$ rpki-client -vvf rpki.apnic.net/member_repository/A914BBE1/9E66034C84C511ECA9861564C4F9AE02/S9XCMYZ-JzlRVcAceEizsByGBvI.mft File: S9XCMYZ-JzlRVcAceEizsByGBvI.mft (raw, json) Hash identifier: CmaFLbYicp0wYOqTJIMfP6neIu36nMYqHRlsa4UiiQc= Subject key identifier: B8:FF:9B:D4:01:0E:17:C1:04:B2:C8:54:99:6E:A1:42:AB:45:84:88 Authority key identifier: 4B:D5:C2:31:86:7E:27:39:51:55:C0:1C:78:48:B3:B0:1C:86:06:F2 Certificate issuer: /CN=A914BBE1/serialNumber=4BD5C231867E27395155C01C7848B3B01C8606F2 Certificate serial: 0422 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S9XCMYZ-JzlRVcAceEizsByGBvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BBE1/9E66034C84C511ECA9861564C4F9AE02/S9XCMYZ-JzlRVcAceEizsByGBvI.mft Manifest number: 041D Signing time: Sun 19 Oct 2025 02:17:21 +0000 Manifest this update: Sun 19 Oct 2025 02:17:20 +0000 Manifest next update: Sun 26 Oct 2025 02:17:20 +0000 Files and hashes: 1: S9XCMYZ-JzlRVcAceEizsByGBvI.crl (hash: DatK05JJGOCaLZFmiBuNmlGi4gcf6/HMFpSs3JbPrEU=) 2: 24C0E7A684C911EC8CE1246BC4F9AE02.roa (hash: /ks11M81kp4oGi/uf6+uil4xz+jgg1PhbFjvxN9fgAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BBE1/9E66034C84C511ECA9861564C4F9AE02/S9XCMYZ-JzlRVcAceEizsByGBvI.crl rsync://rpki.apnic.net/member_repository/A914BBE1/9E66034C84C511ECA9861564C4F9AE02/S9XCMYZ-JzlRVcAceEizsByGBvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S9XCMYZ-JzlRVcAceEizsByGBvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1058 (0x422) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BBE1, serialNumber=4BD5C231867E27395155C01C7848B3B01C8606F2 Validity Not Before: Oct 19 02:17:20 2025 GMT Not After : Oct 26 02:17:20 2025 GMT Subject: CN=68f44a31-7357 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1d:a6:98:6d:73:84:9a:da:ff:db:e8:9f:bc: 55:62:fa:4a:9f:74:70:d3:ab:e0:6e:c7:34:65:3e: ee:4c:bd:40:a5:9c:ee:05:68:bc:ce:1e:a9:4a:b9: 62:49:c4:1e:7b:88:d1:42:aa:22:7c:09:57:36:c6: e8:fb:4e:72:7e:ab:72:6d:b7:71:c3:97:bc:37:81: 1f:0e:fa:72:a0:18:71:08:3e:fd:fb:f7:3a:47:58: 2c:b9:a5:d5:3f:56:d8:2e:07:63:24:d7:15:00:c0: 00:dd:a4:16:26:c0:eb:6d:be:ef:c1:ee:9a:7e:b8: 01:2d:ec:ed:8d:42:eb:e2:4a:16:89:e1:4a:3b:3e: e4:65:d5:dd:94:4c:5d:12:83:01:23:75:31:ad:e0: 75:aa:d2:85:50:6e:db:b9:73:a0:d1:b5:e1:58:b2: 54:e1:ce:05:1c:6b:8c:e0:0e:39:3c:99:33:af:ea: 93:28:c7:7a:2b:04:39:18:88:8f:4c:e3:81:18:38: e6:bf:a0:91:68:ec:97:5c:0a:45:c9:fd:02:23:4e: 1e:73:4d:1e:83:a7:d4:5d:d2:b7:74:a1:c4:2c:9c: c8:16:45:9e:43:c7:58:ea:0b:d7:c1:2c:57:26:69: 4f:b4:31:ed:31:18:0c:c3:b3:4e:f8:16:58:b3:5a: 6d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:FF:9B:D4:01:0E:17:C1:04:B2:C8:54:99:6E:A1:42:AB:45:84:88 X509v3 Authority Key Identifier: keyid:4B:D5:C2:31:86:7E:27:39:51:55:C0:1C:78:48:B3:B0:1C:86:06:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BBE1/9E66034C84C511ECA9861564C4F9AE02/S9XCMYZ-JzlRVcAceEizsByGBvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S9XCMYZ-JzlRVcAceEizsByGBvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BBE1/9E66034C84C511ECA9861564C4F9AE02/S9XCMYZ-JzlRVcAceEizsByGBvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:c0:58:98:4e:3c:15:9b:a6:33:96:26:f7:9c:b1:19:50:26: 4d:5d:5c:9f:a7:0e:0a:4e:d9:1b:86:32:2c:c0:9c:68:d7:74: f0:59:8e:44:ea:87:cb:03:b7:54:64:ae:e8:c4:2a:10:d0:17: 58:87:6c:c4:6a:83:2d:ed:9a:e6:3e:d6:ca:d5:73:df:e7:70: 5f:58:39:59:6f:77:2e:46:4d:9f:81:71:5f:71:01:c1:aa:8d: 7b:fa:9e:26:45:ca:61:d3:8b:ff:a0:42:ba:82:8e:e5:fe:e2: 3a:a0:79:0d:a8:bd:5f:7d:2d:dd:16:12:35:ff:e2:11:5d:57: e0:65:4f:ef:62:da:62:a0:da:44:11:07:40:73:4d:01:d1:6b: 9f:b4:06:23:5e:3d:f0:ee:f1:c7:0b:68:61:eb:8f:6c:d3:a2: 3a:f7:1f:b6:a6:1c:91:c0:df:e2:26:00:d2:dd:3d:bd:56:18: 34:b5:63:62:ef:1e:4a:2a:ee:d0:2b:d1:9f:0f:31:21:6d:d9: 63:31:42:54:dd:28:36:b0:68:4a:e0:ca:7a:74:c4:a1:9c:46: 6a:b4:12:90:fd:74:7a:88:84:20:51:b8:d3:51:03:d9:f8:38: 11:16:a1:57:88:cf:7e:ec:30:48:1a:d1:d0:5b:5f:ff:dd:06: 4b:d7:6c:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJCRTExMTAvBgNVBAUTKDRCRDVDMjMxODY3RTI3Mzk1MTU1QzAxQzc4NDhCM0Iw MUM4NjA2RjIwHhcNMjUxMDE5MDIxNzIwWhcNMjUxMDI2MDIxNzIwWjAYMRYwFAYD VQQDEw02OGY0NGEzMS03MzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAph2mmG1zhJra/9von7xVYvpKn3Rw06vgbsc0ZT7uTL1ApZzuBWi8zh6pSrli ScQee4jRQqoifAlXNsbo+05yfqtybbdxw5e8N4EfDvpyoBhxCD79+/c6R1gsuaXV P1bYLgdjJNcVAMAA3aQWJsDrbb7vwe6afrgBLeztjULr4koWieFKOz7kZdXdlExd EoMBI3UxreB1qtKFUG7buXOg0bXhWLJU4c4FHGuM4A45PJkzr+qTKMd6KwQ5GIiP TOOBGDjmv6CRaOyXXApFyf0CI04ec00eg6fUXdK3dKHELJzIFkWeQ8dY6gvXwSxX JmlPtDHtMRgMw7NO+BZYs1ptdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLj/m9QB DhfBBLLIVJluoUKrRYSIMB8GA1UdIwQYMBaAFEvVwjGGfic5UVXAHHhIs7Achgby MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkJFMS85RTY2MDM0Qzg0 QzUxMUVDQTk4NjE1NjRDNEY5QUUwMi9TOVhDTVlaLUp6bFJWY0FjZUVpenNCeUdC dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M5WENNWVotSnpsUlZjQWNlRWl6c0J5R0J2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkJFMS85RTY2MDM0Qzg0QzUxMUVDQTk4NjE1NjRDNEY5QUUwMi9TOVhDTVlaLUp6 bFJWY0FjZUVpenNCeUdCdkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7wFiYTjwVm6Yzlib3nLEZUCZNXVyfpw4KTtkbhjIswJxo13TwWY5E 6ofLA7dUZK7oxCoQ0BdYh2zEaoMt7ZrmPtbK1XPf53BfWDlZb3cuRk2fgXFfcQHB qo17+p4mRcph04v/oEK6go7l/uI6oHkNqL1ffS3dFhI1/+IRXVfgZU/vYtpioNpE EQdAc00B0WuftAYjXj3w7vHHC2hh649s06I69x+2phyRwN/iJgDS3T29Vhg0tWNi 7x5KKu7QK9GfDzEhbdljMUJU3Sg2sGhK4Mp6dMShnEZqtBKQ/XR6iIQgUbjTUQPZ +DgRFqFXiM9+7DBIGtHQW1//3QZL12zV -----END CERTIFICATE-----Generated at Mon Oct 20 21:36:16 2025 by rpki-client