$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft File: 9lz9HPOxxajqYIcfo8NAYdtM84M.mft (raw, json) Hash identifier: k7gIoXqWEJHf8+DoWulvbXGrGBdLPBj3O8heMBStvRM= Subject key identifier: BA:11:C4:73:60:31:CC:B8:AF:CB:AD:F2:27:54:84:F7:0B:8F:E9:D5 Authority key identifier: F6:5C:FD:1C:F3:B1:C5:A8:EA:60:87:1F:A3:C3:40:61:DB:4C:F3:83 Certificate issuer: /CN=A9195BA9/serialNumber=F65CFD1CF3B1C5A8EA60871FA3C34061DB4CF383 Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft Manifest number: 01A8 Signing time: Tue 04 Nov 2025 19:55:04 +0000 Manifest this update: Tue 04 Nov 2025 19:55:04 +0000 Manifest next update: Tue 11 Nov 2025 19:55:04 +0000 Files and hashes: 1: 9lz9HPOxxajqYIcfo8NAYdtM84M.crl (hash: 26sBQg+VK4Ki9VDxgffQglu2ajJM5Qhzj7NODqxANQY=) 2: 7A63013E3A4F11EEA10D3A7AC4F9AE02.roa (hash: iTrEAAlkJw9OclXVQcOsLhF2OGcA/o+GNahTLZ1PRQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.crl rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=F65CFD1CF3B1C5A8EA60871FA3C34061DB4CF383 Validity Not Before: Nov 4 19:55:04 2025 GMT Not After : Nov 11 19:55:04 2025 GMT Subject: CN=690a5a18-5769 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ef:48:9e:4c:0f:5e:fb:33:b0:d5:48:86:86: 3a:d4:05:d7:88:d4:b1:39:c9:34:5e:3d:b1:b2:f8: ef:af:43:b1:c3:a1:c9:36:f6:42:33:2a:d0:0d:8c: 47:fc:66:d5:fe:50:7d:45:79:99:e3:07:86:ae:af: ae:3b:c6:45:27:96:46:71:1c:cf:bd:64:31:5e:98: 4e:c5:66:17:7c:84:86:68:72:02:eb:10:e7:10:c6: d8:a7:03:5e:14:f9:fa:72:fd:6d:6a:45:71:57:87: 27:ac:06:da:c9:dc:d2:96:3c:71:54:75:5a:80:81: 90:33:0e:a0:39:f4:d5:7c:f3:5e:11:41:21:bd:ea: 3f:00:1e:ab:00:0e:d7:08:42:c5:45:de:17:5a:41: 3f:aa:2f:d8:71:6a:31:0a:38:3e:dd:49:31:db:16: 15:f8:68:98:95:87:ba:58:d8:c1:8f:2c:77:b7:7e: 26:96:c8:68:4e:a0:8e:89:28:7e:d7:85:8f:8f:3b: d0:8e:64:41:d7:8b:ab:33:05:28:d4:f4:02:de:3f: a2:50:df:79:be:46:2b:59:ba:9c:86:fa:4f:cf:11: da:c0:d0:62:08:57:99:fa:59:59:e0:84:14:57:c9: 97:12:5b:5b:dd:9e:b4:70:2d:6f:20:a3:c8:d0:67: bd:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:11:C4:73:60:31:CC:B8:AF:CB:AD:F2:27:54:84:F7:0B:8F:E9:D5 X509v3 Authority Key Identifier: keyid:F6:5C:FD:1C:F3:B1:C5:A8:EA:60:87:1F:A3:C3:40:61:DB:4C:F3:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:61:4e:16:41:6f:cc:57:ec:e3:cf:8d:90:ec:01:39:27:b3: