$ rpki-client -vvf rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.mft File: -jVgKfx3KltDJpwxataFxLtaZW0.mft (raw, json) Hash identifier: f6syQugFbNBPX47Ps/XWvaZ0Gw54a3kaE4REoU57KPM= Subject key identifier: 09:D2:46:86:F8:73:0F:47:B0:B6:84:8D:A7:4C:86:B1:A9:C0:74:76 Authority key identifier: FA:35:60:29:FC:77:2A:5B:43:26:9C:31:6A:D6:85:C4:BB:5A:65:6D Certificate issuer: /CN=A9116B5E/serialNumber=FA356029FC772A5B43269C316AD685C4BB5A656D Certificate serial: 0669 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-jVgKfx3KltDJpwxataFxLtaZW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.mft Manifest number: 0657 Signing time: Sun 19 Oct 2025 00:13:16 +0000 Manifest this update: Sun 19 Oct 2025 00:13:16 +0000 Manifest next update: Sun 26 Oct 2025 00:13:16 +0000 Files and hashes: 1: -jVgKfx3KltDJpwxataFxLtaZW0.crl (hash: KnTVNZIDWcIvBlWWlbeFgytXVxx6liijT4gTX8StGlU=) 2: 93E364468FC111EFA7695485C4F9AE02.roa (hash: l40SoBbVMbccw1MSf6F6VE2N6tSNsGG3U/26S05rROc=) 3: 26C5F4148FC111EF84928A68C4F9AE02.roa (hash: WwU6SoQDG+8gwXxtD5WuoKkjOwOvaEm4Y976SHnYcTk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.crl rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-jVgKfx3KltDJpwxataFxLtaZW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:13:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1641 (0x669) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116B5E, serialNumber=FA356029FC772A5B43269C316AD685C4BB5A656D Validity Not Before: Oct 19 00:13:16 2025 GMT Not After : Oct 26 00:13:16 2025 GMT Subject: CN=68f42d1c-78b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a8:3f:34:6e:ed:46:a1:63:ff:04:b0:6f:1f: 7f:25:66:7c:85:d6:e8:09:24:3c:78:02:ce:15:ed: 38:85:1e:22:fe:38:8d:19:03:a1:6a:c2:63:56:7b: 4b:40:05:eb:d5:9f:d2:07:54:cb:95:77:fe:03:35: 7c:92:29:f2:11:0d:09:0d:26:9b:57:cb:f4:5b:e7: 51:42:c0:73:c2:ec:77:90:41:6e:83:90:c1:92:a4: a2:45:02:54:26:7b:f0:78:29:73:28:df:8f:d4:05: bd:fd:47:1f:37:1c:48:cf:d3:35:27:54:db:bd:93: 45:05:8f:bb:fd:a3:ba:b8:4d:c2:0a:a5:ef:fc:2f: 8e:c5:33:02:8f:a6:41:e1:1b:0d:96:bf:4c:0e:af: f7:33:e5:33:7c:7a:a8:7d:fe:fe:68:7e:15:1f:d0: ca:c8:ae:a2:f7:d8:82:24:6d:99:3b:0d:6a:0d:c6: 2f:3c:da:e7:a3:44:bb:30:ba:a0:57:fc:a3:39:fb: 6c:6a:40:67:0a:a0:76:bd:79:2a:4c:71:5a:3d:e0: 5f:6b:5e:92:05:2b:f7:bb:fa:c7:1d:c7:23:76:b1: 99:4e:28:ad:43:b3:f9:17:69:35:3b:a4:a6:f2:39: 27:75:c2:35:d9:6a:5d:f5:8a:08:d6:4a:d8:3b:74: 5a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:D2:46:86:F8:73:0F:47:B0:B6:84:8D:A7:4C:86:B1:A9:C0:74:76 X509v3 Authority Key Identifier: keyid:FA:35:60:29:FC:77:2A:5B:43:26:9C:31:6A:D6:85:C4:BB:5A:65:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-jVgKfx3KltDJpwxataFxLtaZW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:32:b8:eb:3d:43:9e:24:f5:67:a7:6e:f8:49:78:56:45:d3: bd:96:0a:98:99:c9:83:d6:0d:04:e6:e0:95:c1:bf:57:45:4b: e3:ea:f2:6b:54:83:e0:de:c1:0e:d2:35:58:fe:db:4e:90:fc: 66:f5:a1:c9:0e:94:67:ba:b1:a7:0f:22:ea:f6:4b:c4:86:87: 1d:88:63:29:94:cf:1b:94:c9:9c:71:db:32:37:42:0f:22:49: da:af:2c:e9:4c:00:97:46:aa:18:ca:4f:34:a0:34:29:7d:94: aa:e7:9d:60:cf:bc:e7:3e:8d:fa:c3:61:04:df:d4:30:55:4f: fe:a6:25:7a:3e:42:04:db:97:55:2b:26:73:2e:51:70:9c:e2: 20:e9:ef:17:79:cd:ce:92:d4:0a:28:e3:8c:db:09:95:7a:84: e4:f0:00:c8:16:fc:30:50:13:f4:b0:9f:40:64:39:84:7f:8b: c7:6c:89:6c:d6:64:b4:37:e6:5e:fc:66:8b:e1:08:c0:43:64: 4d:cf:61:da:c7:4b:1a:2d:55:35:64:20:c6:e7:63:07:b5:94: ce:3b:85:38:36:1e:27:45:b4:64:83:5d:04:d3:6d:bd:80:c0: 8c:e4:e0:34:98:54:42:72:ed:cb:d5:37:a7:19:59:bb:87:51: c3:e5:bf:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZCNUUxMTAvBgNVBAUTKEZBMzU2MDI5RkM3NzJBNUI0MzI2OUMzMTZBRDY4NUM0 QkI1QTY1NkQwHhcNMjUxMDE5MDAxMzE2WhcNMjUxMDI2MDAxMzE2WjAYMRYwFAYD VQQDEw02OGY0MmQxYy03OGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtag/NG7tRqFj/wSwbx9/JWZ8hdboCSQ8eALOFe04hR4i/jiNGQOhasJjVntL QAXr1Z/SB1TLlXf+AzV8kinyEQ0JDSabV8v0W+dRQsBzwux3kEFug5DBkqSiRQJU JnvweClzKN+P1AW9/UcfNxxIz9M1J1TbvZNFBY+7/aO6uE3CCqXv/C+OxTMCj6ZB 4RsNlr9MDq/3M+UzfHqoff7+aH4VH9DKyK6i99iCJG2ZOw1qDcYvPNrno0S7MLqg V/yjOftsakBnCqB2vXkqTHFaPeBfa16SBSv3u/rHHccjdrGZTiitQ7P5F2k1O6Sm 8jkndcI12Wpd9YoI1krYO3RaNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAnSRob4 cw9HsLaEjadMhrGpwHR2MB8GA1UdIwQYMBaAFPo1YCn8dypbQyacMWrWhcS7WmVt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkI1RS9GNThDNTY5NEE2 RTAxMUVCQUMxREVCNTdDNEY5QUUwMi8talZnS2Z4M0tsdERKcHd4YXRhRnhMdGFa VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1qVmdLZngzS2x0REpwd3hhdGFGeEx0YVpXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkI1RS9GNThDNTY5NEE2RTAxMUVCQUMxREVCNTdDNEY5QUUwMi8talZnS2Z4M0ts dERKcHd4YXRhRnhMdGFaVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2MrjrPUOeJPVnp274SXhWRdO9lgqYmcmD1g0E5uCVwb9XRUvj6vJr VIPg3sEO0jVY/ttOkPxm9aHJDpRnurGnDyLq9kvEhocdiGMplM8blMmccdsyN0IP IknaryzpTACXRqoYyk80oDQpfZSq551gz7znPo36w2EE39QwVU/+piV6PkIE25dV KyZzLlFwnOIg6e8Xec3OktQKKOOM2wmVeoTk8ADIFvwwUBP0sJ9AZDmEf4vHbIls 1mS0N+Ze/GaL4QjAQ2RNz2Hax0saLVU1ZCDG52MHtZTOO4U4Nh4nRbRkg10E0229 gMCM5OA0mFRCcu3L1TenGVm7h1HD5b/E -----END CERTIFICATE-----Generated at Mon Oct 20 16:12:48 2025 by rpki-client