$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft File: aU9WG2PafMV3kxY21HiK0rC0riA.mft (raw, json) Hash identifier: 7iSYN/AZdmDw4J2qytCYRvT0O41WMOZGpnW8A6JRiZc= Subject key identifier: B1:01:E2:9B:A2:71:36:B0:26:F1:42:75:2D:49:36:A5:3A:DB:A2:C3 Authority key identifier: 69:4F:56:1B:63:DA:7C:C5:77:93:16:36:D4:78:8A:D2:B0:B4:AE:20 Certificate issuer: /CN=A91A9083/serialNumber=694F561B63DA7CC577931636D4788AD2B0B4AE20 Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft Manifest number: 9B Signing time: Wed 05 Nov 2025 06:37:15 +0000 Manifest this update: Wed 05 Nov 2025 06:37:15 +0000 Manifest next update: Wed 12 Nov 2025 06:37:15 +0000 Files and hashes: 1: aU9WG2PafMV3kxY21HiK0rC0riA.crl (hash: aZVlVmtxQM4M7nnB1XWvXcHSFg94iJon0bASKsZXHqI=) 2: 8DDA6872D25311EF8EBE2767C4F9AE02.roa (hash: AKFJ0EmXDuIFiZbxj+tbIwUPsfALbR27GRMsJeNf4oY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.crl rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:37:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9083, serialNumber=694F561B63DA7CC577931636D4788AD2B0B4AE20 Validity Not Before: Nov 5 06:37:15 2025 GMT Not After : Nov 12 06:37:15 2025 GMT Subject: CN=690af09b-ff9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:85:75:a2:40:6a:f2:2d:0f:b9:f8:6f:e4:17: 85:a3:b7:98:c1:b9:6b:46:9c:3c:a1:42:bb:38:8b: c6:80:9d:ba:91:ba:15:2f:cf:28:34:5c:db:84:14: 5f:dd:60:15:80:bd:54:dc:4d:cb:d8:f5:47:65:8d: 51:33:12:5b:e5:a9:8c:3d:53:50:cf:a6:dc:f0:46: ce:64:23:e0:49:6b:43:a1:fa:a4:e2:27:bd:e4:07: 90:49:8b:e9:c7:65:8b:18:57:28:a4:fc:77:fc:ad: 53:54:ee:61:db:22:e4:f9:89:c8:f1:9e:8e:ac:e6: da:c8:82:53:0a:48:9a:c3:8f:b0:18:a7:9e:e3:ac: a5:b6:57:05:f5:18:16:19:bf:83:25:cf:62:c2:1c: 75:7c:cc:89:56:74:e8:d5:2e:f8:87:5a:bd:c8:31: d8:2b:7d:17:cc:b5:31:7e:ac:18:ca:ca:1c:c3:78: fb:c2:75:e4:9b:ec:21:00:db:5a:31:e7:54:9b:74: 99:bc:6f:b4:61:3c:f9:31:cf:81:7c:2d:e5:15:61: 5f:a4:35:24:cd:86:e3:f1:8b:6f:b7:4b:0d:94:ab: 1f:87:3c:96:84:d6:78:0c:fc:9a:59:7d:1c:a8:61: 27:7e:2f:7e:25:c0:92:32:16:c5:72:dc:38:e6:a8: 8d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:01:E2:9B:A2:71:36:B0:26:F1:42:75:2D:49:36:A5:3A:DB:A2:C3 X509v3 Authority Key Identifier: keyid:69:4F:56:1B:63:DA:7C:C5:77:93:16:36:D4:78:8A:D2:B0:B4:AE:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:6b:0a:6c:62:80:6e:c4:bc:e5:0b:6d:2c:22:7d:aa:b4:1f: 