$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft File: aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft (raw, json) Hash identifier: IjwxnVX6rcf1g9hFeaY9x5jaiqJfpQ4BKP/mGacX3RQ= Subject key identifier: F9:98:2A:B0:81:C7:70:B1:00:88:BA:DA:11:93:19:91:97:6D:1E:63 Authority key identifier: 68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F Certificate issuer: /CN=A911CA82/serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft Manifest number: 9A Signing time: Sun 19 Oct 2025 00:26:53 +0000 Manifest this update: Sun 19 Oct 2025 00:26:52 +0000 Manifest next update: Sun 26 Oct 2025 00:26:52 +0000 Files and hashes: 1: aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl (hash: J9nycF3XnbUlSt+NQazXgtfGpXcK7es3wqK1F4A9Ec0=) 2: AF4301D4CF8511EF94856A41C4F9AE02.roa (hash: OViblnR/lHFk4KXUmFXJa3gycbDpdzSeFdas4fvP/W4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:26:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F Validity Not Before: Oct 19 00:26:52 2025 GMT Not After : Oct 26 00:26:52 2025 GMT Subject: CN=68f4304c-62b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:ea:8c:e4:1b:4d:1e:c4:96:e2:d9:9e:4c:f6: f4:1a:f8:fa:d7:6f:41:bb:a2:ba:bc:7b:33:e6:5e: 26:b4:6c:87:d0:60:53:a3:b4:85:a3:3b:74:fd:cc: 7d:31:86:bc:14:1a:41:d6:64:9e:f6:60:88:25:7b: f8:80:4e:62:1c:5a:1c:76:df:7e:f6:61:51:de:64: a1:2f:80:8b:0d:65:6e:8c:3c:54:3b:08:bc:e5:74: 2f:94:5b:98:d8:ef:c9:1f:3a:11:3e:6f:13:43:7f: 5f:c2:66:15:b8:af:14:e0:b7:21:f2:4a:f9:e1:c4: d6:87:7c:49:7d:cd:18:d6:f8:ba:af:76:72:e9:1d: 44:d5:f1:75:b9:2a:05:b0:dd:33:f9:19:de:38:bb: b9:a7:36:4d:84:4a:61:94:82:f5:7d:2f:c9:b8:e3: ea:24:3f:14:4e:01:93:b3:fb:29:73:07:b0:5c:0d: b9:93:5e:dc:58:d7:d8:21:72:ca:b7:ca:3f:d4:86: 38:8d:06:1a:f7:83:16:d3:f1:aa:85:be:8e:c2:74: a4:4e:b1:f8:3a:a2:99:25:96:9c:cd:cc:6e:6a:65: 49:ee:3a:0f:ad:c3:89:61:08:66:12:c3:1c:bb:ee: ba:d6:3e:38:a0:8e:34:dc:d5:a7:46:0b:02:46:94: 75:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:98:2A:B0:81:C7:70:B1:00:88:BA:DA:11:93:19:91:97:6D:1E:63 X509v3 Authority Key Identifier: keyid:68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:70:7d:67:6a:4c:94:db:3c:c9:1b:82:6d:3b:4c:85:42:03: 15:f7:c1:bd:0d:ba:08:b3:bb:d6:07:fe:0d:3e:57:b3:5b:97: 2d:7c:00:a4:c8:94:23:99:3e:1d:df:a1:7d:8d:0e:90:1a:9c: 20:e1:ad:7d:e9:63:29:ea:a1:13:90:9a:df:a1:f1:a6:97:c6: 8a:8a:67:13:81:f8:22:e2:96:f8:6e:26:79:5b:3b:9d:65:4b: 7c:04:d8:7d:c8:4f:74:ee:ed:8c:85:fa:4e:f1:70:a8:db:08: 29:9a:78:c5:06:4a:31:b1:a6:8f:c7:0d:33:64:dc:7a:4f:b6: ed:bf:b4:5c:63:d2:32:a4:03:63:90:93:5f:f2:90:c1:de:06: 2e:45:c4:bc:98:f8:32:c5:e5:d2:9f:6f:92:b1:8e:55:79:17: 3f:78:36:c2:73:3b:b5:be:75:42:cf:5b:b1:82:4b:dd:6d:c6: 5a:bb:b7:ed:d3:ce:65:c7:8d:f1:59:1c:cd:be:bc:03:e7:48: 14:2e:1b:55:cb:20:57:54:07:59:46:d1:14:82:3b:58:14:a2: 8e:ce:3f:38:7f:62:ec:f1:89:8a:a5:98:05:19:b7:56:a8:78: 47:a1:1f:bc:5d:89:fd:92:19:7c:18:d3:b8:67:bc:1d:13:dc: 33:6d:c6:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKDY4NDEzRDQxRjYwMDVFMDMxNkUwRTI1NzZGMjI2QzIx ODhBQTE1NkYwHhcNMjUxMDE5MDAyNjUyWhcNMjUxMDI2MDAyNjUyWjAYMRYwFAYD VQQDEw02OGY0MzA0Yy02MmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7+qM5BtNHsSW4tmeTPb0Gvj6129Bu6K6vHsz5l4mtGyH0GBTo7SFozt0/cx9 MYa8FBpB1mSe9mCIJXv4gE5iHFocdt9+9mFR3mShL4CLDWVujDxUOwi85XQvlFuY 2O/JHzoRPm8TQ39fwmYVuK8U4Lch8kr54cTWh3xJfc0Y1vi6r3Zy6R1E1fF1uSoF sN0z+RneOLu5pzZNhEphlIL1fS/JuOPqJD8UTgGTs/spcwewXA25k17cWNfYIXLK t8o/1IY4jQYa94MW0/Gqhb6OwnSkTrH4OqKZJZaczcxuamVJ7joPrcOJYQhmEsMc u+661j44oI403NWnRgsCRpR1hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPmYKrCB x3CxAIi62hGTGZGXbR5jMB8GA1UdIwQYMBaAFGhBPUH2AF4DFuDiV28ibCGIqhVv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi9GNjk5RTM1NENG MTIxMUVGOEYxRDIwNUJDNEY5QUUwMi9hRUU5UWZZQVhnTVc0T0pYYnlKc0lZaXFG VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FFRTlRZllBWGdNVzRPSlhieUpzSVlpcUZXOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi9GNjk5RTM1NENGMTIxMUVGOEYxRDIwNUJDNEY5QUUwMi9hRUU5UWZZQVhn TVc0T0pYYnlKc0lZaXFGVzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWcH1nakyU2zzJG4JtO0yFQgMV98G9DboIs7vWB/4NPlezW5ctfACk yJQjmT4d36F9jQ6QGpwg4a196WMp6qETkJrfofGml8aKimcTgfgi4pb4biZ5Wzud ZUt8BNh9yE907u2MhfpO8XCo2wgpmnjFBkoxsaaPxw0zZNx6T7btv7RcY9IypANj kJNf8pDB3gYuRcS8mPgyxeXSn2+SsY5VeRc/eDbCczu1vnVCz1uxgkvdbcZau7ft 085lx43xWRzNvrwD50gULhtVyyBXVAdZRtEUgjtYFKKOzj84f2Ls8YmKpZgFGbdW qHhHoR+8XYn9khl8GNO4Z7wdE9wzbcbu -----END CERTIFICATE-----Generated at Tue Oct 21 12:46:01 2025 by rpki-client