$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft File: -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json) Hash identifier: Brfcg0QSa9nYD6A+Jl8uNAgbc6QWouCOWABuxq+WhAE= Subject key identifier: 1D:E9:FC:75:2C:DA:C2:50:66:C7:07:F9:DA:75:CC:76:45:78:14:11 Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 Certificate issuer: /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Certificate serial: 02A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft Manifest number: 02A5 Signing time: Sun 19 Oct 2025 03:44:35 +0000 Manifest this update: Sun 19 Oct 2025 03:44:35 +0000 Manifest next update: Sun 26 Oct 2025 03:44:35 +0000 Files and hashes: 1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: GgYFzhx2dG411Cv0kBeXXJ4l+Wlqo6phpYnVwOXpeyE=) 2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: sMLXclSpaatsjiefCG2CYL97q01e5mLSlbQCKpyYzHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:44:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 681 (0x2a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135450, serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Validity Not Before: Oct 19 03:44:35 2025 GMT Not After : Oct 26 03:44:35 2025 GMT Subject: CN=68f45ea3-15a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:87:b3:8c:53:b1:b1:17:b2:79:81:ad:68:5e: 55:5c:28:b7:3c:c9:ae:74:73:fb:21:87:8f:0f:b7: f1:6f:b4:5d:a5:a8:a0:7a:c5:ba:72:c2:7a:87:44: 69:73:3a:b8:22:ef:d3:78:cf:ea:26:c2:39:a0:6c: 72:c3:03:1a:79:10:92:99:45:7c:73:a8:d9:c0:4e: fb:e8:6c:06:29:45:d5:6c:87:7e:2b:8e:1e:f3:24: 03:4c:e2:bd:52:3f:45:08:bb:3b:c6:f9:3c:d0:01: 17:23:d1:5d:1a:0f:c9:d8:23:4d:42:81:bb:ea:84: bf:19:61:96:1a:0c:29:af:71:c6:16:2e:4f:dd:df: 23:ad:1c:e4:ce:8d:6b:de:d6:fe:7a:24:8a:36:d5: 6b:f2:16:af:5d:f7:4e:57:8a:57:51:88:8f:c4:8f: 2d:6b:28:6f:9e:97:e7:59:9f:35:ff:96:7b:99:89: 8f:9a:3a:d4:13:b0:bb:c8:4a:29:26:3e:c1:2b:cd: 4b:8d:0d:82:4f:d8:6b:46:0d:1e:74:88:f6:af:89: 99:9f:2d:a7:a5:be:3a:c5:ee:e1:9d:c2:f2:92:47: 24:6d:f1:8b:c0:d3:a7:76:d3:c8:bb:f8:85:01:a0: 70:d6:47:2a:36:c7:63:06:ba:3b:d5:b2:44:0d:ad: 64:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:E9:FC:75:2C:DA:C2:50:66:C7:07:F9:DA:75:CC:76:45:78:14:11 X509v3 Authority Key Identifier: keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:79:3c:92:b5:a5:2d:21:f5:fe:8a:cf:50:4c:3c:8f:73:5c: 78:8f:e2:19:14:e5:19:31:c8:d5:85:1a:a2:b9:ec:6c:78:13: 65:02:8e:1c:6f:51:48:63:a0:4c:0d:0d:cd:df:b1:f2:af:16: 39:cc:92:23:ab:32:c9:68:af:77:4b:f6:27:3a:2f:16:86:50: 02:1d:d6:c2:7a:cd:e8:46:f5:63:45:7d:8a:0a:d0:0f:fc:76: 23:62:7c:5b:45:59:72:df:c6:1b:8a:dd:68:7b:39:5e:f6:fa: 54:9d:76:87:ef:90:56:06:6d:f3:b0:98:69:b1:94:0a:06:d6: 5b:ec:35:34:7e:4d:60:6b:87:9b:42:be:8a:40:be:f4:ae:b3: 1e:6b:85:87:fc:8d:21:75:f9:4c:c6:9f:7e:1e:ca:0b:4f:3d: 61:e2:9e:03:fd:6f:73:48:8e:7f:9a:ef:c2:68:f0:71:79:57: b9:0c:78:28:3e:ee:80:95:12:3f:e0:22:60:84:cc:12:59:e4: 4a:82:53:07:7b:24:78:a7:78:42:4c:f5:e6:30:9e:ae:b1:1b: 85:f8:23:34:1a:6b:58:f8:40:c3:90:ec:06:0b:be:7a:0e:bd: 14:c1:19:87:4c:d2:ef:90:02:4a:ef:13:74:7f:0d:c7:50:21: 5b:e6:e9:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU0NTAxMTAvBgNVBAUTKEZBOERGNjExODQ1MUJENTMzODcyQUNBMzc2MjJCRjcz QkVEMTk0NDEwHhcNMjUxMDE5MDM0NDM1WhcNMjUxMDI2MDM0NDM1WjAYMRYwFAYD VQQDEw02OGY0NWVhMy0xNWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoezjFOxsReyeYGtaF5VXCi3PMmudHP7IYePD7fxb7RdpaigesW6csJ6h0Rp czq4Iu/TeM/qJsI5oGxywwMaeRCSmUV8c6jZwE776GwGKUXVbId+K44e8yQDTOK9 Uj9FCLs7xvk80AEXI9FdGg/J2CNNQoG76oS/GWGWGgwpr3HGFi5P3d8jrRzkzo1r 3tb+eiSKNtVr8havXfdOV4pXUYiPxI8tayhvnpfnWZ81/5Z7mYmPmjrUE7C7yEop Jj7BK81LjQ2CT9hrRg0edIj2r4mZny2npb46xe7hncLykkckbfGLwNOndtPIu/iF AaBw1kcqNsdjBro71bJEDa1kkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB3p/HUs 2sJQZscH+dp1zHZFeBQRMB8GA1UdIwQYMBaAFPqN9hGEUb1TOHKso3Yiv3O+0ZRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTQ1MC84NDNEQzY5NjE4 QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZWTTRjcXlqZGlLX2M3N1Js RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vMzJFWVJSdlZNNGNxeWpkaUtfYzc3UmxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTQ1MC84NDNEQzY5NjE4QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZW TTRjcXlqZGlLX2M3N1JsRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/eTyStaUtIfX+is9QTDyPc1x4j+IZFOUZMcjVhRqiuexseBNlAo4c b1FIY6BMDQ3N37HyrxY5zJIjqzLJaK93S/YnOi8WhlACHdbCes3oRvVjRX2KCtAP /HYjYnxbRVly38Ybit1oezle9vpUnXaH75BWBm3zsJhpsZQKBtZb7DU0fk1ga4eb Qr6KQL70rrMea4WH/I0hdflMxp9+HsoLTz1h4p4D/W9zSI5/mu/CaPBxeVe5DHgo Pu6AlRI/4CJghMwSWeRKglMHeyR4p3hCTPXmMJ6usRuF+CM0GmtY+EDDkOwGC756 Dr0UwRmHTNLvkAJK7xN0fw3HUCFb5uk7 -----END CERTIFICATE-----Generated at Mon Oct 20 21:36:25 2025 by rpki-client