$ rpki-client -vvf rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft File: Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft (raw, json) Hash identifier: H1II+roRjvIjo9hv9zbwe4NVIZfvQxFxpwzA3TFPE2g= Subject key identifier: 50:A4:79:92:CE:EF:C2:C9:1F:1E:05:8F:BD:D4:8F:B6:EE:0C:A2:B3 Authority key identifier: 3E:1F:62:65:E9:D2:14:C9:E1:6C:B3:38:25:40:D4:62:23:60:21:58 Certificate issuer: /CN=A913CB8B/serialNumber=3E1F6265E9D214C9E16CB3382540D46223602158 Certificate serial: 020F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ph9iZenSFMnhbLM4JUDUYiNgIVg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft Manifest number: 020B Signing time: Sun 19 Oct 2025 04:35:38 +0000 Manifest this update: Sun 19 Oct 2025 04:35:37 +0000 Manifest next update: Sun 26 Oct 2025 04:35:37 +0000 Files and hashes: 1: Ph9iZenSFMnhbLM4JUDUYiNgIVg.crl (hash: sn0DUSzLf6wWaEDMuzpZzifXaVP8gsUnHzfMz2YQoag=) 2: F56B35708C0011ED836F0539C4F9AE02.roa (hash: UfZMrxaB0qz4pcGB9q6XltymVUTNDZVQp2pT7h14Zqo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.crl rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ph9iZenSFMnhbLM4JUDUYiNgIVg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:35:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 527 (0x20f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CB8B, serialNumber=3E1F6265E9D214C9E16CB3382540D46223602158 Validity Not Before: Oct 19 04:35:37 2025 GMT Not After : Oct 26 04:35:37 2025 GMT Subject: CN=68f46a99-15bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f7:73:0a:27:a4:2a:d0:94:4b:15:07:d7:d4: b9:cc:e0:30:23:f2:07:f1:66:44:58:98:e6:b7:60: 60:59:41:5a:24:24:c0:ff:4b:af:da:09:d3:b2:6f: 35:7d:e4:14:75:5f:69:86:f8:a5:36:ac:b4:fb:7d: fb:80:29:13:16:e9:70:66:71:69:a6:11:d5:0b:4e: da:28:29:c1:9a:85:52:d8:1b:f2:a2:45:41:01:ee: c1:99:9d:34:aa:6e:b7:50:1a:18:ba:60:ef:af:c3: 17:02:92:4f:e0:a8:70:88:1c:d1:1c:60:56:48:1f: ad:33:40:e8:f8:0d:b2:04:5a:bc:4b:41:65:bc:42: 7f:fb:3e:ce:bb:6f:ed:26:08:2d:dc:a4:38:67:d5: 14:26:e0:62:61:56:a0:c9:a6:5a:53:8d:19:1f:d9: 53:1c:00:ef:75:fd:5c:c1:83:84:b5:9f:58:b2:b7: ef:c0:ee:ca:65:1c:70:fd:bf:1d:13:72:86:4c:fe: 1e:32:a2:6f:35:93:09:fe:52:f6:7d:72:33:8f:97: 12:3f:25:6e:65:a2:fe:d7:0c:85:c8:5d:2b:e3:70: 57:13:14:ee:34:e0:a6:51:2f:79:a0:34:7f:2a:26: bc:05:73:ed:b6:17:78:8b:ad:27:69:36:ce:84:10: ad:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:A4:79:92:CE:EF:C2:C9:1F:1E:05:8F:BD:D4:8F:B6:EE:0C:A2:B3 X509v3 Authority Key Identifier: