$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft File: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json) Hash identifier: DAiR74lq8usabTlQqzdV6ZLnkP3tbUPkP/Gs0j+YDpE= Subject key identifier: E6:BA:E3:09:5D:23:5D:3F:19:F8:93:5F:D4:C6:E3:65:0E:D1:56:37 Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 0503 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft Manifest number: 04F8 Signing time: Sun 19 Oct 2025 01:28:13 +0000 Manifest this update: Sun 19 Oct 2025 01:28:12 +0000 Manifest next update: Sun 26 Oct 2025 01:28:12 +0000 Files and hashes: 1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: xqS10IL1Q7BbmRU/Zl7KCR8iLdNT55Or3S3iOFS9+vM=) 2: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: 4FN1ls050r3VusXGiD5QsVc+2i8lsZWUOsjCg4ks1ns=) 3: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: xSXFEgaEwRI11lRD4Ufv2Q0UsgFam8SFWBwH7ownsu0=) 4: 9BBDF5DEFFD611EF9AE4D35EC4F9AE02.roa (hash: XhD4C1tmuOJjIi4uib9jXt7/7FR/n9zJv0iU9Ika1Yo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:28:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1283 (0x503) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Validity Not Before: Oct 19 01:28:12 2025 GMT Not After : Oct 26 01:28:12 2025 GMT Subject: CN=68f43eac-333c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5f:bc:57:d2:84:8e:ba:22:9f:9d:e7:c4:ff: db:1c:ef:6d:ef:bd:24:8c:68:31:e6:b3:ea:c1:ce: 94:d9:a4:6a:2c:1f:b1:36:e6:32:ba:da:3e:b8:8c: 6e:51:e9:71:aa:6e:3b:45:ef:0a:4d:b1:5a:d7:ce: 2b:cf:b8:36:9a:99:23:66:f2:5a:30:1a:d7:de:32: 03:40:55:db:38:41:59:3b:3a:63:59:37:f0:8a:c5: 4e:08:c3:9c:28:72:58:ca:23:48:35:d6:00:17:4d: cf:53:0d:0e:fa:f2:25:fd:08:97:af:c5:ff:7a:59: bd:a1:bf:6b:0e:04:03:37:73:c5:f6:8f:7e:a2:5e: 46:f3:69:11:6c:44:8c:72:26:2e:ed:77:13:a3:8c: 04:d1:0c:15:ca:63:d8:26:f9:9a:3e:84:09:b6:12: 30:a2:d2:cc:3d:20:57:5c:3e:d5:bc:ba:a6:b8:0a: a5:1c:3d:7c:ff:6d:1a:3a:b6:ac:a9:28:5f:01:67: a0:bb:98:1e:09:de:af:a8:f8:f5:30:32:93:7d:a2: 0b:c8:28:8f:cd:a0:77:05:ff:38:d1:a5:e4:84:30: a8:fc:c0:e2:fb:82:85:ba:c4:f2:f8:e7:96:6b:35: 20:30:2f:9f:68:e7:e9:83:78:00:d8:cb:4e:9a:e9: f3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:BA:E3:09:5D:23:5D:3F:19:F8:93:5F:D4:C6:E3:65:0E:D1:56:37 X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:b9:29:5e:c6:49:fd:ee:f9:1e:37:5b:9b:56:6f:a8:e5:ce: 69:9e:52:3e:df:c8:83:cc:16:bf:53:98:a7:0f:82:e3:40:b3: f3:94:70:45:05:9c:6e:e2:a9:2f:52:2e:c5:64:6d:bd:09:d2: de:c2:be:74:18:29:94:02:bd:c4:07:d3:a2:36:28:95:03:a9: a7:ef:6b:88:39:cf:e4:95:02:30:69:63:6f:29:e6:53:60:ba: 8f:ce:70:b2:d2:52:b4:3f:f0:65:d7:97:d8:35:9a:3f:8a:6a: 8f:7e:2c:4c:ec:e8:ee:bc:5b:6a:89:cd:07:8a:78:d2:08:f4: 06:1c:58:23:09:3e:fa:4c:54:6a:b6:ee:f3:af:23:8f:e7:86: c5:00:1c:07:24:49:00:5a:f4:d4:51:a5:00:0d:55:1c:44:47: 0b:71:29:8a:45:6b:77:e3:92:12:72:1d:d4:38:0a:89:a0:ee: d1:14:2f:9d:4d:cf:31:b9:01:17:44:6d:f5:be:3d:ce:3b:f8: 58:0d:fa:35:40:ae:50:ad:a7:07:ea:08:a0:3a:04:7b:80:f2: 8d:44:95:08:d2:de:02:1f:44:19:41:e6:ae:4c:c6:a1:af:c9: bf:e0:b4:73:7b:c3:68:3a:1c:cc:d3:d5:5f:a8:50:d6:60:43: 64:13:19:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjUxMDE5MDEyODEyWhcNMjUxMDI2MDEyODEyWjAYMRYwFAYD VQQDEw02OGY0M2VhYy0zMzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAul+8V9KEjroin53nxP/bHO9t770kjGgx5rPqwc6U2aRqLB+xNuYyuto+uIxu Uelxqm47Re8KTbFa184rz7g2mpkjZvJaMBrX3jIDQFXbOEFZOzpjWTfwisVOCMOc KHJYyiNINdYAF03PUw0O+vIl/QiXr8X/elm9ob9rDgQDN3PF9o9+ol5G82kRbESM ciYu7XcTo4wE0QwVymPYJvmaPoQJthIwotLMPSBXXD7VvLqmuAqlHD18/20aOras qShfAWegu5geCd6vqPj1MDKTfaILyCiPzaB3Bf840aXkhDCo/MDi+4KFusTy+OeW azUgMC+faOfpg3gA2MtOmunzXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOa64wld I10/GfiTX9TG42UO0VY3MB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zNTkwNjVBNjMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZN UXkza2JVdy0yaFQyUXYyaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuuSlexkn97vkeN1ubVm+o5c5pnlI+38iDzBa/U5inD4LjQLPzlHBF BZxu4qkvUi7FZG29CdLewr50GCmUAr3EB9OiNiiVA6mn72uIOc/klQIwaWNvKeZT YLqPznCy0lK0P/Bl15fYNZo/imqPfixM7OjuvFtqic0HinjSCPQGHFgjCT76TFRq tu7zryOP54bFABwHJEkAWvTUUaUADVUcREcLcSmKRWt345ISch3UOAqJoO7RFC+d Tc8xuQEXRG31vj3OO/hYDfo1QK5QracH6gigOgR7gPKNRJUI0t4CH0QZQeauTMah r8m/4LRze8NoOhzM09VfqFDWYENkExnE -----END CERTIFICATE-----Generated at Mon Oct 20 18:25:53 2025 by rpki-client