$ rpki-client -vvf rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft File: a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft (raw, json) Hash identifier: EGfLdPW5qCIsT/PNP2BRYFA1PQlMtrTQz80VpVlvFGA= Subject key identifier: 3A:5D:E0:1C:D5:77:E6:52:24:FD:A1:19:FB:6A:C0:B7:19:D6:AC:6D Authority key identifier: 6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E Certificate issuer: /CN=A9165BD7/serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Certificate serial: 01E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft Manifest number: 01E4 Signing time: Sun 19 Oct 2025 05:04:13 +0000 Manifest this update: Sun 19 Oct 2025 05:04:12 +0000 Manifest next update: Sun 26 Oct 2025 05:04:12 +0000 Files and hashes: 1: a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl (hash: z614PxGJ/kqBGmtWZA7lYpDLGc/FUTKyaMhl0Uzo2wA=) 2: A92EC53AC95B11ED9ABE6935C4F9AE02.roa (hash: gnoiGXKkrmhYTwfXU41IB03BpkGU00B0FHz74SrCkdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:04:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165BD7, serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Validity Not Before: Oct 19 05:04:12 2025 GMT Not After : Oct 26 05:04:12 2025 GMT Subject: CN=68f4714d-2639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5b:d0:c4:96:cf:f9:1a:45:3c:a5:84:0c:b1: 9f:50:0f:3f:1b:4d:d0:b8:11:25:00:35:4a:f7:00: 1c:5f:29:ad:48:bd:07:fd:59:e2:d2:9c:bc:3f:1c: 28:38:00:84:af:46:97:a2:bd:43:3c:82:a8:98:3a: bf:c0:7e:01:06:df:1f:66:fb:79:db:a8:cb:8d:15: 50:b6:cb:94:f3:32:21:5e:ca:f7:62:02:40:e0:70: 08:e4:3c:c3:d5:a5:ca:44:7b:46:20:15:f9:09:ec: e8:3a:dd:82:c2:31:dc:68:f9:26:be:79:ab:d1:19: 47:c2:0f:95:14:f3:93:87:e6:e0:ea:79:23:e9:1d: b3:1a:9d:0b:1c:6e:e8:d8:30:03:bd:93:33:ca:2b: 4d:93:2c:62:0a:ae:97:5b:63:36:15:54:89:6e:e3: 2b:a3:6e:a5:e2:47:2d:15:ea:6a:cf:d2:02:84:23: 89:b7:73:ed:3b:81:0c:29:6f:74:20:d1:3d:7a:60: 36:5e:11:76:ce:00:87:16:5a:3c:70:41:3e:e4:df: ef:b8:a3:5c:9d:ed:c9:ba:73:d2:f2:3b:69:40:4f: 31:f8:a4:5e:71:a2:1c:37:e7:33:5d:cd:35:94:71: 69:b3:b2:2a:d7:b0:66:15:db:e2:90:ee:81:d3:ee: 60:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:5D:E0:1C:D5:77:E6:52:24:FD:A1:19:FB:6A:C0:B7:19:D6:AC:6D X509v3 Authority Key Identifier: keyid:6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:8c:a0:d5:63:68:0f:47:60:fd:fb:dd:7e:00:ac:5f:22:fe: 2c:bb:5f:04:f2:63:49:c5:4f:a7:fd:66:2d:9d:9d:a6:08:0f: 6b:26:fb:b9:ed:5d:8b:7f:3e:ec:52:71:4f:0a:b0:6e:22:f3: ca:9c:a7:bd:c8:84:66:66:5b:fc:30:30:72:1e:74:43:de:fd: a4:e9:e8:c2:e4:23:04:5c:b5:30:32:22:cd:18:5e:fc:a3:bf: 0a:da:85:47:ae:c3:e9:cd:e2:af:42:ea:52:83:64:f4:6e:4f: cd:ae:9b:1a:94:18:40:d2:61:85:3c:be:58:48:f2:bc:d1:ac: b3:b6:f4:03:2b:ef:e1:ec:8f:45:16:1d:29:66:b4:0d:1c:19: 6d:53:18:14:d3:0c:dd:75:6e:b5:79:db:29:0b:7c:1b:1f:08: df:22:48:26:98:f5:6f:38:f4:f0:0d:fe:09:3b:8a:e9:95:d4: 94:0d:0a:ee:e5:28:80:72:2f:19:69:e8:23:6d:19:3f:06:c0: 3c:97:c1:b0:93:1e:40:0b:8a:d3:c6:c5:bf:46:10:37:46:08: 62:07:ed:a7:04:b7:af:f9:98:5e:3b:24:34:ec:d8:7a:ca:2e: 26:c5:cf:0e:1b:0d:d4:6c:32:fb:af:8a:25:5c:0b:ac:39:b8: e0:93:33:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCRDcxMTAvBgNVBAUTKDZCNDk1NzY2MkFENEMyMUJENDIyQTg3REI0MUI4QkNG QzlENkREOEUwHhcNMjUxMDE5MDUwNDEyWhcNMjUxMDI2MDUwNDEyWjAYMRYwFAYD VQQDEw02OGY0NzE0ZC0yNjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVvQxJbP+RpFPKWEDLGfUA8/G03QuBElADVK9wAcXymtSL0H/Vni0py8Pxwo OACEr0aXor1DPIKomDq/wH4BBt8fZvt526jLjRVQtsuU8zIhXsr3YgJA4HAI5DzD 1aXKRHtGIBX5CezoOt2CwjHcaPkmvnmr0RlHwg+VFPOTh+bg6nkj6R2zGp0LHG7o 2DADvZMzyitNkyxiCq6XW2M2FVSJbuMro26l4kctFepqz9IChCOJt3PtO4EMKW90 INE9emA2XhF2zgCHFlo8cEE+5N/vuKNcne3JunPS8jtpQE8x+KRecaIcN+czXc01 lHFps7Iq17BmFdvikO6B0+5gnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDpd4BzV d+ZSJP2hGftqwLcZ1qxtMB8GA1UdIwQYMBaAFGtJV2Yq1MIb1CKofbQbi8/J1t2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUJENy84QTYyQzgyQUM5 NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdodlVJcWg5dEJ1THo4blcz WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EwbFhaaXJVd2h2VUlxaDl0QnVMejhuVzNZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUJENy84QTYyQzgyQUM5NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdo dlVJcWg5dEJ1THo4blczWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARjKDVY2gPR2D9+91+AKxfIv4su18E8mNJxU+n/WYtnZ2mCA9rJvu5 7V2Lfz7sUnFPCrBuIvPKnKe9yIRmZlv8MDByHnRD3v2k6ejC5CMEXLUwMiLNGF78 o78K2oVHrsPpzeKvQupSg2T0bk/NrpsalBhA0mGFPL5YSPK80ayztvQDK+/h7I9F Fh0pZrQNHBltUxgU0wzddW61edspC3wbHwjfIkgmmPVvOPTwDf4JO4rpldSUDQru 5SiAci8ZaegjbRk/BsA8l8Gwkx5AC4rTxsW/RhA3RghiB+2nBLev+ZheOyQ07Nh6 yi4mxc8OGw3UbDL7r4olXAusObjgkzMA -----END CERTIFICATE-----Generated at Tue Oct 21 01:02:49 2025 by rpki-client