keyid:3E:1F:62:65:E9:D2:14:C9:E1:6C:B3:38:25:40:D4:62:23:60:21:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ph9iZenSFMnhbLM4JUDUYiNgIVg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:91:35:68:b0:e0:55:56:3c:5e:ed:b7:59:72:26:29:6e:50: 4c:e9:bc:49:a8:b7:2f:7b:81:34:3b:28:d0:a6:24:62:7e:5f: 2e:b3:1f:9b:13:63:4f:a3:99:64:d0:e1:33:a3:16:fc:00:ad: ff:da:3d:cc:47:eb:6a:37:c2:49:8a:23:58:83:cb:77:39:3a: 5b:0f:90:71:a7:74:58:0d:a4:fe:53:0b:09:35:72:9e:59:74: bf:16:e5:88:60:5f:87:f7:bc:7b:c5:29:71:21:ab:c1:1b:a1: 16:dd:85:a4:98:fa:21:93:13:7b:be:1e:ca:87:be:14:57:c2: 7f:84:21:e4:fc:5f:e3:cd:61:59:6e:3b:98:ea:8d:6a:4f:ad: dc:e0:3b:62:5a:84:c7:33:9a:94:ae:27:ec:45:4d:5a:b9:fb: 98:5c:81:9b:8b:45:db:82:27:72:1b:af:1e:a3:09:db:0b:bd: 2f:f3:64:69:06:91:b2:84:70:3d:71:0c:24:77:7b:94:0f:85: c1:5d:1f:d2:75:f1:a0:ae:04:fb:ee:9e:6a:50:6a:0e:5b:01: 28:96:d3:bf:3c:1e:37:f2:21:25:13:68:39:22:48:46:d5:57: 58:1e:4e:27:af:72:de:e5:d2:81:fe:56:1e:b8:f1:0d:1d:22: 59:19:d4:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NCOEIxMTAvBgNVBAUTKDNFMUY2MjY1RTlEMjE0QzlFMTZDQjMzODI1NDBENDYy MjM2MDIxNTgwHhcNMjUxMDE5MDQzNTM3WhcNMjUxMDI2MDQzNTM3WjAYMRYwFAYD VQQDEw02OGY0NmE5OS0xNWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1fdzCiekKtCUSxUH19S5zOAwI/IH8WZEWJjmt2BgWUFaJCTA/0uv2gnTsm81 feQUdV9phvilNqy0+337gCkTFulwZnFpphHVC07aKCnBmoVS2BvyokVBAe7BmZ00 qm63UBoYumDvr8MXApJP4KhwiBzRHGBWSB+tM0Do+A2yBFq8S0FlvEJ/+z7Ou2/t Jggt3KQ4Z9UUJuBiYVagyaZaU40ZH9lTHADvdf1cwYOEtZ9YsrfvwO7KZRxw/b8d E3KGTP4eMqJvNZMJ/lL2fXIzj5cSPyVuZaL+1wyFyF0r43BXExTuNOCmUS95oDR/ Kia8BXPtthd4i60naTbOhBCtnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFCkeZLO 78LJHx4Fj73Uj7buDKKzMB8GA1UdIwQYMBaAFD4fYmXp0hTJ4WyzOCVA1GIjYCFY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0I4Qi9ERDA0NzNGQThC RkQxMUVEOTgzRTVDMzJDNEY5QUUwMi9QaDlpWmVuU0ZNbmhiTE00SlVEVVlpTmdJ VmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BoOWlaZW5TRk1uaGJMTTRKVURVWWlOZ0lWZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Q0I4Qi9ERDA0NzNGQThCRkQxMUVEOTgzRTVDMzJDNEY5QUUwMi9QaDlpWmVuU0ZN bmhiTE00SlVEVVlpTmdJVmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmkTVosOBVVjxe7bdZciYpblBM6bxJqLcve4E0OyjQpiRifl8usx+b E2NPo5lk0OEzoxb8AK3/2j3MR+tqN8JJiiNYg8t3OTpbD5Bxp3RYDaT+UwsJNXKe WXS/FuWIYF+H97x7xSlxIavBG6EW3YWkmPohkxN7vh7Kh74UV8J/hCHk/F/jzWFZ bjuY6o1qT63c4DtiWoTHM5qUrifsRU1aufuYXIGbi0XbgidyG68eownbC70v82Rp BpGyhHA9cQwkd3uUD4XBXR/SdfGgrgT77p5qUGoOWwEoltO/PB438iElE2g5IkhG 1VdYHk4nr3Le5dKB/lYeuPENHSJZGdT+ -----END CERTIFICATE-----Generated at Mon Oct 20 03:50:35 2025 by rpki-client