1b:74:31:e1:e7:ef:20:0b:82:be:68:7f:86:17:97:1f:fd:ef: 06:49:93:3f:50:0f:0e:83:b9:b4:94:42:32:ae:f3:5a:81:bc: e8:81:ef:2d:43:cd:cf:ab:a2:19:7e:67:57:07:b6:0f:a2:24: 7e:53:55:4a:b8:24:e8:20:1d:18:4d:9f:3e:55:0d:a9:5f:f2: 4e:71:59:ae:6d:bd:da:e3:67:fa:75:ca:76:85:83:1d:19:b8: 55:91:a1:ea:b4:23:42:c2:0f:80:80:c4:66:c1:83:d1:d9:ac: 2b:d0:e8:cd:0c:c5:ff:68:d0:02:4d:0c:82:90:a6:5a:44:e8: 89:0c:0b:5c:b7:b5:cb:fe:41:86:e8:e6:9a:a2:80:60:3c:3d: ed:e7:9d:78:3e:f6:ee:d6:18:d5:81:01:05:fb:21:23:0c:21: 5e:83:88:8f:b9:40:8e:e2:8e:7f:fb:44:b9:e1:a8:ce:81:af: 1a:9a:ec:b6:43:08:61:b1:66:e0:ac:c9:e6:e9:37:08:2d:2f: a4:97:35:f0:54:57:01:64:a8:a6:95:4a:4d:d4:3d:a8:63:0c: 68:f6:31:b3:8c:96:49:7a:3c:8a:a4:f8:3b:cb:e7:58:74:77: b3:70:51:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkwODMxMTAvBgNVBAUTKDY5NEY1NjFCNjNEQTdDQzU3NzkzMTYzNkQ0Nzg4QUQy QjBCNEFFMjAwHhcNMjUxMTA1MDYzNzE1WhcNMjUxMTEyMDYzNzE1WjAYMRYwFAYD VQQDEw02OTBhZjA5Yi1mZjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0oV1okBq8i0Pufhv5BeFo7eYwblrRpw8oUK7OIvGgJ26kboVL88oNFzbhBRf 3WAVgL1U3E3L2PVHZY1RMxJb5amMPVNQz6bc8EbOZCPgSWtDofqk4ie95AeQSYvp x2WLGFcopPx3/K1TVO5h2yLk+YnI8Z6OrObayIJTCkiaw4+wGKee46yltlcF9RgW Gb+DJc9iwhx1fMyJVnTo1S74h1q9yDHYK30XzLUxfqwYysocw3j7wnXkm+whANta MedUm3SZvG+0YTz5Mc+BfC3lFWFfpDUkzYbj8Ytvt0sNlKsfhzyWhNZ4DPyaWX0c qGEnfi9+JcCSMhbFctw45qiNGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLEB4pui cTawJvFCdS1JNqU626LDMB8GA1UdIwQYMBaAFGlPVhtj2nzFd5MWNtR4itKwtK4g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTA4My9DODZDRDgwNkQx QjAxMUVGODgzM0M5MzNDNEY5QUUwMi9hVTlXRzJQYWZNVjNreFkyMUhpSzByQzBy aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FVOVdHMlBhZk1WM2t4WTIxSGlLMHJDMHJpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTA4My9DODZDRDgwNkQxQjAxMUVGODgzM0M5MzNDNEY5QUUwMi9hVTlXRzJQYWZN VjNreFkyMUhpSzByQzByaUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdawpsYoBuxLzlC20sIn2qtB8bdDHh5+8gC4K+aH+GF5cf/e8GSZM/ UA8Og7m0lEIyrvNagbzoge8tQ83Pq6IZfmdXB7YPoiR+U1VKuCToIB0YTZ8+VQ2p X/JOcVmubb3a42f6dcp2hYMdGbhVkaHqtCNCwg+AgMRmwYPR2awr0OjNDMX/aNAC TQyCkKZaROiJDAtct7XL/kGG6OaaooBgPD3t5514Pvbu1hjVgQEF+yEjDCFeg4iP uUCO4o5/+0S54ajOga8amuy2QwhhsWbgrMnm6TcILS+klzXwVFcBZKimlUpN1D2o Ywxo9jGzjJZJejyKpPg7y+dYdHezcFEy -----END CERTIFICATE-----Generated at Wed Nov 5 13:31:48 2025 by rpki-client