$ rpki-client -vvf rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft File: 7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft (raw, json) Hash identifier: pJuffd5c9QvIauMLfZ6NXKT8y9cNRdVCz9F4gB7qgwU= Subject key identifier: 4F:C0:91:3C:35:7A:ED:67:48:39:9F:58:B9:DF:7B:9E:98:69:E3:19 Authority key identifier: EE:4B:05:61:84:37:F1:94:8D:92:99:F8:A4:F9:29:C1:87:D9:7F:33 Certificate issuer: /CN=A9164B0A/serialNumber=EE4B05618437F1948D9299F8A4F929C187D97F33 Certificate serial: 0116 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft Manifest number: 0112 Signing time: Sun 19 Oct 2025 07:50:19 +0000 Manifest this update: Sun 19 Oct 2025 07:50:18 +0000 Manifest next update: Sun 26 Oct 2025 07:50:18 +0000 Files and hashes: 1: 7ksFYYQ38ZSNkpn4pPkpwYfZfzM.crl (hash: Jw5y/gfvKaBMZG1tm8ykQTbceHMDyxSDRDqueRSuTg8=) 2: 0913CC14A59911EFBA373D1BC4F9AE02.roa (hash: CwXxvQd82DMK841MpqVGbyP5fEoZfjolyFEgUa5vlRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.crl rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:50:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164B0A, serialNumber=EE4B05618437F1948D9299F8A4F929C187D97F33 Validity Not Before: Oct 19 07:50:18 2025 GMT Not After : Oct 26 07:50:18 2025 GMT Subject: CN=68f4983a-4df4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:33:b3:15:ab:be:d5:d0:ea:08:40:64:d4:18: 6d:7b:66:ca:38:36:bd:df:4f:75:86:c3:c8:c5:5e: 39:4b:95:b1:16:0a:9d:a4:a2:75:63:d9:bb:3f:9c: 0b:01:2f:4a:29:b7:57:ea:c8:b0:0a:73:bb:ea:ea: f0:ed:27:b8:19:ad:af:96:c5:a9:a6:58:4c:0e:f0: 34:aa:b6:62:56:5b:37:84:e5:68:7c:f8:78:ee:a8: 3b:e7:5e:94:12:1c:c9:98:5f:9f:98:7f:b9:00:3c: 2a:bc:fa:6f:16:a0:4e:86:df:9d:87:50:aa:09:f5: af:67:0d:7e:0a:80:b1:f4:9b:39:c8:d9:6f:a7:ca: 50:95:f3:19:b0:ec:38:da:ca:37:98:13:72:71:c1: 26:1b:dd:d5:61:ff:7f:ec:37:79:c3:fc:73:28:af: f2:6b:d4:fb:44:cb:22:45:05:db:da:f3:9d:68:2b: 25:02:30:de:95:5a:33:79:c1:1e:7f:f6:dc:f4:65: 77:5f:ed:54:6b:cc:1b:23:bc:2b:f1:ab:ab:55:8c: 75:ac:bf:4a:97:1a:ba:e6:0a:4f:2f:3c:99:43:2c: 4b:80:b2:01:26:17:7e:05:79:a5:3f:3d:50:36:f7: 71:f2:21:fd:b1:f6:ee:b1:21:a9:a6:6e:8e:9a:10: cb:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:C0:91:3C:35:7A:ED:67:48:39:9F:58:B9:DF:7B:9E:98:69:E3:19 X509v3 Authority Key Identifier: keyid:EE:4B:05:61:84:37:F1:94:8D:92:99:F8:A4:F9:29:C1:87:D9:7F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:f3:b7:da:d2:2e:c7:83:2f:cb:06:1f:95:87:b9:99:f6:7a: 