$ rpki-client -vvf rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft File: 9y59Xhu0VCq3_3dzZYg8FgEDTek.mft (raw, json) Hash identifier: KGKq05Gn0dwLqz/hV8fzeJWJ/w7od5AH9lHXgesOT6o= Subject key identifier: 74:CA:32:FF:73:CD:C1:35:82:C9:14:94:E6:0B:E3:FA:09:D1:91:0B Authority key identifier: F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 Certificate issuer: /CN=A919631C/serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Certificate serial: 0F0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft Manifest number: 0EFF Signing time: Thu 06 Nov 2025 16:59:17 +0000 Manifest this update: Thu 06 Nov 2025 16:59:16 +0000 Manifest next update: Thu 13 Nov 2025 16:59:16 +0000 Files and hashes: 1: 9y59Xhu0VCq3_3dzZYg8FgEDTek.crl (hash: VqwLHyAHwI1c1YFueFvctbKDWt/+gy3T9RwRXbOsrc0=) 2: DCB2531AC75911EF979D593BC4F9AE02.roa (hash: oL0maWqOk1WBmFKK+iZrpTSZZSpD3rBTTNKLPVPOQyw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Nov 2025 16:59:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3853 (0xf0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919631C, serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Validity Not Before: Nov 6 16:59:16 2025 GMT Not After : Nov 13 16:59:16 2025 GMT Subject: CN=690cd3e5-d954 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:12:95:3b:ac:62:84:f0:fc:4e:1e:cf:bf:b6: c7:46:ea:98:67:b8:d8:35:1a:15:21:2b:94:5a:bc: d9:8e:a2:10:0d:6a:46:e0:e2:d2:a9:42:50:d4:46: 19:87:99:1d:38:b1:0e:92:76:31:3d:bc:fa:b0:3e: 00:0f:a5:ee:2a:fd:fd:3c:f6:1a:90:92:be:75:b4: 8c:a4:10:e0:90:af:77:9f:68:75:10:2b:c3:0f:9f: a9:fc:90:05:12:67:69:a9:fc:ba:a4:46:c1:c3:de: 72:f5:ca:11:96:04:15:5f:ff:c6:47:00:e7:c3:39: 2f:43:af:c8:fd:a0:1a:62:32:a2:bc:7f:14:a7:a3: 64:89:f9:aa:b3:33:86:2a:13:7b:b5:8f:59:27:4b: c5:4e:ff:f0:c7:13:d4:dc:fd:da:d7:b9:24:97:1b: c4:99:82:a3:ad:ab:78:a9:9b:b3:1e:12:50:a6:ab: d8:64:32:0a:35:1a:c7:36:1e:0a:85:6a:5b:4b:85: 88:2a:2a:89:2c:d2:98:e5:c9:19:34:0e:32:bc:d6: c3:24:aa:70:88:69:8c:f8:02:ac:ef:ea:e3:bd:31: 45:57:60:87:ab:df:cb:93:e2:1a:0d:e0:b7:65:e8: 86:2e:7a:1a:35:c6:a0:9d:a0:a7:3e:dc:70:1f:f9: 16:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:CA:32:FF:73:CD:C1:35:82:C9:14:94:E6:0B:E3:FA:09:D1:91:0B X509v3 Authority Key Identifier: keyid:F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:66:76:0e:ff:89:92:fb:bb:e3:a3:dd:8d:e6:c7:19:30:e3: a8:87:5e:a6:89:b6:04:64:eb:e6:78:55:ca:10:40:22:21:03: d7:aa:8d:35:8d:56:10:85:f1:1b:b1:81:b2:13:51:a3:48:bc: 3b:97:8c:39:1b:da:b4:20:3f:c0:97:5b:6f:74:37:55:98:15: 29:8a:0b:ee:32:60:55:4e:51:ad:bf:f7:a8:d8:5f:2a:36:fc: a5:31:63:8e:18:f6:3b:6d:31:06:27:9b:b4:f9:46:b7:b0:6a: 14:4d:86:01:1a:fc:c4:2c:16:10:fa:f5:c0:fd:e6:b1:56:9a: 16:5e:bd:ea:c2:f1:66:ef:b0:02:03:07:36:c2:4b:da:fa:f4: 22:f1:20:f6:5b:10:e6:d2:fd:24:18:ec:26:ae:4c:79:3c:2e: 08:ad:dd:bc:a4:a8:70:8a:70:35:fe:17:3b:77:9b:8c:ee:ea: b0:6b:2f:8f:c2:20:df:74:d8:e9:97:57:5f:8c:b0:79:92:40: a6:d6:0b:62:84:00:f8:92:d3:a5:06:9c:2d:3e:7d:c5:8f:57: 2a:63:94:6b:90:1c:24:5a:2e:ae:2f:b4:a3:20:81:55:1a:be: 8c:14:da:f5:50:13:98:68:3e:0c:b1:44:01:c3:1b:4c:67:2a: 96:b0:12:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYzMUMxMTAvBgNVBAUTKEY3MkU3RDVFMUJCNDU0MkFCN0ZGNzc3MzY1ODgzQzE2 MDEwMzRERTkwHhcNMjUxMTA2MTY1OTE2WhcNMjUxMTEzMTY1OTE2WjAYMRYwFAYD VQQDEw02OTBjZDNlNS1kOTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhKVO6xihPD8Th7Pv7bHRuqYZ7jYNRoVISuUWrzZjqIQDWpG4OLSqUJQ1EYZ h5kdOLEOknYxPbz6sD4AD6XuKv39PPYakJK+dbSMpBDgkK93n2h1ECvDD5+p/JAF Emdpqfy6pEbBw95y9coRlgQVX//GRwDnwzkvQ6/I/aAaYjKivH8Up6NkifmqszOG KhN7tY9ZJ0vFTv/wxxPU3P3a17kklxvEmYKjrat4qZuzHhJQpqvYZDIKNRrHNh4K hWpbS4WIKiqJLNKY5ckZNA4yvNbDJKpwiGmM+AKs7+rjvTFFV2CHq9/Lk+IaDeC3 ZeiGLnoaNcagnaCnPtxwH/kWIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTKMv9z zcE1gskUlOYL4/oJ0ZELMB8GA1UdIwQYMBaAFPcufV4btFQqt/93c2WIPBYBA03p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjMxQy9BOUMzMTcwNDhD MjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZDcTNfM2R6WllnOEZnRURU ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5NTlYaHUwVkNxM18zZHpaWWc4RmdFRFRlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjMxQy9BOUMzMTcwNDhDMjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZD cTNfM2R6WllnOEZnRURUZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDZnYO/4mS+7vjo92N5scZMOOoh16mibYEZOvmeFXKEEAiIQPXqo01 jVYQhfEbsYGyE1GjSLw7l4w5G9q0ID/Al1tvdDdVmBUpigvuMmBVTlGtv/eo2F8q NvylMWOOGPY7bTEGJ5u0+Ua3sGoUTYYBGvzELBYQ+vXA/eaxVpoWXr3qwvFm77AC Awc2wkva+vQi8SD2WxDm0v0kGOwmrkx5PC4Ird28pKhwinA1/hc7d5uM7uqway+P wiDfdNjpl1dfjLB5kkCm1gtihAD4ktOlBpwtPn3Fj1cqY5RrkBwkWi6uL7SjIIFV Gr6MFNr1UBOYaD4MsUQBwxtMZyqWsBLi -----END CERTIFICATE-----Generated at Fri Nov 7 11:49:52 2025 by rpki-client