$ rpki-client -vvf rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft File: fd08hfmnH2JfzMEMqDHld3CbTz8.mft (raw, json) Hash identifier: xoD+0QB98TLmQLx8VEorTvLEq6N3xTHcZd1MOF39zcU= Subject key identifier: B1:65:52:BE:F5:4C:8B:5F:35:CE:CC:3D:55:F7:64:F5:B3:DC:35:A5 Authority key identifier: 7D:DD:3C:85:F9:A7:1F:62:5F:CC:C1:0C:A8:31:E5:77:70:9B:4F:3F Certificate issuer: /CN=A9167B41/serialNumber=7DDD3C85F9A71F625FCCC10CA831E577709B4F3F Certificate serial: 033B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd08hfmnH2JfzMEMqDHld3CbTz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft Manifest number: 0337 Signing time: Sun 19 Oct 2025 03:07:24 +0000 Manifest this update: Sun 19 Oct 2025 03:07:23 +0000 Manifest next update: Sun 26 Oct 2025 03:07:23 +0000 Files and hashes: 1: fd08hfmnH2JfzMEMqDHld3CbTz8.crl (hash: 48b/7YoJ7FB+O7Gz1Wi3dYxTc1pKeYh/vGwYeDnUQuo=) 2: D24B4D42DF3E11EC83CCFE1EC4F9AE02.roa (hash: Cq6mdfvGMSMUVVy722vXaVlEzZ5zjpH7LRI1e0MUF1A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.crl rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd08hfmnH2JfzMEMqDHld3CbTz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:07:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 827 (0x33b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167B41, serialNumber=7DDD3C85F9A71F625FCCC10CA831E577709B4F3F Validity Not Before: Oct 19 03:07:23 2025 GMT Not After : Oct 26 03:07:23 2025 GMT Subject: CN=68f455eb-f8fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:21:a0:97:1c:9b:61:de:00:61:1f:dd:66:95: d2:74:37:8a:74:fe:7b:4a:b5:9b:bf:8d:c1:91:12: 20:c0:d9:b7:37:25:22:2e:be:bd:18:d5:3d:e3:a0: e1:ac:dd:cb:85:12:da:15:7d:10:da:26:05:ee:31: d2:f6:c7:fd:fb:6f:4e:77:6c:21:20:0b:97:69:8c: 5d:a2:92:92:83:49:1d:27:cd:66:97:89:cb:75:ae: cc:86:5e:79:91:23:9d:ad:2c:7d:c7:bf:f7:e2:e0: 5b:15:9c:46:8a:6a:e5:a3:3d:ba:b1:78:76:8e:85: 92:11:0c:80:ce:dd:7e:e5:bd:bf:40:32:4b:f9:43: 6d:1d:2e:9c:63:a1:a2:b1:fa:e1:5c:a3:3d:92:41: 55:67:f8:b2:c3:23:d3:87:f2:8b:a5:ef:34:6b:98: 34:20:65:6f:5c:1c:64:01:b5:01:98:e8:78:a8:21: 2e:d9:af:ec:63:ad:0f:b9:60:0a:e9:62:6d:53:7a: d1:d1:4d:c0:39:ba:13:6c:da:7c:44:ca:86:00:9e: 2a:1a:15:2b:cd:23:4a:67:9c:81:e7:aa:78:a8:72: d3:3d:c5:45:d8:0e:ab:9a:18:ab:20:1f:cf:09:db: 8d:88:60:af:11:ea:cd:95:7c:f4:00:5c:08:23:03: 0d:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:65:52:BE:F5:4C:8B:5F:35:CE:CC:3D:55:F7:64:F5:B3:DC:35:A5 X509v3 Authority Key Identifier: