$ rpki-client -vvf rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft File: a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft (raw, json) Hash identifier: JCcHZAPwSnh917bRYkjN/TrRfnNkLQYFkon/LIPJods= Subject key identifier: 5F:A4:BE:42:39:80:DC:0D:10:DA:CA:06:F1:E1:36:78:86:7D:CE:28 Authority key identifier: 6B:D1:45:EC:E4:2A:E4:FD:82:AD:67:CF:D1:A4:05:9A:9E:AB:3A:6D Certificate issuer: /CN=A9164655/serialNumber=6BD145ECE42AE4FD82AD67CFD1A4059A9EAB3A6D Certificate serial: 058D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9FF7OQq5P2CrWfP0aQFmp6rOm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft Manifest number: 0588 Signing time: Sun 19 Oct 2025 00:53:56 +0000 Manifest this update: Sun 19 Oct 2025 00:53:56 +0000 Manifest next update: Sun 26 Oct 2025 00:53:56 +0000 Files and hashes: 1: a9FF7OQq5P2CrWfP0aQFmp6rOm0.crl (hash: D4x1nXguvx9p6Cume2VNOBLwlninKJxmDThOxyG7RVQ=) 2: B2CB84D4F3E211EB9512E219C4F9AE02.roa (hash: LSj0rBxO9Z29e6JUXgqXeUATalGSgm5CqWXMd5B6WOM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.crl rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9FF7OQq5P2CrWfP0aQFmp6rOm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:53:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1421 (0x58d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164655, serialNumber=6BD145ECE42AE4FD82AD67CFD1A4059A9EAB3A6D Validity Not Before: Oct 19 00:53:56 2025 GMT Not After : Oct 26 00:53:56 2025 GMT Subject: CN=68f436a4-1ace Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:88:ab:cc:35:dc:d0:7f:a2:f3:f9:78:34:a2: 9d:1a:63:1f:0f:04:1a:b4:c7:d5:19:66:86:23:7f: a8:d1:6f:11:b8:22:c3:0c:0c:2a:3c:42:02:f6:e3: d6:8a:66:71:eb:fe:65:a9:16:00:50:e9:dd:7d:e1: d6:31:bc:10:de:e4:d2:42:bc:e1:25:c8:ae:21:a7: 52:31:00:12:3d:46:8c:dc:95:9a:33:9e:90:5f:52: f3:9b:91:41:b6:e7:67:3c:f2:5d:56:0b:fe:8a:16: 00:d7:c1:f6:29:44:af:9e:79:31:45:8d:4f:5a:5f: 38:41:18:af:42:f9:d8:93:1f:26:32:00:80:f6:35: 7c:b2:ab:15:f5:da:ec:39:f8:d9:23:9c:57:91:74: 8e:48:f7:68:d4:ef:af:f1:76:d4:8a:65:f5:8d:c8: cd:cd:b1:d1:ff:1c:1c:8c:ef:f8:c7:8c:d7:7a:46: 83:fa:e7:63:a2:b3:fd:b2:2d:92:51:0a:86:aa:d7: 7b:60:17:46:f8:dd:15:1a:c0:73:04:f3:0c:0c:a0: c6:58:e1:dc:32:28:a3:e0:f9:1a:35:19:4e:c0:38: 1c:0b:88:ee:6a:3e:04:58:d0:f4:8a:af:19:ca:12: 77:a6:19:83:4e:64:af:99:e0:a6:bc:5d:9b:58:08: 19:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:A4:BE:42:39:80:DC:0D:10:DA:CA:06:F1:E1:36:78:86:7D:CE:28 X509v3 Authority Key Identifier: