$ rpki-client -vvf rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.mft File: 9MBkE3SXWli1TsAsEElzLsinCss.mft (raw, json) Hash identifier: CN3/2O3HhaKBjmdTnum1wEWEWQK5TckBZcD7gJhLCQs= Subject key identifier: F0:D9:A5:66:2B:FE:72:DB:CC:BE:5C:57:FC:7B:55:89:FB:27:98:5A Authority key identifier: F4:C0:64:13:74:97:5A:58:B5:4E:C0:2C:10:49:73:2E:C8:A7:0A:CB Certificate issuer: /CN=A914EF21/serialNumber=F4C0641374975A58B54EC02C1049732EC8A70ACB Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MBkE3SXWli1TsAsEElzLsinCss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.mft Manifest number: 06D6 Signing time: Sun 19 Oct 2025 01:04:33 +0000 Manifest this update: Sun 19 Oct 2025 01:04:33 +0000 Manifest next update: Sun 26 Oct 2025 01:04:32 +0000 Files and hashes: 1: 9MBkE3SXWli1TsAsEElzLsinCss.crl (hash: 28GtcdVe5LxaFYSVZ9vQPHJnOwaFCifjOrfPTXbLmmU=) 2: 7740AE687F8A11EE89807F7CC4F9AE02.roa (hash: ioHyUTgCHnCGMUHWoGRwcexhSo8qMCJK1mxXffaCMDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.crl rsync://rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MBkE3SXWli1TsAsEElzLsinCss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:04:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EF21, serialNumber=F4C0641374975A58B54EC02C1049732EC8A70ACB Validity Not Before: Oct 19 01:04:33 2025 GMT Not After : Oct 26 01:04:32 2025 GMT Subject: CN=68f43921-6c2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c6:a1:42:8c:54:73:c2:3b:fd:75:0f:b3:ed: 2d:39:88:3e:3c:6f:2c:a8:6e:36:5b:60:16:1c:84: 16:64:dc:95:08:3d:cf:1e:6e:6d:c0:63:61:9c:88: 21:95:1c:66:4e:bc:ea:aa:50:2c:62:c9:35:18:c7: 61:6a:2b:e0:fa:7a:f2:f5:12:45:cd:d7:fb:e6:30: b6:2f:42:e0:7d:df:15:2a:12:ea:70:d7:c1:81:5c: 10:66:70:72:2e:d4:21:1b:54:98:8b:6d:15:91:bb: 82:b3:e0:ed:7a:8b:41:cc:fb:f0:8b:af:ea:99:04: 11:15:be:05:b7:6d:ba:d2:14:ee:c2:8e:97:61:2e: c0:80:f5:48:5c:87:07:c1:38:25:73:54:ce:f9:fb: 8e:85:13:95:82:da:db:55:50:bb:cc:51:31:28:43: 7b:7a:1f:6a:b1:89:f7:4a:17:13:28:b1:4d:bf:a8: 90:3c:b3:b4:53:cc:5b:91:32:26:4b:2c:83:ff:15: ea:3a:f5:a9:31:75:58:fb:c0:68:fa:a3:a3:7c:51: 51:82:1e:e6:33:06:dc:5b:0c:90:87:55:45:5b:35: 29:ec:88:f4:a5:8b:9c:7b:18:c7:52:f6:ee:27:fc: 58:b7:fe:66:de:b8:10:c4:03:ce:c6:d0:c4:c7:5f: d0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:D9:A5:66:2B:FE:72:DB:CC:BE:5C:57:FC:7B:55:89:FB:27:98:5A X509v3 Authority Key Identifier: