$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft File: s1py5W8JAsfhuNgSxdg2VBHdox0.mft (raw, json) Hash identifier: 4ymQHctufpxYb/n73zVFDD6sp4KLbdSQRrXdFCcN1Os= Subject key identifier: 78:7F:88:1F:D0:76:7E:CB:3E:21:69:3A:F4:C4:CE:6E:BF:C6:CC:06 Authority key identifier: B3:5A:72:E5:6F:09:02:C7:E1:B8:D8:12:C5:D8:36:54:11:DD:A3:1D Certificate issuer: /CN=A9150B91/serialNumber=B35A72E56F0902C7E1B8D812C5D8365411DDA31D Certificate serial: 1514 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft Manifest number: 150A Signing time: Sat 18 Oct 2025 17:16:38 +0000 Manifest this update: Sat 18 Oct 2025 17:16:37 +0000 Manifest next update: Sat 25 Oct 2025 17:16:37 +0000 Files and hashes: 1: s1py5W8JAsfhuNgSxdg2VBHdox0.crl (hash: t1jk9vf0V5L69npTtImKk7WHjhtyMbGemmgy9Gr9Dro=) 2: 4674A74E5DB211E8A30DF983C4F9AE02.roa (hash: N2bOeXWWMqXx3Cr2oJVAhS+4yD+JJsp3ikRjUaNFufQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.crl rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:16:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5396 (0x1514) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B91, serialNumber=B35A72E56F0902C7E1B8D812C5D8365411DDA31D Validity Not Before: Oct 18 17:16:37 2025 GMT Not After : Oct 25 17:16:37 2025 GMT Subject: CN=68f3cb75-2194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:cc:f6:fd:fa:ac:6d:d7:0c:7a:73:d6:9d:d9: 1d:36:e1:ac:76:0e:c8:99:06:6e:01:9d:50:ce:c4: 5e:a2:4e:14:a8:37:c9:56:0f:ae:b3:11:80:b6:f0: e2:0f:4e:04:c2:bc:a6:0f:f1:ce:b6:3b:6f:dc:77: 2c:58:87:13:dd:84:11:ec:53:87:dc:ec:14:a1:be: 2f:55:3d:e6:b3:47:15:bf:7f:7a:0b:03:c1:e3:6d: 9a:5f:88:39:ca:5f:2d:e9:f2:18:99:24:fe:93:3d: 22:a0:e9:f9:9b:ae:b2:ff:e8:9f:e2:8f:9e:fd:75: 44:01:1b:a6:c8:d7:81:41:ed:74:db:3a:fa:6d:66: 8a:ef:b6:80:23:5b:39:74:5e:ee:d6:15:7e:93:8c: eb:af:b1:48:15:7d:82:1c:3f:59:22:97:60:a6:53: ad:3d:ad:ee:86:f7:81:da:73:24:cf:ac:db:2f:48: ad:24:91:10:c4:c5:30:23:42:77:70:b8:2e:35:97: 44:7a:46:55:f1:c5:94:01:68:a1:e9:71:2b:db:22: 00:b9:c5:65:04:6e:02:62:8d:82:05:b3:3b:58:77: 20:da:87:90:28:18:d1:86:eb:bf:62:f7:ff:88:bb: 64:6f:6d:19:40:45:eb:16:a8:cc:77:b4:b8:30:6c: 8a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:7F:88:1F:D0:76:7E:CB:3E:21:69:3A:F4:C4:CE:6E:BF:C6:CC:06 X509v3 Authority Key Identifier: keyid:B3:5A:72:E5:6F:09:02:C7:E1:B8:D8:12:C5:D8:36:54:11:DD:A3:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s1py5W8JAsfhuNgSxdg2VBHdox0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B91/76304A785A9311E8B7C2161FC4F9AE02/s1py5W8JAsfhuNgSxdg2VBHdox0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:34:7d:32:e2:19:0d:ea:d6:05:e1:97:5c:e9:18:64:d0:88: 