d7:06:c1:f6:a6:de:04:c3:5a:91:05:e6:77:23:70:8a:ef:cc: 0b:2e:33:c2:0b:34:b8:9e:ec:df:7d:95:7c:66:0d:a9:9b:f7: 69:14:49:40:89:38:0a:9b:30:83:41:35:3d:b1:56:20:24:1d: 31:42:6f:e3:c1:1b:8b:20:d6:9b:86:49:e4:42:85:53:61:38: ed:2a:95:11:37:1d:d9:1f:28:a4:61:e8:80:03:4f:43:c3:f8: e0:a3:90:48:0c:af:8f:c9:62:50:f6:ce:65:12:29:05:0d:55: 0c:b3:84:e7:4b:99:9c:50:92:15:6f:fc:c6:3f:b9:99:d6:2d: 4f:1c:f3:8b:14:ce:30:8e:fb:f5:83:a7:58:5e:ae:ed:a9:06: c2:4d:0d:02:b7:78:11:8a:7a:86:7c:24:ae:08:2a:ab:e3:0c: 18:be:f6:47:fd:8d:b8:a3:f5:e3:e7:e0:6e:5f:c5:41:34:c6: 92:2b:df:07:9e:56:69:8b:77:fa:1e:39:73:f6:35:52:ac:36: 9b:fe:33:d8:54:2f:65:50:f3:84:85:e0:22:3a:70:41:bd:1e: b8:b9:0e:a7:e0:6d:85:3c:b8:64:ed:38:83:de:74:32:bf:b4: 7b:43:a9:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKEY2NUNGRDFDRjNCMUM1QThFQTYwODcxRkEzQzM0MDYx REI0Q0YzODMwHhcNMjUxMTA0MTk1NTA0WhcNMjUxMTExMTk1NTA0WjAYMRYwFAYD VQQDEw02OTBhNWExOC01NzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+9InkwPXvszsNVIhoY61AXXiNSxOck0Xj2xsvjvr0Oxw6HJNvZCMyrQDYxH /GbV/lB9RXmZ4weGrq+uO8ZFJ5ZGcRzPvWQxXphOxWYXfISGaHIC6xDnEMbYpwNe FPn6cv1takVxV4cnrAbaydzSljxxVHVagIGQMw6gOfTVfPNeEUEhveo/AB6rAA7X CELFRd4XWkE/qi/YcWoxCjg+3Ukx2xYV+GiYlYe6WNjBjyx3t34mlshoTqCOiSh+ 14WPjzvQjmRB14urMwUo1PQC3j+iUN95vkYrWbqchvpPzxHawNBiCFeZ+llZ4IQU V8mXEltb3Z60cC1vIKPI0Ge9mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLoRxHNg Mcy4r8ut8idUhPcLj+nVMB8GA1UdIwQYMBaAFPZc/RzzscWo6mCHH6PDQGHbTPOD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9DRUU2ODgyMjM3 QkUxMUVFQTY0MEFCNTVDNEY5QUUwMi85bHo5SFBPeHhhanFZSWNmbzhOQVlkdE04 NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzlsejlIUE94eGFqcVlJY2ZvOE5BWWR0TTg0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9DRUU2ODgyMjM3QkUxMUVFQTY0MEFCNTVDNEY5QUUwMi85bHo5SFBPeHhh anFZSWNmbzhOQVlkdE04NE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZYU4WQW/MV+zjz42Q7AE5J7PXBsH2pt4Ew1qRBeZ3I3CK78wLLjPC CzS4nuzffZV8Zg2pm/dpFElAiTgKmzCDQTU9sVYgJB0xQm/jwRuLINabhknkQoVT YTjtKpURNx3ZHyikYeiAA09Dw/jgo5BIDK+PyWJQ9s5lEikFDVUMs4TnS5mcUJIV b/zGP7mZ1i1PHPOLFM4wjvv1g6dYXq7tqQbCTQ0Ct3gRinqGfCSuCCqr4wwYvvZH /Y24o/Xj5+BuX8VBNMaSK98HnlZpi3f6Hjlz9jVSrDab/jPYVC9lUPOEheAiOnBB vR64uQ6n4G2FPLhk7TiD3nQyv7R7Q6l6 -----END CERTIFICATE-----Generated at Wed Nov 5 17:21:39 2025 by rpki-client