keyid:6B:D1:45:EC:E4:2A:E4:FD:82:AD:67:CF:D1:A4:05:9A:9E:AB:3A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9FF7OQq5P2CrWfP0aQFmp6rOm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:71:ac:68:7b:81:de:50:be:1e:95:00:e9:23:b5:2a:5b:c5: 3c:70:ea:fb:df:d0:90:67:b2:51:0a:73:86:62:d8:b4:c8:5f: 6d:1e:55:f2:b2:fe:e2:f9:3b:4b:34:fa:ff:03:fc:ba:ac:34: bb:09:76:40:38:80:59:fc:0e:be:ab:44:0b:70:81:d9:ad:90: 01:7b:53:8c:f2:9b:9d:7b:1c:ef:97:cf:03:e5:92:fa:83:4e: 68:26:ad:17:de:01:f4:be:18:ac:26:a3:d8:1a:db:6c:f2:62: b6:3a:b0:af:fb:a4:05:d2:f0:98:b1:b8:0c:74:bc:98:f1:ca: 3e:f7:50:63:25:86:34:55:28:f0:f6:b1:1f:27:ab:fd:ae:43: 6a:f6:cb:1f:de:19:c9:f5:32:ed:ba:c1:66:af:6d:09:dd:f6: 25:b5:e2:4e:f4:44:e4:e3:fd:7b:f7:6d:a4:44:ea:cd:2b:e8: cc:fc:a2:42:a9:3e:b7:0a:83:0f:8e:e4:96:51:9d:25:ba:a3: b9:ac:fc:bc:8b:b5:e2:97:eb:3c:c7:9a:c1:65:e4:a6:e6:e0: 2c:84:a4:26:be:a9:8f:75:07:89:84:e0:36:a7:59:c6:85:96: 57:a4:f0:38:c2:7a:2f:6f:dc:00:3f:7e:31:6b:de:ff:29:b1: 8f:84:98:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ2NTUxMTAvBgNVBAUTKDZCRDE0NUVDRTQyQUU0RkQ4MkFENjdDRkQxQTQwNTlB OUVBQjNBNkQwHhcNMjUxMDE5MDA1MzU2WhcNMjUxMDI2MDA1MzU2WjAYMRYwFAYD VQQDEw02OGY0MzZhNC0xYWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4irzDXc0H+i8/l4NKKdGmMfDwQatMfVGWaGI3+o0W8RuCLDDAwqPEIC9uPW imZx6/5lqRYAUOndfeHWMbwQ3uTSQrzhJciuIadSMQASPUaM3JWaM56QX1Lzm5FB tudnPPJdVgv+ihYA18H2KUSvnnkxRY1PWl84QRivQvnYkx8mMgCA9jV8sqsV9drs OfjZI5xXkXSOSPdo1O+v8XbUimX1jcjNzbHR/xwcjO/4x4zXekaD+udjorP9si2S UQqGqtd7YBdG+N0VGsBzBPMMDKDGWOHcMiij4PkaNRlOwDgcC4juaj4EWND0iq8Z yhJ3phmDTmSvmeCmvF2bWAgZXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF+kvkI5 gNwNENrKBvHhNniGfc4oMB8GA1UdIwQYMBaAFGvRRezkKuT9gq1nz9GkBZqeqzpt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDY1NS9EOEJCODQ5QUYz REUxMUVCOUU1RUMwNkVDNEY5QUUwMi9hOUZGN09RcTVQMkNyV2ZQMGFRRm1wNnJP bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5RkY3T1FxNVAyQ3JXZlAwYVFGbXA2ck9tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDY1NS9EOEJCODQ5QUYzREUxMUVCOUU1RUMwNkVDNEY5QUUwMi9hOUZGN09RcTVQ MkNyV2ZQMGFRRm1wNnJPbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6caxoe4HeUL4elQDpI7UqW8U8cOr739CQZ7JRCnOGYti0yF9tHlXy sv7i+TtLNPr/A/y6rDS7CXZAOIBZ/A6+q0QLcIHZrZABe1OM8pudexzvl88D5ZL6 g05oJq0X3gH0vhisJqPYGtts8mK2OrCv+6QF0vCYsbgMdLyY8co+91BjJYY0VSjw 9rEfJ6v9rkNq9ssf3hnJ9TLtusFmr20J3fYlteJO9ETk4/17922kROrNK+jM/KJC qT63CoMPjuSWUZ0luqO5rPy8i7Xil+s8x5rBZeSm5uAshKQmvqmPdQeJhOA2p1nG hZZXpPA4wnovb9wAP34xa97/KbGPhJhc -----END CERTIFICATE-----Generated at Mon Oct 20 07:59:16 2025 by rpki-client