$ rpki-client -vvf rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft File: aHvrJ3oFne_qK-3WevsbgjiOXrE.mft (raw, json) Hash identifier: W+zhBnR8tw3QRnNUPR/5EhzOtSoy1QpXFSf5mJovAAY= Subject key identifier: 18:B5:B9:59:92:D1:B0:55:35:AC:26:50:9B:E6:8A:AC:2B:46:F3:F6 Authority key identifier: 68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 Certificate issuer: /CN=A9165FAD/serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Certificate serial: 0814 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft Manifest number: 07FD Signing time: Sat 18 Oct 2025 22:22:58 +0000 Manifest this update: Sat 18 Oct 2025 22:22:57 +0000 Manifest next update: Sat 25 Oct 2025 22:22:57 +0000 Files and hashes: 1: aHvrJ3oFne_qK-3WevsbgjiOXrE.crl (hash: OQ/E0krwT34S+9Lh3xjnWI+PVB9jmTefAxLrodAr/TQ=) 2: D19E7784AAF811EE8D8CCD25C4F9AE02.roa (hash: +XIvNmYB/5EgcsxvZK5ch01j/uNHHViQProaEC6+kLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2068 (0x814) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165FAD, serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Validity Not Before: Oct 18 22:22:57 2025 GMT Not After : Oct 25 22:22:57 2025 GMT Subject: CN=68f41341-6a55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:13:7e:11:43:6f:34:cb:c5:97:fe:95:90:c8: 54:b1:ea:eb:20:a0:93:67:c1:65:62:c7:3b:4d:c7: 70:94:0c:8e:5c:07:a4:82:ee:a8:01:c8:6c:73:bc: 3b:09:2e:48:d2:fe:78:7e:61:f9:f1:5f:ae:46:83: e0:2b:b2:1f:02:69:11:4d:2a:d0:1b:3c:46:85:44: dd:80:67:c7:84:d6:d0:87:3d:2b:3f:85:1e:3e:ef: 0e:08:37:f4:16:b5:be:9a:40:3d:13:b3:6f:0b:e8: 8c:fa:82:59:b4:a2:74:4e:d8:46:30:94:7f:f7:ab: 53:46:d0:c5:ae:bc:87:81:21:cf:9c:9c:c7:31:98: cb:93:fe:ac:cd:bb:5d:01:ce:39:b7:4e:54:eb:dd: 68:bf:72:f4:c0:1c:ed:09:a0:0f:9f:a4:54:d6:c1: de:2c:ca:d3:84:ab:d6:2f:06:7a:00:4e:ad:bc:5f: 22:00:67:23:2f:f0:f2:63:14:86:67:ff:54:af:95: f5:96:fe:a3:0e:9e:c1:a7:79:ec:8d:41:cb:a8:89: f5:49:3d:cb:44:f8:53:13:eb:dd:d9:51:4f:7b:48: bd:f2:a6:ab:16:f8:5b:3e:36:05:05:a1:7e:da:d9: 58:87:d9:2a:f3:52:78:f9:41:2d:70:40:27:1f:62: 26:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:B5:B9:59:92:D1:B0:55:35:AC:26:50:9B:E6:8A:AC:2B:46:F3:F6 X509v3 Authority Key Identifier: keyid:68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:d9:a3:73:03:54:b4:6a:54:42:dd:fa:cf:e7:50:cb:83:06: 06:63:90:52:4f:b5:a0:b8:d4:e1:e3:ed:1a:e0:2a:7a:67:96: a5:f1:d6:ef:c0:d3:37:be:c2:48:86:30:fc:b6:a4:33:59:ad: fa:9c:4b:12:82:0c:d4:a7:de:41:ae:58:dd:7f:e6:de:a7:23: 92:7d:e3:eb:9a:7d:d9:ec:7a:6a:f4:21:37:31:53:d2:93:60: b7:74:b5:1a:ea:fa:8b:eb:20:d6:74:ca:e6:54:35:17:b9:71: 71:9e:49:83:b5:67:27:92:5e:33:b2:d4:2c:b4:bc:ca:c0:51: e4:c6:55:f7:8c:de:a4:8f:a2:86:1b:64:8d:3c:18:0f:8d:e5: c0:19:9f:21:29:5b:af:0a:68:72:3e:e1:6d:10:31:a8:50:de: 29:a0:ae:fa:f0:d6:da:92:9c:44:f3:1d:25:79:d4:99:7b:7b: 3f:60:49:30:8b:8d:60:44:d9:52:8f:6c:9d:0f:5a:c9:58:67: 57:05:f1:6f:0f:26:b5:b6:7b:3a:5e:f3:e3:c1:dc:3b:f7:d1: da:d1:a0:32:8c:4a:2f:14:96:21:61:d9:68:8c:5a:b2:4d:4c: c5:92:48:d6:af:4a:6d:75:bd:b5:ba:cd:e1:ec:8d:46:10:a3: 3f:33:4a:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVGQUQxMTAvBgNVBAUTKDY4N0JFQjI3N0EwNTlERUZFQTJCRURENjdBRkIxQjgy Mzg4RTVFQjEwHhcNMjUxMDE4MjIyMjU3WhcNMjUxMDI1MjIyMjU3WjAYMRYwFAYD VQQDEw02OGY0MTM0MS02YTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwRN+EUNvNMvFl/6VkMhUserrIKCTZ8FlYsc7TcdwlAyOXAekgu6oAchsc7w7 CS5I0v54fmH58V+uRoPgK7IfAmkRTSrQGzxGhUTdgGfHhNbQhz0rP4UePu8OCDf0 FrW+mkA9E7NvC+iM+oJZtKJ0TthGMJR/96tTRtDFrryHgSHPnJzHMZjLk/6szbtd Ac45t05U691ov3L0wBztCaAPn6RU1sHeLMrThKvWLwZ6AE6tvF8iAGcjL/DyYxSG Z/9Ur5X1lv6jDp7Bp3nsjUHLqIn1ST3LRPhTE+vd2VFPe0i98qarFvhbPjYFBaF+ 2tlYh9kq81J4+UEtcEAnH2Im0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBi1uVmS 0bBVNawmUJvmiqwrRvP2MB8GA1UdIwQYMBaAFGh76yd6BZ3v6ivt1nr7G4I4jl6x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUZBRC9BNEQ3ODk5RTA4 NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5lX3FLLTNXZXZzYmdqaU9Y ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIdnJKM29GbmVfcUstM1dldnNiZ2ppT1hyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUZBRC9BNEQ3ODk5RTA4NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5l X3FLLTNXZXZzYmdqaU9YckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv2aNzA1S0alRC3frP51DLgwYGY5BST7WguNTh4+0a4Cp6Z5al8dbv wNM3vsJIhjD8tqQzWa36nEsSggzUp95Brljdf+bepyOSfePrmn3Z7Hpq9CE3MVPS k2C3dLUa6vqL6yDWdMrmVDUXuXFxnkmDtWcnkl4zstQstLzKwFHkxlX3jN6kj6KG G2SNPBgPjeXAGZ8hKVuvCmhyPuFtEDGoUN4poK768NbakpxE8x0ledSZe3s/YEkw i41gRNlSj2ydD1rJWGdXBfFvDya1tns6XvPjwdw799Ha0aAyjEovFJYhYdlojFqy TUzFkkjWr0ptdb21us3h7I1GEKM/M0rE -----END CERTIFICATE-----Generated at Mon Oct 20 12:11:21 2025 by rpki-client