$ rpki-client -vvf rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft File: H3amlEQsq0PX0XzW_fmpfgt_qo4.mft (raw, json) Hash identifier: VbW3u2LrVLIlfDxfblRpvyUA5CjRtyds4T8WWtbNEZA= Subject key identifier: 37:A2:50:FD:FA:CD:AE:0F:49:57:FF:CA:A6:AC:88:3F:CF:15:ED:84 Authority key identifier: 1F:76:A6:94:44:2C:AB:43:D7:D1:7C:D6:FD:F9:A9:7E:0B:7F:AA:8E Certificate issuer: /CN=A9158059/serialNumber=1F76A694442CAB43D7D17CD6FDF9A97E0B7FAA8E Certificate serial: 066B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft Manifest number: 0666 Signing time: Sun 19 Oct 2025 00:06:44 +0000 Manifest this update: Sun 19 Oct 2025 00:06:44 +0000 Manifest next update: Sun 26 Oct 2025 00:06:44 +0000 Files and hashes: 1: H3amlEQsq0PX0XzW_fmpfgt_qo4.crl (hash: nspcya2i2Mjd9+2oCDtht7VbrQK/SFOP0f736WfZHiU=) 2: 702A62CE9CC311EBA5A7A47BC4F9AE02.roa (hash: casLvQjbiWmoUm1zZDsT8rFqITbKKo8QIpvIUSskW7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.crl rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:06:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1643 (0x66b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158059, serialNumber=1F76A694442CAB43D7D17CD6FDF9A97E0B7FAA8E Validity Not Before: Oct 19 00:06:44 2025 GMT Not After : Oct 26 00:06:44 2025 GMT Subject: CN=68f42b94-0261 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:dc:46:ad:a2:7e:6f:a3:d7:37:3c:cd:55:58: 8d:f1:84:b1:b4:a8:81:fe:d3:1b:5b:9f:ef:54:67: 57:97:9e:1e:ed:63:40:79:e5:09:00:74:59:1a:02: 50:c4:9c:9c:26:64:cf:6a:52:67:cb:40:e9:2c:c8: 40:20:4c:4b:fc:08:e7:9d:a3:9d:f0:82:ea:c3:61: 5c:53:62:58:b2:89:73:e0:ea:98:80:44:d7:9f:e4: 55:03:38:c4:cc:7a:9e:9a:bb:9e:ff:b9:97:f3:9f: da:ff:a1:a0:b6:0d:dd:10:b2:42:44:cd:e8:93:af: 83:38:cb:95:1f:29:dc:2d:0e:07:6c:22:10:d5:93: 59:24:7b:3a:9e:ac:74:1a:ed:00:72:63:91:1a:14: bf:87:67:98:61:ce:92:c3:25:69:2e:be:1c:7a:dd: a2:1f:14:b6:cc:5e:c9:ef:08:2d:06:c7:f6:9e:60: e9:7d:f4:e2:2d:07:3e:83:a4:ea:22:62:5c:15:82: 11:0f:c5:c0:4d:79:ac:59:f7:72:06:7b:c9:c9:55: e5:12:aa:66:00:11:25:ee:f9:cc:e3:1a:7d:9b:39: a7:4f:81:ef:8f:6f:36:d9:12:63:64:ba:07:d7:b3: d2:2a:c7:7a:a0:a8:2f:1e:4c:9d:a6:18:1c:3a:9d: c0:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:A2:50:FD:FA:CD:AE:0F:49:57:FF:CA:A6:AC:88:3F:CF:15:ED:84 X509v3 Authority Key Identifier: keyid:1F:76:A6:94:44:2C:AB:43:D7:D1:7C:D6:FD:F9:A9:7E:0B:7F:AA:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:1a:4d:4b:42:1b:d8:dc:25:8c:a7:ea:87:d7:66:a9:fc:3c: 