$ rpki-client -vvf rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft File: DHxNa-htVb5Ey0rZZmbBU1GT93I.mft (raw, json) Hash identifier: wOQJv3pq0KH16ZskT3gBGFuxw7r8LY2WAbbtua39AVA= Subject key identifier: 64:86:4B:62:4F:37:56:1B:A3:2E:99:FA:52:D0:86:CB:9A:6F:64:A2 Authority key identifier: 0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 Certificate issuer: /CN=A9123CA4/serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft Manifest number: 016C Signing time: Sun 19 Oct 2025 06:38:47 +0000 Manifest this update: Sun 19 Oct 2025 06:38:47 +0000 Manifest next update: Sun 26 Oct 2025 06:38:46 +0000 Files and hashes: 1: DHxNa-htVb5Ey0rZZmbBU1GT93I.crl (hash: 71L9IPcWrIvovib7h4uk27iODwER7MSk2TbW3GwQyPU=) 2: 300438B6C03511EFA42E9085C4F9AE02.roa (hash: oBJXc8GYCJgJm/47m5fsAm6DbvpC1fTX4mDB8Bng8Io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:38:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123CA4, serialNumber=0C7C4D6BE86D55BE44CB4AD96666C1535193F772 Validity Not Before: Oct 19 06:38:47 2025 GMT Not After : Oct 26 06:38:46 2025 GMT Subject: CN=68f48777-1f10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:67:b2:20:99:c5:46:0d:86:35:60:e9:95:9d: a1:9c:9d:46:cb:ca:dd:a0:e0:69:37:15:a2:0c:a3: ab:b2:6a:6c:12:ca:e6:b5:3b:1e:37:16:79:7e:79: 63:4d:ef:9f:f2:fb:01:ad:0b:92:7b:2a:aa:c9:41: 28:d9:8a:1e:41:89:eb:81:8e:62:b5:ad:2d:7f:e0: 41:da:dc:b0:74:06:12:c4:8f:a1:69:c6:87:bc:a5: b7:2c:8f:3c:c0:e9:d0:56:a6:36:87:03:0a:3e:9b: a0:07:a0:b0:c9:12:71:80:97:32:c4:77:a2:c7:e8: 49:17:ba:ba:f8:fd:cb:a3:d1:eb:40:21:35:8e:c4: 17:84:d4:59:8a:d8:64:e3:18:44:7c:e3:19:bb:0e: 31:0e:46:ac:e7:e3:d4:7c:10:49:c2:7b:df:9d:e8: 6e:46:94:66:ec:f1:d2:4c:2f:32:20:56:1a:cd:80: 08:46:95:86:48:0e:ae:6a:39:cb:94:5b:a1:56:82: 27:81:fe:7e:4f:34:0a:aa:75:02:3e:da:09:0f:90: 45:f0:0d:e4:40:2c:e9:29:be:2e:96:50:22:ee:be: 37:e0:83:f9:6d:84:18:33:b0:13:bc:f8:41:99:c9: e8:c9:07:4d:60:b5:1c:0f:27:09:7c:88:57:bd:de: 11:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:86:4B:62:4F:37:56:1B:A3:2E:99:FA:52:D0:86:CB:9A:6F:64:A2 X509v3 Authority Key Identifier: keyid:0C:7C:4D:6B:E8:6D:55:BE:44:CB:4A:D9:66:66:C1:53:51:93:F7:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHxNa-htVb5Ey0rZZmbBU1GT93I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123CA4/B7516B1089B611EE99512A6DC4F9AE02/DHxNa-htVb5Ey0rZZmbBU1GT93I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:7f:58:53:8f:23:5f:b0:96:dc:3c:a1:5c:4d:08:f6:8b:dd: 