4uqqXwibjkgeFNaCk4l0CKUQgBjfrbq8fv6THo+Xg6MsQCGRH4Rp4fWy5bu5i yIUYdmcOjTKV+iiCq8PwumC6VAgKIAZYvQvWBmvo9QbpjbVyTPBpK1jqtcNoeyrG Na7eheK/iaokbaZXqvoCyW/mBcSjiKZC -----END CERTIFICATE-----Generated at Tue Nov 4 08:19:53 2025 by rpki-client