$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft File: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft (raw, json) Hash identifier: H6makc8hwpGpri6EGAar7qIGSVcLcIS/radhRvfcYUI= Subject key identifier: DB:7E:24:D5:A0:25:33:3D:44:DB:3D:4A:91:9D:68:38:F8:48:F6:F7 Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC Certificate issuer: /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Certificate serial: 0600 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft Manifest number: 05F5 Signing time: Sun 19 Oct 2025 00:34:18 +0000 Manifest this update: Sun 19 Oct 2025 00:34:18 +0000 Manifest next update: Sun 26 Oct 2025 00:34:18 +0000 Files and hashes: 1: o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl (hash: du+AiJEzLHKoJHjdMzY2UmhSxnoORlPIHD/FK8inbm4=) 2: 58C1F4C06E2211EE98839C33C4F9AE02.roa (hash: Ews4xG+BhGr1YKU7wFoc4NdQF1qugSkJAZpv3+K1VQA=) 3: 931EBB586D6E11EE8AF4BF30C4F9AE02.roa (hash: ixAKLgsVNfo1Pz8i7g4aRb3j68KYgsQlay7em4iJOQg=) 4: DD21ADFACA7311EBAA6E0567C4F9AE02.roa (hash: pKLk6OfJnvru45xZOE/FJIK5VrkZPKYSrNqrwCtPYN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:34:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1536 (0x600) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158877, serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Validity Not Before: Oct 19 00:34:18 2025 GMT Not After : Oct 26 00:34:18 2025 GMT Subject: CN=68f4320a-5e2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c6:37:b4:2a:37:1d:5b:9b:95:32:54:2d:55: 7c:d1:06:72:29:93:02:4e:ef:a5:f4:f0:ea:61:b3: 2d:bb:10:6c:12:72:3b:95:c7:f1:49:df:3b:cb:a6: e5:11:70:e9:dc:a7:02:82:fd:22:e1:1c:fe:7c:56: a0:91:cb:78:2e:07:30:26:0b:44:1b:16:50:30:c0: c3:f3:58:21:4d:f0:83:a7:d6:03:19:b9:64:50:78: 0c:f1:72:a1:09:64:33:a4:7a:bb:68:ab:9e:6d:14: 13:89:d8:3f:41:c2:74:c9:2f:6a:3d:c7:90:29:53: c7:90:b5:d7:cc:ed:a8:2b:79:d0:1a:ac:4b:39:2e: 3d:b3:88:67:5f:76:ad:9c:d6:a7:aa:3d:09:97:52: 1b:0e:bb:e9:30:c1:2a:cc:5b:d3:5f:50:23:ff:22: 90:20:f0:00:48:ae:89:a6:f1:ce:24:e5:a3:bc:a4: 33:20:29:59:80:8c:d1:c5:fe:1e:c1:ac:38:69:12: 93:55:24:bd:71:cd:60:48:dc:e2:58:ea:86:8a:ad: 4e:af:8c:5d:3e:a0:c5:67:40:06:97:6c:53:e8:32: 04:f8:cd:d4:2e:2d:53:e5:b9:ab:fb:89:4d:64:cf: a6:ac:b4:c1:02:4a:ca:4c:59:75:83:f8:43:8d:43: 7b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:7E:24:D5:A0:25:33:3D:44:DB:3D:4A:91:9D:68:38:F8:48:F6:F7 X509v3 Authority Key Identifier: keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:4a:a8:0b:ab:48:ee:43:e3:ca:0f:56:80:c9:67:7d:3c:f2: 88:3d:dc:ec:4a:b9:21:29:e4:bf:96:ba:fe:4f:03:1c:81:8e: 21:a1:7d:04:8b:1c:d3:75:de:43:ac:c3:a1:a2:9e:97:b3:02: 9b:5b:49:71:04:0a:4d:b5:bb:71:85:2c:02:83:d2:c5:cd:3f: 9e:d5:a5:6c:ce:28:55:a8:88:2b:83:37:29:cd:55:27:f8:74: 1c:ff:60:9e:f2:cf:52:cd:d5:5b:d6:56:c8:17:81:dc:b0:0f: 89:39:87:a6:cf:62:39:61:cc:9b:09:be:fd:2b:0d:d7:73:36: b0:f5:fb:f5:36:c8:ea:cf:e8:52:5b:1f:f1:66:a5:1f:2a:6b: 50:bc:a3:60:0d:8d:02:44:4f:6a:32:7c:4a:ef:19:be:28:8f: f4:3d:64:e8:54:93:96:8a:a3:96:a9:bf:a5:80:c6:3c:bf:51: 0e:ab:54:01:6d:ec:f8:35:1f:43:b8:2a:d8:8f:05:f2:10:11: 17:78:df:84:99:9f:7a:93:49:92:0c:16:72:bd:39:b0:4f:09: 67:3d:10:c0:33:48:f6:25:6c:73:67:05:52:fd:d4:79:e8:ce: 37:cd:96:9a:0d:0a:61:29:4b:0f:bc:0e:d6:eb:0b:06:62:d9: 4b:7a:ea:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NzcxMTAvBgNVBAUTKEEzQjE2NDgxQjVENkMxNzlGQzBCNzNBRTFFMEU1M0RF OTY3NjQxREMwHhcNMjUxMDE5MDAzNDE4WhcNMjUxMDI2MDAzNDE4WjAYMRYwFAYD VQQDEw02OGY0MzIwYS01ZTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysY3tCo3HVublTJULVV80QZyKZMCTu+l9PDqYbMtuxBsEnI7lcfxSd87y6bl EXDp3KcCgv0i4Rz+fFagkct4LgcwJgtEGxZQMMDD81ghTfCDp9YDGblkUHgM8XKh CWQzpHq7aKuebRQTidg/QcJ0yS9qPceQKVPHkLXXzO2oK3nQGqxLOS49s4hnX3at nNanqj0Jl1IbDrvpMMEqzFvTX1Aj/yKQIPAASK6JpvHOJOWjvKQzIClZgIzRxf4e waw4aRKTVSS9cc1gSNziWOqGiq1Or4xdPqDFZ0AGl2xT6DIE+M3ULi1T5bmr+4lN ZM+mrLTBAkrKTFl1g/hDjUN7SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNt+JNWg JTM9RNs9SpGdaDj4SPb3MB8GA1UdIwQYMBaAFKOxZIG11sF5/Atzrh4OU96WdkHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg3Ny9GMDU4NThCOENB NzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dYbjhDM091SGc1VDNwWjJR ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283RmtnYlhXd1huOEMzT3VIZzVUM3BaMlFkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODg3Ny9GMDU4NThCOENBNzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dY bjhDM091SGc1VDNwWjJRZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9SqgLq0juQ+PKD1aAyWd9PPKIPdzsSrkhKeS/lrr+TwMcgY4hoX0E ixzTdd5DrMOhop6XswKbW0lxBApNtbtxhSwCg9LFzT+e1aVszihVqIgrgzcpzVUn +HQc/2Ce8s9SzdVb1lbIF4HcsA+JOYemz2I5YcybCb79Kw3Xczaw9fv1Nsjqz+hS Wx/xZqUfKmtQvKNgDY0CRE9qMnxK7xm+KI/0PWToVJOWiqOWqb+lgMY8v1EOq1QB bez4NR9DuCrYjwXyEBEXeN+EmZ96k0mSDBZyvTmwTwlnPRDAM0j2JWxzZwVS/dR5 6M43zZaaDQphKUsPvA7W6wsGYtlLeurb -----END CERTIFICATE-----Generated at Mon Oct 20 19:59:55 2025 by rpki-client