$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft File: 71OR8qIt1l9IQxoyJt3MZbdllqk.mft (raw, json) Hash identifier: 2DqjLqKZt8NIa36Mdj3rZOVn/JpW+KM1vp3/GjWavAU= Subject key identifier: 9A:CF:97:BF:36:1C:1B:22:2B:24:51:4C:02:04:5C:5B:88:38:6D:90 Authority key identifier: EF:53:91:F2:A2:2D:D6:5F:48:43:1A:32:26:DD:CC:65:B7:65:96:A9 Certificate issuer: /CN=A9157DA9/serialNumber=EF5391F2A22DD65F48431A3226DDCC65B76596A9 Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft Manifest number: DF Signing time: Sun 19 Oct 2025 08:28:16 +0000 Manifest this update: Sun 19 Oct 2025 08:28:15 +0000 Manifest next update: Sun 26 Oct 2025 08:28:15 +0000 Files and hashes: 1: 71OR8qIt1l9IQxoyJt3MZbdllqk.crl (hash: jdc5OWPSpkMRq9lklfN/7Hdfj7wH1oEYoOxUOgyIWUQ=) 2: 897F96FC5A1811EFAF24E138C4F9AE02.roa (hash: V/66FKVQueBWCxe2q60voG68SskFvIkojTU44XWkp4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.crl rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA9, serialNumber=EF5391F2A22DD65F48431A3226DDCC65B76596A9 Validity Not Before: Oct 19 08:28:15 2025 GMT Not After : Oct 26 08:28:15 2025 GMT Subject: CN=68f4a11f-4ec8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:4c:c7:d9:ca:b1:70:d2:e1:b6:e5:31:4c:36: 8f:ec:44:c3:f8:fd:56:65:60:2a:9d:b5:43:12:d4: 76:c9:89:20:6e:6e:96:eb:b7:9b:d1:c8:5e:33:e0: e2:45:a1:af:32:34:7f:d2:49:f2:98:49:ee:6b:75: 22:c2:31:46:19:68:7e:7b:ab:6f:a6:6e:ce:a8:e8: 9e:6a:b5:5f:0a:73:c6:6b:0f:07:6b:99:2c:08:b4: f3:50:05:59:da:2d:8e:3e:70:90:de:92:bd:b1:22: f1:9c:05:54:6b:31:f1:ba:99:c8:66:83:5e:2e:14: 39:86:66:f9:77:60:34:a9:7e:65:60:ee:62:36:bd: 01:ec:c6:ca:2b:60:4d:50:b1:50:81:ee:d5:5e:28: 1e:a8:2e:2b:ce:92:26:43:ab:ac:a0:69:e4:a9:da: 37:5a:49:70:58:ea:8c:56:3d:04:66:17:e9:c6:a1: ef:ad:98:a4:8c:cd:fd:21:c9:f2:1d:3b:12:80:d2: a7:b2:7e:35:94:c1:64:c9:35:d2:8a:eb:c1:a8:f0: 05:1a:98:1c:83:37:c6:37:a1:ea:bf:7e:52:d4:3c: 05:44:54:72:0e:93:6f:4f:b0:4b:86:30:d2:74:95: 2e:4e:11:c9:5e:81:50:65:85:0a:dc:05:59:0c:fc: bf:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:CF:97:BF:36:1C:1B:22:2B:24:51:4C:02:04:5C:5B:88:38:6D:90 X509v3 Authority Key Identifier: keyid:EF:53:91:F2:A2:2D:D6:5F:48:43:1A:32:26:DD:CC:65:B7:65:96:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:d1:8a:f5:cb:48:83:d9:c5:57:a6:5e:1d:49:63:cf:18:3d: 