$ rpki-client -vvf rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft File: lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft (raw, json) Hash identifier: ZQtZ9+prkmyezxC5H8qxB9rdWVrp8MSD0B/Du9lrogA= Subject key identifier: 9F:58:3C:5F:4B:56:3C:91:6C:DE:3D:61:6B:7F:37:5B:B8:80:E9:1C Authority key identifier: 95:2F:71:2D:F1:18:41:20:8A:3B:4A:87:46:20:C5:9F:EE:D7:70:B0 Certificate issuer: /CN=A9110F1F/serialNumber=952F712DF11841208A3B4A874620C59FEED770B0 Certificate serial: 0298 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lS9xLfEYQSCKO0qHRiDFn-7XcLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft Manifest number: 0294 Signing time: Sun 19 Oct 2025 03:47:22 +0000 Manifest this update: Sun 19 Oct 2025 03:47:22 +0000 Manifest next update: Sun 26 Oct 2025 03:47:22 +0000 Files and hashes: 1: lS9xLfEYQSCKO0qHRiDFn-7XcLA.crl (hash: YG49yIkxskmQhU54hcCGdLRLXMS/tOZQZs36Lskd+xo=) 2: AF6A12881EBB11EDB35A2561C4F9AE02.roa (hash: 27aLcYczZ5MYFXDnhdewNPk3kbRzrioX5es/1Wn4iNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.crl rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lS9xLfEYQSCKO0qHRiDFn-7XcLA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:47:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 664 (0x298) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110F1F, serialNumber=952F712DF11841208A3B4A874620C59FEED770B0 Validity Not Before: Oct 19 03:47:22 2025 GMT Not After : Oct 26 03:47:22 2025 GMT Subject: CN=68f45f4a-45cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:95:da:d7:25:ac:ff:ec:17:a5:96:ca:71:bc: 88:25:03:e2:9d:b2:30:a2:5c:fb:4c:e8:43:73:00: fc:2c:f2:8d:86:23:ba:7d:ba:d3:67:f8:40:13:46: 7b:25:bd:a1:a1:a4:a4:29:1e:56:bf:5a:7f:8c:c0: 6e:54:2a:2f:6c:b0:6d:56:05:06:5a:c8:0a:4c:a7: 49:e3:a8:c9:ce:0f:25:05:64:dd:05:b9:77:1f:be: c4:0d:8d:68:0e:5f:39:4f:6d:18:ec:ca:f4:83:47: 4b:79:57:12:95:f0:d1:d9:22:4c:f5:26:bc:87:51: 95:a0:b1:e8:7b:61:4c:e1:c8:14:ca:0b:2a:d5:42: 00:92:a2:dc:d4:ae:2d:d3:3b:eb:9e:a4:cf:81:44: fa:3c:1a:89:d9:0d:56:14:08:f9:d5:db:c1:16:4c: 25:5c:a7:96:cf:d4:af:36:23:cf:93:d4:53:6e:33: 95:03:28:13:23:9c:7c:16:97:f2:2d:ce:61:3a:7a: 13:22:9e:80:a5:65:d9:f1:ec:aa:70:49:e6:fb:95: 91:52:96:be:9e:84:10:fd:38:58:5b:95:22:16:4d: 36:fa:7f:b7:1c:8b:20:ca:55:45:97:98:ce:16:d8: 6d:44:0c:04:39:77:21:eb:49:34:ea:99:04:7f:1f: 6e:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:58:3C:5F:4B:56:3C:91:6C:DE:3D:61:6B:7F:37:5B:B8:80:E9:1C X509v3 Authority Key Identifier: