$ rpki-client -vvf rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.mft File: -Xh9LKFDLKbpMzLg7e9rB7JF17A.mft (raw, json) Hash identifier: Qh/AvVzWT+B2hCxtSOEEeH0HJewGaDrsrt4Cv8RXgl0= Subject key identifier: F1:ED:DE:7D:21:0A:A0:0F:27:70:B3:28:CE:9B:9B:B9:8F:36:70:4C Authority key identifier: F9:78:7D:2C:A1:43:2C:A6:E9:33:32:E0:ED:EF:6B:07:B2:45:D7:B0 Certificate issuer: /CN=A912DA1F/serialNumber=F9787D2CA1432CA6E93332E0EDEF6B07B245D7B0 Certificate serial: 085F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Xh9LKFDLKbpMzLg7e9rB7JF17A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.mft Manifest number: 0856 Signing time: Sat 18 Oct 2025 21:48:57 +0000 Manifest this update: Sat 18 Oct 2025 21:48:56 +0000 Manifest next update: Sat 25 Oct 2025 21:48:56 +0000 Files and hashes: 1: -Xh9LKFDLKbpMzLg7e9rB7JF17A.crl (hash: R8wo5lB0c7Bt3x0T6p8CKlyildrTsenyShzkSKrpAU0=) 2: D6883996DABE11EAB12A5209C4F9AE02.roa (hash: uybnkX1k8gPyTR5CU7p1ceux1tCfl8jTIgkNDS2MSjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.crl rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Xh9LKFDLKbpMzLg7e9rB7JF17A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:48:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2143 (0x85f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DA1F, serialNumber=F9787D2CA1432CA6E93332E0EDEF6B07B245D7B0 Validity Not Before: Oct 18 21:48:56 2025 GMT Not After : Oct 25 21:48:56 2025 GMT Subject: CN=68f40b49-d04c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d9:a1:ce:d2:09:da:a9:db:3c:bc:55:96:dd: 1f:6b:63:e0:88:f8:94:f1:ce:66:ca:7a:d4:9d:4b: eb:c4:fe:d1:f2:54:b4:35:c7:53:3e:84:e0:04:ef: 95:46:a7:55:ec:c3:ec:51:0e:d8:b9:26:e4:6d:73: 45:b8:1a:55:00:ae:a1:09:68:b3:2c:6f:fd:4d:c9: c5:13:9a:65:45:fe:68:f3:94:3d:20:8f:60:fe:27: f1:9e:af:f0:66:57:e7:65:9e:74:0e:5b:46:dd:c8: 7a:b3:76:2d:22:ce:0d:af:8d:98:7f:9b:29:cf:ce: a9:d9:1f:0c:15:5c:2b:9a:93:05:5b:3a:22:f3:90: 03:78:f2:2e:01:ca:eb:b6:cc:e5:03:ce:a0:02:d6: 52:97:0a:d8:24:fb:05:b0:69:02:0b:b1:95:5f:6b: 1c:65:fd:b4:45:3b:38:fb:84:be:3d:4f:fa:c4:24: f7:47:6b:84:af:8c:fc:3c:58:14:5d:e0:0f:1a:2d: 30:7a:29:e2:1a:21:24:86:86:fd:6d:07:3f:97:44: 70:6f:cb:f1:19:0e:b9:41:2d:70:85:95:6c:e4:0f: 61:84:0d:fb:9a:eb:13:40:84:a8:07:28:f8:b9:7c: e9:40:d7:1e:36:63:18:0e:70:9d:3c:77:f4:a2:8f: b9:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:ED:DE:7D:21:0A:A0:0F:27:70:B3:28:CE:9B:9B:B9:8F:36:70:4C X509v3 Authority Key Identifier: