$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft File: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft (raw, json) Hash identifier: 6yKQhrVFxCuzRQtvC+Q7yt1Qz14Q+r5XTn36mw4MVVA= Subject key identifier: 69:A4:14:07:8A:50:86:1C:B6:18:A2:90:BB:86:EC:7D:1B:06:DA:AA Authority key identifier: AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 Certificate issuer: /CN=A9123BFF/serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Certificate serial: 07C8 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft Manifest number: 07C0 Signing time: Mon 20 Oct 2025 16:11:31 +0000 Manifest this update: Mon 20 Oct 2025 16:11:30 +0000 Manifest next update: Mon 27 Oct 2025 16:11:30 +0000 Files and hashes: 1: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl (hash: NNXhimfxlqg8s9QkQddsHgii31wpERpX91XtsgLikKE=) 2: A3744A28149A11EDB9CF2F70C4F9AE02.roa (hash: ldhnqRcVbTxkt0kcgUABU1YyeJx0zAFYwLA5AA7ZzpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1992 (0x7c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Validity Not Before: Oct 20 16:11:30 2025 GMT Not After : Oct 27 16:11:30 2025 GMT Subject: CN=68f65f33-652f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:d2:7e:db:85:32:af:0c:07:17:2c:ef:6c:df: d0:e0:b0:12:bd:e3:68:f3:1d:6e:56:0b:10:1a:95: ce:cd:93:d3:e6:4c:d3:a9:09:17:a8:b2:b2:d4:10: bc:52:ca:0b:46:be:bf:2a:29:ea:86:00:75:f2:0f: 56:d4:99:07:ee:36:e7:a8:1d:2d:bb:87:56:63:a6: 4f:9b:d1:94:76:b4:eb:7d:12:a4:02:14:73:86:d8: f9:a1:8b:65:d1:d9:eb:fb:64:68:2c:03:e9:c4:b1: e6:39:cc:92:a3:4d:e6:c9:56:52:ed:15:c7:b6:7c: dc:96:27:bc:dd:38:0e:55:87:c3:94:62:8d:0e:d6: 2c:bb:2d:61:a5:7d:22:05:bc:63:90:69:0b:f2:80: e3:64:1b:26:23:b9:a4:9c:b6:66:50:f9:ae:8a:16: f0:63:1f:7a:9f:57:5f:66:66:26:88:49:0c:7f:98: 71:d9:bb:81:dc:98:fa:45:00:2f:06:28:00:c0:83: 0b:f5:3b:44:a0:65:fe:a3:17:cd:19:fc:77:c5:e7: 45:e2:f6:b1:6c:3b:0b:8d:c6:9d:0c:0c:62:3c:ef: 10:d8:ed:34:ed:0d:ce:ef:5f:47:6e:06:c2:73:a0: a2:79:69:f0:af:ac:10:bd:33:93:75:70:71:50:f6: d6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:A4:14:07:8A:50:86:1C:B6:18:A2:90:BB:86:EC:7D:1B:06:DA:AA X509v3 Authority Key Identifier: keyid:AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:05:42:59:1f:c7:14:f9:63:f9:9b:df:19:f0:3c:3d:49:c8: 87:f1:8c:47:82:bb:61:4e:7c:0b:ab:1b:ab:08:52:eb:e6:4b: 64:04:66:bd:be:1d:fc:f2:d9:cd:b6:45:87:43:82:57:cd:00: c6:eb:d4:00:17:72:82:60:a0:c6:5d:c6:de:d0:f3:0e:75:8d: fd:28:49:26:38:da:6f:a9:8c:d4:16:5a:4b:c3:10:95:7c:95: ec:59:54:80:f2:38:77:1f:f5:af:48:76:a9:62:67:84:f6:48: 47:fb:79:3c:cf:3e:6f:25:0a:3e:31:ee:ae:06:c9:bf:9f:1a: a5:31:94:c4:9f:84:4e:53:45:51:49:2a:45:7c:16:b2:40:6d: 47:96:a6:a0:ff:6d:75:d4:40:f3:cf:de:82:da:4c:af:4e:6f: 88:f7:40:c8:30:40:77:11:5e:25:d0:31:61:c8:f9:42:6d:60: 72:e1:09:9f:74:55:54:36:dc:11:0b:50:b5:97:e1:db:4b:c1: d9:61:55:3e:4c:1d:8f:4a:1c:3a:7e:c9:4b:d0:dd:32:4b:53: e0:5c:f1:92:be:07:44:05:28:63:8d:47:9a:88:24:05:11:cb: 0b:dc:88:f8:c9:ff:a9:82:94:fa:ad:a1:36:4f:9e:34:63:99: 3e:0f:0f:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKEFGNEEzNTQ0Qzc0QjMxN0E3QzMyNkFGMEU4MzkzQ0I5 RDUyNjIwMzIwHhcNMjUxMDIwMTYxMTMwWhcNMjUxMDI3MTYxMTMwWjAYMRYwFAYD VQQDEw02OGY2NWYzMy02NTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA69J+24UyrwwHFyzvbN/Q4LASveNo8x1uVgsQGpXOzZPT5kzTqQkXqLKy1BC8 UsoLRr6/KinqhgB18g9W1JkH7jbnqB0tu4dWY6ZPm9GUdrTrfRKkAhRzhtj5oYtl 0dnr+2RoLAPpxLHmOcySo03myVZS7RXHtnzclie83TgOVYfDlGKNDtYsuy1hpX0i BbxjkGkL8oDjZBsmI7mknLZmUPmuihbwYx96n1dfZmYmiEkMf5hx2buB3Jj6RQAv BigAwIML9TtEoGX+oxfNGfx3xedF4vaxbDsLjcadDAxiPO8Q2O007Q3O719HbgbC c6CieWnwr6wQvTOTdXBxUPbW3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGmkFAeK UIYcthiikLuG7H0bBtqqMB8GA1UdIwQYMBaAFK9KNUTHSzF6fDJq8Og5PLnVJiAy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi8wRTJFRjUzNDFB NkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1YcDhNbXJ3NkRrOHVkVW1J REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3IwbzFSTWRMTVhwOE1tcnc2RGs4dWRVbUlESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0JGRi8wRTJFRjUzNDFBNkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1Y cDhNbXJ3NkRrOHVkVW1JREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7BUJZH8cU+WP5m98Z8Dw9SciH8YxHgrthTnwLqxurCFLr5ktkBGa9 vh388tnNtkWHQ4JXzQDG69QAF3KCYKDGXcbe0PMOdY39KEkmONpvqYzUFlpLwxCV fJXsWVSA8jh3H/WvSHapYmeE9khH+3k8zz5vJQo+Me6uBsm/nxqlMZTEn4ROU0VR SSpFfBayQG1Hlqag/2111EDzz96C2kyvTm+I90DIMEB3EV4l0DFhyPlCbWBy4Qmf dFVUNtwRC1C1l+HbS8HZYVU+TB2PShw6fslL0N0yS1PgXPGSvgdEBShjjUeaiCQF EcsL3Ij4yf+pgpT6raE2T540Y5k+Dw86 -----END CERTIFICATE-----Generated at Mon Oct 20 18:23:20 2025 by rpki-client