24:82:0b:c7:9a:1a:d1:13:ed:95:de:86:57:01:95:c7:17:22: 2e:ae:b9:7e:df:c0:7c:f7:83:c3:37:be:18:d1:92:19:b8:ab: 18:85:d2:93:72:ac:50:33:50:cd:23:28:06:66:f6:86:d4:34: cc:4f:da:ae:1f:11:e7:c8:8f:73:35:a2:02:45:25:24:17:f6: d0:c3:42:80:09:f1:16:a9:a1:97:0c:9d:1d:db:56:56:f5:85: 79:f8:27:63:ae:0d:f3:b8:74:18:dd:2a:56:85:2a:92:b6:bf: 60:0d:aa:87:01:db:a9:fe:58:eb:6d:c9:c7:de:88:d8:b8:7d: a5:a9:3f:10:21:fb:69:e8:f7:de:96:97:cc:e5:4f:6c:32:2c: 39:e3:49:aa:bc:20:74:da:5c:d2:13:8b:7e:15:73:3b:d7:f5: ec:6b:2e:ec:35:41:5e:55:cd:89:77:24:ef:fa:d7:cf:d8:8d: fa:23:ae:64:4b:41:f3:c3:06:1d:a1:65:71:66:f1:f5:9d:59: dc:d4:d8:49:2e:1d:1b:c8:63:a6:7c:20:6b:09:2e:9c:0e:2a: 11:de:01:e6:17:2e:a3:a9:24:c2:07:04:b6:e9:31:c6:42:a3: 1b:43:85:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCOTExMTAvBgNVBAUTKEIzNUE3MkU1NkYwOTAyQzdFMUI4RDgxMkM1RDgzNjU0 MTFEREEzMUQwHhcNMjUxMDE4MTcxNjM3WhcNMjUxMDI1MTcxNjM3WjAYMRYwFAYD VQQDEw02OGYzY2I3NS0yMTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysz2/fqsbdcMenPWndkdNuGsdg7ImQZuAZ1QzsReok4UqDfJVg+usxGAtvDi D04EwrymD/HOtjtv3HcsWIcT3YQR7FOH3OwUob4vVT3ms0cVv396CwPB422aX4g5 yl8t6fIYmST+kz0ioOn5m66y/+if4o+e/XVEARumyNeBQe102zr6bWaK77aAI1s5 dF7u1hV+k4zrr7FIFX2CHD9ZIpdgplOtPa3uhveB2nMkz6zbL0itJJEQxMUwI0J3 cLguNZdEekZV8cWUAWih6XEr2yIAucVlBG4CYo2CBbM7WHcg2oeQKBjRhuu/Yvf/ iLtkb20ZQEXrFqjMd7S4MGyKhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHh/iB/Q dn7LPiFpOvTEzm6/xswGMB8GA1UdIwQYMBaAFLNacuVvCQLH4bjYEsXYNlQR3aMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI5MS83NjMwNEE3ODVB OTMxMUU4QjdDMjE2MUZDNEY5QUUwMi9zMXB5NVc4SkFzZmh1TmdTeGRnMlZCSGRv eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MxcHk1VzhKQXNmaHVOZ1N4ZGcyVkJIZG94MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI5MS83NjMwNEE3ODVBOTMxMUU4QjdDMjE2MUZDNEY5QUUwMi9zMXB5NVc4SkFz Zmh1TmdTeGRnMlZCSGRveDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClNH0y4hkN6tYF4Zdc6Rhk0IgkggvHmhrRE+2V3oZXAZXHFyIurrl+ 38B894PDN74Y0ZIZuKsYhdKTcqxQM1DNIygGZvaG1DTMT9quHxHnyI9zNaICRSUk F/bQw0KACfEWqaGXDJ0d21ZW9YV5+Cdjrg3zuHQY3SpWhSqStr9gDaqHAdup/ljr bcnH3ojYuH2lqT8QIftp6PfelpfM5U9sMiw540mqvCB02lzSE4t+FXM71/Xsay7s NUFeVc2JdyTv+tfP2I36I65kS0HzwwYdoWVxZvH1nVnc1NhJLh0byGOmfCBrCS6c DioR3gHmFy6jqSTCBwS26THGQqMbQ4Wx -----END CERTIFICATE-----Generated at Mon Oct 20 07:58:35 2025 by rpki-client