$ rpki-client -vvf rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft File: R1JQ5qBVR49Kwerx7TLVZyw80bM.mft (raw, json) Hash identifier: lbQZpsCp1Thwz2KU5HGRxsq6GKiAjNmgT3NIOzW28tk= Subject key identifier: 8E:EC:0E:18:2E:66:C0:B2:17:A0:E2:1B:BF:A0:25:17:EA:24:4D:13 Authority key identifier: 47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 Certificate issuer: /CN=A9140EE2/serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Certificate serial: 0D66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft Manifest number: 0D57 Signing time: Sat 18 Oct 2025 18:41:12 +0000 Manifest this update: Sat 18 Oct 2025 18:41:11 +0000 Manifest next update: Sat 25 Oct 2025 18:41:11 +0000 Files and hashes: 1: R1JQ5qBVR49Kwerx7TLVZyw80bM.crl (hash: hKQwWp7cEX9FefxmjZ7hY28pkGGlg3cvIYSXoQdiSQo=) 2: B523DAE68C9211EABC682867C4F9AE02.roa (hash: /Vmvob4Ba5JT6xBzlUxuOFxxM0jXE2HEf4/pjk43Tpk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:41:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3430 (0xd66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140EE2, serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Validity Not Before: Oct 18 18:41:11 2025 GMT Not After : Oct 25 18:41:11 2025 GMT Subject: CN=68f3df47-5296 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f6:18:f1:b7:88:14:fe:03:95:b0:db:5d:b7: 7f:22:20:98:d8:2d:ae:2b:7d:87:99:80:e1:5a:f5: 6d:45:53:08:06:6a:e3:3f:1b:7d:6c:e2:f8:68:f4: 57:0e:da:75:57:04:dd:d2:f4:5f:8e:15:a8:d8:52: 57:e9:c8:8a:a3:d0:5e:29:fe:62:28:6b:f9:3a:cc: 77:51:bc:d9:2a:07:ce:ed:cd:e6:06:36:1d:a8:95: b8:ee:7d:ac:6f:e3:fe:a8:e8:be:dd:3b:b5:91:4f: 6f:b9:88:9b:4e:fc:c5:6a:12:3f:06:52:9b:64:6f: be:30:90:98:24:00:66:bf:74:bd:f6:d6:59:33:ae: 27:02:3a:26:50:e6:1b:d7:4e:a0:4f:7b:83:89:54: 1b:10:53:6e:c8:90:21:6b:80:f6:cb:f7:c4:c5:ac: 9c:94:06:17:08:88:ec:05:d2:ef:79:f6:50:4e:81: 17:d0:7c:57:b8:8e:0b:ec:fe:e5:b8:a8:85:1c:94: 36:25:68:89:73:8c:cb:eb:d5:98:6e:17:8c:03:ee: 59:f2:5e:5c:80:59:40:e5:fb:c0:4e:14:16:68:1f: f8:5a:71:05:e0:fb:1c:e7:6c:e8:af:22:5f:9b:d4: f3:da:25:55:3d:39:3a:be:3f:fb:b4:f3:c9:1a:04: 63:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:EC:0E:18:2E:66:C0:B2:17:A0:E2:1B:BF:A0:25:17:EA:24:4D:13 X509v3 Authority Key Identifier: keyid:47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:d3:ee:26:f5:02:c6:be:8b:16:99:fc:86:5d:94:95:35:6f: 3d:b5:12:c0:e6:9b:21:0f:17:d0:3b:96:6e:35:a2:02:90:f6: 7a:b8:33:a3:12:77:6b:80:c4:eb:7b:76:d5:e2:2f:6c:4e:a4: 67:05:a4:46:b0:c3:ba:07:0f:05:6c:36:00:ef:86:8c:24:71: 21:07:ab:ac:64:6a:e6:cf:70:fa:95:21:db:ef:88:72:9f:61: 6b:8d:05:ab:85:7f:d2:95:32:5e:86:66:17:69:69:c3:90:e0: e2:54:bd:ab:cb:a8:fe:ff:06:b5:a9:3f:34:8a:66:21:82:a6: 1e:76:b4:d6:16:d2:05:47:66:b8:47:8a:41:4d:2f:6e:ea:e7: 54:f9:c2:34:77:15:3a:84:21:0a:48:28:5b:f7:01:5f:60:9d: c7:1e:0b:29:96:83:a5:95:03:df:70:7e:20:84:fb:18:2a:10: 72:84:96:1a:86:09:b6:36:eb:3b:d1:43:8c:44:43:88:7f:88: bf:0f:7f:23:ae:13:60:b2:f7:c8:f4:e6:2b:3b:25:5a:fa:12: 04:11:4a:e4:f2:e3:d4:a4:84:58:d4:45:31:d9:a0:0b:a2:45: 96:9f:aa:cc:61:0b:e3:94:64:4a:a5:d3:e3:d0:59:6a:0d:48: 85:16:99:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFRTIxMTAvBgNVBAUTKDQ3NTI1MEU2QTA1NTQ3OEY0QUMxRUFGMUVEMzJENTY3 MkMzQ0QxQjMwHhcNMjUxMDE4MTg0MTExWhcNMjUxMDI1MTg0MTExWjAYMRYwFAYD VQQDEw02OGYzZGY0Ny01Mjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfYY8beIFP4DlbDbXbd/IiCY2C2uK32HmYDhWvVtRVMIBmrjPxt9bOL4aPRX Dtp1VwTd0vRfjhWo2FJX6ciKo9BeKf5iKGv5Osx3UbzZKgfO7c3mBjYdqJW47n2s b+P+qOi+3Tu1kU9vuYibTvzFahI/BlKbZG++MJCYJABmv3S99tZZM64nAjomUOYb 106gT3uDiVQbEFNuyJAha4D2y/fExayclAYXCIjsBdLvefZQToEX0HxXuI4L7P7l uKiFHJQ2JWiJc4zL69WYbheMA+5Z8l5cgFlA5fvAThQWaB/4WnEF4Psc52zoryJf m9Tz2iVVPTk6vj/7tPPJGgRjZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI7sDhgu ZsCyF6DiG7+gJRfqJE0TMB8GA1UdIwQYMBaAFEdSUOagVUePSsHq8e0y1WcsPNGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEVFMi9FQTAxRDU1QURG NzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0OUt3ZXJ4N1RMVlp5dzgw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxSlE1cUJWUjQ5S3dlcng3VExWWnl3ODBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEVFMi9FQTAxRDU1QURGNzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0 OUt3ZXJ4N1RMVlp5dzgwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM0+4m9QLGvosWmfyGXZSVNW89tRLA5pshDxfQO5ZuNaICkPZ6uDOj EndrgMTre3bV4i9sTqRnBaRGsMO6Bw8FbDYA74aMJHEhB6usZGrmz3D6lSHb74hy n2FrjQWrhX/SlTJehmYXaWnDkODiVL2ry6j+/wa1qT80imYhgqYedrTWFtIFR2a4 R4pBTS9u6udU+cI0dxU6hCEKSChb9wFfYJ3HHgsploOllQPfcH4ghPsYKhByhJYa hgm2Nus70UOMREOIf4i/D38jrhNgsvfI9OYrOyVa+hIEEUrk8uPUpIRY1EUx2aAL okWWn6rMYQvjlGRKpdPj0FlqDUiFFpkW -----END CERTIFICATE-----Generated at Mon Oct 20 04:25:11 2025 by rpki-client