$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft File: Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft (raw, json) Hash identifier: ihvx7/DMtNGfIvPdgiK6mzf57LVvdoxHwCLMehUaEo4= Subject key identifier: BB:CE:85:6E:EF:CE:F2:E5:A4:AF:06:7A:73:2C:43:88:8F:A8:AB:3E Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC Certificate issuer: /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Certificate serial: 03F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft Manifest number: 03D3 Signing time: Sun 19 Oct 2025 02:40:37 +0000 Manifest this update: Sun 19 Oct 2025 02:40:37 +0000 Manifest next update: Sun 26 Oct 2025 02:40:37 +0000 Files and hashes: 1: Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl (hash: k9hFmKpcU0OAuVhxAkK+dEeLSSQMF2rgZegp+jtfeOc=) 2: 7B6F6276E03811EFAC3C5652C4F9AE02.roa (hash: melteXR1cRharD5muHTsf70+edihxivjKNNQzAZNpLE=) 3: 79C2D638E03811EFAC3C5652C4F9AE02.roa (hash: pIl/ybOSWeNJuXyu7vI+RsUvtpL0KXP/t0jEbgQtU7I=) 4: 7AA94F3CE03811EFAC3C5652C4F9AE02.roa (hash: ImUvDtTwcm68idWdwXB7tEHKc5rG51UP9vCEMxdSyRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1015 (0x3f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E8E, serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Validity Not Before: Oct 19 02:40:37 2025 GMT Not After : Oct 26 02:40:37 2025 GMT Subject: CN=68f44fa5-0ade Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5c:14:49:a1:52:e3:d6:c0:47:2f:ab:fc:03: 4c:14:9c:01:6a:c1:6c:17:f6:65:40:64:21:68:11: 61:08:2c:26:17:9b:a9:df:0c:7f:22:4c:d8:ba:2b: ce:2d:7b:c0:45:a6:62:89:91:20:1b:61:b7:e4:93: f8:24:c1:de:86:31:6f:bd:a3:e9:78:cc:1d:4e:62: fe:71:c3:1b:0a:f4:0a:2a:67:ec:8f:b1:70:80:f0: 06:ac:20:8d:37:a1:6c:0b:33:c5:3d:64:86:db:48: 52:42:ba:81:fd:e9:9a:e3:6d:c8:5b:42:86:c4:40: a3:e2:ef:2a:d4:80:ac:a9:2b:28:a0:18:4e:11:83: b1:de:8d:db:e3:9d:87:3f:f7:cb:51:e4:f1:0f:86: 32:a5:18:2d:ca:06:26:c7:5e:f0:d6:65:fe:6c:16: ff:51:3f:30:cb:ce:1a:f1:9d:f3:0e:6f:58:70:7c: 43:08:3a:98:74:f2:7d:ba:f7:aa:48:e5:b3:bf:c0: 66:63:4b:20:0b:3f:82:d7:d8:c5:0b:ec:a7:9d:03: 4f:c7:8b:f8:50:07:34:0d:63:bb:23:66:0e:df:a3: 0b:de:01:88:60:2c:e0:f2:ab:78:1d:6f:54:68:d5: 55:df:a7:65:aa:7e:a2:db:9d:bc:e6:73:53:62:c7: bb:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:CE:85:6E:EF:CE:F2:E5:A4:AF:06:7A:73:2C:43:88:8F:A8:AB:3E X509v3 Authority Key Identifier: keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:8b:81:b1:0d:bd:d1:a7:77:70:c7:d1:54:54:dd:c6:0f:20: 88:14:0e:f0:ec:d7:95:1e:1d:c8:f2:60:1f:09:f7:8f:95:46: 59:39:dc:f1:aa:d0:db:6a:46:f0:56:df:d9:de:ba:4a:a7:5a: d6:07:01:d0:c3:c1:90:07:6f:1c:39:9e:55:c1:da:25:36:4a: 04:b9:d1:87:91:6c:c5:e2:3f:36:b1:04:f4:52:3d:35:4f:51: b0:21:f7:6f:36:05:4e:5b:ca:7f:ca:9d:c2:f7:16:29:1b:4f: 7f:b8:11:5b:d5:3e:d3:77:75:46:18:9e:c1:0a:d8:64:9a:1a: cd:94:3b:24:0f:55:e6:d8:e2:b5:40:fa:74:86:1d:08:74:51: 41:6f:e7:66:57:83:53:89:7c:83:b2:4a:b7:49:56:75:87:83: 2d:a4:55:b5:35:c7:b3:b6:21:b3:58:a9:3d:7a:11:91:5d:a5: 66:e5:89:a0:35:5a:85:a7:fb:c0:fd:c6:12:4a:2c:90:0d:e7: dc:3b:22:c3:86:84:b4:65:a0:95:de:45:72:12:41:b9:ef:b8: 16:5c:ef:f2:40:78:c4:ab:8a:fe:81:d2:8a:dd:88:35:d3:13: c3:f1:6d:1a:45:8a:bc:69:ff:e4:e4:2b:71:17:2f:c5:5d:28: 8c:1e:10:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFOEUxMTAvBgNVBAUTKDVGMkU1RTYyOTMyQkI1MEE4NUZGMkY5QTVGMzFCMkJB REQ1RjM0QUMwHhcNMjUxMDE5MDI0MDM3WhcNMjUxMDI2MDI0MDM3WjAYMRYwFAYD VQQDEw02OGY0NGZhNS0wYWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1wUSaFS49bARy+r/ANMFJwBasFsF/ZlQGQhaBFhCCwmF5up3wx/IkzYuivO LXvARaZiiZEgG2G35JP4JMHehjFvvaPpeMwdTmL+ccMbCvQKKmfsj7FwgPAGrCCN N6FsCzPFPWSG20hSQrqB/ema423IW0KGxECj4u8q1ICsqSsooBhOEYOx3o3b452H P/fLUeTxD4YypRgtygYmx17w1mX+bBb/UT8wy84a8Z3zDm9YcHxDCDqYdPJ9uveq SOWzv8BmY0sgCz+C19jFC+ynnQNPx4v4UAc0DWO7I2YO36ML3gGIYCzg8qt4HW9U aNVV36dlqn6i25285nNTYse7LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLvOhW7v zvLlpK8GenMsQ4iPqKs+MB8GA1UdIwQYMBaAFF8uXmKTK7UKhf8vml8xsrrdXzSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEU4RS8wNEZCQjhGMEFF MEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRRcUZfeS1hWHpHeXV0MWZO S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5NWVZcE1ydFFxRl95LWFYekd5dXQxZk5Ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU4RS8wNEZCQjhGMEFFMEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRR cUZfeS1hWHpHeXV0MWZOS3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAri4GxDb3Rp3dwx9FUVN3GDyCIFA7w7NeVHh3I8mAfCfePlUZZOdzx qtDbakbwVt/Z3rpKp1rWBwHQw8GQB28cOZ5VwdolNkoEudGHkWzF4j82sQT0Uj01 T1GwIfdvNgVOW8p/yp3C9xYpG09/uBFb1T7Td3VGGJ7BCthkmhrNlDskD1Xm2OK1 QPp0hh0IdFFBb+dmV4NTiXyDskq3SVZ1h4MtpFW1NceztiGzWKk9ehGRXaVm5Ymg NVqFp/vA/cYSSiyQDefcOyLDhoS0ZaCV3kVyEkG577gWXO/yQHjEq4r+gdKK3Yg1 0xPD8W0aRYq8af/k5CtxFy/FXSiMHhAs -----END CERTIFICATE-----Generated at Tue Oct 21 00:11:15 2025 by rpki-client