$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft File: 9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft (raw, json) Hash identifier: ulw5t9jfE2IQe71KG/1JBNm5mwIIcRKzWSq9jTuzL5U= Subject key identifier: A2:70:48:B0:18:CC:9C:99:27:41:7D:41:9A:F0:BB:45:79:F9:DA:55 Authority key identifier: F6:55:32:56:B2:97:F2:83:31:9C:B9:89:E6:B8:C7:83:6F:87:19:0B Certificate issuer: /CN=A914C4ED/serialNumber=F6553256B297F283319CB989E6B8C7836F87190B Certificate serial: 0344 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft Manifest number: 0340 Signing time: Sun 19 Oct 2025 02:42:16 +0000 Manifest this update: Sun 19 Oct 2025 02:42:15 +0000 Manifest next update: Sun 26 Oct 2025 02:42:15 +0000 Files and hashes: 1: 9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl (hash: 2OmqFQVaOggrxYgCAkCsAwnL+M0wBzKWpu8u+Zmccok=) 2: 9E60AA30DCB511ECAC801F6EC4F9AE02.roa (hash: X05nJ1j9oFxXKovC7MyWIX4IdW9s4NwJbF0XevapeM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:42:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 836 (0x344) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=F6553256B297F283319CB989E6B8C7836F87190B Validity Not Before: Oct 19 02:42:15 2025 GMT Not After : Oct 26 02:42:15 2025 GMT Subject: CN=68f45007-4879 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:03:fa:2d:55:4d:69:36:1a:38:38:82:2a:de: 5a:5f:29:f2:db:72:c4:cd:fc:45:e0:fa:fb:3d:03: 53:74:93:30:79:1b:34:37:ab:bf:a5:c1:98:41:dd: 3e:81:60:d5:df:11:50:6b:81:72:8d:75:2f:15:fb: bc:3b:74:50:50:7b:2b:0e:8a:85:d2:e4:93:5f:70: 77:fa:9a:ea:d9:c9:15:d6:62:7e:82:8f:74:78:7b: 66:e9:60:5e:c5:bc:11:56:da:82:3e:7d:de:76:df: 6e:f9:fc:51:47:cd:93:2d:46:b0:29:2e:c5:78:0a: 6e:95:33:e8:1d:e9:4e:2c:95:3b:aa:e5:46:9a:bd: e0:5b:09:60:a9:a4:86:04:71:af:2d:fb:6f:06:85: 32:4c:78:f7:33:c4:8c:a0:bc:6c:c0:9b:96:c7:0b: 26:19:78:cb:e7:79:42:a7:54:04:82:74:f3:a1:fc: 57:6d:dd:58:65:a4:03:73:0a:d2:44:00:43:60:14: 36:43:a0:d6:35:10:27:05:dd:c3:fa:a6:04:23:11: 94:31:85:96:6e:29:a5:87:8f:fa:57:d1:37:69:6e: 7a:8c:4a:f0:0b:ef:74:fb:3a:4b:4d:3e:ab:fc:3c: a6:bb:50:01:29:8c:75:85:9d:ed:2e:c9:1c:b9:91: 1a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:70:48:B0:18:CC:9C:99:27:41:7D:41:9A:F0:BB:45:79:F9:DA:55 X509v3 Authority Key Identifier: keyid:F6:55:32:56:B2:97:F2:83:31:9C:B9:89:E6:B8:C7:83:6F:87:19:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:da:af:a0:ee:f6:80:b0:86:57:2f:24:fa:9a:c6:ae:14:a3: 