$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft File: 1AsQwSJMYeDTGML8YAOTeOz3LQA.mft (raw, json) Hash identifier: N+aZEnhXsJ6FY1ULzfmAhEsARj+2JMxOorE8A5Oz8EI= Subject key identifier: B0:0A:BD:5E:A2:04:E5:F7:E3:0A:08:93:D8:D9:72:04:55:39:AF:08 Authority key identifier: D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 Certificate issuer: /CN=A9167C20/serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Certificate serial: 0B1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft Manifest number: 0B12 Signing time: Sat 18 Oct 2025 20:14:11 +0000 Manifest this update: Sat 18 Oct 2025 20:14:10 +0000 Manifest next update: Sat 25 Oct 2025 20:14:10 +0000 Files and hashes: 1: 1AsQwSJMYeDTGML8YAOTeOz3LQA.crl (hash: 2ud7loFpF5zK3oiirpVwJGIz5/jA1MDMg/sALuaTXGY=) 2: AD35C0044EA511EAAB9DBE7DC4F9AE02.roa (hash: vRrkQ11gFoedPJsbqh7nQv1lr6X8LYa0tpYVg51dxDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:14:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2842 (0xb1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C20, serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Validity Not Before: Oct 18 20:14:10 2025 GMT Not After : Oct 25 20:14:10 2025 GMT Subject: CN=68f3f513-7063 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:30:a2:82:00:35:b7:5f:92:49:8b:6f:f3:52: 51:8b:4b:df:38:b0:ab:df:f7:c1:10:41:53:6a:4b: 5d:52:db:58:dc:39:9f:e7:14:2b:d0:03:4a:c1:f6: 7c:f7:44:62:46:da:37:32:21:b8:f0:35:ba:41:1c: 8d:6b:97:a1:fe:4a:9f:59:b4:be:ab:0f:ce:32:fe: 26:73:e9:cb:d0:16:47:a1:b8:c1:34:40:ff:c7:53: 02:5f:76:1c:10:ca:d6:9a:e7:95:3f:ad:ef:c2:23: 7c:1c:b5:29:c9:49:86:3a:56:03:2c:ab:cc:7e:86: 67:26:46:72:d9:f7:dd:db:d1:05:91:5c:4b:78:98: c1:1d:35:0e:e3:a7:ce:22:30:48:52:b8:43:4d:ed: bc:37:8e:fe:a5:37:34:ce:f4:22:b5:d6:ca:03:f0: 0f:9e:22:03:fe:bb:fe:a5:6c:1e:6e:ee:4b:f2:8c: 25:a8:4a:bd:77:b3:44:81:36:29:04:3a:2c:d2:62: 98:03:e7:32:a3:5c:0e:c0:ab:08:9f:f2:e9:09:61: 12:eb:38:c0:69:47:4c:e4:c3:08:4a:1d:72:f3:e5: 17:83:1f:84:8a:7b:33:4e:e5:b3:56:9d:39:f4:12: d4:d8:01:09:c9:31:04:0d:f9:0e:ee:d8:40:ca:5d: ec:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:0A:BD:5E:A2:04:E5:F7:E3:0A:08:93:D8:D9:72:04:55:39:AF:08 X509v3 Authority Key Identifier: keyid:D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:6a:eb:c5:a1:5b:f8:71:ec:9d:1f:36:ae:78:cd:81:e1:b0: e8:0c:ca:6e:f8:1f:31:f6:32:10:39:64:a7:3b:f1:49:7c:4c: d0:45:af:b6:3f:31:fe:ba:78:24:86:0d:4c:49:ec:ce:d8:2f: 1c:a2:27:ed:93:2f:e9:bf:9a:9b:69:e9:f1:05:b1:3b:d8:86: 46:91:f7:23:fa:f6:89:22:12:7d:ec:3f:38:ac:43:08:8d:86: 29:73:54:4f:55:92:6d:5b:f5:99:0c:53:3f:43:5a:17:f4:a3: a7:f8:80:c4:0e:1d:f7:85:54:6c:c7:83:40:48:9f:2e:cc:f4: 77:87:fd:16:ed:ea:87:2c:5a:e8:bc:30:40:f1:b8:8a:a1:81: 71:c5:59:43:4d:1f:46:ef:19:76:42:ec:07:71:23:2e:e8:64: 52:70:93:01:a6:d3:8e:b9:16:e6:44:53:de:36:5f:81:ba:bc: fc:ac:7e:cb:f3:0f:dd:44:ec:3b:fc:9b:ad:89:d6:68:86:19: 7d:62:a9:c2:2c:d0:51:8d:ce:5b:52:1b:46:3a:a8:f3:8c:ea: 62:dd:85:c2:6e:b9:72:67:8b:f1:e1:dd:6d:ea:b2:64:6f:b2: 68:37:90:c3:f2:d9:73:14:0b:6a:da:f1:ba:da:49:57:6c:be: be:76:90:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDMjAxMTAvBgNVBAUTKEQ0MEIxMEMxMjI0QzYxRTBEMzE4QzJGQzYwMDM5Mzc4 RUNGNzJEMDAwHhcNMjUxMDE4MjAxNDEwWhcNMjUxMDI1MjAxNDEwWjAYMRYwFAYD VQQDEw02OGYzZjUxMy03MDYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDCiggA1t1+SSYtv81JRi0vfOLCr3/fBEEFTaktdUttY3Dmf5xQr0ANKwfZ8 90RiRto3MiG48DW6QRyNa5eh/kqfWbS+qw/OMv4mc+nL0BZHobjBNED/x1MCX3Yc EMrWmueVP63vwiN8HLUpyUmGOlYDLKvMfoZnJkZy2ffd29EFkVxLeJjBHTUO46fO IjBIUrhDTe28N47+pTc0zvQitdbKA/APniID/rv+pWwebu5L8owlqEq9d7NEgTYp BDos0mKYA+cyo1wOwKsIn/LpCWES6zjAaUdM5MMISh1y8+UXgx+EinszTuWzVp05 9BLU2AEJyTEEDfkO7thAyl3sSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLAKvV6i BOX34woIk9jZcgRVOa8IMB8GA1UdIwQYMBaAFNQLEMEiTGHg0xjC/GADk3js9y0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0MyMC84NjU3MUMxMDRF QTIxMUVBODRDMDg4NzRDNEY5QUUwMi8xQXNRd1NKTVllRFRHTUw4WUFPVGVPejNM UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBc1F3U0pNWWVEVEdNTDhZQU9UZU96M0xRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0MyMC84NjU3MUMxMDRFQTIxMUVBODRDMDg4NzRDNEY5QUUwMi8xQXNRd1NKTVll RFRHTUw4WUFPVGVPejNMUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQauvFoVv4ceydHzaueM2B4bDoDMpu+B8x9jIQOWSnO/FJfEzQRa+2 PzH+ungkhg1MSezO2C8coiftky/pv5qbaenxBbE72IZGkfcj+vaJIhJ97D84rEMI jYYpc1RPVZJtW/WZDFM/Q1oX9KOn+IDEDh33hVRsx4NASJ8uzPR3h/0W7eqHLFro vDBA8biKoYFxxVlDTR9G7xl2QuwHcSMu6GRScJMBptOOuRbmRFPeNl+Burz8rH7L 8w/dROw7/JutidZohhl9YqnCLNBRjc5bUhtGOqjzjOpi3YXCbrlyZ4vx4d1t6rJk b7JoN5DD8tlzFAtq2vG62klXbL6+dpAS -----END CERTIFICATE-----Generated at Mon Oct 20 08:26:44 2025 by rpki-client