$ rpki-client -vvf rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft File: _wsVRthMDZNVkFtsopPiW0QJSMU.mft (raw, json) Hash identifier: 1vt3VHOxJCTpWUM2CqDoQBTyv2Weu0A8O0zG4tA7lX4= Subject key identifier: 9F:E6:99:70:0A:8E:AE:64:F1:F6:C1:59:D9:F2:F4:D0:B1:1B:39:12 Authority key identifier: FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 Certificate issuer: /CN=A9198F53/serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Certificate serial: 0B69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft Manifest number: 0B61 Signing time: Sun 02 Nov 2025 19:05:26 +0000 Manifest this update: Sun 02 Nov 2025 19:05:26 +0000 Manifest next update: Sun 09 Nov 2025 19:05:26 +0000 Files and hashes: 1: _wsVRthMDZNVkFtsopPiW0QJSMU.crl (hash: YbisYTtSp8cUvb0VWeI0xIe7LLzVNc5mvHMLKmdJGbU=) 2: 0B1FBD4A40F611EAACD44866C4F9AE02.roa (hash: cE46r29KbbkAXjWAwbBON9XRly7r0/vPAZnB5kdMO20=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:05:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2921 (0xb69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198F53, serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Validity Not Before: Nov 2 19:05:26 2025 GMT Not After : Nov 9 19:05:26 2025 GMT Subject: CN=6907ab76-76f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:59:72:77:bb:87:e3:9a:a9:54:b6:e9:14:01: 67:18:ea:2c:5b:eb:ef:7c:48:27:90:5b:e0:c1:be: 75:d8:d8:b5:8f:2c:e0:93:74:80:78:e9:1a:e7:fb: 3d:7f:4e:38:3d:09:3d:98:ca:33:53:ca:be:c9:89: 93:87:5e:b6:a6:46:5e:fb:ad:5c:2b:0e:14:90:dc: 59:13:5d:c2:2e:de:5b:b0:8f:7f:4d:ed:36:00:bf: b9:4d:c4:e3:78:f3:79:52:93:35:00:7d:71:df:d1: c5:cf:51:e1:ec:8b:8c:56:81:d4:8e:ba:96:e9:fc: 89:28:e4:6a:93:00:a4:2c:3c:6c:f1:7e:ce:f1:21: e3:be:8a:ae:02:90:f7:c3:ec:ab:6c:a2:b9:9c:eb: f3:f7:97:ef:59:e4:de:d2:cc:63:78:7c:fc:ff:aa: c6:e5:98:00:94:40:05:cd:ae:ca:f2:b7:e6:20:2b: b9:81:4c:99:9b:23:d3:40:72:70:77:bc:13:83:e2: b7:52:13:93:06:20:0e:cd:ed:5b:5f:69:1d:6a:1e: 04:62:b2:75:2b:33:5f:a9:42:5d:73:78:b8:47:a4: ec:3a:0a:e9:8a:be:42:87:c2:a7:aa:08:6e:6e:28: 9c:0f:75:63:4b:ad:c0:dd:4d:18:25:6a:8c:16:71: 4b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:E6:99:70:0A:8E:AE:64:F1:F6:C1:59:D9:F2:F4:D0:B1:1B:39:12 X509v3 Authority Key Identifier: keyid:FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:6a:bc:e9:8f:06:a9:25:d3:75:c8:05:23:2c:83:96:4e:29: cf:bf:26:8f:49:2b:d7:88:8b:8a:53:68:3d:fd:7c:8e:60:4d: 45:25:99:db:3b:f5:a4:5c:a8:f0:df:aa:ff:bf:45:64:e2:f3: f9:d7:14:a7:a9:90:f1:62:1e:08:1c:00:ed:20:8e:c1:92:c1: 8b:dc:27:7a:a2:ab:c5:6e:76:dd:df:2e:8a:0d:f7:17:1b:8f: 27:b2:ec:33:31:c5:33:17:26:b2:fb:ad:54:49:2a:82:db:5e: 05:88:66:63:b3:8c:4f:41:66:f5:dd:7e:b1:6a:dc:25:8c:b7: a4:d9:3c:d9:92:6a:e7:a4:ca:b4:f0:13:64:66:90:4b:4a:4f: 38:92:f3:d1:d9:fe:b9:9d:bc:f0:58:86:93:4e:9e:6d:98:ae: b3:5c:f5:cf:db:4c:1e:17:f6:9b:b7:11:ca:4d:32:27:01:d3: 02:4e:85:6b:dd:ab:28:34:fa:1f:39:e2:55:32:f6:fa:a6:c1: ae:0e:3d:12:51:dd:f2:27:61:6d:0a:64:79:47:18:25:a8:f9: d3:ca:38:ec:7b:c0:42:20:08:a6:af:11:01:6e:ab:f6:98:ee: d1:57:f3:be:69:69:07:bd:67:a0:25:cf:90:ab:ce:26:6a:9b: 13:17:04:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThGNTMxMTAvBgNVBAUTKEZGMEIxNTQ2RDg0QzBEOTM1NTkwNUI2Q0EyOTNFMjVC NDQwOTQ4QzUwHhcNMjUxMTAyMTkwNTI2WhcNMjUxMTA5MTkwNTI2WjAYMRYwFAYD VQQDEw02OTA3YWI3Ni03NmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxllyd7uH45qpVLbpFAFnGOosW+vvfEgnkFvgwb512Ni1jyzgk3SAeOka5/s9 f044PQk9mMozU8q+yYmTh162pkZe+61cKw4UkNxZE13CLt5bsI9/Te02AL+5TcTj ePN5UpM1AH1x39HFz1Hh7IuMVoHUjrqW6fyJKORqkwCkLDxs8X7O8SHjvoquApD3 w+yrbKK5nOvz95fvWeTe0sxjeHz8/6rG5ZgAlEAFza7K8rfmICu5gUyZmyPTQHJw d7wTg+K3UhOTBiAOze1bX2kdah4EYrJ1KzNfqUJdc3i4R6TsOgrpir5Ch8Knqghu biicD3VjS63A3U0YJWqMFnFLJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ/mmXAK jq5k8fbBWdny9NCxGzkSMB8GA1UdIwQYMBaAFP8LFUbYTA2TVZBbbKKT4ltECUjF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEY1My9DRDA2MjE3NjQw RjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURaTlZrRnRzb3BQaVcwUUpT TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193c1ZSdGhNRFpOVmtGdHNvcFBpVzBRSlNNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEY1My9DRDA2MjE3NjQwRjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURa TlZrRnRzb3BQaVcwUUpTTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCParzpjwapJdN1yAUjLIOWTinPvyaPSSvXiIuKU2g9/XyOYE1FJZnb O/WkXKjw36r/v0Vk4vP51xSnqZDxYh4IHADtII7BksGL3Cd6oqvFbnbd3y6KDfcX G48nsuwzMcUzFyay+61USSqC214FiGZjs4xPQWb13X6xatwljLek2TzZkmrnpMq0 8BNkZpBLSk84kvPR2f65nbzwWIaTTp5tmK6zXPXP20weF/abtxHKTTInAdMCToVr 3asoNPofOeJVMvb6psGuDj0SUd3yJ2FtCmR5RxglqPnTyjjse8BCIAimrxEBbqv2 mO7RV/O+aWkHvWegJc+Qq84mapsTFwTl -----END CERTIFICATE-----Generated at Tue Nov 4 08:19:50 2025 by rpki-client