67:79:1a:91:49:07:83:10:7c:57:db:e1:49:aa:d1:38:7d:be: 0d:08:02:41:d8:59:95:cd:d4:c1:ec:df:14:61:08:67:e3:bc: 6d:2b:60:b5:b0:22:01:00:d6:42:01:42:e8:f7:b7:1c:48:d6: 8b:35:1f:84:d5:1d:99:9e:15:c1:38:85:5e:99:d8:59:df:90: ab:ab:90:f5:5c:6e:96:82:0b:ac:b0:a0:47:49:d7:d5:b7:55: 33:18:e6:15:b7:3c:a6:43:d8:c0:20:09:3f:17:a6:f5:e0:19: 58:23:6a:66:07:bb:a2:8d:84:71:99:4f:41:26:e9:81:9f:e3: f8:b0:72:d1:b5:c7:b2:54:29:43:5e:85:f0:6d:65:5b:0e:75: 9a:85:8f:d1:a6:4a:a6:89:4e:57:71:3c:79:a9:94:0b:eb:52: 4e:b8:8b:f9:78:06:4b:0e:67:2c:30:32:b7:6c:87:fe:6f:0b: 3b:be:c4:29:71:4c:11:34:1f:4d:05:4a:a6:ef:2e:c1:8d:66: e1:9a:5e:e7:13:92:b1:a9:ba:a6:f6:62:91:dd:1d:0c:f8:d6: ce:35:fb:e8:bc:7d:8c:b9:be:cc:65:6f:c7:49:bd:27:fb:4f: d0:c5:3a:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEY2NTUzMjU2QjI5N0YyODMzMTlDQjk4OUU2QjhDNzgz NkY4NzE5MEIwHhcNMjUxMDE5MDI0MjE1WhcNMjUxMDI2MDI0MjE1WjAYMRYwFAYD VQQDEw02OGY0NTAwNy00ODc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQP6LVVNaTYaODiCKt5aXyny23LEzfxF4Pr7PQNTdJMweRs0N6u/pcGYQd0+ gWDV3xFQa4FyjXUvFfu8O3RQUHsrDoqF0uSTX3B3+prq2ckV1mJ+go90eHtm6WBe xbwRVtqCPn3edt9u+fxRR82TLUawKS7FeApulTPoHelOLJU7quVGmr3gWwlgqaSG BHGvLftvBoUyTHj3M8SMoLxswJuWxwsmGXjL53lCp1QEgnTzofxXbd1YZaQDcwrS RABDYBQ2Q6DWNRAnBd3D+qYEIxGUMYWWbimlh4/6V9E3aW56jErwC+90+zpLTT6r /Dymu1ABKYx1hZ3tLskcuZEaNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJwSLAY zJyZJ0F9QZrwu0V5+dpVMB8GA1UdIwQYMBaAFPZVMlayl/KDMZy5iea4x4NvhxkL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC8zRUU5NDdBQURD QUMxMUVDQTIyM0JGNUNDNEY5QUUwMi85bFV5VnJLWDhvTXhuTG1KNXJqSGcyLUhH UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzlsVXlWcktYOG9NeG5MbUo1cmpIZzItSEdRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC8zRUU5NDdBQURDQUMxMUVDQTIyM0JGNUNDNEY5QUUwMi85bFV5VnJLWDhv TXhuTG1KNXJqSGcyLUhHUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAY2q+g7vaAsIZXLyT6msauFKNneRqRSQeDEHxX2+FJqtE4fb4NCAJB 2FmVzdTB7N8UYQhn47xtK2C1sCIBANZCAULo97ccSNaLNR+E1R2ZnhXBOIVemdhZ 35Crq5D1XG6WggussKBHSdfVt1UzGOYVtzymQ9jAIAk/F6b14BlYI2pmB7uijYRx mU9BJumBn+P4sHLRtceyVClDXoXwbWVbDnWahY/RpkqmiU5XcTx5qZQL61JOuIv5 eAZLDmcsMDK3bIf+bws7vsQpcUwRNB9NBUqm7y7BjWbhml7nE5Kxqbqm9mKR3R0M +NbONfvovH2Mub7MZW/HSb0n+0/QxToX -----END CERTIFICATE-----Generated at Mon Oct 20 22:44:20 2025 by rpki-client