7f:c7:6b:d3:5c:c6:69:bb:99:39:13:22:b3:86:cb:26:3b:55: b9:6b:96:88:8e:a7:4b:1f:04:22:e8:a8:01:7b:83:41:0a:27: 36:1f:6c:16:e1:5f:99:fc:29:3f:8b:95:5b:17:30:f1:8c:78: f7:73:5b:2f:41:4d:0a:4e:f1:8c:60:af:db:dc:48:4d:85:3d: 3d:13:d7:1d:b4:45:14:6c:74:50:ef:a9:c2:4f:e8:a2:f5:e1: 87:2f:da:c0:6f:a2:62:4b:1f:fb:e9:81:c4:6d:df:13:09:fd: 74:c5:ff:d6:87:d4:5f:45:70:c7:61:a3:51:89:e4:36:c6:88: b1:2a:41:b9:17:c0:2b:1a:4e:39:8e:9a:27:1e:5f:8d:96:b5: 96:cc:7b:b0:f9:64:04:ad:50:ad:dd:f8:08:8c:f6:85:0a:c5: 92:29:62:bd:84:4e:a6:d3:e3:23:a9:2c:22:08:cc:35:d5:f2: 22:fc:56:a1:76:67:c2:61:58:d6:84:21:8f:f0:39:c7:a8:b5: 4c:f0:13:74:c1:02:89:b9:f5:a5:cc:c3:55:2a:f2:8b:87:42: 7b:e8:c9:92:6d:ba:c6:83:d3:41:7f:2f:97:b9:6b:e0:d7:41: db:3e:aa:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNDQTQxMTAvBgNVBAUTKDBDN0M0RDZCRTg2RDU1QkU0NENCNEFEOTY2NjZDMTUz NTE5M0Y3NzIwHhcNMjUxMDE5MDYzODQ3WhcNMjUxMDI2MDYzODQ2WjAYMRYwFAYD VQQDEw02OGY0ODc3Ny0xZjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA32eyIJnFRg2GNWDplZ2hnJ1Gy8rdoOBpNxWiDKOrsmpsEsrmtTseNxZ5fnlj Te+f8vsBrQuSeyqqyUEo2YoeQYnrgY5ita0tf+BB2tywdAYSxI+hacaHvKW3LI88 wOnQVqY2hwMKPpugB6CwyRJxgJcyxHeix+hJF7q6+P3Lo9HrQCE1jsQXhNRZithk 4xhEfOMZuw4xDkas5+PUfBBJwnvfnehuRpRm7PHSTC8yIFYazYAIRpWGSA6uajnL lFuhVoIngf5+TzQKqnUCPtoJD5BF8A3kQCzpKb4ullAi7r434IP5bYQYM7ATvPhB mcnoyQdNYLUcDycJfIhXvd4R1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGSGS2JP N1Yboy6Z+lLQhsuab2SiMB8GA1UdIwQYMBaAFAx8TWvobVW+RMtK2WZmwVNRk/dy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0NBNC9CNzUxNkIxMDg5 QjYxMUVFOTk1MTJBNkRDNEY5QUUwMi9ESHhOYS1odFZiNUV5MHJaWm1iQlUxR1Q5 M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RIeE5hLWh0VmI1RXkwclpabWJCVTFHVDkzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0NBNC9CNzUxNkIxMDg5QjYxMUVFOTk1MTJBNkRDNEY5QUUwMi9ESHhOYS1odFZi NUV5MHJaWm1iQlUxR1Q5M0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgf1hTjyNfsJbcPKFcTQj2i91/x2vTXMZpu5k5EyKzhssmO1W5a5aI jqdLHwQi6KgBe4NBCic2H2wW4V+Z/Ck/i5VbFzDxjHj3c1svQU0KTvGMYK/b3EhN hT09E9cdtEUUbHRQ76nCT+ii9eGHL9rAb6JiSx/76YHEbd8TCf10xf/Wh9RfRXDH YaNRieQ2xoixKkG5F8ArGk45jponHl+NlrWWzHuw+WQErVCt3fgIjPaFCsWSKWK9 hE6m0+MjqSwiCMw11fIi/FahdmfCYVjWhCGP8DnHqLVM8BN0wQKJufWlzMNVKvKL h0J76MmSbbrGg9NBfy+XuWvg10HbPqrI -----END CERTIFICATE-----Generated at Mon Oct 20 04:47:59 2025 by rpki-client