keyid:F9:78:7D:2C:A1:43:2C:A6:E9:33:32:E0:ED:EF:6B:07:B2:45:D7:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Xh9LKFDLKbpMzLg7e9rB7JF17A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:b1:75:8d:04:77:b2:61:11:4e:4f:5b:ee:2f:8c:f0:bd:c9: 13:59:0b:1c:d7:ff:3f:a3:e6:af:e0:81:c8:41:51:d8:7f:29: 55:4a:b0:e0:79:5c:ef:dd:aa:e6:1f:4e:e8:5d:aa:6f:35:64: 5e:5a:82:63:34:b3:71:b1:57:2e:41:9e:72:e9:ac:94:59:94: 8d:88:8d:17:1b:f5:4d:32:74:be:95:47:f0:ef:c3:c7:9a:f8: aa:4b:ef:5c:89:5c:fd:ab:cf:18:fd:76:b6:9b:0c:89:5d:a5: e8:c1:81:d1:9b:a3:8e:d9:06:fe:78:eb:1c:2d:73:0d:9a:2e: 8c:5c:3d:86:e2:96:e6:96:4c:2e:d5:86:32:a3:16:51:cd:e9: da:48:29:f4:f0:56:82:29:8f:4c:3a:94:24:fa:bc:b1:95:d9: 12:4f:4b:dc:7d:23:2d:3d:55:bd:22:65:9c:85:0f:e8:b3:bf: 11:58:1b:0b:2a:22:20:5b:5e:67:f6:92:5f:72:73:46:55:80: c4:33:af:a0:99:b7:11:48:38:9f:22:ec:d4:04:38:13:94:f4: f2:2c:54:9d:e0:7c:34:97:49:be:c5:50:73:37:93:2e:33:6d: aa:a3:82:4f:40:e5:ea:86:0f:77:cd:0a:bb:c5:1e:37:2e:7b: 45:4b:6b:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRBMUYxMTAvBgNVBAUTKEY5Nzg3RDJDQTE0MzJDQTZFOTMzMzJFMEVERUY2QjA3 QjI0NUQ3QjAwHhcNMjUxMDE4MjE0ODU2WhcNMjUxMDI1MjE0ODU2WjAYMRYwFAYD VQQDEw02OGY0MGI0OS1kMDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA09mhztIJ2qnbPLxVlt0fa2PgiPiU8c5mynrUnUvrxP7R8lS0NcdTPoTgBO+V RqdV7MPsUQ7YuSbkbXNFuBpVAK6hCWizLG/9TcnFE5plRf5o85Q9II9g/ifxnq/w ZlfnZZ50DltG3ch6s3YtIs4Nr42Yf5spz86p2R8MFVwrmpMFWzoi85ADePIuAcrr tszlA86gAtZSlwrYJPsFsGkCC7GVX2scZf20RTs4+4S+PU/6xCT3R2uEr4z8PFgU XeAPGi0weiniGiEkhob9bQc/l0Rwb8vxGQ65QS1whZVs5A9hhA37musTQISoByj4 uXzpQNceNmMYDnCdPHf0oo+5WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPHt3n0h CqAPJ3CzKM6bm7mPNnBMMB8GA1UdIwQYMBaAFPl4fSyhQyym6TMy4O3vaweyRdew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREExRi9GQjE0QTg4MkRB QkMxMUVBQTYyMDJDODVDNEY5QUUwMi8tWGg5TEtGRExLYnBNekxnN2U5ckI3SkYx N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YaDlMS0ZETEticE16TGc3ZTlyQjdKRjE3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REExRi9GQjE0QTg4MkRBQkMxMUVBQTYyMDJDODVDNEY5QUUwMi8tWGg5TEtGRExL YnBNekxnN2U5ckI3SkYxN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABsXWNBHeyYRFOT1vuL4zwvckTWQsc1/8/o+av4IHIQVHYfylVSrDg eVzv3armH07oXapvNWReWoJjNLNxsVcuQZ5y6ayUWZSNiI0XG/VNMnS+lUfw78PH mviqS+9ciVz9q88Y/Xa2mwyJXaXowYHRm6OO2Qb+eOscLXMNmi6MXD2G4pbmlkwu 1YYyoxZRzenaSCn08FaCKY9MOpQk+ryxldkST0vcfSMtPVW9ImWchQ/os78RWBsL KiIgW15n9pJfcnNGVYDEM6+gmbcRSDifIuzUBDgTlPTyLFSd4Hw0l0m+xVBzN5Mu M22qo4JPQOXqhg93zQq7xR43LntFS2vO -----END CERTIFICATE-----Generated at Mon Oct 20 09:30:11 2025 by rpki-client