$ rpki-client -vvf rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft File: ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft (raw, json) Hash identifier: /HEbxiB1qlOwSS07vgpZus8pbJZkXagWSQJQ1OA77/I= Subject key identifier: A1:50:5A:6A:4B:E5:87:B5:CA:41:9C:1E:4A:B5:2E:AF:70:C1:55:8A Authority key identifier: 6A:4F:43:11:00:50:F0:68:19:64:D8:58:F9:14:4E:05:2B:B8:89:9A Certificate issuer: /CN=A9199BDF/serialNumber=6A4F43110050F0681964D858F9144E052BB8899A Certificate serial: 0FAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak9DEQBQ8GgZZNhY-RROBSu4iZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft Manifest number: 0F9A Signing time: Tue 04 Nov 2025 17:38:21 +0000 Manifest this update: Tue 04 Nov 2025 17:38:20 +0000 Manifest next update: Tue 11 Nov 2025 17:38:20 +0000 Files and hashes: 1: ak9DEQBQ8GgZZNhY-RROBSu4iZo.crl (hash: Db0LaWbO2Cay2cYl5qO8dj+mJCgWFWGFbmlzLQ/SdO0=) 2: D193920E709411E99F95933EC4F9AE02.roa (hash: 8ztrTQcP/jo0fNou8ezgxWbldFvPq9dRhjV7IPER7OI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.crl rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak9DEQBQ8GgZZNhY-RROBSu4iZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:38:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4010 (0xfaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199BDF, serialNumber=6A4F43110050F0681964D858F9144E052BB8899A Validity Not Before: Nov 4 17:38:20 2025 GMT Not After : Nov 11 17:38:20 2025 GMT Subject: CN=690a3a0c-f3ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5f:c9:12:ad:bb:76:0b:8b:b6:74:0b:72:ec: 26:fb:7d:9a:00:11:e1:a0:c7:d2:e3:fa:8b:cc:e7: e5:b2:bf:d7:43:6b:bc:7b:e3:f8:5d:41:69:b5:11: 53:7c:4f:bb:60:7d:01:ed:3e:7a:3c:c2:68:c0:9c: e5:ee:c2:fc:6a:1c:c3:19:6a:09:10:91:40:62:d4: 13:ba:50:40:bf:3f:a9:e4:32:63:b2:0f:a9:17:2e: b9:c3:3f:79:e4:09:85:6e:d4:88:c4:57:66:ce:d8: 72:18:9b:0f:22:4b:2f:2b:78:3f:d9:c5:73:2c:c4: 4e:4f:d9:05:6b:94:8d:b8:52:a7:ce:b4:8e:b7:77: ec:7a:dd:0a:ec:bc:d5:cc:38:87:99:3f:3b:b3:a0: 8d:fe:50:95:72:e0:2c:db:d8:08:8f:fc:9f:3e:de: 15:68:60:fb:5f:96:13:d9:e6:3a:ab:7d:2a:43:db: 62:5b:90:5d:68:f5:72:7c:57:da:02:97:cb:4e:a4: 4f:a2:f4:ef:cd:2c:43:a6:17:16:b7:51:c4:d3:9e: 25:89:57:85:c1:ce:16:13:bc:1c:59:fe:7d:be:de: c0:7b:58:a8:7e:27:f1:23:ea:f4:a1:f8:29:27:48: fe:f3:69:db:86:a7:64:e3:a5:54:aa:41:b4:48:47: ab:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:50:5A:6A:4B:E5:87:B5:CA:41:9C:1E:4A:B5:2E:AF:70:C1:55:8A X509v3 Authority Key Identifier: