$ rpki-client -vvf rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft File: o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft (raw, json) Hash identifier: XHmBBW3Asl8hMteHr1W280yKnWhZWRK4nCYz0Aax0D0= Subject key identifier: DE:EF:CB:09:41:7C:EF:7C:3F:03:D7:2C:6F:98:ED:B0:ED:2B:57:17 Authority key identifier: A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 Certificate issuer: /CN=A914F6AF/serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Certificate serial: 021C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft Manifest number: 0219 Signing time: Sun 19 Oct 2025 04:22:15 +0000 Manifest this update: Sun 19 Oct 2025 04:22:15 +0000 Manifest next update: Sun 26 Oct 2025 04:22:15 +0000 Files and hashes: 1: o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl (hash: 8dn73rCSkEToHuGxpxYYEzAq7gJ77uLVDiN09MD+NcY=) 2: CCCA3842714711EDBB61A87FC4F9AE02.roa (hash: ph/hTIyNCTBKdvnOQ1KHBJ908JBT9ekK4yiE8SJtW4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:22:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 540 (0x21c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F6AF, serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Validity Not Before: Oct 19 04:22:15 2025 GMT Not After : Oct 26 04:22:15 2025 GMT Subject: CN=68f46777-6070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:31:9a:18:d2:75:81:1c:98:07:8c:cb:96:ff: 4e:a1:d3:c9:28:3c:1e:4c:6b:46:1b:c6:41:74:b6: 46:57:3e:ed:65:ac:7d:f3:d4:7b:58:a6:d0:73:19: 90:b1:ce:92:a1:26:69:00:03:cb:c1:e2:dc:ad:67: 6e:e4:f0:eb:c6:b4:2c:58:dc:36:27:cf:6a:91:74: 59:25:8a:0f:21:c2:b6:b6:e5:03:e5:36:b6:0d:92: 34:55:fa:f6:fa:d2:bb:2e:46:c1:69:3e:70:16:61: 54:d4:f6:9a:4d:2e:1d:c7:d1:88:b4:8b:99:66:d0: af:c6:d5:84:ad:5a:89:0b:df:08:51:ed:1f:9f:f1: da:70:ca:19:53:e8:26:9e:10:cd:5e:3a:d7:f0:cc: 72:ca:d2:b3:5c:89:7a:33:ef:ef:3d:05:db:43:b4: c2:c4:a1:d3:cb:7f:df:ce:9f:ad:c5:64:d5:99:1c: 91:26:b3:53:4a:63:6b:43:2d:79:b9:db:3b:27:43: 45:74:4c:b9:63:47:43:61:e4:9c:f6:7a:5e:85:83: 77:3f:95:d6:b1:71:00:15:04:8f:5e:5b:b2:18:04: 2e:1e:6d:44:20:1e:b6:93:bb:5b:ab:95:7e:62:7c: 1b:cb:e8:64:bd:fc:d3:ce:07:ad:34:85:83:63:c3: d6:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:EF:CB:09:41:7C:EF:7C:3F:03:D7:2C:6F:98:ED:B0:ED:2B:57:17 X509v3 Authority Key Identifier: keyid:A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:31:e1:20:c6:06:dc:37:b0:bb:5a:21:9a:1d:1b:87:a8:14: 0e:5f:f8:9c:7c:6c:9e:94:b4:a0:39:47:03:b4:4d:d4:64:93: 9c:1d:1a:57:64:0e:e8:e6:5e:20:aa:c7:e3:53:71:c4:80:bc: 25:e8:a6:41:1b:b8:4d:7a:bc:a7:53:69:67:ec:be:ac:38:47: cd:fc:1b:4e:96:39:ad:48:0e:84:3a:37:15:cb:8f:01:1d:95: c3:2f:ce:77:0e:c6:c5:ef:de:33:87:78:5b:54:d1:3c:8c:3c: a5:fe:ad:cb:95:d0:73:96:48:e4:b4:43:ba:bb:2a:a1:25:62: 5c:29:62:74:77:24:00:b0:5f:60:f9:f4:a9:da:eb:a5:da:cf: a3:a9:59:62:b6:04:58:2e:85:a5:0e:3c:0f:fb:de:09:a9:46: 9c:f2:12:11:63:47:63:94:f9:95:f6:f4:be:bc:50:4e:2d:96: 49:83:41:58:dc:7f:63:db:c6:27:96:43:68:fc:6f:31:3f:4c: 46:11:9f:05:8a:0b:4e:c6:d0:45:12:3e:61:a0:d7:b5:e0:6e: f2:35:65:d3:23:44:a2:b6:44:3b:9a:8d:b5:2a:49:39:fa:5a: 56:c9:24:88:bd:df:a0:cf:a1:97:9f:74:b8:1f:32:33:b2:6a: fb:33:a0:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2QUYxMTAvBgNVBAUTKEEzRDI1MEM1RDUyQzVBOEFDNjdCQTAyMTg4NEQxOTFB NUQ0QTcxODIwHhcNMjUxMDE5MDQyMjE1WhcNMjUxMDI2MDQyMjE1WjAYMRYwFAYD VQQDEw02OGY0Njc3Ny02MDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5jGaGNJ1gRyYB4zLlv9OodPJKDweTGtGG8ZBdLZGVz7tZax989R7WKbQcxmQ sc6SoSZpAAPLweLcrWdu5PDrxrQsWNw2J89qkXRZJYoPIcK2tuUD5Ta2DZI0Vfr2 +tK7LkbBaT5wFmFU1PaaTS4dx9GItIuZZtCvxtWErVqJC98IUe0fn/HacMoZU+gm nhDNXjrX8MxyytKzXIl6M+/vPQXbQ7TCxKHTy3/fzp+txWTVmRyRJrNTSmNrQy15 uds7J0NFdEy5Y0dDYeSc9npehYN3P5XWsXEAFQSPXluyGAQuHm1EIB62k7tbq5V+ Ynwby+hkvfzTzgetNIWDY8PWsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7vywlB fO98PwPXLG+Y7bDtK1cXMB8GA1UdIwQYMBaAFKPSUMXVLFqKxnugIYhNGRpdSnGC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjZBRi9GNkQ4REE5Qzcx NDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dvckdlNkFoaUUwWkdsMUtj WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285SlF4ZFVzV29yR2U2QWhpRTBaR2wxS2NZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjZBRi9GNkQ4REE5QzcxNDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dv ckdlNkFoaUUwWkdsMUtjWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABMeEgxgbcN7C7WiGaHRuHqBQOX/icfGyelLSgOUcDtE3UZJOcHRpX ZA7o5l4gqsfjU3HEgLwl6KZBG7hNerynU2ln7L6sOEfN/BtOljmtSA6EOjcVy48B HZXDL853DsbF794zh3hbVNE8jDyl/q3LldBzlkjktEO6uyqhJWJcKWJ0dyQAsF9g +fSp2uul2s+jqVlitgRYLoWlDjwP+94JqUac8hIRY0djlPmV9vS+vFBOLZZJg0FY 3H9j28YnlkNo/G8xP0xGEZ8FigtOxtBFEj5hoNe14G7yNWXTI0SitkQ7mo21Kkk5 +lpWySSIvd+gz6GXn3S4HzIzsmr7M6Am -----END CERTIFICATE-----Generated at Mon Oct 20 12:42:09 2025 by rpki-client