$ rpki-client -vvf rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft File: QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft (raw, json) Hash identifier: rBToTuFj3XtLpYUrgKkRCy6+qHVlNvyKWs5JA/ZAN+U= Subject key identifier: A0:E8:B1:B2:E4:63:A1:88:B5:D0:A1:04:CF:AA:4D:D1:AD:A1:C6:B4 Authority key identifier: 40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B Certificate issuer: /CN=A9165C64/serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Certificate serial: 0CC6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft Manifest number: 0CB7 Signing time: Sat 18 Oct 2025 18:55:48 +0000 Manifest this update: Sat 18 Oct 2025 18:55:47 +0000 Manifest next update: Sat 25 Oct 2025 18:55:47 +0000 Files and hashes: 1: QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl (hash: uFQQw5J7wgie25ozSuYcKlSDyVN9JeYjQk9u6GxwVDs=) 2: FD9E07EAAB1111EF89574855C4F9AE02.roa (hash: CJEgaP8KqXDJxOZP2RnxuUbrLWDCGR55rSwKPSomEHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:55:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3270 (0xcc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165C64, serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Validity Not Before: Oct 18 18:55:47 2025 GMT Not After : Oct 25 18:55:47 2025 GMT Subject: CN=68f3e2b4-b751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:48:fd:9c:e6:61:3b:92:37:64:e5:0a:a2:a2: 44:08:f4:29:ac:72:a8:8d:89:58:a7:90:6d:4a:9a: 8b:a0:b6:f7:37:16:ee:a5:5b:37:b3:1c:a2:6c:09: 75:8f:07:00:d4:82:e8:ea:97:db:6c:34:36:fb:cc: d7:3b:46:75:1f:93:64:02:61:b7:27:cc:c8:86:50: c3:4d:cd:1b:58:b4:26:78:6c:91:db:3c:ec:f0:b8: 6f:ea:e3:15:55:d9:73:9b:a6:17:b7:c5:58:71:fe: df:03:84:55:b5:d8:7c:7d:5d:76:6a:d3:f8:f3:b9: 64:9b:7d:d3:a5:e7:7c:94:fc:8c:d4:f0:4e:2e:16: bc:af:3d:35:97:61:f9:d3:96:28:85:ce:ea:55:50: e8:41:c6:94:09:2a:23:0b:87:ca:2a:5c:c2:33:4a: 54:e8:e5:3c:89:58:61:4a:02:02:70:4e:24:eb:c9: be:59:12:f1:a0:32:fe:82:e9:bd:c5:40:68:2d:ea: 57:98:65:e6:21:28:04:9c:3f:ae:8f:b7:95:24:f5: 3e:9e:54:42:c2:dc:67:2d:29:e7:f1:d2:4e:d2:54: 38:a9:4c:a7:ff:46:79:48:94:58:bd:cd:30:d9:8a: c7:56:20:de:91:ff:f5:45:82:bf:c9:1d:59:26:a4: 7c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:E8:B1:B2:E4:63:A1:88:B5:D0:A1:04:CF:AA:4D:D1:AD:A1:C6:B4 X509v3 Authority Key Identifier: keyid:40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:ca:88:0c:3a:c7:47:6b:0f:c2:72:0e:3f:a0:00:55:81:91: a4:9b:6f:c1:74:f9:d8:0b:34:58:0d:b8:63:e4:b9:23:df:54: 7d:05:39:e0:98:e2:45:27:92:5d:e7:cd:85:9c:04:6e:5d:be: 07:af:98:0b:ca:12:42:e9:6c:df:85:f3:bc:5e:c8:9d:3e:a0: a5:c1:42:93:e9:45:67:49:7d:74:21:83:bb:dc:eb:8c:e2:e7: 84:38:02:31:0f:d4:af:e4:fb:cb:1a:28:b9:ce:fb:79:09:cd: f8:cf:77:d0:d9:f7:9f:73:ef:16:96:83:19:42:88:8f:b4:df: 67:30:05:72:75:96:53:f0:a0:85:f8:0e:2e:24:41:b1:3a:70: 21:95:9a:cb:45:9b:4a:7b:7c:a7:0e:1c:84:62:69:30:1a:55: ae:ca:7f:13:f7:74:fa:2f:34:12:b6:df:a1:e4:37:2b:58:6a: 20:c9:ba:94:10:d3:6b:ff:9b:9e:db:94:61:14:6e:aa:c4:18: c7:2b:47:02:8c:e7:8c:10:33:30:1b:4c:0a:ae:2c:7c:7a:5d: 6f:5b:2b:61:eb:1b:e5:00:4e:a9:3b:7e:30:88:e0:27:80:e6: 94:69:cd:e1:b4:ab:a2:43:3a:14:36:4b:54:2b:74:f6:34:7d: 2e:18:e0:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVDNjQxMTAvBgNVBAUTKDQwRUJDMjVBMDhCQTVFNzU0MUNFMTQyRDJCQzI4QUU0 RjgyODhBNEIwHhcNMjUxMDE4MTg1NTQ3WhcNMjUxMDI1MTg1NTQ3WjAYMRYwFAYD VQQDEw02OGYzZTJiNC1iNzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0j9nOZhO5I3ZOUKoqJECPQprHKojYlYp5BtSpqLoLb3NxbupVs3sxyibAl1 jwcA1ILo6pfbbDQ2+8zXO0Z1H5NkAmG3J8zIhlDDTc0bWLQmeGyR2zzs8Lhv6uMV Vdlzm6YXt8VYcf7fA4RVtdh8fV12atP487lkm33Tped8lPyM1PBOLha8rz01l2H5 05Yohc7qVVDoQcaUCSojC4fKKlzCM0pU6OU8iVhhSgICcE4k68m+WRLxoDL+gum9 xUBoLepXmGXmISgEnD+uj7eVJPU+nlRCwtxnLSnn8dJO0lQ4qUyn/0Z5SJRYvc0w 2YrHViDekf/1RYK/yR1ZJqR8hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKDosbLk Y6GItdChBM+qTdGtoca0MB8GA1UdIwQYMBaAFEDrwloIul51Qc4ULSvCiuT4KIpL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUM2NC80MjVCNDIzQ0ZG QTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhuVkJ6aFF0SzhLSzVQZ29p a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPdkNXZ2k2WG5WQnpoUXRLOEtLNVBnb2lrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUM2NC80MjVCNDIzQ0ZGQTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhu VkJ6aFF0SzhLSzVQZ29pa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/yogMOsdHaw/Ccg4/oABVgZGkm2/BdPnYCzRYDbhj5Lkj31R9BTng mOJFJ5Jd582FnARuXb4Hr5gLyhJC6WzfhfO8XsidPqClwUKT6UVnSX10IYO73OuM 4ueEOAIxD9Sv5PvLGii5zvt5Cc34z3fQ2fefc+8WloMZQoiPtN9nMAVydZZT8KCF +A4uJEGxOnAhlZrLRZtKe3ynDhyEYmkwGlWuyn8T93T6LzQStt+h5DcrWGogybqU ENNr/5ue25RhFG6qxBjHK0cCjOeMEDMwG0wKrix8el1vWyth6xvlAE6pO34wiOAn gOaUac3htKuiQzoUNktUK3T2NH0uGODL -----END CERTIFICATE-----Generated at Mon Oct 20 05:40:49 2025 by rpki-client