$ rpki-client -vvf rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft File: 489F-AUQY7vbMX_dFREyqUAE_Vs.mft (raw, json) Hash identifier: Uu8NRxY4iICVM15PN7Q+F1iyQJ9RxRyTcChb2LApISY= Subject key identifier: 80:E3:F7:B5:A2:9C:21:80:13:CC:8E:00:1E:D7:CC:D9:BA:17:61:5C Authority key identifier: E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B Certificate issuer: /CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Certificate serial: 0331 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft Manifest number: 0319 Signing time: Wed 05 Nov 2025 01:16:00 +0000 Manifest this update: Wed 05 Nov 2025 01:15:59 +0000 Manifest next update: Wed 12 Nov 2025 01:15:59 +0000 Files and hashes: 1: 489F-AUQY7vbMX_dFREyqUAE_Vs.crl (hash: uawCL+1HNiObQfNZ+sl9oM5E8h5NBkvSeBzr6UXukhY=) 2: 920E981CCAAA11ED8371524CC4F9AE02.roa (hash: +6obkqNFt0tnKMRz6dRit6ArMoN+fxhvRElw6ROUx6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:15:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 817 (0x331) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197202, serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Validity Not Before: Nov 5 01:15:59 2025 GMT Not After : Nov 12 01:15:59 2025 GMT Subject: CN=690aa54f-e238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b4:82:c6:9c:d4:5f:e9:02:8f:0f:ac:85:6d: 54:46:15:68:6d:6e:77:d1:6e:ea:21:86:bb:fb:1c: c3:82:ae:80:78:6a:9a:80:f6:d3:d7:e1:be:bf:c1: b9:34:f3:29:11:d9:cb:cf:15:8d:ac:97:5d:70:02: 20:3d:14:8e:09:c1:ca:dc:a7:29:41:b2:f0:8e:7f: c2:db:d3:c4:fc:8b:07:69:7b:ea:7a:01:f4:18:84: b6:8e:0d:d9:da:59:aa:5b:95:60:80:d8:7d:3a:80: 83:a7:f5:0e:27:85:8f:2e:36:e3:aa:ef:ec:e7:86: 54:63:b4:14:35:e9:c8:b8:92:17:26:7e:ff:f6:d0: 8a:85:c2:f7:67:42:5e:7e:ed:4b:4a:33:2f:d3:d9: 88:66:ee:09:f3:56:a8:f4:73:e4:8f:58:44:7b:22: 5c:b6:34:65:2a:eb:87:5d:d0:31:11:0e:d5:94:72: b7:c2:62:b8:5b:41:f6:25:6a:2b:9b:9d:d3:8b:a7: 44:03:79:68:64:e1:1a:5d:07:c4:69:ce:fc:ca:85: 54:eb:1c:b1:c8:4f:dc:23:23:18:0f:49:5d:98:b1: 34:5c:66:ff:d9:d4:77:35:55:a9:1c:f5:20:47:55: cf:50:b2:f1:fb:f7:2d:d8:60:91:8a:01:e6:a4:79: 1b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:E3:F7:B5:A2:9C:21:80:13:CC:8E:00:1E:D7:CC:D9:BA:17:61:5C X509v3 Authority Key Identifier: keyid:E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:14:fb:b9:67:b5:b6:57:38:93:ea:d5:36:61:87:4c:bc:61: 64:b3:61:09:d8:a7:ca:9f:2d:e1:8c:4f:91:3a:1b:22:62:76: 4e:93:b7:e7:37:f5:da:cc:ed:c5:a7:c5:31:7c:7f:25:a4:ae: 74:66:7a:c1:a9:69:cc:1e:6a:0b:82:64:89:8f:f6:01:5b:6e: 37:28:22:58:1e:4a:c2:39:53:2a:66:3f:fc:00:e2:5a:b2:b1: 6a:2a:7a:a2:74:b3:6c:47:33:36:6c:6b:20:a1:d7:ba:c3:e9: 87:2a:9f:ae:49:24:ca:5f:03:77:22:97:71:66:af:6c:28:a6: a3:58:d8:e4:26:61:f7:07:ee:6e:da:8e:cf:eb:38:37:18:5c: a9:53:c8:2f:5c:ef:69:26:6d:b6:62:57:d7:e7:0a:45:54:96: ea:9a:62:e8:1a:c9:81:0d:f9:00:7e:67:76:d4:39:d6:46:02: 5b:17:e7:66:b1:d4:ee:bc:8e:a6:10:00:a7:04:ff:c8:e8:5e: d3:8a:21:22:69:cc:8e:75:bc:cd:35:31:1c:85:d4:32:ac:5e: 15:57:0e:ac:f7:b9:35:20:46:cc:25:50:4f:b6:5f:05:60:9c: 77:59:75:55:df:70:54:de:08:b1:c2:be:44:bf:6e:4d:94:d3: 86:18:49:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyMDIxMTAvBgNVBAUTKEUzQ0Y0NUY4MDUxMDYzQkJEQjMxN0ZERDE1MTEzMkE5 NDAwNEZENUIwHhcNMjUxMTA1MDExNTU5WhcNMjUxMTEyMDExNTU5WjAYMRYwFAYD VQQDEw02OTBhYTU0Zi1lMjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbSCxpzUX+kCjw+shW1URhVobW530W7qIYa7+xzDgq6AeGqagPbT1+G+v8G5 NPMpEdnLzxWNrJddcAIgPRSOCcHK3KcpQbLwjn/C29PE/IsHaXvqegH0GIS2jg3Z 2lmqW5VggNh9OoCDp/UOJ4WPLjbjqu/s54ZUY7QUNenIuJIXJn7/9tCKhcL3Z0Je fu1LSjMv09mIZu4J81ao9HPkj1hEeyJctjRlKuuHXdAxEQ7VlHK3wmK4W0H2JWor m53Ti6dEA3loZOEaXQfEac78yoVU6xyxyE/cIyMYD0ldmLE0XGb/2dR3NVWpHPUg R1XPULLx+/ct2GCRigHmpHkb9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDj97Wi nCGAE8yOAB7XzNm6F2FcMB8GA1UdIwQYMBaAFOPPRfgFEGO72zF/3RURMqlABP1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzIwMi8wQUZFQ0E3MEY3 MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3dmJNWF9kRlJFeXFVQUVf VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ4OUYtQVVRWTd2Yk1YX2RGUkV5cVVBRV9Wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzIwMi8wQUZFQ0E3MEY3MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3 dmJNWF9kRlJFeXFVQUVfVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHFPu5Z7W2VziT6tU2YYdMvGFks2EJ2KfKny3hjE+ROhsiYnZOk7fn N/XazO3Fp8UxfH8lpK50ZnrBqWnMHmoLgmSJj/YBW243KCJYHkrCOVMqZj/8AOJa srFqKnqidLNsRzM2bGsgode6w+mHKp+uSSTKXwN3IpdxZq9sKKajWNjkJmH3B+5u 2o7P6zg3GFypU8gvXO9pJm22YlfX5wpFVJbqmmLoGsmBDfkAfmd21DnWRgJbF+dm sdTuvI6mEACnBP/I6F7TiiEiacyOdbzNNTEchdQyrF4VVw6s97k1IEbMJVBPtl8F YJx3WXVV33BU3gixwr5Ev25NlNOGGElB -----END CERTIFICATE-----Generated at Wed Nov 5 12:21:12 2025 by rpki-client