43:dd:7e:87:84:e9:8d:cc:60:f2:79:f6:d9:9b:83:e9:e4:cd: 69:98:28:83:6d:35:33:48:6b:7f:e3:29:80:17:eb:4e:b1:67: 10:ca:56:fb:49:9d:b4:b2:d3:e3:f9:dd:88:f2:eb:2d:4c:3f: a0:88:fd:2b:c3:bd:4e:84:16:f5:41:a7:27:95:83:21:92:f6: ba:72:af:35:40:65:25:05:ff:4d:dc:69:ef:1a:5f:5d:56:e9: f1:d7:2f:bf:a4:8d:ab:03:ff:3f:8d:e1:a7:62:b2:f5:8c:44: 1c:f8:6a:9a:88:9f:3a:7a:99:fa:f3:3f:77:30:ba:0c:62:4b: 25:a8:79:b4:92:7c:3f:de:1e:29:31:ba:f6:8b:6a:b2:85:21: c5:85:90:12:d4:48:f4:d3:10:5f:cf:ee:0d:9c:6e:53:a1:99: 8e:43:e4:54:b6:56:11:16:d4:49:48:98:1d:67:63:68:c3:7e: 5e:22:5a:e0:fd:e5:67:fe:0f:8b:80:1c:fa:1d:61:94:67:57: eb:f5:64:5a:8f:c3:45:a4:c4:17:97:f8:78:be:48:69:9c:b4: cc:ba:1b:3f:c6:20:7e:37:34:d2:66:e1:3e:5b:53:68:65:97: 2c:c7:f8:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwNTkxMTAvBgNVBAUTKDFGNzZBNjk0NDQyQ0FCNDNEN0QxN0NENkZERjlBOTdF MEI3RkFBOEUwHhcNMjUxMDE5MDAwNjQ0WhcNMjUxMDI2MDAwNjQ0WjAYMRYwFAYD VQQDEw02OGY0MmI5NC0wMjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29xGraJ+b6PXNzzNVViN8YSxtKiB/tMbW5/vVGdXl54e7WNAeeUJAHRZGgJQ xJycJmTPalJny0DpLMhAIExL/AjnnaOd8ILqw2FcU2JYsolz4OqYgETXn+RVAzjE zHqemrue/7mX85/a/6Ggtg3dELJCRM3ok6+DOMuVHyncLQ4HbCIQ1ZNZJHs6nqx0 Gu0AcmORGhS/h2eYYc6SwyVpLr4cet2iHxS2zF7J7wgtBsf2nmDpffTiLQc+g6Tq ImJcFYIRD8XATXmsWfdyBnvJyVXlEqpmABEl7vnM4xp9mzmnT4Hvj2822RJjZLoH 17PSKsd6oKgvHkydphgcOp3ApQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDeiUP36 za4PSVf/yqasiD/PFe2EMB8GA1UdIwQYMBaAFB92ppRELKtD19F81v35qX4Lf6qO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODA1OS9CQkQ4MURBODlD QzExMUVCQkZERTY1NzlDNEY5QUUwMi9IM2FtbEVRc3EwUFgwWHpXX2ZtcGZndF9x bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gzYW1sRVFzcTBQWDBYeldfZm1wZmd0X3FvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODA1OS9CQkQ4MURBODlDQzExMUVCQkZERTY1NzlDNEY5QUUwMi9IM2FtbEVRc3Ew UFgwWHpXX2ZtcGZndF9xbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlGk1LQhvY3CWMp+qH12ap/DxD3X6HhOmNzGDyefbZm4Pp5M1pmCiD bTUzSGt/4ymAF+tOsWcQylb7SZ20stPj+d2I8ustTD+giP0rw71OhBb1QacnlYMh kva6cq81QGUlBf9N3GnvGl9dVunx1y+/pI2rA/8/jeGnYrL1jEQc+GqaiJ86epn6 8z93MLoMYkslqHm0knw/3h4pMbr2i2qyhSHFhZAS1Ej00xBfz+4NnG5ToZmOQ+RU tlYRFtRJSJgdZ2Now35eIlrg/eVn/g+LgBz6HWGUZ1fr9WRaj8NFpMQXl/h4vkhp nLTMuhs/xiB+NzTSZuE+W1NoZZcsx/hZ -----END CERTIFICATE-----Generated at Mon Oct 20 13:50:45 2025 by rpki-client