$ rpki-client -vvf rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft File: rGOF7VY-H9amaz5LUQ3MaTDNSww.mft (raw, json) Hash identifier: QAgg92PQFdX8GF/rPonBWAgUJtbN2gFf7KkGjWDyuDE= Subject key identifier: 81:0E:67:6A:7C:B4:3E:E8:5D:CC:CF:8E:AA:70:57:E0:80:60:35:50 Authority key identifier: AC:63:85:ED:56:3E:1F:D6:A6:6B:3E:4B:51:0D:CC:69:30:CD:4B:0C Certificate issuer: /CN=A9160D0A/serialNumber=AC6385ED563E1FD6A66B3E4B510DCC6930CD4B0C Certificate serial: 0204 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft Manifest number: 01EB Signing time: Sun 19 Oct 2025 05:08:37 +0000 Manifest this update: Sun 19 Oct 2025 05:08:37 +0000 Manifest next update: Sun 26 Oct 2025 05:08:37 +0000 Files and hashes: 1: rGOF7VY-H9amaz5LUQ3MaTDNSww.crl (hash: vXrOoF/jvmCChwcbom8j6pKW89QTY+k88vEmPoyzXxk=) 2: 096A1DB6D2BA11ED8E06CC13C4F9AE02.roa (hash: BWLI/lFMOk0gs1uM9uMc8V3aTl6ezInYU2HutDGOR1Y=) 3: D1EAA18CD2BC11ED9E7A9A1BC4F9AE02.roa (hash: WszDeDtt2pA1qPuCttmdMd6CqUvx9wc+SucMvuhAFvE=) 4: 42EC5F02D2B711EDAF6DC017C4F9AE02.roa (hash: KfEf5+IVw2cc5iVIvA+8UOcszxul9bOLbJUOX0WGbIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.crl rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:08:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160D0A, serialNumber=AC6385ED563E1FD6A66B3E4B510DCC6930CD4B0C Validity Not Before: Oct 19 05:08:37 2025 GMT Not After : Oct 26 05:08:37 2025 GMT Subject: CN=68f47255-db40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:23:e5:55:bd:60:07:b9:b2:48:42:da:1e:c0: b8:a4:b5:05:db:6e:4e:83:1b:67:ed:45:3e:30:a3: 9e:ee:86:d0:30:85:9a:5f:62:8a:5f:01:e0:b6:06: 02:fe:30:81:2e:2e:46:cf:10:71:df:ba:99:e6:d7: 49:82:3e:68:5d:b5:e9:9e:b3:5c:7b:b4:a3:cd:01: 0f:4d:a8:0b:b5:4f:a7:e1:83:d7:1e:42:c4:b0:7b: 60:d0:ef:aa:fd:7b:bc:72:a0:e4:b2:a5:84:18:47: d0:3e:a3:7a:2d:6f:18:88:5a:1d:85:34:50:c9:7d: 62:29:ca:ac:f6:ca:89:3d:e6:ed:ba:d3:58:8e:b1: c8:d3:c8:9f:bd:f0:79:56:ff:0e:88:f6:90:c4:e1: d6:30:b1:7c:32:f3:7f:67:dc:70:7d:8f:71:84:75: 4f:fe:e0:74:35:3d:34:7d:d3:c2:26:6b:d1:e5:4a: c9:15:d9:13:cd:7b:8f:41:43:19:52:87:ad:98:5d: 6e:16:58:3b:2f:09:c7:7d:cd:b6:62:b5:b0:83:47: e0:ce:51:3f:e6:62:ad:72:6d:08:c3:16:b9:4f:cb: 76:14:8c:6a:c1:57:18:81:28:37:c7:a8:ff:bd:2c: 66:90:8d:3a:24:ae:6d:76:17:1d:2b:0f:70:d3:12: 4d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:0E:67:6A:7C:B4:3E:E8:5D:CC:CF:8E:AA:70:57:E0:80:60:35:50 X509v3 Authority Key Identifier: keyid:AC:63:85:ED:56:3E:1F:D6:A6:6B:3E:4B:51:0D:CC:69:30:CD:4B:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:24:e8:0a:0f:7c:dd:5e:9a:de:18:d0:6d:8d:be:5c:13:9d: fd:65:aa:35:eb:95:d2:e3:16:0c:61:3f:6c:43:86:a7:4a:37: ba:04:4d:cd:68:7f:af:46:0b:f0:55:2c:ec:07:96:9d:29:fc: 43:dc:be:a0:84:e0:13:4a:89:f0:1b:55:16:94:f7:33:ab:d9: 29:79:8f:83:02:e0:86:fa:69:73:de:af:e4:f7:53:83:96:8a: 62:b5:32:87:0f:8c:66:2f:e9:b6:7e:32:a9:fa:88:2d:f6:61: 19:77:e5:b1:93:92:78:2e:86:2b:ad:14:85:73:7a:29:0a:ee: 98:12:fb:86:ca:65:09:0a:e7:ca:ea:4f:13:76:a4:0a:9e:71: eb:8b:e2:49:65:d4:fb:d8:87:e2:f1:c0:65:37:cc:f1:42:51: fd:6c:ce:e7:4c:46:3d:47:a4:8f:f1:04:ed:9e:8c:2a:ae:61: b8:84:19:77:b8:da:8c:17:bf:4e:d1:7b:3b:00:99:2f:b3:d3: 84:f0:0d:0e:6d:2a:cd:29:8d:ab:39:1b:7a:4d:ec:75:fe:54: b5:7f:9a:97:b2:65:24:ad:18:ef:c9:39:b1:5f:98:35:fb:b2: f5:94:ef:59:b5:5d:cc:37:2c:0c:a1:1d:8a:7d:93:c7:52:50: 3d:a2:0c:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBEMEExMTAvBgNVBAUTKEFDNjM4NUVENTYzRTFGRDZBNjZCM0U0QjUxMERDQzY5 MzBDRDRCMEMwHhcNMjUxMDE5MDUwODM3WhcNMjUxMDI2MDUwODM3WjAYMRYwFAYD VQQDEw02OGY0NzI1NS1kYjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyPlVb1gB7mySELaHsC4pLUF225Ogxtn7UU+MKOe7obQMIWaX2KKXwHgtgYC /jCBLi5GzxBx37qZ5tdJgj5oXbXpnrNce7SjzQEPTagLtU+n4YPXHkLEsHtg0O+q /Xu8cqDksqWEGEfQPqN6LW8YiFodhTRQyX1iKcqs9sqJPebtutNYjrHI08ifvfB5 Vv8OiPaQxOHWMLF8MvN/Z9xwfY9xhHVP/uB0NT00fdPCJmvR5UrJFdkTzXuPQUMZ UoetmF1uFlg7LwnHfc22YrWwg0fgzlE/5mKtcm0Iwxa5T8t2FIxqwVcYgSg3x6j/ vSxmkI06JK5tdhcdKw9w0xJNawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIEOZ2p8 tD7oXczPjqpwV+CAYDVQMB8GA1UdIwQYMBaAFKxjhe1WPh/Wpms+S1ENzGkwzUsM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEQwQS81NjRBMTM1RUQy MjIxMUVEOUEyMDZDNDZDNEY5QUUwMi9yR09GN1ZZLUg5YW1hejVMVVEzTWFURE5T d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JHT0Y3VlktSDlhbWF6NUxVUTNNYVRETlN3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEQwQS81NjRBMTM1RUQyMjIxMUVEOUEyMDZDNDZDNEY5QUUwMi9yR09GN1ZZLUg5 YW1hejVMVVEzTWFURE5Td3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuJOgKD3zdXpreGNBtjb5cE539Zao165XS4xYMYT9sQ4anSje6BE3N aH+vRgvwVSzsB5adKfxD3L6ghOATSonwG1UWlPczq9kpeY+DAuCG+mlz3q/k91OD lopitTKHD4xmL+m2fjKp+ogt9mEZd+Wxk5J4LoYrrRSFc3opCu6YEvuGymUJCufK 6k8TdqQKnnHri+JJZdT72Ifi8cBlN8zxQlH9bM7nTEY9R6SP8QTtnowqrmG4hBl3 uNqMF79O0Xs7AJkvs9OE8A0ObSrNKY2rORt6Tex1/lS1f5qXsmUkrRjvyTmxX5g1 +7L1lO9ZtV3MNywMoR2KfZPHUlA9ogzf -----END CERTIFICATE-----Generated at Mon Oct 20 16:37:17 2025 by rpki-client