keyid:7D:DD:3C:85:F9:A7:1F:62:5F:CC:C1:0C:A8:31:E5:77:70:9B:4F:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd08hfmnH2JfzMEMqDHld3CbTz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:4a:cf:50:b7:e3:df:d6:3c:43:02:5d:67:33:d1:82:76:a4: 81:dd:3f:0f:92:24:fc:1f:19:5c:59:23:ca:e3:05:df:44:e5: ca:66:7f:da:0c:85:b9:32:15:a8:59:71:08:b6:92:2d:0f:9a: 0e:6b:05:5f:f7:44:c7:85:97:f6:a7:3a:78:6c:58:94:84:69: af:77:de:d1:7b:b4:d6:03:a9:f3:ee:85:d1:86:05:9b:c2:68: 26:49:0e:93:53:f7:c5:0d:eb:f6:98:66:1a:8b:93:6c:3b:db: c9:95:4f:b2:8f:92:37:c0:91:b2:85:c0:36:4e:b5:d5:ac:c5: da:35:c6:0d:ee:cc:89:9c:8f:f8:c9:fd:07:f0:f0:bd:32:6b: 8e:ab:78:a8:ef:95:0d:b8:03:70:6a:de:8e:f2:64:2d:55:cf: d8:6a:33:27:a5:c0:44:20:c7:72:4a:57:7d:f5:7f:5b:2c:39: a4:e6:c4:0e:a8:5d:5a:9d:40:80:6e:70:7e:28:4d:f6:f8:5b: df:79:bd:58:fb:6f:47:f7:71:cf:ef:30:65:ea:71:59:12:ce: 00:22:9f:a9:8e:24:82:da:47:90:d4:67:c6:1d:d6:96:c1:8a: 06:58:2e:45:00:73:ef:b3:30:ac:99:4b:6d:d9:7d:be:35:97: 58:a1:9d:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdCNDExMTAvBgNVBAUTKDdEREQzQzg1RjlBNzFGNjI1RkNDQzEwQ0E4MzFFNTc3 NzA5QjRGM0YwHhcNMjUxMDE5MDMwNzIzWhcNMjUxMDI2MDMwNzIzWjAYMRYwFAYD VQQDEw02OGY0NTVlYi1mOGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1SGglxybYd4AYR/dZpXSdDeKdP57SrWbv43BkRIgwNm3NyUiLr69GNU946Dh rN3LhRLaFX0Q2iYF7jHS9sf9+29Od2whIAuXaYxdopKSg0kdJ81ml4nLda7Mhl55 kSOdrSx9x7/34uBbFZxGimrloz26sXh2joWSEQyAzt1+5b2/QDJL+UNtHS6cY6Gi sfrhXKM9kkFVZ/iywyPTh/KLpe80a5g0IGVvXBxkAbUBmOh4qCEu2a/sY60PuWAK 6WJtU3rR0U3AOboTbNp8RMqGAJ4qGhUrzSNKZ5yB56p4qHLTPcVF2A6rmhirIB/P CduNiGCvEerNlXz0AFwIIwMNzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFlUr71 TItfNc7MPVX3ZPWz3DWlMB8GA1UdIwQYMBaAFH3dPIX5px9iX8zBDKgx5Xdwm08/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0I0MS9FNzkwRjlBQURG MzgxMUVDQkM4QzlBN0ZDNEY5QUUwMi9mZDA4aGZtbkgySmZ6TUVNcURIbGQzQ2JU ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZkMDhoZm1uSDJKZnpNRU1xREhsZDNDYlR6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0I0MS9FNzkwRjlBQURGMzgxMUVDQkM4QzlBN0ZDNEY5QUUwMi9mZDA4aGZtbkgy SmZ6TUVNcURIbGQzQ2JUejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeSs9Qt+Pf1jxDAl1nM9GCdqSB3T8PkiT8HxlcWSPK4wXfROXKZn/a DIW5MhWoWXEItpItD5oOawVf90THhZf2pzp4bFiUhGmvd97Re7TWA6nz7oXRhgWb wmgmSQ6TU/fFDev2mGYai5NsO9vJlU+yj5I3wJGyhcA2TrXVrMXaNcYN7syJnI/4 yf0H8PC9MmuOq3io75UNuANwat6O8mQtVc/YajMnpcBEIMdySld99X9bLDmk5sQO qF1anUCAbnB+KE32+Fvfeb1Y+29H93HP7zBl6nFZEs4AIp+pjiSC2keQ1GfGHdaW wYoGWC5FAHPvszCsmUtt2X2+NZdYoZ1Z -----END CERTIFICATE-----Generated at Mon Oct 20 01:48:15 2025 by rpki-client