$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: gaBBhCDnO+HcGApscwAJRfbsbIQAUpKceDlYeNgrGFI= Subject key identifier: 9A:10:82:F4:8F:B0:D9:C9:9B:4F:02:23:DC:59:6A:D1:09:8E:CD:97 Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0C88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0C70 Signing time: Sat 18 Oct 2025 19:18:21 +0000 Manifest this update: Sat 18 Oct 2025 19:18:20 +0000 Manifest next update: Sat 25 Oct 2025 19:18:20 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: qlNCG1ZWNqmo8t2nRBherT4ce6FXPREjhwcXbgTYgrI=) 2: 2D0509BC078511ED87041524C4F9AE02.roa (hash: OhD3vjT84Ykw6Uqb+DhKbwC3X7GSCVv4M4crx5/Gxaw=) 3: 20F1E6906B8C11F0A612561BC4F9AE02.roa (hash: sNHYoYiLZid3XR7DYoExAvwJFzWoz5zJp9zNVyLdkkQ=) 4: 2BA0624C078511ED87041524C4F9AE02.roa (hash: OgDpE/kLbNvrNHxmlaFE7wjr3tmLX0c3S1JS4qIXLMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3208 (0xc88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Oct 18 19:18:20 2025 GMT Not After : Oct 25 19:18:20 2025 GMT Subject: CN=68f3e7fd-ef2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b3:b9:60:d8:63:6b:18:61:46:a8:2b:26:f8: 9e:98:b7:93:8a:e2:03:80:89:5b:c5:88:3b:cc:31: 68:39:5d:7a:08:a3:d5:59:41:a1:09:4d:ac:fd:ea: 08:3e:81:a1:c4:58:d2:00:53:f4:f1:ba:58:92:92: 95:94:8f:52:c9:e6:b2:5a:b9:b6:72:2a:75:0f:93: 17:22:9e:9b:a5:9a:16:9f:1c:b3:9b:db:46:8b:8b: bf:e1:53:5c:0a:00:86:ca:63:6d:58:04:35:ee:a3: 09:0e:e6:c5:29:d5:2f:cb:93:67:98:ad:c5:26:ad: 87:53:e9:75:86:23:19:ca:72:c1:29:f5:fd:ee:0c: 89:d3:97:1c:69:5f:21:3e:c8:9a:5d:c8:92:48:31: 5e:4c:fe:4f:8f:f7:f2:08:b0:be:7a:32:38:c6:8e: d5:ca:cb:c4:39:0f:9d:ea:0f:74:78:db:e3:88:c1: d9:1f:46:ef:e6:1b:39:10:15:33:13:07:fc:1f:4b: 9e:a4:0d:75:9d:bd:d0:e8:71:e3:70:3d:bb:7f:24: e4:6b:3f:4d:34:ee:06:4f:4f:89:69:f9:6a:a1:03: d9:33:64:00:48:3e:da:77:17:59:15:a9:a2:44:4c: 21:06:7c:3c:a2:01:99:c0:dc:ca:7c:7c:9b:22:ed: ca:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:10:82:F4:8F:B0:D9:C9:9B:4F:02:23:DC:59:6A:D1:09:8E:CD:97 X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:c5:95:81:51:05:e5:20:49:da:ea:2c:d4:d0:c9:c0:48:3c: 4e:4f:26:a6:bc:c6:a3:8d:2e:6b:af:02:94:d4:23:6b:83:80: 09:f5:50:5c:03:f3:2a:25:94:3c:9f:c1:8b:f5:1a:d7:07:40: 1f:09:00:c4:f5:66:13:30:91:54:87:a6:11:f8:74:be:dc:f2: 4d:c5:96:2f:55:50:26:b4:95:c0:b3:20:79:19:26:6a:8f:f2: e9:b0:6e:ff:ff:a7:c6:59:9e:f5:7b:b2:8c:f4:ab:cc:9c:96: 03:fb:0d:3e:1c:9f:08:97:33:3b:cd:0a:a2:4f:56:01:1f:e6: 0f:d1:11:32:70:8c:84:27:3e:f5:df:04:eb:63:6c:6a:50:e4: 2b:a4:97:61:7e:9e:6f:e7:a9:0a:2d:e2:49:92:fc:94:03:7c: 06:cb:3e:35:a8:85:20:77:24:75:58:3a:d6:e1:b6:12:11:b9: d5:df:aa:9c:c5:c9:38:9a:fd:ad:8d:a4:5d:b8:a6:3b:96:42: c3:b4:67:b0:15:dd:8f:d3:4a:c0:d7:40:fd:42:f5:c5:de:2a: 68:15:5f:4e:9f:d9:e5:9f:59:46:f9:6b:35:d0:d2:5b:29:1e: be:b1:73:69:8b:b7:55:c2:63:98:23:f3:e6:3e:eb:38:a1:c4: b5:e2:19:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjUxMDE4MTkxODIwWhcNMjUxMDI1MTkxODIwWjAYMRYwFAYD VQQDEw02OGYzZTdmZC1lZjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbO5YNhjaxhhRqgrJviemLeTiuIDgIlbxYg7zDFoOV16CKPVWUGhCU2s/eoI PoGhxFjSAFP08bpYkpKVlI9SyeayWrm2cip1D5MXIp6bpZoWnxyzm9tGi4u/4VNc CgCGymNtWAQ17qMJDubFKdUvy5NnmK3FJq2HU+l1hiMZynLBKfX97gyJ05ccaV8h PsiaXciSSDFeTP5Pj/fyCLC+ejI4xo7VysvEOQ+d6g90eNvjiMHZH0bv5hs5EBUz Ewf8H0uepA11nb3Q6HHjcD27fyTkaz9NNO4GT0+JaflqoQPZM2QASD7adxdZFami REwhBnw8ogGZwNzKfHybIu3KBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJoQgvSP sNnJm08CI9xZatEJjs2XMB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUxZWBUQXlIEna6izU0MnASDxOTyamvMajjS5rrwKU1CNrg4AJ9VBc A/MqJZQ8n8GL9RrXB0AfCQDE9WYTMJFUh6YR+HS+3PJNxZYvVVAmtJXAsyB5GSZq j/LpsG7//6fGWZ71e7KM9KvMnJYD+w0+HJ8IlzM7zQqiT1YBH+YP0REycIyEJz71 3wTrY2xqUOQrpJdhfp5v56kKLeJJkvyUA3wGyz41qIUgdyR1WDrW4bYSEbnV36qc xck4mv2tjaRduKY7lkLDtGewFd2P00rA10D9QvXF3ipoFV9On9nln1lG+Ws10NJb KR6+sXNpi7dVwmOYI/PmPus4ocS14hmq -----END CERTIFICATE-----Generated at Mon Oct 20 01:48:21 2025 by rpki-client