55:9a:fd:b5:67:70:da:ff:ec:eb:37:53:e0:13:a1:e4:47:9c: f4:28:ec:ea:fe:70:f3:7a:c7:f8:7c:6f:1a:03:12:54:cb:ca: 3d:2a:13:23:d0:e8:3e:1f:d5:98:f7:97:8a:14:41:4a:02:a9: 1d:9c:e9:af:ee:c6:7f:93:0a:0c:1a:62:5f:95:f5:53:b4:f8: 29:be:5d:66:6a:29:f8:74:24:63:b2:87:14:49:e9:23:10:3f: 46:42:98:47:ee:71:78:b1:75:de:ac:45:ad:f9:c9:bb:f3:3f: ba:05:22:31:63:f8:86:74:98:54:67:a3:49:1b:f6:34:65:b1: 0d:f3:71:12:c5:e2:ea:10:98:02:27:92:7f:ed:65:df:80:ed: 92:25:e7:aa:6b:c5:a6:d6:84:9a:9e:65:29:e7:c7:1d:e1:6b: 01:9e:74:b8:3f:eb:03:23:37:f9:21:6d:18:0d:5c:cf:f8:1e: 14:38:cc:c6:e1:fe:f9:40:11:32:5a:29:a9:15:25:e6:5c:ee: 38:a8:c1:a8:42:47:0f:4e:ad:5e:e4:d2:16:b9:61:69:0a:20: 06:60:50:26:fc:8a:df:20:da:df:82:a4:0a:96:e5:a2:5b:26: d7:16:f1:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTkxMTAvBgNVBAUTKEVGNTM5MUYyQTIyREQ2NUY0ODQzMUEzMjI2RERDQzY1 Qjc2NTk2QTkwHhcNMjUxMDE5MDgyODE1WhcNMjUxMDI2MDgyODE1WjAYMRYwFAYD VQQDEw02OGY0YTExZi00ZWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoUzH2cqxcNLhtuUxTDaP7ETD+P1WZWAqnbVDEtR2yYkgbm6W67eb0cheM+Di RaGvMjR/0knymEnua3UiwjFGGWh+e6tvpm7OqOiearVfCnPGaw8Ha5ksCLTzUAVZ 2i2OPnCQ3pK9sSLxnAVUazHxupnIZoNeLhQ5hmb5d2A0qX5lYO5iNr0B7MbKK2BN ULFQge7VXigeqC4rzpImQ6usoGnkqdo3WklwWOqMVj0EZhfpxqHvrZikjM39Icny HTsSgNKnsn41lMFkyTXSiuvBqPAFGpgcgzfGN6Hqv35S1DwFRFRyDpNvT7BLhjDS dJUuThHJXoFQZYUK3AVZDPy/KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJrPl782 HBsiKyRRTAIEXFuIOG2QMB8GA1UdIwQYMBaAFO9TkfKiLdZfSEMaMibdzGW3ZZap MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBOS80MjNFMUFENDVB MTgxMUVGQkQ0NzczMzhDNEY5QUUwMi83MU9SOHFJdDFsOUlReG95SnQzTVpiZGxs cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcxT1I4cUl0MWw5SVF4b3lKdDNNWmJkbGxxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBOS80MjNFMUFENDVBMTgxMUVGQkQ0NzczMzhDNEY5QUUwMi83MU9SOHFJdDFs OUlReG95SnQzTVpiZGxscWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp0Yr1y0iD2cVXpl4dSWPPGD1Vmv21Z3Da/+zrN1PgE6HkR5z0KOzq /nDzesf4fG8aAxJUy8o9KhMj0Og+H9WY95eKFEFKAqkdnOmv7sZ/kwoMGmJflfVT tPgpvl1main4dCRjsocUSekjED9GQphH7nF4sXXerEWt+cm78z+6BSIxY/iGdJhU Z6NJG/Y0ZbEN83ESxeLqEJgCJ5J/7WXfgO2SJeeqa8Wm1oSanmUp58cd4WsBnnS4 P+sDIzf5IW0YDVzP+B4UOMzG4f75QBEyWimpFSXmXO44qMGoQkcPTq1e5NIWuWFp CiAGYFAm/IrfINrfgqQKluWiWybXFvF0 -----END CERTIFICATE-----Generated at Mon Oct 20 14:46:09 2025 by rpki-client