15:ef:ae:21:f0:f1:53:51:42:1e:78:8d:80:d5:20:b4:2c:5f: 14:e4:e2:03:85:00:da:11:67:ea:60:1c:39:db:96:f5:03:5d: 81:6c:ef:3e:28:36:af:60:b1:ef:6b:e0:5e:0f:58:df:b5:5e: 95:e9:3c:ae:e3:8a:c1:68:fb:41:c9:aa:8d:ab:a9:54:9a:9d: da:47:e4:01:3d:98:47:aa:f1:65:17:6a:72:df:d6:02:a4:3f: 1f:dd:a6:fc:70:60:df:20:53:e9:a8:da:d6:92:8e:9a:a1:2d: 13:2c:79:86:fe:47:29:9b:6b:84:66:ae:be:05:0e:20:e6:32: e3:3c:50:8a:d4:99:d4:36:e8:d4:ed:d8:65:06:21:3a:8a:fe: 3a:a6:d0:1a:72:d0:10:d1:ac:2f:c7:8d:a7:32:8c:ad:5b:ac: 63:0a:0a:8c:1d:0b:cd:19:27:9d:14:c1:5c:f8:8a:00:d1:b4: c6:fb:e1:0f:67:48:06:66:7e:13:01:7b:af:f1:57:a3:2a:15: ef:61:f7:e3:0e:97:50:63:bc:39:59:3e:c5:27:03:44:be:ac: 3b:62:09:57:a2:9f:4a:9f:9d:a4:6c:44:23:64:e3:31:61:ce: 7f:17:bd:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRCMEExMTAvBgNVBAUTKEVFNEIwNTYxODQzN0YxOTQ4RDkyOTlGOEE0RjkyOUMx ODdEOTdGMzMwHhcNMjUxMDE5MDc1MDE4WhcNMjUxMDI2MDc1MDE4WjAYMRYwFAYD VQQDEw02OGY0OTgzYS00ZGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujOzFau+1dDqCEBk1Bhte2bKODa93091hsPIxV45S5WxFgqdpKJ1Y9m7P5wL AS9KKbdX6siwCnO76urw7Se4Ga2vlsWpplhMDvA0qrZiVls3hOVofPh47qg7516U EhzJmF+fmH+5ADwqvPpvFqBOht+dh1CqCfWvZw1+CoCx9Js5yNlvp8pQlfMZsOw4 2so3mBNyccEmG93VYf9/7Dd5w/xzKK/ya9T7RMsiRQXb2vOdaCslAjDelVozecEe f/bc9GV3X+1Ua8wbI7wr8aurVYx1rL9Klxq65gpPLzyZQyxLgLIBJhd+BXmlPz1Q Nvdx8iH9sfbusSGppm6OmhDLqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/AkTw1 eu1nSDmfWLnfe56YaeMZMB8GA1UdIwQYMBaAFO5LBWGEN/GUjZKZ+KT5KcGH2X8z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEIwQS80Q0YwRjcwODEy OTIxMUVGQUIxMDY1NjRDNEY5QUUwMi83a3NGWVlRMzhaU05rcG40cFBrcHdZZlpm ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdrc0ZZWVEzOFpTTmtwbjRwUGtwd1lmWmZ6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NEIwQS80Q0YwRjcwODEyOTIxMUVGQUIxMDY1NjRDNEY5QUUwMi83a3NGWVlRMzha U05rcG40cFBrcHdZZlpmek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJ87fa0i7Hgy/LBh+Vh7mZ9noV764h8PFTUUIeeI2A1SC0LF8U5OID hQDaEWfqYBw525b1A12BbO8+KDavYLHva+BeD1jftV6V6Tyu44rBaPtByaqNq6lU mp3aR+QBPZhHqvFlF2py39YCpD8f3ab8cGDfIFPpqNrWko6aoS0TLHmG/kcpm2uE Zq6+BQ4g5jLjPFCK1JnUNujU7dhlBiE6iv46ptAactAQ0awvx42nMoytW6xjCgqM HQvNGSedFMFc+IoA0bTG++EPZ0gGZn4TAXuv8VejKhXvYffjDpdQY7w5WT7FJwNE vqw7YglXop9Kn52kbEQjZOMxYc5/F72m -----END CERTIFICATE-----Generated at Mon Oct 20 13:50:20 2025 by rpki-client