keyid:6A:4F:43:11:00:50:F0:68:19:64:D8:58:F9:14:4E:05:2B:B8:89:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak9DEQBQ8GgZZNhY-RROBSu4iZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:e5:c4:90:f0:3c:9b:91:d6:1e:a7:ba:e7:be:3f:d9:8d:5f: 39:1a:3e:ad:00:38:5c:ab:d0:48:a3:d1:49:6e:7f:7e:9d:a5: 63:08:a0:de:a1:e2:45:fa:cf:a6:0f:9d:53:09:0c:4c:4b:9f: 46:01:a1:f1:a2:8a:e0:16:6e:e0:69:a7:b0:65:da:cf:a2:0e: cb:dd:84:68:1b:ce:ff:e6:75:00:1b:42:5e:b4:de:76:8e:72: d8:58:d0:29:ac:b3:8c:c9:59:ee:08:12:11:25:63:c9:01:24: 0d:a4:3b:b0:a4:e3:9d:48:24:85:89:2d:8a:6a:29:d7:f4:f9: 3c:32:14:69:53:15:cb:8a:18:f4:af:bf:b7:3a:2e:ed:b1:c4: 90:1a:d4:a9:eb:49:5b:7d:6b:5c:8f:fb:08:30:f3:d0:bb:29: 0b:38:a1:36:65:e4:87:5c:60:f4:17:24:16:5d:f5:e0:66:8e: 39:f9:ea:de:a1:9b:21:bf:b1:85:fe:31:ce:30:d1:be:12:4b: cd:60:20:60:02:4f:e2:8d:18:91:e8:7d:2c:a3:73:89:cb:57: 02:19:00:ba:47:3b:35:3c:36:34:5a:4e:18:46:8d:c9:c1:67: 4b:5b:9e:81:03:b4:7a:e9:f3:de:91:1e:6f:47:15:19:53:82: ad:d5:19:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlCREYxMTAvBgNVBAUTKDZBNEY0MzExMDA1MEYwNjgxOTY0RDg1OEY5MTQ0RTA1 MkJCODg5OUEwHhcNMjUxMTA0MTczODIwWhcNMjUxMTExMTczODIwWjAYMRYwFAYD VQQDEw02OTBhM2EwYy1mM2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxl/JEq27dguLtnQLcuwm+32aABHhoMfS4/qLzOflsr/XQ2u8e+P4XUFptRFT fE+7YH0B7T56PMJowJzl7sL8ahzDGWoJEJFAYtQTulBAvz+p5DJjsg+pFy65wz95 5AmFbtSIxFdmzthyGJsPIksvK3g/2cVzLMROT9kFa5SNuFKnzrSOt3fset0K7LzV zDiHmT87s6CN/lCVcuAs29gIj/yfPt4VaGD7X5YT2eY6q30qQ9tiW5BdaPVyfFfa ApfLTqRPovTvzSxDphcWt1HE054liVeFwc4WE7wcWf59vt7Ae1iofifxI+r0ofgp J0j+82nbhqdk46VUqkG0SEerBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKFQWmpL 5Ye1ykGcHkq1Lq9wwVWKMB8GA1UdIwQYMBaAFGpPQxEAUPBoGWTYWPkUTgUruIma MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUJERi9FNzBFMEE5ODcw OTMxMUU5ODBCRDdDM0RDNEY5QUUwMi9hazlERVFCUThHZ1paTmhZLVJST0JTdTRp Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FrOURFUUJROEdnWlpOaFktUlJPQlN1NGlaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUJERi9FNzBFMEE5ODcwOTMxMUU5ODBCRDdDM0RDNEY5QUUwMi9hazlERVFCUThH Z1paTmhZLVJST0JTdTRpWm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBm5cSQ8DybkdYep7rnvj/ZjV85Gj6tADhcq9BIo9FJbn9+naVjCKDe oeJF+s+mD51TCQxMS59GAaHxoorgFm7gaaewZdrPog7L3YRoG87/5nUAG0JetN52 jnLYWNAprLOMyVnuCBIRJWPJASQNpDuwpOOdSCSFiS2KainX9Pk8MhRpUxXLihj0 r7+3Oi7tscSQGtSp60lbfWtcj/sIMPPQuykLOKE2ZeSHXGD0FyQWXfXgZo45+ere oZshv7GF/jHOMNG+EkvNYCBgAk/ijRiR6H0so3OJy1cCGQC6Rzs1PDY0Wk4YRo3J wWdLW56BA7R66fPekR5vRxUZU4Kt1Rna -----END CERTIFICATE-----Generated at Tue Nov 4 20:23:29 2025 by rpki-client