$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: ikcd3GtVeu6d46qNcHKc6c+7ztYLGxyLL0H5X0vk9B8= Subject key identifier: 76:AD:DD:95:16:4D:A7:77:03:CE:DE:59:5F:D1:6F:A4:A7:AA:AD:72 Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 09C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 09A1 Signing time: Sat 18 Oct 2025 21:07:27 +0000 Manifest this update: Sat 18 Oct 2025 21:07:26 +0000 Manifest next update: Sat 25 Oct 2025 21:07:26 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: fOOrTs4WResm9hlQX+CvTYjuW2GPxhug966YcuNP03A=) 2: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: fDQ1zYNxLplPrz4Qpls9Fd7tB57/fNGS1+72t/RyA84=) 3: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: +eSXmzBbgmezGg93b3TG7JXzkYgFkvNOYfX8lsh6cSU=) 4: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: hhUYjpSKNDr9BFxXK1UJmQWhlN0RGm+4+TzTlDKxlz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:07:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2497 (0x9c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: Oct 18 21:07:26 2025 GMT Not After : Oct 25 21:07:26 2025 GMT Subject: CN=68f4018f-dcf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:85:5f:9c:aa:db:e2:9a:5b:92:58:e0:bd:4d: df:70:1b:d6:54:bc:9a:86:01:49:95:32:1c:7c:2a: 3b:7d:1a:94:2d:f9:81:75:cd:f2:ca:60:b3:58:13: 11:00:37:cf:b9:51:a2:ed:06:e7:cc:78:66:51:1f: c4:f2:75:55:f8:fe:d3:c8:81:4e:c6:c4:ee:c4:bf: 99:35:36:e7:4d:5e:aa:9d:91:2b:ca:2c:d9:f8:7c: ae:ab:e3:ed:8d:b8:5f:d7:7a:8e:e4:60:a0:15:c8: 2f:1f:9e:6a:8d:8d:b8:ee:cf:ba:82:0c:e8:82:4c: 4f:e5:6f:b4:32:91:e1:57:d2:bc:34:d6:86:9f:f2: af:3d:ca:da:6f:f7:db:87:14:6a:a2:8a:9c:25:45: 2e:f4:c9:fd:e6:60:b8:27:48:8f:d3:56:a8:a0:29: 55:0b:4d:46:3e:4c:1e:70:d7:46:36:4b:eb:f0:34: ba:d4:cd:2d:4a:5a:6c:12:3b:3f:a8:c5:ad:f3:cf: 50:ae:cc:3d:63:af:8a:54:26:6f:77:a9:e3:3b:8d: b0:a7:3e:1f:44:b0:70:9b:86:50:ed:17:68:3a:29: a1:1f:c8:b3:c2:78:9a:15:9f:23:fe:9f:83:2a:45: 0c:d7:0b:f8:f3:77:b5:ad:7e:6b:d8:1c:69:fd:91: a6:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:AD:DD:95:16:4D:A7:77:03:CE:DE:59:5F:D1:6F:A4:A7:AA:AD:72 X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:f8:44:a5:d2:d6:b5:14:de:d7:a4:e9:ca:d0:6c:c0:22:9e: 25:1b:0c:ee:4f:9c:b8:ae:7f:72:b2:b0:b8:b6:45:0a:47:26: e0:af:d2:de:c3:c6:6d:34:5e:76:00:ec:4d:2d:84:01:d3:9c: 41:d3:8a:c1:49:df:0a:92:3b:99:0d:e5:f1:75:7f:d1:a1:b3: de:e1:7b:65:87:26:b1:df:2f:96:40:f6:c6:a8:1f:0f:a7:e8: 7e:e9:01:b5:bf:a0:b6:c3:ed:21:8e:2a:fe:79:88:4a:d5:ca: 9f:50:73:40:71:0c:7e:9f:ba:ff:6c:03:82:3e:1e:c6:bf:de: 54:20:39:d3:40:9b:5b:f3:9d:4e:fb:4d:0d:35:79:83:cd:d3: 5a:69:0d:e1:95:b0:29:e0:2a:e6:7e:17:0c:16:83:b4:71:73: 57:77:4f:6e:19:48:4c:16:b7:95:6e:b0:05:3a:47:5c:5e:43: 20:ff:3f:e6:dd:49:6b:72:72:4c:7e:43:d9:08:6f:ec:ec:34: 43:24:30:df:73:d5:fd:c7:67:bd:49:14:22:ed:9e:be:b8:b5: d6:f4:c2:6a:a6:03:b2:ef:f8:00:bf:81:30:7e:0a:52:62:41: 9c:a3:76:90:f2:9e:31:ca:0f:71:82:2f:4a:db:e2:bd:41:b7: a7:31:92:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjUxMDE4MjEwNzI2WhcNMjUxMDI1MjEwNzI2WjAYMRYwFAYD VQQDEw02OGY0MDE4Zi1kY2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2IVfnKrb4ppbkljgvU3fcBvWVLyahgFJlTIcfCo7fRqULfmBdc3yymCzWBMR ADfPuVGi7QbnzHhmUR/E8nVV+P7TyIFOxsTuxL+ZNTbnTV6qnZEryizZ+Hyuq+Pt jbhf13qO5GCgFcgvH55qjY247s+6ggzogkxP5W+0MpHhV9K8NNaGn/KvPcrab/fb hxRqooqcJUUu9Mn95mC4J0iP01aooClVC01GPkwecNdGNkvr8DS61M0tSlpsEjs/ qMWt889Qrsw9Y6+KVCZvd6njO42wpz4fRLBwm4ZQ7RdoOimhH8izwniaFZ8j/p+D KkUM1wv483e1rX5r2Bxp/ZGmbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHat3ZUW Tad3A87eWV/Rb6Snqq1yMB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl+ESl0ta1FN7XpOnK0GzAIp4lGwzuT5y4rn9ysrC4tkUKRybgr9Le w8ZtNF52AOxNLYQB05xB04rBSd8KkjuZDeXxdX/RobPe4Xtlhyax3y+WQPbGqB8P p+h+6QG1v6C2w+0hjir+eYhK1cqfUHNAcQx+n7r/bAOCPh7Gv95UIDnTQJtb851O +00NNXmDzdNaaQ3hlbAp4CrmfhcMFoO0cXNXd09uGUhMFreVbrAFOkdcXkMg/z/m 3UlrcnJMfkPZCG/s7DRDJDDfc9X9x2e9SRQi7Z6+uLXW9MJqpgOy7/gAv4EwfgpS YkGco3aQ8p4xyg9xgi9K2+K9QbenMZJW -----END CERTIFICATE-----Generated at Mon Oct 20 19:13:30 2025 by rpki-client