keyid:F4:C0:64:13:74:97:5A:58:B5:4E:C0:2C:10:49:73:2E:C8:A7:0A:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MBkE3SXWli1TsAsEElzLsinCss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:db:46:c7:02:5a:3f:fa:ce:d0:29:18:bb:33:1d:ff:4c:b5: 17:89:9b:d7:05:db:70:b0:1b:dd:15:7f:c7:fb:08:ed:5b:a0: d6:74:08:b1:00:35:5d:e6:25:a1:39:df:b0:d7:e9:08:9e:7c: 41:dc:6d:f5:82:2d:05:59:12:bd:0d:da:af:b8:63:7c:b9:3e: d8:ab:7c:32:06:ef:c9:ea:46:a6:fe:55:89:e0:02:f9:dd:3b: c1:40:0c:96:5f:67:cc:6b:c2:d3:49:e4:87:2d:5b:75:7a:36: fe:b1:0a:0f:56:3b:34:4c:c5:02:f2:7e:d4:e6:50:de:a1:1d: 40:da:1f:44:b3:ff:b1:65:d0:d1:a4:7a:e7:e6:04:f9:f4:c7: 4f:9f:39:38:e1:5e:8b:ee:0b:3e:36:2d:43:0f:f9:96:fc:72: 17:09:d7:45:5f:62:9e:e4:b0:b7:39:97:8a:a7:d3:9e:33:2f: d7:9a:13:3e:3f:39:d4:8a:f9:b2:6f:28:fe:8e:d1:bd:ee:84: 22:a2:1c:17:2e:00:bf:33:e7:b9:e3:27:e0:a1:e2:f1:bc:9b: 50:60:77:25:7f:42:6a:19:f1:f1:5b:9f:ed:a0:61:40:5e:83: 73:88:39:97:82:c8:da:c6:c0:16:d0:fd:63:c6:50:f4:c9:51: ea:a6:81:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVGMjExMTAvBgNVBAUTKEY0QzA2NDEzNzQ5NzVBNThCNTRFQzAyQzEwNDk3MzJF QzhBNzBBQ0IwHhcNMjUxMDE5MDEwNDMzWhcNMjUxMDI2MDEwNDMyWjAYMRYwFAYD VQQDEw02OGY0MzkyMS02YzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0cahQoxUc8I7/XUPs+0tOYg+PG8sqG42W2AWHIQWZNyVCD3PHm5twGNhnIgh lRxmTrzqqlAsYsk1GMdhaivg+nry9RJFzdf75jC2L0Lgfd8VKhLqcNfBgVwQZnBy LtQhG1SYi20VkbuCs+DteotBzPvwi6/qmQQRFb4Ft2260hTuwo6XYS7AgPVIXIcH wTglc1TO+fuOhROVgtrbVVC7zFExKEN7eh9qsYn3ShcTKLFNv6iQPLO0U8xbkTIm SyyD/xXqOvWpMXVY+8Bo+qOjfFFRgh7mMwbcWwyQh1VFWzUp7Ij0pYucexjHUvbu J/xYt/5m3rgQxAPOxtDEx1/QeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPDZpWYr /nLbzL5cV/x7VYn7J5haMB8GA1UdIwQYMBaAFPTAZBN0l1pYtU7ALBBJcy7IpwrL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUYyMS9FQURCQjQxMjAx ODMxMUVDQjU2NDE2MjlDNEY5QUUwMi85TUJrRTNTWFdsaTFUc0FzRUVsekxzaW5D c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlNQmtFM1NYV2xpMVRzQXNFRWx6THNpbkNzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUYyMS9FQURCQjQxMjAxODMxMUVDQjU2NDE2MjlDNEY5QUUwMi85TUJrRTNTWFds aTFUc0FzRUVsekxzaW5Dc3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJ20bHAlo/+s7QKRi7Mx3/TLUXiZvXBdtwsBvdFX/H+wjtW6DWdAix ADVd5iWhOd+w1+kInnxB3G31gi0FWRK9DdqvuGN8uT7Yq3wyBu/J6kam/lWJ4AL5 3TvBQAyWX2fMa8LTSeSHLVt1ejb+sQoPVjs0TMUC8n7U5lDeoR1A2h9Es/+xZdDR pHrn5gT59MdPnzk44V6L7gs+Ni1DD/mW/HIXCddFX2Ke5LC3OZeKp9OeMy/XmhM+ PznUivmybyj+jtG97oQiohwXLgC/M+e54yfgoeLxvJtQYHclf0JqGfHxW5/toGFA XoNziDmXgsjaxsAW0P1jxlD0yVHqpoEJ -----END CERTIFICATE-----Generated at Mon Oct 20 10:36:46 2025 by rpki-client