$ rpki-client -vvf rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft File: piPcBe58I3DKREMQhN5RMh83pwQ.mft (raw, json) Hash identifier: Jv0ZzvkxhHO6x6m1rQf8KTD/1/CObAgTh0YuitpIb8k= Subject key identifier: 8B:3B:54:98:12:CF:B2:EA:14:2C:E1:FD:D2:B4:B9:D6:DF:A3:FD:31 Authority key identifier: A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04 Certificate issuer: /CN=A9146179/serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704 Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft Manifest number: A8 Signing time: Sun 19 Oct 2025 09:22:44 +0000 Manifest this update: Sun 19 Oct 2025 09:22:43 +0000 Manifest next update: Sun 26 Oct 2025 09:22:43 +0000 Files and hashes: 1: piPcBe58I3DKREMQhN5RMh83pwQ.crl (hash: kB65EHQoPHuDCiII96v4j7dQUUxX91v9Tx2P9aKQJxA=) 2: B93E11C0AA7C11EFA2125D79C4F9AE02.roa (hash: L6gwOkLW0S9oSXFYmJ2NgzIUWM0zCt+FTxcWMzfbAlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:22:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146179, serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704 Validity Not Before: Oct 19 09:22:43 2025 GMT Not After : Oct 26 09:22:43 2025 GMT Subject: CN=68f4ade3-6dfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:92:5b:9f:39:b5:23:c9:78:ee:18:8b:b3:54: 46:2c:b0:c3:44:c3:f5:84:3c:e2:71:7b:ed:ac:7b: a0:33:bd:71:0c:2e:8f:3e:e4:1c:9e:5a:ac:45:e9: e4:3e:f2:c1:97:24:c9:a0:c6:c1:11:93:8d:d6:f3: 83:54:15:49:17:97:a0:fe:04:5b:54:2a:9f:d0:41: 20:9e:bd:67:a0:ba:d1:39:15:e6:57:d5:3c:f8:03: fd:3c:ed:02:66:ea:b8:0e:21:36:23:49:d4:78:e5: 50:7e:4d:34:59:18:f0:22:42:36:ac:7d:e6:a7:42: bc:48:fb:ef:08:92:e9:0d:33:fd:94:d8:dd:72:26: 19:eb:a5:7c:1b:f5:2f:33:34:86:a5:9b:55:43:d4: ca:2b:2a:75:bf:37:f2:8b:92:03:0e:b3:b1:15:da: b2:fc:7e:74:f8:50:eb:cb:19:1b:39:ac:4c:7b:60: 97:09:27:8e:e2:e0:13:37:5a:fc:03:4d:fc:6d:15: 39:56:cb:f7:52:79:44:51:c8:c7:3b:1f:7a:2e:b7: 9d:99:28:dc:fc:c0:d4:5d:0b:00:c8:cf:e6:9b:f9: b9:9d:01:43:94:e7:32:78:10:ac:cd:e5:ab:37:c3: 33:de:c5:65:d1:ba:da:c9:87:88:de:06:ff:11:43: 68:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:3B:54:98:12:CF:B2:EA:14:2C:E1:FD:D2:B4:B9:D6:DF:A3:FD:31 X509v3 Authority Key Identifier: keyid:A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:26:b4:e9:45:7a:4c:4a:c2:87:70:7e:01:dd:77:07:2d:c4: e2:49:7e:be:dc:81:04:cc:76:03:47:b6:0f:95:07:af:77:96: 0a:89:97:2e:f1:f1:1f:61:73:b8:65:75:af:f1:6c:c1:f3:d8: da:8e:4b:a1:40:67:41:37:dc:d1:55:25:c5:66:67:cd:03:cf: 6a:41:a9:79:e2:57:b0:56:9f:28:70:fd:b0:3f:7b:ed:b1:ba: d6:08:cb:0b:93:7d:21:f5:3a:f3:54:32:49:e4:ee:0d:41:10: 3c:02:d7:10:6b:58:fe:bb:ad:33:d5:b3:ae:6b:1b:f7:52:0d: cf:75:0e:1a:b9:58:4f:a1:34:dc:ef:b5:e9:32:1a:b1:54:48: 9c:66:9a:39:88:ed:29:d2:0a:74:4a:31:f2:2f:00:cf:49:a3: 00:79:76:18:89:f5:7e:8e:48:76:15:a0:c6:1a:8a:84:61:36: f0:7a:6d:d3:61:7c:2f:a1:47:41:12:73:36:ec:54:54:71:64: bd:0e:f5:f9:a6:e0:46:3a:b5:a4:ad:2d:ee:a3:57:ba:19:87: 5f:f0:47:64:d6:5c:d3:7d:f2:79:01:f9:39:6e:2b:bf:d4:2b: ed:cf:b4:91:64:3b:45:e7:e0:41:a9:88:a8:c3:25:91:fc:c0: 8a:ba:66:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYxNzkxMTAvBgNVBAUTKEE2MjNEQzA1RUU3QzIzNzBDQTQ0NDMxMDg0REU1MTMy MUYzN0E3MDQwHhcNMjUxMDE5MDkyMjQzWhcNMjUxMDI2MDkyMjQzWjAYMRYwFAYD VQQDEw02OGY0YWRlMy02ZGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JJbnzm1I8l47hiLs1RGLLDDRMP1hDzicXvtrHugM71xDC6PPuQcnlqsRenk PvLBlyTJoMbBEZON1vODVBVJF5eg/gRbVCqf0EEgnr1noLrRORXmV9U8+AP9PO0C Zuq4DiE2I0nUeOVQfk00WRjwIkI2rH3mp0K8SPvvCJLpDTP9lNjdciYZ66V8G/Uv MzSGpZtVQ9TKKyp1vzfyi5IDDrOxFdqy/H50+FDryxkbOaxMe2CXCSeO4uATN1r8 A038bRU5Vsv3UnlEUcjHOx96LredmSjc/MDUXQsAyM/mm/m5nQFDlOcyeBCszeWr N8Mz3sVl0brayYeI3gb/EUNoBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIs7VJgS z7LqFCzh/dK0udbfo/0xMB8GA1UdIwQYMBaAFKYj3AXufCNwykRDEITeUTIfN6cE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjE3OS80QkZEOUJCQ0FB N0MxMUVGQTMzQkZENzdDNEY5QUUwMi9waVBjQmU1OEkzREtSRU1RaE41Uk1oODNw d1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BpUGNCZTU4STNES1JFTVFoTjVSTWg4M3B3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjE3OS80QkZEOUJCQ0FBN0MxMUVGQTMzQkZENzdDNEY5QUUwMi9waVBjQmU1OEkz REtSRU1RaE41Uk1oODNwd1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJJrTpRXpMSsKHcH4B3XcHLcTiSX6+3IEEzHYDR7YPlQevd5YKiZcu 8fEfYXO4ZXWv8WzB89jajkuhQGdBN9zRVSXFZmfNA89qQal54lewVp8ocP2wP3vt sbrWCMsLk30h9TrzVDJJ5O4NQRA8AtcQa1j+u60z1bOuaxv3Ug3PdQ4auVhPoTTc 77XpMhqxVEicZpo5iO0p0gp0SjHyLwDPSaMAeXYYifV+jkh2FaDGGoqEYTbwem3T YXwvoUdBEnM27FRUcWS9DvX5puBGOrWkrS3uo1e6GYdf8Edk1lzTffJ5Afk5biu/ 1Cvtz7SRZDtF5+BBqYiowyWR/MCKumZD -----END CERTIFICATE-----Generated at Tue Oct 21 00:03:38 2025 by rpki-client