$ rpki-client -vvf rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft File: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft (raw, json) Hash identifier: mdAIMeqD1wK/GckmRFHoE/VQXMfmrPSAtY966LQB2mg= Subject key identifier: 07:0F:64:8E:0D:5C:C7:08:6B:8B:C8:91:C9:BD:61:B4:DF:E5:48:3A Authority key identifier: AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 Certificate issuer: /CN=A913BA97/serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Certificate serial: 0225 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft Manifest number: 020F Signing time: Sun 19 Oct 2025 04:50:13 +0000 Manifest this update: Sun 19 Oct 2025 04:50:13 +0000 Manifest next update: Sun 26 Oct 2025 04:50:13 +0000 Files and hashes: 1: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl (hash: TDnMrya27NKMLNAB6e9fd0SQ9q1OVkEQHui6UpHf9KI=) 2: 6B4DE806568411EF8FE2C24EC4F9AE02.roa (hash: gio3U9WsxU2OTvZplKV8K5tuXOfWf9W0TdHSTYl7CRI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 549 (0x225) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BA97, serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Validity Not Before: Oct 19 04:50:13 2025 GMT Not After : Oct 26 04:50:13 2025 GMT Subject: CN=68f46e05-de2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:17:3a:4e:f6:ff:64:32:d2:10:77:ae:64:50: 51:05:5e:de:eb:2d:ea:d3:c5:e0:34:4b:1a:57:e7: dd:4b:7b:4f:18:d4:0a:45:2d:e4:44:f9:11:1f:8b: 39:59:b7:e9:1b:63:93:04:d4:a7:c3:c0:96:35:cd: 48:b9:35:ea:64:b0:15:8b:71:a4:1d:54:7b:2b:67: 4a:b1:a4:c0:a0:10:b2:53:ba:2f:06:4d:88:5b:28: a3:9b:b2:04:2e:a5:9e:30:a7:63:42:f8:a9:bf:f2: fd:e6:ba:b5:8d:fd:8e:0f:8a:06:46:16:79:bc:12: 18:82:ff:a1:c3:07:c7:ab:cc:18:2d:ae:a2:50:27: dc:7c:f4:20:67:03:93:be:c8:fa:6e:2d:eb:4d:72: 6a:61:ea:1d:e3:fe:b6:75:78:f1:34:de:9b:ac:4a: 2f:38:7c:43:88:9b:b9:81:4c:5f:53:08:5e:31:c0: 7f:e0:8d:f0:c0:d4:24:9d:2e:a1:ce:f6:4a:4f:87: 64:99:24:47:ea:94:d0:9f:93:c6:5f:1b:8b:36:0c: 77:21:de:ef:c4:20:91:e2:15:11:a2:5c:5a:23:17: a1:cb:ae:9b:7f:46:54:32:f4:fd:62:af:06:71:a8: c2:91:a4:4a:27:25:92:56:b5:28:1b:41:5c:45:7c: 4c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:0F:64:8E:0D:5C:C7:08:6B:8B:C8:91:C9:BD:61:B4:DF:E5:48:3A X509v3 Authority Key Identifier: keyid:AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:50:42:e3:da:89:b6:a4:41:a2:54:77:43:93:40:44:3e:3f: d2:d4:4e:98:78:31:b5:8a:b0:99:e8:03:62:d0:c4:2a:5e:fe: b0:27:bd:01:50:a4:7a:d8:8a:7b:d7:f8:1e:50:ae:6b:e3:0f: 3c:59:37:65:40:05:4d:20:13:f9:44:ba:a0:bc:25:93:5d:2d: 26:60:5d:72:aa:06:df:84:99:9a:b4:91:1c:f2:b9:a4:b8:62: e9:d6:7d:78:9c:dc:56:ff:8a:51:ab:ed:a5:0b:43:81:eb:f4: f8:7f:4e:8c:27:15:f7:28:43:17:b7:c5:3c:ed:91:84:2d:c7: e3:63:6c:58:17:fd:7c:97:42:36:00:97:56:1a:63:91:97:7c: 70:1a:09:d6:32:60:cb:34:0f:94:4c:95:f9:f9:ea:40:ae:2e: e4:a1:7e:45:03:93:7d:e3:17:e7:a5:1f:71:3f:09:53:04:5e: 51:41:09:7e:92:3c:93:da:db:4f:cd:7c:94:65:09:5d:88:88: 91:52:bf:ac:1e:56:02:e2:9d:be:cb:2a:53:d3:46:cc:6d:59: 57:11:5d:a5:87:ea:7c:0c:fa:91:bf:72:5a:77:aa:8e:fb:d8: ec:a6:91:31:eb:85:c2:fb:c5:fe:19:78:df:02:eb:8f:58:db: 75:92:4a:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JBOTcxMTAvBgNVBAUTKEFGRDk0M0U0QjE0Mjc2MzY1OUUwOEY4REJGNkNFN0U2 RDgwQ0M1MTcwHhcNMjUxMDE5MDQ1MDEzWhcNMjUxMDI2MDQ1MDEzWjAYMRYwFAYD VQQDEw02OGY0NmUwNS1kZTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxc6Tvb/ZDLSEHeuZFBRBV7e6y3q08XgNEsaV+fdS3tPGNQKRS3kRPkRH4s5 WbfpG2OTBNSnw8CWNc1IuTXqZLAVi3GkHVR7K2dKsaTAoBCyU7ovBk2IWyijm7IE LqWeMKdjQvipv/L95rq1jf2OD4oGRhZ5vBIYgv+hwwfHq8wYLa6iUCfcfPQgZwOT vsj6bi3rTXJqYeod4/62dXjxNN6brEovOHxDiJu5gUxfUwheMcB/4I3wwNQknS6h zvZKT4dkmSRH6pTQn5PGXxuLNgx3Id7vxCCR4hURolxaIxehy66bf0ZUMvT9Yq8G cajCkaRKJyWSVrUoG0FcRXxMowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcPZI4N XMcIa4vIkcm9YbTf5Ug6MB8GA1UdIwQYMBaAFK/ZQ+SxQnY2WeCPjb9s5+bYDMUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkE5Ny9GMUZFQjFGRUFD NEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2RqWlo0SS1OdjJ6bjV0Z014 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I5bEQ1TEZDZGpaWjRJLU52MnpuNXRnTXhSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkE5Ny9GMUZFQjFGRUFDNEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2Rq Wlo0SS1OdjJ6bjV0Z014UmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMUELj2om2pEGiVHdDk0BEPj/S1E6YeDG1irCZ6ANi0MQqXv6wJ70B UKR62Ip71/geUK5r4w88WTdlQAVNIBP5RLqgvCWTXS0mYF1yqgbfhJmatJEc8rmk uGLp1n14nNxW/4pRq+2lC0OB6/T4f06MJxX3KEMXt8U87ZGELcfjY2xYF/18l0I2 AJdWGmORl3xwGgnWMmDLNA+UTJX5+epAri7koX5FA5N94xfnpR9xPwlTBF5RQQl+ kjyT2ttPzXyUZQldiIiRUr+sHlYC4p2+yypT00bMbVlXEV2lh+p8DPqRv3Jad6qO +9jsppEx64XC+8X+GXjfAuuPWNt1kkp6 -----END CERTIFICATE-----Generated at Mon Oct 20 04:46:03 2025 by rpki-client