$ rpki-client -vvf rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft File: -xaxnfv3ymrECmtqNT94V4kX4P0.mft (raw, json) Hash identifier: 1SJ/hmR+lRpEKAu+H7VCRrFIWwPArCbES5MnYnzDFP8= Subject key identifier: 2E:57:33:9A:55:A8:D0:EE:76:AF:1F:1D:71:2D:9A:32:EA:30:D1:38 Authority key identifier: FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD Certificate issuer: /CN=A9146CB4/serialNumber=FB16B19DFBF7CA6AC40A6B6A353F78578917E0FD Certificate serial: 01C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft Manifest number: 01C1 Signing time: Sun 19 Oct 2025 05:27:01 +0000 Manifest this update: Sun 19 Oct 2025 05:27:01 +0000 Manifest next update: Sun 26 Oct 2025 05:27:01 +0000 Files and hashes: 1: -xaxnfv3ymrECmtqNT94V4kX4P0.crl (hash: YuHaVN3h3Kc4QzNXKllW/3RlObsI48aoQ/WJmZXPvJ8=) 2: DFC662EC415B11EE9E83852AC4F9AE02.roa (hash: JQglPoDIL3Eq1y2JiUK8F3q2nUek/I2P1c153lPMYTA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.crl rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:27:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146CB4, serialNumber=FB16B19DFBF7CA6AC40A6B6A353F78578917E0FD Validity Not Before: Oct 19 05:27:01 2025 GMT Not After : Oct 26 05:27:01 2025 GMT Subject: CN=68f476a5-514c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:63:15:a1:2f:cd:31:f3:5e:57:d9:ac:57:5c: cf:27:1a:5c:0a:55:83:03:c5:ec:0a:37:fb:db:ce: 3c:a3:cc:ce:f2:e3:24:1c:13:a8:6f:20:7b:41:a6: 16:a8:cf:e0:3b:1c:a8:ed:e2:7f:16:a2:e2:0e:14: f2:47:24:3c:ef:fe:6f:0d:84:99:4f:e7:78:74:00: 95:e0:4c:63:fa:b2:97:d1:bb:78:03:24:ec:a5:1f: da:67:d5:05:d3:16:e5:66:7a:ac:ae:aa:81:7e:69: 91:1f:8b:f3:c6:84:ab:36:85:d9:8a:bf:d9:9f:01: e2:ea:40:2a:50:2a:7b:c6:f3:b1:15:a8:5a:be:f4: ce:dd:e9:ee:49:b4:12:5a:29:31:56:11:a4:14:ec: 3a:d1:10:ad:ea:22:63:39:35:b3:4a:e8:ef:f2:6a: 88:51:37:1c:19:b4:e1:cd:c2:3b:39:ca:d1:77:dc: c2:5c:96:7c:08:e1:73:5a:11:ad:96:7e:ca:02:b7: 5a:f7:2c:a0:6a:e7:43:41:99:f8:65:01:51:98:ab: 08:58:1a:ae:cc:77:3f:e6:07:cd:3f:09:8d:1d:1c: da:3c:4a:21:58:4b:8b:9b:6c:21:1e:24:2b:c9:a3: 53:21:86:ec:b1:28:6d:ce:a1:74:07:d1:2e:7e:f1: ec:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:57:33:9A:55:A8:D0:EE:76:AF:1F:1D:71:2D:9A:32:EA:30:D1:38 X509v3 Authority Key Identifier: keyid:FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:c8:9a:1b:58:c2:27:47:dd:fb:a9:4b:13:48:74:22:c9:a1: