$ rpki-client -vvf rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft File: 1hg6YWfsLkpyRwcPHws5trnJU-E.mft (raw, json) Hash identifier: aVsXEapbd4246mZfcoIF0UChEccbt3dgUSOuubjFn8w= Subject key identifier: F9:AE:63:B3:86:F4:FD:3E:BA:38:DE:56:1D:00:85:C5:81:9F:80:D6 Authority key identifier: D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 Certificate issuer: /CN=A9157705/serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Certificate serial: 0B5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft Manifest number: 0B57 Signing time: Sat 18 Oct 2025 19:59:51 +0000 Manifest this update: Sat 18 Oct 2025 19:59:50 +0000 Manifest next update: Sat 25 Oct 2025 19:59:50 +0000 Files and hashes: 1: 1hg6YWfsLkpyRwcPHws5trnJU-E.crl (hash: Yqjv2qsjqoNY39bjCsnOhErp8Y/RAevl0bUI6WNpAoQ=) 2: E82A7D8840CE11EABBE63B6BC4F9AE02.roa (hash: m3vliiEgyQOK9cLamk8Seg9r2MS0Thb0iCeLTBZTTaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2910 (0xb5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157705, serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Validity Not Before: Oct 18 19:59:50 2025 GMT Not After : Oct 25 19:59:50 2025 GMT Subject: CN=68f3f1b6-59c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:36:2c:0c:31:17:d9:3a:a1:49:d7:ec:d7:71: 39:02:c7:a9:fc:e2:9d:84:0f:c6:05:0a:ea:b1:a8: 61:b6:df:9f:be:63:08:22:37:bf:69:e8:13:08:53: e4:8e:24:a0:fd:d3:27:d9:95:a0:47:97:a0:fb:e1: f2:df:da:85:73:3e:a5:99:45:b2:97:68:a3:05:26: 72:f2:e4:c2:e8:8b:73:b8:6c:ec:3d:42:19:75:eb: 87:5d:e2:33:89:b6:99:d0:f9:18:b3:15:59:2a:80: 0b:09:48:25:ce:79:de:70:70:fd:19:fd:ac:4c:ff: b9:76:38:12:77:8e:04:0a:7c:1d:9d:e3:42:c5:a6: 80:b3:a5:eb:5e:8a:74:30:38:0e:4d:99:d0:8d:b5: 6e:8f:6c:b8:81:7c:de:b0:a2:a4:b0:14:28:ac:28: 24:08:54:2a:05:85:68:d6:62:57:7f:b4:07:84:32: 29:15:61:08:a4:7a:9b:6d:e7:53:79:2d:31:b0:2d: 9f:b2:10:3f:93:b5:ce:45:39:c1:d2:ea:ae:8a:be: c4:17:46:6e:1f:aa:97:28:90:3d:c4:af:61:bd:7f: a0:99:e3:a1:12:c3:7a:b1:f1:11:d3:7f:2d:5e:92: 9b:c0:1a:b7:49:48:b3:03:d8:c8:4b:0a:f9:1f:3e: 1f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:AE:63:B3:86:F4:FD:3E:BA:38:DE:56:1D:00:85:C5:81:9F:80:D6 X509v3 Authority Key Identifier: keyid:D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:39:5e:14:3a:70:f1:c7:51:f7:04:9d:b8:19:bf:39:c3:a0: c7:20:b3:91:c0:32:7d:18:99:8a:fe:fd:c0:43:67:bb:53:74: ef:20:9a:78:ff:72:1e:1f:3c:80:58:1f:22:ad:6e:83:9c:5b: 78:ec:91:fa:ea:2e:ce:5a:1e:cb:b1:7f:83:b8:a2:8d:5d:3d: c4:65:45:02:9f:9c:0e:c3:9d:1d:09:ed:6d:8b:96:0f:8c:30: 89:47:af:0c:0e:b2:23:ad:41:f7:28:e1:13:2e:6d:26:52:fd: 8b:37:f4:77:a6:41:a3:e6:ff:d0:08:6c:63:d4:2c:a2:40:8f: 09:c7:2d:0e:22:87:75:e5:30:8d:c0:a0:8f:e8:cf:1b:bf:4c: 22:60:9c:8e:d3:e4:b0:5c:7d:e1:50:a4:f3:5b:57:42:4d:0e: 4c:db:d7:df:81:84:fb:da:c5:cf:df:58:6e:7a:8f:59:e6:89: 31:68:f3:56:8d:6f:53:98:90:4d:8d:14:39:aa:3e:b5:75:85: da:d1:be:8e:6a:ab:4e:20:29:ee:77:3e:ae:86:28:09:39:0e: 8f:f6:f9:77:16:4b:97:7d:46:85:58:1c:71:11:d8:e0:79:f6: 89:a6:90:32:c7:58:7c:06:7a:a3:4c:e3:ad:67:ed:28:a2:aa: 38:e5:9b:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC14wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MDUxMTAvBgNVBAUTKEQ2MTgzQTYxNjdFQzJFNEE3MjQ3MDcwRjFGMEIzOUI2 QjlDOTUzRTEwHhcNMjUxMDE4MTk1OTUwWhcNMjUxMDI1MTk1OTUwWjAYMRYwFAYD VQQDEw02OGYzZjFiNi01OWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTYsDDEX2TqhSdfs13E5Asep/OKdhA/GBQrqsahhtt+fvmMIIje/aegTCFPk jiSg/dMn2ZWgR5eg++Hy39qFcz6lmUWyl2ijBSZy8uTC6ItzuGzsPUIZdeuHXeIz ibaZ0PkYsxVZKoALCUglznnecHD9Gf2sTP+5djgSd44ECnwdneNCxaaAs6XrXop0 MDgOTZnQjbVuj2y4gXzesKKksBQorCgkCFQqBYVo1mJXf7QHhDIpFWEIpHqbbedT eS0xsC2fshA/k7XORTnB0uquir7EF0ZuH6qXKJA9xK9hvX+gmeOhEsN6sfER038t XpKbwBq3SUizA9jISwr5Hz4ffQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPmuY7OG 9P0+ujjeVh0AhcWBn4DWMB8GA1UdIwQYMBaAFNYYOmFn7C5KckcHDx8LOba5yVPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcwNS8zM0ZBRTZGNDQw Q0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xrcHlSd2NQSHdzNXRybkpV LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZzZZV2ZzTGtweVJ3Y1BId3M1dHJuSlUtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcwNS8zM0ZBRTZGNDQwQ0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xr cHlSd2NQSHdzNXRybkpVLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByOV4UOnDxx1H3BJ24Gb85w6DHILORwDJ9GJmK/v3AQ2e7U3TvIJp4 /3IeHzyAWB8irW6DnFt47JH66i7OWh7LsX+DuKKNXT3EZUUCn5wOw50dCe1ti5YP jDCJR68MDrIjrUH3KOETLm0mUv2LN/R3pkGj5v/QCGxj1CyiQI8Jxy0OIod15TCN wKCP6M8bv0wiYJyO0+SwXH3hUKTzW1dCTQ5M29ffgYT72sXP31hueo9Z5okxaPNW jW9TmJBNjRQ5qj61dYXa0b6OaqtOICnudz6uhigJOQ6P9vl3FkuXfUaFWBxxEdjg efaJppAyx1h8BnqjTOOtZ+0ooqo45ZvS -----END CERTIFICATE-----Generated at Mon Oct 20 12:04:29 2025 by rpki-client