$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft File: xG1ZE_bCUMau4vMnRTXOhmKVufo.mft (raw, json) Hash identifier: wJut+1qcpsMmlTruRS3sD5HhYhguOKTgp1TzJTA6f3Q= Subject key identifier: B3:A7:CA:E0:BB:CF:43:4E:9B:04:20:B2:59:69:EC:8E:4D:89:12:78 Authority key identifier: C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA Certificate issuer: /CN=A9148B83/serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Certificate serial: 06A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft Manifest number: 069B Signing time: Sat 18 Oct 2025 23:49:18 +0000 Manifest this update: Sat 18 Oct 2025 23:49:17 +0000 Manifest next update: Sat 25 Oct 2025 23:49:17 +0000 Files and hashes: 1: xG1ZE_bCUMau4vMnRTXOhmKVufo.crl (hash: /f5O5+VZO1pHgoE1BQuD1ujOH/wrJ+oUCJ9WLGU2kwo=) 2: 65FE79B8885D11EB81454E41C4F9AE02.roa (hash: 327ah/e9fUSF5H9j9NGNYuwKtrueHyZEroURzg2Xyh8=) 3: 009E969E885C11EB88A7723DC4F9AE02.roa (hash: 10SP9rtLMhnfiCiDsyU/nUUSFenGWa1NBToGV5Ae6kE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:49:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1702 (0x6a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B83, serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Validity Not Before: Oct 18 23:49:17 2025 GMT Not After : Oct 25 23:49:17 2025 GMT Subject: CN=68f4277e-b017 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b0:cd:b8:a9:09:81:7f:58:f5:59:2d:7f:cc: 31:fb:dc:17:c9:9e:08:55:ec:63:f5:c5:c9:2b:5e: c3:19:c4:9a:a8:04:9b:1a:1d:cd:31:10:60:81:0d: bd:37:c1:65:62:3c:e5:a4:ed:18:8f:3b:22:8e:89: 8e:98:ec:b8:b6:77:0c:eb:a7:c1:ba:01:9f:e7:72: e8:f4:e1:5d:cd:59:8c:45:e5:34:5c:b3:a3:46:0e: 2e:6b:f1:9f:2b:a5:5e:74:a2:dc:cc:46:a6:4f:c7: b0:04:77:f9:da:75:a9:7e:d8:25:68:9f:4e:fd:f6: 98:ae:0c:12:65:51:77:d5:43:57:0d:27:79:72:24: c1:4f:6f:a7:9b:0d:32:77:16:07:d7:83:d7:1a:c4: 3b:98:e2:fd:fd:a3:4c:02:df:b7:1b:e0:bc:13:35: e8:8f:1f:41:57:1f:40:9f:0b:3a:65:2f:09:fd:43: 5b:2c:86:aa:ed:a8:88:4f:4e:13:5e:59:68:0b:6e: ba:c6:c7:6f:2a:a7:3f:ca:80:3c:b2:da:36:df:78: 11:a3:f0:e0:e3:8a:6d:50:63:4f:6d:db:cb:b6:e8: 82:69:05:fb:45:0a:cd:c1:dd:f5:d5:91:46:fc:03: 06:57:71:f8:a8:ba:92:97:d0:ad:50:55:7d:c6:2f: 4e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:A7:CA:E0:BB:CF:43:4E:9B:04:20:B2:59:69:EC:8E:4D:89:12:78 X509v3 Authority Key Identifier: keyid:C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:3d:28:9f:b5:74:2e:f9:25:f6:5c:c7:6c:6b:cc:21:a2:a1: 39:25:69:6f:8a:e5:b4:33:80:19:52:7c:c0:28:0a:e6:e9:38: c9:1f:05:c9:26:3c:90:9e:eb:4b:1c:fc:12:ec:47:2d:8c:92: 48:64:a2:02:e4:01:8a:fa:ec:fd:a4:16:f0:5f:2f:5b:09:8d: 07:2c:35:7a:6f:28:f0:fb:0d:30:07:f1:43:2c:62:46:40:2b: 0b:32:f0:13:fa:75:00:25:17:fc:a2:68:15:49:30:cc:80:af: 46:12:5b:14:50:e4:85:56:7c:a0:d6:f1:b3:19:6a:f2:f1:18: 9b:d8:73:f8:2b:6c:d2:43:b4:08:7b:dc:55:39:6c:65:7c:20: e2:2c:43:ab:ea:c8:04:ba:c3:f4:00:af:66:bb:07:21:39:ef: e9:ef:97:d2:4f:a0:b2:27:0b:47:f1:f4:8e:c6:57:df:cb:72: 56:d7:d4:52:d4:6c:ea:8e:c5:79:b9:cb:9c:46:f0:42:e0:7a: bc:6d:76:0d:d2:47:07:02:18:f8:be:c3:26:b7:29:bc:6c:ce: 5d:ea:54:e2:24:8e:36:57:9a:87:fe:e5:48:80:ec:4d:78:39: 8f:d7:4b:bf:b0:6b:d6:ae:14:29:d7:6e:d3:d4:c7:b2:f1:f2: 3c:b1:71:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCODMxMTAvBgNVBAUTKEM0NkQ1OTEzRjZDMjUwQzZBRUUyRjMyNzQ1MzVDRTg2 NjI5NUI5RkEwHhcNMjUxMDE4MjM0OTE3WhcNMjUxMDI1MjM0OTE3WjAYMRYwFAYD VQQDEw02OGY0Mjc3ZS1iMDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3rDNuKkJgX9Y9Vktf8wx+9wXyZ4IVexj9cXJK17DGcSaqASbGh3NMRBggQ29 N8FlYjzlpO0YjzsijomOmOy4tncM66fBugGf53Lo9OFdzVmMReU0XLOjRg4ua/Gf K6VedKLczEamT8ewBHf52nWpftglaJ9O/faYrgwSZVF31UNXDSd5ciTBT2+nmw0y dxYH14PXGsQ7mOL9/aNMAt+3G+C8EzXojx9BVx9Anws6ZS8J/UNbLIaq7aiIT04T XlloC266xsdvKqc/yoA8sto233gRo/Dg44ptUGNPbdvLtuiCaQX7RQrNwd311ZFG /AMGV3H4qLqSl9CtUFV9xi9OpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLOnyuC7 z0NOmwQgsllp7I5NiRJ4MB8GA1UdIwQYMBaAFMRtWRP2wlDGruLzJ0U1zoZilbn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI4My83N0FBNDE0Njg3 RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VNYXU0dk1uUlRYT2htS1Z1 Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHMVpFX2JDVU1hdTR2TW5SVFhPaG1LVnVmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEI4My83N0FBNDE0Njg3RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VN YXU0dk1uUlRYT2htS1Z1Zm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtPSiftXQu+SX2XMdsa8whoqE5JWlviuW0M4AZUnzAKArm6TjJHwXJ JjyQnutLHPwS7EctjJJIZKIC5AGK+uz9pBbwXy9bCY0HLDV6byjw+w0wB/FDLGJG QCsLMvAT+nUAJRf8omgVSTDMgK9GElsUUOSFVnyg1vGzGWry8Rib2HP4K2zSQ7QI e9xVOWxlfCDiLEOr6sgEusP0AK9muwchOe/p75fST6CyJwtH8fSOxlffy3JW19RS 1GzqjsV5ucucRvBC4Hq8bXYN0kcHAhj4vsMmtym8bM5d6lTiJI42V5qH/uVIgOxN eDmP10u/sGvWrhQp127T1Mey8fI8sXHJ -----END CERTIFICATE-----Generated at Mon Oct 20 13:42:09 2025 by rpki-client