keyid:95:2F:71:2D:F1:18:41:20:8A:3B:4A:87:46:20:C5:9F:EE:D7:70:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lS9xLfEYQSCKO0qHRiDFn-7XcLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:7c:e2:47:e1:16:bb:0d:da:cc:59:5d:70:dc:93:11:56:0c: c7:0d:93:cf:1b:7d:74:37:83:32:12:5a:dd:fe:ca:36:96:13: 59:24:b3:81:19:8b:9c:52:a2:bc:85:1b:1a:50:73:e1:b9:9d: 51:3b:26:23:6b:18:2e:77:a1:34:40:48:a1:4f:b9:82:a1:b7: df:3c:fc:8e:d9:8a:ce:4f:8d:b6:a0:02:6c:d5:40:4d:8c:e6: 63:97:4f:75:8c:63:31:ed:b0:0f:de:bf:08:5b:d1:0a:95:cf: a8:9d:27:12:db:3d:74:f4:e3:15:5a:9d:f7:33:32:8c:88:95: b2:fb:e6:f8:ff:54:2e:40:17:49:9b:1b:af:99:f0:9d:f2:e6: f6:fb:1a:2b:d8:d3:cb:0b:ab:c7:41:1f:a9:1c:1e:e7:74:40: 2c:42:29:3d:d1:71:ea:c3:40:a8:06:c7:1e:a6:33:3c:3b:26: 05:f9:d4:d3:ea:de:7c:c8:12:56:f5:7f:b1:99:87:8a:04:ee: d6:6a:9e:6c:9d:e6:89:d3:47:ba:cf:ec:83:e2:7c:fe:b9:c3: 07:bb:f8:f1:ed:f5:ab:dd:23:ad:c4:b1:e2:b3:bc:53:0b:21: 98:1c:ea:18:bb:cc:93:b6:23:0a:43:8a:7c:02:8b:b8:9e:c4: 86:35:f2:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBGMUYxMTAvBgNVBAUTKDk1MkY3MTJERjExODQxMjA4QTNCNEE4NzQ2MjBDNTlG RUVENzcwQjAwHhcNMjUxMDE5MDM0NzIyWhcNMjUxMDI2MDM0NzIyWjAYMRYwFAYD VQQDEw02OGY0NWY0YS00NWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4pXa1yWs/+wXpZbKcbyIJQPinbIwolz7TOhDcwD8LPKNhiO6fbrTZ/hAE0Z7 Jb2hoaSkKR5Wv1p/jMBuVCovbLBtVgUGWsgKTKdJ46jJzg8lBWTdBbl3H77EDY1o Dl85T20Y7Mr0g0dLeVcSlfDR2SJM9Sa8h1GVoLHoe2FM4cgUygsq1UIAkqLc1K4t 0zvrnqTPgUT6PBqJ2Q1WFAj51dvBFkwlXKeWz9SvNiPPk9RTbjOVAygTI5x8Fpfy Lc5hOnoTIp6ApWXZ8eyqcEnm+5WRUpa+noQQ/ThYW5UiFk02+n+3HIsgylVFl5jO FthtRAwEOXch60k06pkEfx9u7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ9YPF9L VjyRbN49YWt/N1u4gOkcMB8GA1UdIwQYMBaAFJUvcS3xGEEgijtKh0YgxZ/u13Cw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEYxRi82QzBGRUY1QTFF QjkxMUVEOUZDNjg3NjBDNEY5QUUwMi9sUzl4TGZFWVFTQ0tPMHFIUmlERm4tN1hj TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTOXhMZkVZUVNDS08wcUhSaURGbi03WGNMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEYxRi82QzBGRUY1QTFFQjkxMUVEOUZDNjg3NjBDNEY5QUUwMi9sUzl4TGZFWVFT Q0tPMHFIUmlERm4tN1hjTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnfOJH4Ra7DdrMWV1w3JMRVgzHDZPPG310N4MyElrd/so2lhNZJLOB GYucUqK8hRsaUHPhuZ1ROyYjaxgud6E0QEihT7mCobffPPyO2YrOT422oAJs1UBN jOZjl091jGMx7bAP3r8IW9EKlc+onScS2z109OMVWp33MzKMiJWy++b4/1QuQBdJ mxuvmfCd8ub2+xor2NPLC6vHQR+pHB7ndEAsQik90XHqw0CoBscepjM8OyYF+dTT 6t58yBJW9X+xmYeKBO7Wap5sneaJ00e6z+yD4nz+ucMHu/jx7fWr3SOtxLHis7xT CyGYHOoYu8yTtiMKQ4p8Aou4nsSGNfKW -----END CERTIFICATE-----Generated at Mon Oct 20 08:01:44 2025 by rpki-client