$ rpki-client -vvf rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.mft File: h1thdAzTcL1LSk9q6gqGCDiNuoo.mft (raw, json) Hash identifier: KsgyrgPH/SOFZamf8nbNt+00J1qFXsD4fZfur+x5AC4= Subject key identifier: D6:91:9F:9D:69:27:27:46:BA:A5:DB:86:7F:D8:A7:07:3B:93:66:AB Authority key identifier: 87:5B:61:74:0C:D3:70:BD:4B:4A:4F:6A:EA:0A:86:08:38:8D:BA:8A Certificate issuer: /CN=A9125852/serialNumber=875B61740CD370BD4B4A4F6AEA0A8608388DBA8A Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h1thdAzTcL1LSk9q6gqGCDiNuoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.mft Manifest number: 60 Signing time: Sun 19 Oct 2025 10:28:15 +0000 Manifest this update: Sun 19 Oct 2025 10:28:15 +0000 Manifest next update: Sun 26 Oct 2025 10:28:15 +0000 Files and hashes: 1: h1thdAzTcL1LSk9q6gqGCDiNuoo.crl (hash: eB0zvHEm8BOop6RyhiWvP5oYgWBliJES3e1eqf71fCQ=) 2: 36E3783A1BA311F0985A7C2DC4F9AE02.roa (hash: sfbcZk8SAWuxMbwQPAGFt07XT5Nj4mSWLUAB6k9yQMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.crl rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h1thdAzTcL1LSk9q6gqGCDiNuoo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125852, serialNumber=875B61740CD370BD4B4A4F6AEA0A8608388DBA8A Validity Not Before: Oct 19 10:28:15 2025 GMT Not After : Oct 26 10:28:15 2025 GMT Subject: CN=68f4bd3f-9534 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:bd:e5:bb:be:0a:7f:a2:aa:bf:2f:65:65:e6: b7:63:3f:cc:d3:24:74:16:14:6f:69:6b:16:bf:0c: d9:59:03:0e:d6:e0:ce:bc:dc:06:ef:4c:c0:21:b9: dc:1c:bb:1c:d2:51:81:f8:a3:56:a8:b7:ae:0f:d9: 0c:41:de:0b:21:ce:0b:8f:67:5b:0b:a8:0e:23:cf: c9:5b:24:62:e6:9e:35:82:74:ab:f9:7b:cb:58:13: d7:f8:19:7f:82:9d:50:42:27:d1:4b:2b:da:9c:d7: 4c:ed:b8:79:c4:dd:56:e1:7a:72:2c:b6:5a:a5:25: 76:bd:aa:fb:88:6e:b3:7f:e5:19:cd:6d:b5:69:a8: af:41:e9:c7:bc:50:06:f8:70:c1:3f:9b:97:c0:5c: 23:40:df:d0:cb:91:f2:94:f6:48:45:91:d2:95:41: e4:d2:b3:b1:e3:2e:b5:81:6b:3c:66:48:86:fb:81: 4f:69:21:ab:ce:92:90:50:28:9a:3e:b7:71:82:03: 44:bf:05:a4:28:b1:cb:57:c6:17:03:78:82:c6:26: eb:16:07:5f:5d:55:9f:dc:c3:2a:6d:8d:b2:a3:53: 5e:95:c7:1d:98:58:16:ab:98:41:6e:03:8b:e3:7f: 10:a5:3a:71:b1:f4:b4:74:b9:a7:f5:20:1f:35:17: a3:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:91:9F:9D:69:27:27:46:BA:A5:DB:86:7F:D8:A7:07:3B:93:66:AB X509v3 Authority Key Identifier: keyid:87:5B:61:74:0C:D3:70:BD:4B:4A:4F:6A:EA:0A:86:08:38:8D:BA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h1thdAzTcL1LSk9q6gqGCDiNuoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125852/E954FD781BA211F08B29E92CC4F9AE02/h1thdAzTcL1LSk9q6gqGCDiNuoo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:e2:21:4c:6e:bd:3e:51:34:e6:3c:6c:fc:de:a7:9e:eb:ce: dd:42:3c:1b:93:93:c1:26:3d:26:63:68:a5:d6:47:e3:3a:dd: 1e:bd:fc:f5:35:8a:73:49:f8:9f:ed:00:64:e1:c7:1e:ea:bd: 2d:4a:d2:34:e7:3c:65:75:cc:84:e5:d9:6b:c9:eb:2a:5f:e3: a5:e5:fe:90:10:d8:9c:c0:93:93:c3:7c:d9:c9:56:ad:2e:04: 04:dd:c3:20:33:0c:ff:0d:cd:8a:dc:db:f9:d7:a4:36:f4:81: e5:56:13:ae:09:63:02:47:e2:33:04:10:7c:00:c0:14:f9:5e: 22:15:47:f3:bc:c8:fa:1a:5e:db:c7:ac:c9:56:0a:0b:a1:14: 69:ae:5a:e5:0f:34:3f:db:6e:78:6a:6f:3d:61:6a:73:d2:f1: f6:93:35:76:76:c6:df:ba:30:9d:8c:94:44:f8:9f:5b:38:7d: c1:2c:dc:9f:10:1b:15:d1:ef:92:4d:0b:d9:5c:e6:26:84:bd: ad:2e:fd:a8:a0:5f:75:2c:9f:9d:d8:c3:c1:e0:ca:5b:dc:19: f0:06:17:56:36:82:37:77:f7:42:fd:15:a4:3c:81:dc:1a:b9: 4f:86:c5:9f:85:32:14:25:98:bf:85:75:43:ad:04:eb:25:93: c3:01:f3:10 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTg1MjExMC8GA1UEBRMoODc1QjYxNzQwQ0QzNzBCRDRCNEE0RjZBRUEwQTg2MDgz ODhEQkE4QTAeFw0yNTEwMTkxMDI4MTVaFw0yNTEwMjYxMDI4MTVaMBgxFjAUBgNV BAMTDTY4ZjRiZDNmLTk1MzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnveW7vgp/oqq/L2Vl5rdjP8zTJHQWFG9paxa/DNlZAw7W4M683AbvTMAhudwc uxzSUYH4o1aot64P2QxB3gshzguPZ1sLqA4jz8lbJGLmnjWCdKv5e8tYE9f4GX+C nVBCJ9FLK9qc10ztuHnE3VbhenIstlqlJXa9qvuIbrN/5RnNbbVpqK9B6ce8UAb4 cME/m5fAXCNA39DLkfKU9khFkdKVQeTSs7HjLrWBazxmSIb7gU9pIavOkpBQKJo+ t3GCA0S/BaQosctXxhcDeILGJusWB19dVZ/cwyptjbKjU16Vxx2YWBarmEFuA4vj fxClOnGx9LR0uaf1IB81F6OFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1pGfnWkn J0a6pduGf9inBzuTZqswHwYDVR0jBBgwFoAUh1thdAzTcL1LSk9q6gqGCDiNuoow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1ODUyL0U5NTRGRDc4MUJB MjExRjA4QjI5RTkyQ0M0RjlBRTAyL2gxdGhkQXpUY0wxTFNrOXE2Z3FHQ0RpTnVv by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaDF0aGRBelRjTDFMU2s5cTZncUdDRGlOdW9vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1 ODUyL0U5NTRGRDc4MUJBMjExRjA4QjI5RTkyQ0M0RjlBRTAyL2gxdGhkQXpUY0wx TFNrOXE2Z3FHQ0RpTnVvby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACniIUxuvT5RNOY8bPzep57rzt1CPBuTk8EmPSZjaKXWR+M63R69/PU1 inNJ+J/tAGThxx7qvS1K0jTnPGV1zITl2WvJ6ypf46Xl/pAQ2JzAk5PDfNnJVq0u BATdwyAzDP8NzYrc2/nXpDb0geVWE64JYwJH4jMEEHwAwBT5XiIVR/O8yPoaXtvH rMlWCguhFGmuWuUPND/bbnhqbz1hanPS8faTNXZ2xt+6MJ2MlET4n1s4fcEs3J8Q GxXR75JNC9lc5iaEva0u/aigX3Usn53Yw8HgylvcGfAGF1Y2gjd390L9FaQ8gdwa uU+GxZ+FMhQlmL+FdUOtBOslk8MB8xA= -----END CERTIFICATE-----Generated at Mon Oct 20 01:46:15 2025 by rpki-client