$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json) Hash identifier: +wir1aYy9PPRYlhDUX3ypL8OWkxEeg0KYe1Uz4lGEis= Subject key identifier: 17:12:AA:AF:34:28:17:05:62:CE:FF:48:B0:F9:CB:AD:65:69:12:57 Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Certificate serial: 1BED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft Manifest number: 1BDB Signing time: Sat 18 Oct 2025 16:34:22 +0000 Manifest this update: Sat 18 Oct 2025 16:34:21 +0000 Manifest next update: Sat 25 Oct 2025 16:34:21 +0000 Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: BcijJ3eDWyCosdAzy9DMWqBy04qaD78B+b5ARW86AW4=) 2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: wynmFUF72+WqOIzeId16MY3qAbLuhLthoUyin6hAIaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7149 (0x1bed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C2D, serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Validity Not Before: Oct 18 16:34:21 2025 GMT Not After : Oct 25 16:34:21 2025 GMT Subject: CN=68f3c18d-e9ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f0:05:a9:de:6d:b5:3a:3e:e4:1f:a7:87:b2: 5a:55:aa:41:f0:d0:fd:ea:4d:62:39:e8:9b:21:99: 3f:ab:ea:07:61:ad:18:12:f6:a2:31:0b:34:24:3e: 9a:70:40:7f:18:42:cb:08:02:3a:65:13:28:4d:a0: 48:53:4b:b5:00:f9:5d:1b:24:9a:e7:cf:18:59:16: 48:75:d7:96:4b:c5:ef:ca:0d:2b:3a:2a:24:fe:8e: 5e:95:3f:16:d7:00:b7:95:2d:37:59:5a:b6:7c:ba: 64:67:b5:0a:00:a6:7a:c0:ab:64:cd:9a:3c:c1:a7: 18:fd:13:26:22:9d:7d:07:c8:25:7c:98:fd:34:6b: 59:41:69:58:1e:f3:eb:47:35:67:99:fb:6b:a4:31: dd:e1:9a:76:1b:7f:95:1f:97:1a:0b:2d:2a:77:bc: b8:08:f1:f3:bc:74:f1:80:ba:40:a2:24:47:11:63: d8:4b:eb:7a:be:19:e5:35:d7:96:34:94:3f:f2:93: 8b:7f:c5:ce:bb:dd:8b:a5:07:27:7d:89:68:11:58: 86:4e:74:80:53:e2:8a:53:9f:d8:63:7b:cc:cc:00: 6e:02:cd:c5:42:48:70:92:74:bf:73:8c:7b:7c:51: 71:3e:1f:dd:27:d9:e8:a9:c3:cd:0f:25:37:e9:47: 04:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:12:AA:AF:34:28:17:05:62:CE:FF:48:B0:F9:CB:AD:65:69:12:57 X509v3 Authority Key Identifier: keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:6f:5b:61:0b:2f:cb:9a:db:54:e1:74:5f:88:a2:9f:9f:03: 0a:e4:81:8f:d5:18:a8:8a:ae:8d:e3:00:e7:cb:42:ea:cd:9f: 7e:07:d3:87:a4:bd:fd:7a:48:97:27:27:18:9b:27:bf:0c:cd: 2e:e6:fa:fe:88:b4:13:46:37:61:d2:3e:12:d1:b0:f7:1e:e7: 5a:c3:7c:56:62:9d:9b:b7:9f:60:aa:89:4d:a1:24:de:a4:88: 3c:15:42:03:e6:a4:a2:56:d3:e4:64:f8:41:c2:21:a4:17:0f: 0c:65:47:9c:48:d4:f5:16:58:dd:19:84:3b:cb:31:0f:a7:ea: 53:c7:13:96:01:a3:d3:ac:98:ad:8c:3f:da:4d:fd:ea:85:08: b6:03:d9:f7:73:89:f5:20:fc:ad:c4:d8:08:b5:7c:fa:cf:9e: 0c:17:e6:da:6c:4f:9a:af:a4:0b:46:3a:dc:78:ff:9f:d3:9d: 08:b0:6f:75:28:58:be:ed:20:a4:93:f0:97:14:ef:94:91:de: f4:4b:4f:fc:1b:34:fa:e6:41:b7:c5:1f:95:6f:f2:9d:17:25: 16:8f:5b:94:c1:33:7b:a0:e9:a4:a0:04:34:0e:e3:63:03:33: ed:30:4b:39:b5:7e:7c:55:ec:ce:b4:c2:5b:1a:a8:1e:27:2c: 64:69:8d:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG+0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3 NUU0ODg5MUEwHhcNMjUxMDE4MTYzNDIxWhcNMjUxMDI1MTYzNDIxWjAYMRYwFAYD VQQDEw02OGYzYzE4ZC1lOWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1fAFqd5ttTo+5B+nh7JaVapB8ND96k1iOeibIZk/q+oHYa0YEvaiMQs0JD6a cEB/GELLCAI6ZRMoTaBIU0u1APldGySa588YWRZIddeWS8Xvyg0rOiok/o5elT8W 1wC3lS03WVq2fLpkZ7UKAKZ6wKtkzZo8wacY/RMmIp19B8glfJj9NGtZQWlYHvPr RzVnmftrpDHd4Zp2G3+VH5caCy0qd7y4CPHzvHTxgLpAoiRHEWPYS+t6vhnlNdeW NJQ/8pOLf8XOu92LpQcnfYloEViGTnSAU+KKU5/YY3vMzABuAs3FQkhwknS/c4x7 fFFxPh/dJ9noqcPNDyU36UcETwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcSqq80 KBcFYs7/SLD5y61laRJXMB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4 NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQb1thCy/LmttU4XRfiKKfnwMK5IGP1Rioiq6N4wDny0LqzZ9+B9OH pL39ekiXJycYmye/DM0u5vr+iLQTRjdh0j4S0bD3Hudaw3xWYp2bt59gqolNoSTe pIg8FUID5qSiVtPkZPhBwiGkFw8MZUecSNT1FljdGYQ7yzEPp+pTxxOWAaPTrJit jD/aTf3qhQi2A9n3c4n1IPytxNgItXz6z54MF+babE+ar6QLRjrceP+f050IsG91 KFi+7SCkk/CXFO+Ukd70S0/8GzT65kG3xR+Vb/KdFyUWj1uUwTN7oOmkoAQ0DuNj AzPtMEs5tX58VezOtMJbGqgeJyxkaY3F -----END CERTIFICATE-----Generated at Mon Oct 20 10:43:58 2025 by rpki-client