$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft File: D9l6GEHJl08fSQQu2j5yhCGq5f4.mft (raw, json) Hash identifier: 8hUnLioytaqGrA3ZnajN07EXSxwEJyV3+hqAdIfIQhs= Subject key identifier: E3:52:AA:C3:4C:98:2E:D2:D8:72:2F:CB:C7:D1:D1:D3:B6:69:F2:93 Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 0828 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft Manifest number: 0817 Signing time: Sat 18 Oct 2025 22:06:54 +0000 Manifest this update: Sat 18 Oct 2025 22:06:54 +0000 Manifest next update: Sat 25 Oct 2025 22:06:54 +0000 Files and hashes: 1: D9l6GEHJl08fSQQu2j5yhCGq5f4.crl (hash: F384Ms77Kv8OHZRNgF9vCpMtHG37wDL7ylu4K42WDHY=) 2: D31B3092F40911EA8A5C9E70C4F9AE02.roa (hash: ypu19bei6HfdziAUkQKrmGrUpzhyQcDpqvAElnhFxJ8=) 3: D25A6970F40911EA8A5C9E70C4F9AE02.roa (hash: IN3RfDkD8NjweSOu/JOBHYJplR97v1OTcMrbU5p1LVw=) 4: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (hash: 2VJGwp3cB6SQYB5sCKPYP1OXIy417U6bgx3FYDkVNxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:06:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2088 (0x828) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B, serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Oct 18 22:06:54 2025 GMT Not After : Oct 25 22:06:54 2025 GMT Subject: CN=68f40f7e-8736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6a:f0:cd:94:c9:66:d3:1f:3a:78:ec:be:47: 57:67:11:c1:70:3c:70:2b:55:14:67:06:bf:09:aa: 4d:c0:9c:86:4a:ae:62:b6:ea:4a:75:f1:97:08:db: e5:7b:46:65:82:22:c0:e4:e0:3b:41:6d:72:ad:85: b1:08:05:98:d4:94:dc:2c:e9:a5:d6:1b:f6:8d:17: b7:2c:3d:b2:a2:de:1b:06:c2:fc:a9:e5:14:fc:15: df:e7:e5:9b:74:3c:0b:8d:29:d3:77:bc:bf:c7:7c: 9c:46:9a:16:e7:35:4a:b2:80:2f:9c:6c:8e:d8:ec: 80:f4:31:a6:e0:a6:fd:99:8a:4f:3c:f4:87:27:e5: 8e:73:fd:4e:f2:98:b9:f4:ba:23:ac:be:a1:bc:e5: a8:78:6f:74:8c:89:1f:84:67:49:e7:2a:61:6a:38: a5:12:70:5b:6d:6c:da:fc:a8:b5:dc:d4:e4:a5:cb: 79:5d:6b:b7:c8:c0:fe:b0:75:07:d4:19:5f:5a:14: 6e:98:db:52:d0:08:50:4e:60:8d:f9:64:2f:ad:9b: 57:b5:ae:0f:9d:8e:cb:56:b3:70:a7:d0:31:2a:6d: c7:fc:ca:14:4c:b1:bb:a6:3a:8c:26:f4:55:36:49: 59:53:f4:41:f4:2e:d1:87:0d:ab:eb:8e:eb:f2:9d: 19:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:52:AA:C3:4C:98:2E:D2:D8:72:2F:CB:C7:D1:D1:D3:B6:69:F2:93 X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:e8:1e:c9:03:4a:48:8d:e9:35:d5:5e:d9:6d:dc:51:de:0e: 8a:08:75:29:c6:02:8b:5e:53:77:29:2f:36:29:24:24:f9:e2: 4e:f9:28:71:6e:fb:22:fb:93:c1:f5:b7:eb:1c:6f:33:31:3d: 37:9b:36:02:54:e9:ab:e0:1f:2f:b4:e9:99:e6:04:df:bf:3d: 29:70:e9:27:82:46:aa:6c:e8:a8:a2:25:91:b2:b2:24:71:87: 4d:df:c0:72:b4:dc:ad:23:36:26:f6:e4:10:59:25:a8:22:f1: 84:56:6f:92:62:5d:3e:1b:e9:98:f3:af:20:c0:de:f7:5b:f6: 7a:25:af:80:34:5d:1a:f5:f7:e3:51:a3:be:88:2e:24:8b:d1: 97:ac:3d:66:4d:e9:1a:2d:aa:bb:6e:15:80:20:3a:46:6d:13: cb:2d:9c:6b:d7:a6:94:f7:9f:36:f9:a2:fa:1e:5b:d4:38:37: f0:9a:b6:2e:1f:6c:9a:a3:cf:cb:bb:cb:3e:dd:ec:e9:a8:9f: 79:e4:c9:be:a7:66:75:03:8d:e0:3d:3e:13:10:e0:9d:7f:59: d7:af:ed:87:5e:19:8f:4d:4b:d5:d0:e5:ba:f7:d6:fe:22:44: 08:75:9e:4b:08:79:39:4e:89:d7:23:75:71:c7:12:70:d4:fd: 62:be:93:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjUxMDE4MjIwNjU0WhcNMjUxMDI1MjIwNjU0WjAYMRYwFAYD VQQDEw02OGY0MGY3ZS04NzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGrwzZTJZtMfOnjsvkdXZxHBcDxwK1UUZwa/CapNwJyGSq5itupKdfGXCNvl e0ZlgiLA5OA7QW1yrYWxCAWY1JTcLOml1hv2jRe3LD2yot4bBsL8qeUU/BXf5+Wb dDwLjSnTd7y/x3ycRpoW5zVKsoAvnGyO2OyA9DGm4Kb9mYpPPPSHJ+WOc/1O8pi5 9LojrL6hvOWoeG90jIkfhGdJ5yphajilEnBbbWza/Ki13NTkpct5XWu3yMD+sHUH 1BlfWhRumNtS0AhQTmCN+WQvrZtXta4PnY7LVrNwp9AxKm3H/MoUTLG7pjqMJvRV NklZU/RB9C7Rhw2r647r8p0ZhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONSqsNM mC7S2HIvy8fR0dO2afKTMB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUQyQi84QjY3MDBBNkY0MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmww OGZTUVF1Mmo1eWhDR3E1ZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCB6B7JA0pIjek11V7ZbdxR3g6KCHUpxgKLXlN3KS82KSQk+eJO+Shx bvsi+5PB9bfrHG8zMT03mzYCVOmr4B8vtOmZ5gTfvz0pcOkngkaqbOiooiWRsrIk cYdN38BytNytIzYm9uQQWSWoIvGEVm+SYl0+G+mY868gwN73W/Z6Ja+ANF0a9ffj UaO+iC4ki9GXrD1mTekaLaq7bhWAIDpGbRPLLZxr16aU9582+aL6HlvUODfwmrYu H2yao8/Lu8s+3ezpqJ955Mm+p2Z1A43gPT4TEOCdf1nXr+2HXhmPTUvV0OW699b+ IkQIdZ5LCHk5TonXI3VxxxJw1P1ivpPV -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:52 2025 by rpki-client