db:63:d9:83:50:d2:f0:ed:b7:92:29:29:5c:f7:bd:0f:e6:80: b2:32:8d:49:a5:de:f6:36:92:53:90:74:49:33:b2:b8:c1:ca: 87:a6:54:c9:2a:f8:6f:90:5b:1e:fa:5c:3d:3b:3a:1f:08:66: 88:e4:61:c2:0f:6e:95:a3:6d:3f:45:99:69:2c:b7:b6:b3:30: d5:a4:7d:cc:86:d2:16:72:8d:99:f0:7a:40:d9:7d:8b:7c:00: ff:4e:c7:c6:fd:3e:17:d1:b6:8a:89:e2:77:69:6e:47:fd:5a: 51:88:89:fc:47:5f:2f:ad:62:a4:60:78:37:32:19:a4:7e:bb: 42:31:aa:84:da:db:c0:c4:88:c6:59:05:a4:dc:0e:da:12:97: 46:26:b2:93:c2:32:47:b0:84:5e:a4:54:61:99:b9:83:d1:8f: e1:a5:20:30:03:19:46:fe:e3:b4:ab:72:f7:72:40:74:ae:39: 2e:86:ba:4f:54:6e:23:20:67:f0:2d:02:89:97:ae:c3:fb:ff: b6:0e:86:0e:56:65:6f:73:b8:9b:0a:39:5b:3c:d9:ce:a9:ba: bc:10:e1:14:61:e2:0d:dd:0f:e0:f2:c3:71:6f:e7:6b:df:73: 20:8c:08:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZDQjQxMTAvBgNVBAUTKEZCMTZCMTlERkJGN0NBNkFDNDBBNkI2QTM1M0Y3ODU3 ODkxN0UwRkQwHhcNMjUxMDE5MDUyNzAxWhcNMjUxMDI2MDUyNzAxWjAYMRYwFAYD VQQDEw02OGY0NzZhNS01MTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWMVoS/NMfNeV9msV1zPJxpcClWDA8XsCjf72848o8zO8uMkHBOobyB7QaYW qM/gOxyo7eJ/FqLiDhTyRyQ87/5vDYSZT+d4dACV4Exj+rKX0bt4AyTspR/aZ9UF 0xblZnqsrqqBfmmRH4vzxoSrNoXZir/ZnwHi6kAqUCp7xvOxFahavvTO3enuSbQS WikxVhGkFOw60RCt6iJjOTWzSujv8mqIUTccGbThzcI7OcrRd9zCXJZ8COFzWhGt ln7KArda9yygaudDQZn4ZQFRmKsIWBquzHc/5gfNPwmNHRzaPEohWEuLm2whHiQr yaNTIYbssShtzqF0B9EufvHsHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5XM5pV qNDudq8fHXEtmjLqMNE4MB8GA1UdIwQYMBaAFPsWsZ3798pqxAprajU/eFeJF+D9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkNCNC8yQTg0RDFEOEZE QzgxMUVEOTcyRURCMUVDNEY5QUUwMi8teGF4bmZ2M3ltckVDbXRxTlQ5NFY0a1g0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14YXhuZnYzeW1yRUNtdHFOVDk0VjRrWDRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkNCNC8yQTg0RDFEOEZEQzgxMUVEOTcyRURCMUVDNEY5QUUwMi8teGF4bmZ2M3lt ckVDbXRxTlQ5NFY0a1g0UDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAyJobWMInR937qUsTSHQiyaHbY9mDUNLw7beSKSlc970P5oCyMo1J pd72NpJTkHRJM7K4wcqHplTJKvhvkFse+lw9OzofCGaI5GHCD26Vo20/RZlpLLe2 szDVpH3MhtIWco2Z8HpA2X2LfAD/TsfG/T4X0baKieJ3aW5H/VpRiIn8R18vrWKk YHg3MhmkfrtCMaqE2tvAxIjGWQWk3A7aEpdGJrKTwjJHsIRepFRhmbmD0Y/hpSAw AxlG/uO0q3L3ckB0rjkuhrpPVG4jIGfwLQKJl67D+/+2DoYOVmVvc7ibCjlbPNnO qbq8EOEUYeIN3Q/g8sNxb+dr33MgjAg7 -----END CERTIFICATE-----Generated at Mon Oct 20 12:44:32 2025 by rpki-client