$ rpki-client -vvf rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft File: p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft (raw, json) Hash identifier: 2qRxDFXwgU4JHpVAmCGgrrMFm8x+TvjyCnzcBH6DAvw= Subject key identifier: CA:AF:CB:64:14:95:CF:9F:95:A7:13:7B:42:B9:BF:29:55:D0:40:48 Authority key identifier: A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 Certificate issuer: /CN=A9165297/serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Certificate serial: 0E49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft Manifest number: 0E3F Signing time: Sat 18 Oct 2025 18:27:19 +0000 Manifest this update: Sat 18 Oct 2025 18:27:18 +0000 Manifest next update: Sat 25 Oct 2025 18:27:18 +0000 Files and hashes: 1: p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl (hash: ge7AqGgHOOEXvmB+muROSnI81LFBoOkdqp/oi8cxiao=) 2: 457A00A8AF7A11E9AFF10782C4F9AE02.roa (hash: cTGuGnG9rqC1kt6QlqPGiDTyt8yC7pqJIZqMZttM2hs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3657 (0xe49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165297, serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Validity Not Before: Oct 18 18:27:18 2025 GMT Not After : Oct 25 18:27:18 2025 GMT Subject: CN=68f3dc06-cc4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:07:ad:d8:f4:71:dc:40:30:c0:0c:9f:9c:46: 0a:3f:85:82:e0:38:f9:74:5f:9a:34:80:d1:bf:9b: dc:f4:a5:cd:3a:a0:10:13:7c:07:2a:01:92:a8:61: df:f0:ec:43:06:12:80:64:65:59:f8:1a:4e:63:0a: 71:a6:1c:2d:30:ec:71:d9:1e:ba:50:8f:9d:ed:55: a2:b7:62:ec:60:c2:d4:46:15:98:70:7f:14:ce:ac: 1b:2a:3c:d2:25:af:c7:73:22:96:55:15:7f:a8:95: 24:e3:09:63:0b:dc:a7:24:33:03:5f:85:aa:04:46: 5e:4e:3c:52:6b:cd:cc:d4:58:65:da:94:0d:9c:e4: d1:b4:06:4e:2f:c6:43:a7:6d:bb:b9:9f:0f:da:3e: e4:83:46:50:00:8f:22:83:b3:6a:24:1e:1c:6a:d3: 8f:49:46:38:1f:55:0d:79:ed:c6:ec:e3:9f:e9:ed: 59:26:42:39:80:51:68:45:6b:0f:c7:9a:8d:98:50: 19:c6:83:77:47:d4:c1:6e:12:a3:7e:76:7f:22:43: 4c:92:70:99:ec:68:ed:68:3f:c9:42:b8:8e:66:78: 71:84:84:74:e4:6d:09:eb:5f:c1:e1:63:db:24:a8: 41:1f:c4:ba:12:6b:09:4c:75:bc:58:e0:91:91:e5: 83:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:AF:CB:64:14:95:CF:9F:95:A7:13:7B:42:B9:BF:29:55:D0:40:48 X509v3 Authority Key Identifier: keyid:A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:0e:db:a3:b8:2d:60:4b:b7:a7:bf:cb:24:70:2f:d2:1f:72: 23:56:55:e9:1e:a9:4a:de:4c:db:5f:17:8a:43:9d:1a:04:69: f2:85:fe:a2:c1:fb:d9:c4:c9:f7:36:20:c0:c1:c6:aa:e2:3e: 20:87:36:50:75:2e:ee:9b:c6:fb:97:de:e7:d8:27:db:23:3a: d8:b0:32:53:8e:41:65:88:6d:da:92:6a:5c:07:7c:1f:1c:d9: 3e:62:61:27:3b:c4:51:48:e9:ee:73:66:d9:77:ba:a2:9d:7f: b5:d5:a6:0f:5c:e0:86:88:08:2f:db:b7:2f:5e:76:44:a3:21: 40:22:ab:2f:68:f9:1a:b6:80:de:80:f7:28:72:86:ac:65:1c: 4d:4e:3b:b6:73:00:31:9d:86:f1:7c:0c:52:b9:c0:be:14:25: a4:7c:3f:35:c5:04:4f:bc:87:7b:f6:f4:00:b3:a2:81:bf:05: 41:f3:5d:59:05:bd:24:a9:31:c1:f0:97:24:38:f1:d6:dc:d5: 46:59:9e:bf:18:d0:95:69:59:58:5b:c1:e3:b2:a2:af:9b:0a: 93:80:99:39:5a:23:17:a8:b4:4e:0f:b4:fa:5c:a7:2a:6c:0d: d5:27:74:c3:f0:ac:7f:ba:e2:e3:5a:35:d9:a8:bd:58:8d:95: c5:28:d1:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUyOTcxMTAvBgNVBAUTKEE3Rjg4MkMwQUNDOEYwRDhGMURCMzYxQ0Q0MEIxMjYw NkIwQzY4QzYwHhcNMjUxMDE4MTgyNzE4WhcNMjUxMDI1MTgyNzE4WjAYMRYwFAYD VQQDEw02OGYzZGMwNi1jYzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmQet2PRx3EAwwAyfnEYKP4WC4Dj5dF+aNIDRv5vc9KXNOqAQE3wHKgGSqGHf 8OxDBhKAZGVZ+BpOYwpxphwtMOxx2R66UI+d7VWit2LsYMLURhWYcH8UzqwbKjzS Ja/HcyKWVRV/qJUk4wljC9ynJDMDX4WqBEZeTjxSa83M1Fhl2pQNnOTRtAZOL8ZD p227uZ8P2j7kg0ZQAI8ig7NqJB4catOPSUY4H1UNee3G7OOf6e1ZJkI5gFFoRWsP x5qNmFAZxoN3R9TBbhKjfnZ/IkNMknCZ7GjtaD/JQriOZnhxhIR05G0J61/B4WPb JKhBH8S6EmsJTHW8WOCRkeWDPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqvy2QU lc+flacTe0K5vylV0EBIMB8GA1UdIwQYMBaAFKf4gsCsyPDY8ds2HNQLEmBrDGjG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTI5Ny80MzAxRkRCRUFG NkUxMUU5QTkyNTgwNjdDNEY5QUUwMi9wX2lDd0t6SThOangyelljMUFzU1lHc01h TVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfaUN3S3pJOE5qeDJ6WWMxQXNTWUdzTWFNWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTI5Ny80MzAxRkRCRUFGNkUxMUU5QTkyNTgwNjdDNEY5QUUwMi9wX2lDd0t6SThO angyelljMUFzU1lHc01hTVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRDtujuC1gS7env8skcC/SH3IjVlXpHqlK3kzbXxeKQ50aBGnyhf6i wfvZxMn3NiDAwcaq4j4ghzZQdS7um8b7l97n2CfbIzrYsDJTjkFliG3akmpcB3wf HNk+YmEnO8RRSOnuc2bZd7qinX+11aYPXOCGiAgv27cvXnZEoyFAIqsvaPkatoDe gPcocoasZRxNTju2cwAxnYbxfAxSucC+FCWkfD81xQRPvId79vQAs6KBvwVB811Z Bb0kqTHB8JckOPHW3NVGWZ6/GNCVaVlYW8HjsqKvmwqTgJk5WiMXqLROD7T6XKcq bA3VJ3TD8Kx/uuLjWjXZqL1YjZXFKNFY -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:21 2025 by rpki-client