$ rpki-client -vvf rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft File: 444NefP9KSMew_PjAp05P0MnfLM.mft (raw, json) Hash identifier: pFSrezK2cYKNTtvuRrJa7Ou/F3gJHe0n8UIrtENFM1A= Subject key identifier: EF:C9:6F:F8:36:08:B6:B1:EC:34:F4:21:35:EA:A8:29:9F:63:B8:44 Authority key identifier: E3:8E:0D:79:F3:FD:29:23:1E:C3:F3:E3:02:9D:39:3F:43:27:7C:B3 Certificate issuer: /CN=A9128298/serialNumber=E38E0D79F3FD29231EC3F3E3029D393F43277CB3 Certificate serial: 062F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft Manifest number: 062C Signing time: Sun 19 Oct 2025 00:18:48 +0000 Manifest this update: Sun 19 Oct 2025 00:18:47 +0000 Manifest next update: Sun 26 Oct 2025 00:18:47 +0000 Files and hashes: 1: 444NefP9KSMew_PjAp05P0MnfLM.crl (hash: uEGx1k0GjZb2h2uafWWTgf4Oy7Y8nizUDXeeDHRTEvs=) 2: 832F7D72B20E11EBB73B4E2FC4F9AE02.roa (hash: RWzQvPuAa0dvfgKQkKzubYejP/LcFU0xMaFFgk+jNhQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.crl rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:18:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1583 (0x62f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128298, serialNumber=E38E0D79F3FD29231EC3F3E3029D393F43277CB3 Validity Not Before: Oct 19 00:18:47 2025 GMT Not After : Oct 26 00:18:47 2025 GMT Subject: CN=68f42e68-663f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:10:a2:1c:f7:9c:11:0e:0a:98:c5:5b:53:34: 23:33:ca:a3:9e:6f:d4:d4:8a:db:45:a5:b9:6b:9f: 3d:52:d4:56:26:bb:93:29:ee:77:19:27:b7:26:ef: 9a:87:4e:a1:60:a7:5c:9e:28:47:d0:be:6d:e2:3a: 1f:d6:fc:5d:08:24:4e:18:14:4a:0c:99:6b:87:f6: e7:be:05:97:93:50:07:14:86:35:7c:0b:46:f6:3e: 11:21:0c:c4:36:12:b2:d4:6b:cd:c3:5f:bd:74:8d: c2:78:a6:88:56:fb:c6:40:2b:d0:45:76:7c:32:79: 42:19:b2:d1:37:b2:a0:0e:66:a7:fe:72:8d:94:4a: d7:58:aa:97:34:fe:f3:7f:15:dc:8a:ef:9d:13:89: 16:60:af:d8:e9:2d:1c:20:c2:dd:36:a2:39:5f:6c: 36:1b:71:00:bf:ac:3c:4d:9d:6d:c3:96:33:f7:03: eb:18:b2:42:b1:a5:a8:7c:40:2d:f9:25:ee:05:3c: 39:d2:38:ea:84:ad:f8:ab:f3:38:3d:d3:8e:8c:25: 1d:04:25:96:cd:23:1e:f1:c5:6f:ee:23:1e:f9:6a: ef:4d:93:9f:fa:79:b4:27:fc:8e:f7:1a:a3:f5:01: 2b:6e:0b:04:35:01:20:1e:9c:f3:c1:56:28:c5:14: ff:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:C9:6F:F8:36:08:B6:B1:EC:34:F4:21:35:EA:A8:29:9F:63:B8:44 X509v3 Authority Key Identifier: keyid:E3:8E:0D:79:F3:FD:29:23:1E:C3:F3:E3:02:9D:39:3F:43:27:7C:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:91:e3:6e:ab:56:b0:b6:31:eb:5a:ef:65:a3:f0:ba:ed:c3: 