$ rpki-client -vvf rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft File: 489F-AUQY7vbMX_dFREyqUAE_Vs.mft (raw, json) Hash identifier: sx3DOETqunC+Hn7aEfBvTfAAdPSjs2CA/InAjNr34jg= Subject key identifier: 5E:9B:39:2D:A7:E8:84:C9:CB:26:84:56:32:75:42:38:F0:83:9E:F3 Authority key identifier: E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B Certificate issuer: /CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Certificate serial: 0329 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft Manifest number: 0311 Signing time: Sun 19 Oct 2025 03:18:27 +0000 Manifest this update: Sun 19 Oct 2025 03:18:26 +0000 Manifest next update: Sun 26 Oct 2025 03:18:26 +0000 Files and hashes: 1: 489F-AUQY7vbMX_dFREyqUAE_Vs.crl (hash: CNyl5Ft1lkJEZ/igT+QTQhPlmKBuXWj1kqIpVOjdmnw=) 2: 920E981CCAAA11ED8371524CC4F9AE02.roa (hash: +6obkqNFt0tnKMRz6dRit6ArMoN+fxhvRElw6ROUx6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:18:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 809 (0x329) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197202, serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Validity Not Before: Oct 19 03:18:26 2025 GMT Not After : Oct 26 03:18:26 2025 GMT Subject: CN=68f45882-91fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c8:69:b6:c0:70:52:33:dc:59:0d:98:69:65: 3a:3a:20:aa:e3:85:57:90:26:46:4b:bf:51:98:05: f1:ce:f8:d4:4f:6c:c8:69:bc:68:67:f5:ee:8b:81: ad:5c:41:fc:3e:32:17:ff:17:ab:b0:62:54:ff:5c: 6b:48:87:5f:8c:52:71:55:3b:f3:24:ac:46:71:16: 9e:4e:5e:b3:d4:ef:6c:94:70:85:6c:1b:cd:64:e5: 40:b3:11:29:3e:27:15:93:23:06:f2:1d:ef:78:8e: db:7c:15:60:3c:b6:9f:f0:a4:3a:ff:9c:8b:9b:00: d1:e9:16:08:04:a0:94:15:41:2f:35:30:22:94:08: d2:6a:e7:a5:77:d6:41:6e:f0:c2:e0:50:3d:db:16: d4:62:4b:7e:3c:18:26:21:47:e7:d2:d6:53:dc:35: 7e:a7:04:c6:31:be:89:5c:4c:e5:8c:a9:6f:dd:8b: 6a:11:df:f7:93:a9:11:75:d3:a3:ea:bb:d1:4d:8a: f1:e3:da:28:fd:9e:ab:d2:1c:48:00:9a:e5:2d:d0: 6c:3c:2b:13:2e:fc:32:36:3f:18:21:7c:8d:9b:7a: 52:8d:4d:c0:cc:28:ab:4f:53:d0:d9:a1:80:a0:7c: c3:5e:76:73:c1:a0:7e:35:ae:ec:12:2a:57:08:5c: 5c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:9B:39:2D:A7:E8:84:C9:CB:26:84:56:32:75:42:38:F0:83:9E:F3 X509v3 Authority Key Identifier: keyid:E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:f6:f3:87:0d:89:1d:40:61:b7:0c:9a:26:ee:88:57:3d:cb: b6:8c:55:cb:e2:1a:28:e4:b7:66:e9:16:8d:b7:4c:02:7b:45: 77:59:94:4b:d2:42:a3:84:79:90:3d:aa:37:be:a7:36:ba:7c: 52:17:78:d3:30:07:82:d2:ce:80:68:b5:ea:27:ae:3c:73:3f: ac:1f:73:16:a6:00:f5:5a:37:cc:b2:cb:6c:3c:49:f5:70:62: 38:8b:9d:86:d6:37:7a:e0:83:e6:c0:40:00:ea:72:b3:66:60: 91:78:39:8c:fa:d7:c8:6a:d2:70:fb:2a:01:20:c8:07:ba:6c: b1:96:32:da:6e:e7:57:e1:c5:e9:12:e7:81:66:6f:b4:c8:fb: 34:21:15:33:1e:b3:cf:94:79:02:92:01:24:53:dd:a0:a5:73: 9b:49:aa:ec:86:a1:0f:8c:87:26:60:13:96:d0:f4:0f:34:b5: 87:b2:96:16:47:8a:80:98:5b:8e:bc:e0:7f:be:cb:ab:40:27: bb:63:6b:2b:9e:9e:65:f8:80:38:43:6e:ee:e3:4b:df:04:90: 8b:29:71:d7:8f:ee:23:78:6a:ac:16:77:bb:61:cf:48:b9:47: 29:b9:bb:b3:71:14:0f:13:6a:b1:52:e4:85:d1:10:b2:20:2f: d0:d6:31:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyMDIxMTAvBgNVBAUTKEUzQ0Y0NUY4MDUxMDYzQkJEQjMxN0ZERDE1MTEzMkE5 NDAwNEZENUIwHhcNMjUxMDE5MDMxODI2WhcNMjUxMDI2MDMxODI2WjAYMRYwFAYD VQQDEw02OGY0NTg4Mi05MWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAschptsBwUjPcWQ2YaWU6OiCq44VXkCZGS79RmAXxzvjUT2zIabxoZ/Xui4Gt XEH8PjIX/xersGJU/1xrSIdfjFJxVTvzJKxGcRaeTl6z1O9slHCFbBvNZOVAsxEp PicVkyMG8h3veI7bfBVgPLaf8KQ6/5yLmwDR6RYIBKCUFUEvNTAilAjSaueld9ZB bvDC4FA92xbUYkt+PBgmIUfn0tZT3DV+pwTGMb6JXEzljKlv3YtqEd/3k6kRddOj 6rvRTYrx49oo/Z6r0hxIAJrlLdBsPCsTLvwyNj8YIXyNm3pSjU3AzCirT1PQ2aGA oHzDXnZzwaB+Na7sEipXCFxcYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6bOS2n 6ITJyyaEVjJ1Qjjwg57zMB8GA1UdIwQYMBaAFOPPRfgFEGO72zF/3RURMqlABP1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzIwMi8wQUZFQ0E3MEY3 MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3dmJNWF9kRlJFeXFVQUVf VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ4OUYtQVVRWTd2Yk1YX2RGUkV5cVVBRV9Wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzIwMi8wQUZFQ0E3MEY3MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3 dmJNWF9kRlJFeXFVQUVfVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCU9vOHDYkdQGG3DJom7ohXPcu2jFXL4hoo5Ldm6RaNt0wCe0V3WZRL 0kKjhHmQPao3vqc2unxSF3jTMAeC0s6AaLXqJ648cz+sH3MWpgD1WjfMsstsPEn1 cGI4i52G1jd64IPmwEAA6nKzZmCReDmM+tfIatJw+yoBIMgHumyxljLabudX4cXp EueBZm+0yPs0IRUzHrPPlHkCkgEkU92gpXObSarshqEPjIcmYBOW0PQPNLWHspYW R4qAmFuOvOB/vsurQCe7Y2srnp5l+IA4Q27u40vfBJCLKXHXj+4jeGqsFne7Yc9I uUcpubuzcRQPE2qxUuSF0RCyIC/Q1jHs -----END CERTIFICATE-----Generated at Mon Oct 20 01:46:01 2025 by rpki-client