$ rpki-client -vvf rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft File: D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft (raw, json) Hash identifier: vNi7BePDu44a1oyAUuU8u9KF0vgh+AIKN+D+ba4zOQs= Subject key identifier: 0D:34:27:9C:44:FF:14:DF:B0:8D:3E:1D:86:B6:D0:44:02:17:A5:85 Authority key identifier: 0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 Certificate issuer: /CN=A9134BB0/serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Certificate serial: 01BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft Manifest number: 01B9 Signing time: Sun 19 Oct 2025 05:34:30 +0000 Manifest this update: Sun 19 Oct 2025 05:34:30 +0000 Manifest next update: Sun 26 Oct 2025 05:34:30 +0000 Files and hashes: 1: D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl (hash: +PGn6e5Kpyt17vXGGGzGsYmMwXVllTJ6QUqgSmXPVhQ=) 2: 075B4CC80AC511EEB25A152AC4F9AE02.roa (hash: oHGClGt0Y+/Ca/fTjOnKQ8pJUUYEh+Yq1JxoBHlpH4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 445 (0x1bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134BB0, serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Validity Not Before: Oct 19 05:34:30 2025 GMT Not After : Oct 26 05:34:30 2025 GMT Subject: CN=68f47866-814d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:48:75:c5:f4:e9:3e:a3:53:53:74:9f:10:21: ba:58:79:9e:f6:83:03:04:d1:d1:5f:11:58:e7:e3: 83:33:43:6c:ce:8e:35:f3:13:48:a0:fa:13:17:ce: 07:0f:3c:a3:d8:30:54:cd:39:d9:38:7f:05:57:80: 69:ee:0a:79:0b:40:d8:2e:81:37:64:ce:a0:7e:ec: aa:5a:e7:01:55:91:73:81:dc:06:b3:7f:c2:4d:7e: 00:88:7a:df:e8:23:07:32:c5:d7:50:5e:24:46:1c: 2e:77:98:71:b7:24:1d:06:6f:70:af:e0:bf:85:02: 1c:fb:0c:e0:54:34:3f:fe:ae:99:62:fa:91:6a:4a: 12:ca:77:f9:24:9a:0a:ab:e2:3e:3e:f5:67:6e:81: f5:bb:9a:bf:3b:47:19:f2:8a:22:7e:5a:c8:a5:1b: 18:87:e5:52:0b:a2:96:f5:76:36:53:39:64:5e:94: 56:ff:82:e1:a5:d1:82:a0:f8:4d:c5:98:85:d3:d2: 98:22:80:03:52:b8:41:db:0c:fe:50:62:2d:ab:d7: 1d:69:7a:2d:db:4c:79:ef:a2:6a:21:03:2e:5a:d4: a6:77:5d:65:56:11:7b:99:13:99:18:73:81:42:f9: 5d:0f:73:f9:0b:dd:61:c9:ae:bc:90:90:78:65:70: 24:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:34:27:9C:44:FF:14:DF:B0:8D:3E:1D:86:B6:D0:44:02:17:A5:85 X509v3 Authority Key Identifier: keyid:0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:0c:94:61:87:e3:ad:47:4a:5b:46:13:b9:a0:e9:28:09:dd: e6:1b:a7:bf:33:75:e5:d3:eb:60:ea:61:f5:37:6c:bd:ea:c6: d4:c1:44:4a:fe:b7:63:90:24:5f:b8:61:cb:1f:06:54:1f:e6: fe:d2:b8:5b:e7:65:0c:22:53:f4:83:8b:b2:0b:56:8a:d4:b7: 14:c6:d0:3e:49:1b:f7:a0:cb:31:94:dd:9d:3b:26:98:d7:75: 99:4a:04:23:f5:d1:86:5f:90:41:fa:81:78:b0:0a:e2:64:a4: 9d:c2:90:bf:8f:26:fd:83:18:e3:6f:c3:f2:5b:97:17:e6:56: aa:63:6a:6d:55:55:03:06:d8:73:e8:4b:4f:5e:37:c4:41:c1: 59:17:de:28:76:8c:7d:25:d6:49:f5:73:a3:62:86:55:05:75: 5d:3a:99:d4:82:42:f1:47:76:50:16:c8:dc:95:c9:75:c8:6f: 07:33:35:63:4b:76:a7:eb:8c:66:cb:9e:87:85:11:ca:72:a6: 48:b4:f6:88:ab:92:14:fe:dd:41:38:1d:26:0d:59:15:e9:1c: 44:ec:ae:56:d1:dd:10:41:68:12:89:d6:f0:17:f9:8c:96:ef: ad:f8:bc:24:a1:75:8d:74:d7:2b:f3:8d:a8:fe:97:9b:97:4e: d8:0f:0c:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCQjAxMTAvBgNVBAUTKDBGNjE0MkFFNDE2OERGMEIxODA1RkE1ODFEMjAzOTQ3 NjdBQTIyNTgwHhcNMjUxMDE5MDUzNDMwWhcNMjUxMDI2MDUzNDMwWjAYMRYwFAYD VQQDEw02OGY0Nzg2Ni04MTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUh1xfTpPqNTU3SfECG6WHme9oMDBNHRXxFY5+ODM0Nszo418xNIoPoTF84H Dzyj2DBUzTnZOH8FV4Bp7gp5C0DYLoE3ZM6gfuyqWucBVZFzgdwGs3/CTX4AiHrf 6CMHMsXXUF4kRhwud5hxtyQdBm9wr+C/hQIc+wzgVDQ//q6ZYvqRakoSynf5JJoK q+I+PvVnboH1u5q/O0cZ8ooiflrIpRsYh+VSC6KW9XY2UzlkXpRW/4LhpdGCoPhN xZiF09KYIoADUrhB2wz+UGItq9cdaXot20x576JqIQMuWtSmd11lVhF7mROZGHOB QvldD3P5C91hya68kJB4ZXAk8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA00J5xE /xTfsI0+HYa20EQCF6WFMB8GA1UdIwQYMBaAFA9hQq5BaN8LGAX6WB0gOUdnqiJY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEJCMC9ERDQ3MzhFMDBB QkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3c1lCZnBZSFNBNVIyZXFJ bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QyRkNya0ZvM3dzWUJmcFlIU0E1UjJlcUlsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEJCMC9ERDQ3MzhFMDBBQkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3 c1lCZnBZSFNBNVIyZXFJbGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiDJRhh+OtR0pbRhO5oOkoCd3mG6e/M3Xl0+tg6mH1N2y96sbUwURK /rdjkCRfuGHLHwZUH+b+0rhb52UMIlP0g4uyC1aK1LcUxtA+SRv3oMsxlN2dOyaY 13WZSgQj9dGGX5BB+oF4sAriZKSdwpC/jyb9gxjjb8PyW5cX5laqY2ptVVUDBthz 6EtPXjfEQcFZF94odox9JdZJ9XOjYoZVBXVdOpnUgkLxR3ZQFsjclcl1yG8HMzVj S3an64xmy56HhRHKcqZItPaIq5IU/t1BOB0mDVkV6RxE7K5W0d0QQWgSidbwF/mM lu+t+LwkoXWNdNcr842o/pebl07YDwxu -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:32 2025 by rpki-client