$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft File: aIdCVFR7NLOvid21tI0CAj9Xrhc.mft (raw, json) Hash identifier: /wJr7aIkkknfZ18NZOcUiLZSV7yoyld0g0lUxh5RyJ0= Subject key identifier: CA:58:3E:23:C7:F3:E6:91:8F:AB:32:4C:57:2F:88:D8:96:15:2E:D3 Authority key identifier: 68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 Certificate issuer: /CN=A9148D52/serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Certificate serial: 0D6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft Manifest number: 0D63 Signing time: Sat 18 Oct 2025 18:39:30 +0000 Manifest this update: Sat 18 Oct 2025 18:39:29 +0000 Manifest next update: Sat 25 Oct 2025 18:39:29 +0000 Files and hashes: 1: aIdCVFR7NLOvid21tI0CAj9Xrhc.crl (hash: DEFKzVMtpUJLam87gkO1khH1LvRWwRs7s5fmYoi/J/0=) 2: 0198539E94F311EA9429BF86C4F9AE02.roa (hash: 5GX92aioe88puPmyzGflssCck3bnuW06XT8lCNmGXB4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:39:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3436 (0xd6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D52, serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Validity Not Before: Oct 18 18:39:29 2025 GMT Not After : Oct 25 18:39:29 2025 GMT Subject: CN=68f3dee1-121b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4f:5d:0b:05:ed:07:3e:96:f7:6c:ad:de:67: e2:ab:c3:2a:e5:7b:75:49:2e:4b:dd:c3:99:c4:65: 8e:a8:ae:4d:02:4a:09:08:2c:28:41:88:d4:df:6f: 04:72:eb:f8:ef:88:37:07:d3:2f:45:e3:7e:ff:58: 97:e6:cf:b7:c5:6e:2c:7f:bd:18:00:60:c9:ff:99: 68:7c:7d:d1:1c:ac:1e:4d:c5:6b:ee:33:eb:ee:33: b9:a0:06:3d:6c:63:02:45:0e:ee:bb:fa:c4:9c:4d: 33:1e:ed:b4:de:a4:24:9f:97:f9:e8:1a:4c:d6:85: 9b:d0:c5:7e:7a:67:a2:c2:21:98:61:71:cb:bf:61: 78:54:8a:f9:f4:60:e2:1c:80:2b:cf:68:05:3b:2f: 93:f6:4c:49:2d:c7:1e:2c:40:0c:e6:52:89:ad:13: c0:a6:2a:e4:63:00:99:f6:e6:ae:37:fb:95:19:26: 0c:7e:54:41:b8:f2:fb:cc:31:86:70:d5:d9:89:00: 1f:3b:75:73:8b:8e:9e:bf:30:8e:c8:47:3e:ad:c5: 0d:98:67:70:b1:29:ca:d6:f5:c0:b8:a4:a4:d2:c4: ca:98:aa:1e:73:aa:79:7c:9f:f4:60:a0:a4:76:a8: 68:b7:5e:dd:5b:93:bb:1e:a8:3b:5e:6e:ff:16:b9: dd:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:58:3E:23:C7:F3:E6:91:8F:AB:32:4C:57:2F:88:D8:96:15:2E:D3 X509v3 Authority Key Identifier: keyid:68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:ca:bb:2a:b7:18:e9:85:e4:a8:52:2a:6b:6a:09:fb:0c:e4: 81:0f:13:e9:48:ad:f5:3c:7e:74:f3:6e:19:de:1e:5d:bb:1c: e7:54:28:6b:81:8a:c1:aa:c6:70:1a:fb:19:e0:a9:25:fd:55: ad:e1:05:24:43:f5:86:8b:bf:f1:6a:06:85:87:37:5e:db:fb: bf:70:20:0d:84:bd:b9:e4:41:f4:95:94:eb:dd:05:bc:97:2d: 8e:ff:52:29:ad:dc:33:04:92:cb:e4:93:6c:74:37:09:0b:fb: 7a:01:db:33:07:67:25:b1:1c:e7:fc:d1:3b:09:08:4b:42:3c: 1f:c3:ed:4d:66:1c:ba:e5:93:2e:76:53:6b:93:1e:60:99:42: 7b:82:cc:d5:55:be:94:d7:07:db:6b:30:b3:47:74:21:35:49: 37:fe:5b:59:8e:3b:f0:91:26:a5:3e:33:41:87:cd:13:46:0c: 4d:48:d8:78:c0:e3:97:31:9c:0c:33:f5:a4:d2:ba:e4:81:0f: 29:5e:1e:16:0c:7e:da:1c:a8:7d:28:f0:11:fb:c7:45:cf:75: a4:98:b6:2e:52:21:1b:5a:b3:ba:26:eb:6e:3e:35:3c:e7:db: 5f:b2:d0:04:9b:ad:01:bc:96:0c:85:b9:16:86:52:15:ad:9e: 2a:07:06:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENTIxMTAvBgNVBAUTKDY4ODc0MjU0NTQ3QjM0QjNBRjg5RERCNUI0OEQwMjAy M0Y1N0FFMTcwHhcNMjUxMDE4MTgzOTI5WhcNMjUxMDI1MTgzOTI5WjAYMRYwFAYD VQQDEw02OGYzZGVlMS0xMjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz09dCwXtBz6W92yt3mfiq8Mq5Xt1SS5L3cOZxGWOqK5NAkoJCCwoQYjU328E cuv474g3B9MvReN+/1iX5s+3xW4sf70YAGDJ/5lofH3RHKweTcVr7jPr7jO5oAY9 bGMCRQ7uu/rEnE0zHu203qQkn5f56BpM1oWb0MV+emeiwiGYYXHLv2F4VIr59GDi HIArz2gFOy+T9kxJLcceLEAM5lKJrRPApirkYwCZ9uauN/uVGSYMflRBuPL7zDGG cNXZiQAfO3Vzi46evzCOyEc+rcUNmGdwsSnK1vXAuKSk0sTKmKoec6p5fJ/0YKCk dqhot17dW5O7Hqg7Xm7/FrndywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpYPiPH 8+aRj6syTFcviNiWFS7TMB8GA1UdIwQYMBaAFGiHQlRUezSzr4ndtbSNAgI/V64X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ1Mi8xRDRCNDRFRURC NkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05MT3ZpZDIxdEkwQ0FqOVhy aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJZENWRlI3TkxPdmlkMjF0STBDQWo5WHJoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ1Mi8xRDRCNDRFRURCNkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05M T3ZpZDIxdEkwQ0FqOVhyaGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDeyrsqtxjpheSoUipragn7DOSBDxPpSK31PH50824Z3h5duxznVChr gYrBqsZwGvsZ4Kkl/VWt4QUkQ/WGi7/xagaFhzde2/u/cCANhL255EH0lZTr3QW8 ly2O/1IprdwzBJLL5JNsdDcJC/t6AdszB2clsRzn/NE7CQhLQjwfw+1NZhy65ZMu dlNrkx5gmUJ7gszVVb6U1wfbazCzR3QhNUk3/ltZjjvwkSalPjNBh80TRgxNSNh4 wOOXMZwMM/Wk0rrkgQ8pXh4WDH7aHKh9KPAR+8dFz3WkmLYuUiEbWrO6JutuPjU8 59tfstAEm60BvJYMhbkWhlIVrZ4qBwa1 -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:28 2025 by rpki-client