$ rpki-client -vvf rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.mft File: _9C9_G0db07W7Tg5A59B6e3Gb7o.mft (raw, json) Hash identifier: VLy107xhDKIoE8iCu50A2LrSGJ6MOyJYQcsGurqixaE= Subject key identifier: DF:34:77:3F:48:2A:E5:55:F2:95:D4:4E:F5:CB:FA:19:42:18:C6:B3 Authority key identifier: FF:D0:BD:FC:6D:1D:6F:4E:D6:ED:38:39:03:9F:41:E9:ED:C6:6F:BA Certificate issuer: /CN=A919697D/serialNumber=FFD0BDFC6D1D6F4ED6ED3839039F41E9EDC66FBA Certificate serial: 08A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_9C9_G0db07W7Tg5A59B6e3Gb7o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.mft Manifest number: 08A5 Signing time: Tue 04 Nov 2025 20:35:35 +0000 Manifest this update: Tue 04 Nov 2025 20:35:34 +0000 Manifest next update: Tue 11 Nov 2025 20:35:34 +0000 Files and hashes: 1: _9C9_G0db07W7Tg5A59B6e3Gb7o.crl (hash: PwUC0OYTdvlHEjeAsGvwa4oEY3HoAyWQ7rqFQKatNT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.crl rsync://rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_9C9_G0db07W7Tg5A59B6e3Gb7o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:35:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2213 (0x8a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919697D, serialNumber=FFD0BDFC6D1D6F4ED6ED3839039F41E9EDC66FBA Validity Not Before: Nov 4 20:35:34 2025 GMT Not After : Nov 11 20:35:34 2025 GMT Subject: CN=690a6396-cc59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fd:d7:ce:bc:c5:f6:4f:4d:7b:25:7e:34:99: 65:91:16:8b:b6:41:96:9f:59:44:63:fe:d2:52:1a: ea:ed:05:10:65:ea:b5:c5:f5:68:d5:95:e5:9c:b2: 63:c8:96:13:92:a7:a4:f0:d9:a2:55:53:9e:b7:d2: 6a:ff:92:2d:19:8e:a2:26:e4:65:4e:a2:b4:d5:4d: 70:80:69:c4:40:3b:f8:ca:3d:3e:30:27:b9:d1:2f: 06:8e:85:2a:4f:94:eb:25:9c:06:d5:fe:64:af:00: 96:ce:84:fb:42:32:fd:93:89:f2:ad:29:c6:6a:78: f0:ca:8c:a7:b1:4e:59:69:e4:3f:0a:9d:6a:ae:54: e4:e8:f8:89:25:f4:37:51:77:35:e1:6b:0d:a3:d2: 44:59:0b:ea:07:ee:8b:5a:24:1d:ee:0f:4f:c5:0b: c9:79:c2:88:24:8e:5c:b6:10:18:6d:38:60:75:f7: ce:53:f2:89:e2:83:d1:1f:55:3f:10:ff:3b:3c:60: 55:13:78:d0:16:0f:bf:db:9d:7e:dc:4d:2f:c7:d3: 43:d9:ac:e7:92:b6:3a:1c:66:42:e5:ff:89:64:0d: ba:0a:9a:c3:24:87:b5:56:18:20:8f:5b:1e:8f:24: 93:e0:eb:a4:53:73:46:32:5e:4a:10:ab:09:f8:e7: 36:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:34:77:3F:48:2A:E5:55:F2:95:D4:4E:F5:CB:FA:19:42:18:C6:B3 X509v3 Authority Key Identifier: keyid:FF:D0:BD:FC:6D:1D:6F:4E:D6:ED:38:39:03:9F:41:E9:ED:C6:6F:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_9C9_G0db07W7Tg5A59B6e3Gb7o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:4b:78:ff:e4:b8:a9:e6:98:ee:a2:7a:36:1a:38:d5:67:78: 3c:ee:45:2e:6e:0a:4e:24:35:79:57:9f:9d:72:d4:19:02:aa: b5:a7:e0:a4:59:4e:54:e3:f1:29:4b:15:72:39:43:50:2b:86: 96:bd:3a:4b:07:6a:3b:c9:c4:83:03:64:80:4f:4a:f9:45:48: d1:b9:31:c3:34:ae:78:da:88:b1:17:09:5e:7c:46:69:ee:ab: c1:dc:33:bf:27:68:63:79:60:6e:e8:5b:a1:9e:b3:b3:56:c3: 08:25:65:4f:ff:33:e1:8b:60:14:76:10:9d:2e:b3:89:3e:fe: 22:0c:93:88:89:2c:81:0e:6e:35:48:9d:f3:5d:64:de:35:66: 7f:99:ad:5b:ee:2b:75:ca:56:19:98:8e:df:1b:7a:70:c2:3d: b0:32:2b:cc:26:4d:5d:77:f7:e9:e0:17:b5:a3:c3:24:d2:c8: e7:67:47:f1:9e:d7:86:60:1c:74:3f:2e:b1:43:73:43:26:c1: f4:fa:15:12:5f:c6:75:79:c6:e0:af:77:d2:63:04:5d:82:00: 8b:b2:ec:92:7f:88:ed:58:1d:e8:17:62:99:61:27:0b:7f:80: ba:89:72:77:a5:ed:b3:d2:e9:c3:c9:7a:4d:15:f8:0c:03:0b: 86:4c:c5:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY5N0QxMTAvBgNVBAUTKEZGRDBCREZDNkQxRDZGNEVENkVEMzgzOTAzOUY0MUU5 RURDNjZGQkEwHhcNMjUxMTA0MjAzNTM0WhcNMjUxMTExMjAzNTM0WjAYMRYwFAYD VQQDEw02OTBhNjM5Ni1jYzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/3XzrzF9k9NeyV+NJllkRaLtkGWn1lEY/7SUhrq7QUQZeq1xfVo1ZXlnLJj yJYTkqek8NmiVVOet9Jq/5ItGY6iJuRlTqK01U1wgGnEQDv4yj0+MCe50S8GjoUq T5TrJZwG1f5krwCWzoT7QjL9k4nyrSnGanjwyoynsU5ZaeQ/Cp1qrlTk6PiJJfQ3 UXc14WsNo9JEWQvqB+6LWiQd7g9PxQvJecKIJI5cthAYbThgdffOU/KJ4oPRH1U/ EP87PGBVE3jQFg+/251+3E0vx9ND2aznkrY6HGZC5f+JZA26CprDJIe1Vhggj1se jyST4OukU3NGMl5KEKsJ+Oc2zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN80dz9I KuVV8pXUTvXL+hlCGMazMB8GA1UdIwQYMBaAFP/QvfxtHW9O1u04OQOfQentxm+6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Njk3RC85RDI4RUMwQ0M3 QkYxMUVBOTAwODREMURDNEY5QUUwMi9fOUM5X0cwZGIwN1c3VGc1QTU5QjZlM0di N28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL185QzlfRzBkYjA3VzdUZzVBNTlCNmUzR2I3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Njk3RC85RDI4RUMwQ0M3QkYxMUVBOTAwODREMURDNEY5QUUwMi9fOUM5X0cwZGIw N1c3VGc1QTU5QjZlM0diN28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYS3j/5Lip5pjuono2GjjVZ3g87kUubgpOJDV5V5+dctQZAqq1p+Ck WU5U4/EpSxVyOUNQK4aWvTpLB2o7ycSDA2SAT0r5RUjRuTHDNK542oixFwlefEZp 7qvB3DO/J2hjeWBu6FuhnrOzVsMIJWVP/zPhi2AUdhCdLrOJPv4iDJOIiSyBDm41 SJ3zXWTeNWZ/ma1b7it1ylYZmI7fG3pwwj2wMivMJk1dd/fp4Be1o8Mk0sjnZ0fx nteGYBx0Py6xQ3NDJsH0+hUSX8Z1ecbgr3fSYwRdggCLsuySf4jtWB3oF2KZYScL f4C6iXJ3pe2z0unDyXpNFfgMAwuGTMXc -----END CERTIFICATE-----Generated at Wed Nov 5 11:57:12 2025 by rpki-client