63:f2:58:58:aa:1a:e7:b1:21:4d:a7:c5:cb:d3:fd:59:2b:2a: 91:e3:c0:fc:78:98:88:07:10:54:13:e7:e2:39:af:0a:76:88: 9d:6d:a7:e3:be:42:db:1c:60:bc:6f:5b:31:f8:f7:f0:b4:28: d1:0b:6d:4d:31:52:8f:ed:da:e7:39:07:a2:11:a4:e4:25:ba: b9:02:44:d9:dc:19:9d:78:a2:b2:ff:82:91:1a:bc:7e:14:a2: 47:04:b2:d1:25:12:8a:30:a5:3e:1c:23:43:74:c2:70:c3:35: b8:32:0e:27:d8:54:02:58:78:3a:c2:81:dc:d5:91:7b:04:d5: 0d:66:6d:db:9a:99:ce:f8:9a:5d:63:eb:6b:67:53:3d:79:0d: a6:b2:ef:62:85:88:05:cb:47:a7:6d:04:37:ba:c1:c6:51:c6: 09:48:05:d2:9b:05:e6:68:50:e5:f7:96:94:7f:c1:d1:d1:61: df:1a:fa:53:c6:9c:fd:ee:41:ea:f8:9a:e2:34:75:ea:07:42: 2a:7f:e6:63:5f:34:86:32:eb:e5:cd:54:db:79:9a:c6:b9:de: 03:4f:6e:16:c3:ba:86:c0:48:1a:00:f4:58:9b:76:71:2f:2a: 12:14:24:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgyOTgxMTAvBgNVBAUTKEUzOEUwRDc5RjNGRDI5MjMxRUMzRjNFMzAyOUQzOTNG NDMyNzdDQjMwHhcNMjUxMDE5MDAxODQ3WhcNMjUxMDI2MDAxODQ3WjAYMRYwFAYD VQQDEw02OGY0MmU2OC02NjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRCiHPecEQ4KmMVbUzQjM8qjnm/U1IrbRaW5a589UtRWJruTKe53GSe3Ju+a h06hYKdcnihH0L5t4jof1vxdCCROGBRKDJlrh/bnvgWXk1AHFIY1fAtG9j4RIQzE NhKy1GvNw1+9dI3CeKaIVvvGQCvQRXZ8MnlCGbLRN7KgDman/nKNlErXWKqXNP7z fxXciu+dE4kWYK/Y6S0cIMLdNqI5X2w2G3EAv6w8TZ1tw5Yz9wPrGLJCsaWofEAt +SXuBTw50jjqhK34q/M4PdOOjCUdBCWWzSMe8cVv7iMe+WrvTZOf+nm0J/yO9xqj 9QErbgsENQEgHpzzwVYoxRT/SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO/Jb/g2 CLax7DT0ITXqqCmfY7hEMB8GA1UdIwQYMBaAFOOODXnz/SkjHsPz4wKdOT9DJ3yz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODI5OC83MjI0NzY2QUIy MEMxMUVCQUM4ODZBMkNDNEY5QUUwMi80NDROZWZQOUtTTWV3X1BqQXAwNVAwTW5m TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ0NE5lZlA5S1NNZXdfUGpBcDA1UDBNbmZMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODI5OC83MjI0NzY2QUIyMEMxMUVCQUM4ODZBMkNDNEY5QUUwMi80NDROZWZQOUtT TWV3X1BqQXAwNVAwTW5mTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArkeNuq1awtjHrWu9lo/C67cNj8lhYqhrnsSFNp8XL0/1ZKyqR48D8 eJiIBxBUE+fiOa8KdoidbafjvkLbHGC8b1sx+PfwtCjRC21NMVKP7drnOQeiEaTk Jbq5AkTZ3BmdeKKy/4KRGrx+FKJHBLLRJRKKMKU+HCNDdMJwwzW4Mg4n2FQCWHg6 woHc1ZF7BNUNZm3bmpnO+JpdY+trZ1M9eQ2msu9ihYgFy0enbQQ3usHGUcYJSAXS mwXmaFDl95aUf8HR0WHfGvpTxpz97kHq+JriNHXqB0Iqf+ZjXzSGMuvlzVTbeZrG ud4DT24Ww7qGwEgaAPRYm3ZxLyoSFCRY -----END CERTIFICATE-----Generated at Mon Oct 20 21:25:07 2025 by rpki-client