$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft File: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft (raw, json) Hash identifier: B8lAFQep/Aa3Ed4QBFzO1bvagREkF9X3cck0lSyUi90= Subject key identifier: 08:CE:A2:B0:54:E4:B6:91:FF:94:C5:13:4B:BB:94:75:4C:4D:C8:D9 Authority key identifier: FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 Certificate issuer: /CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Certificate serial: 0104 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft Manifest number: 0102 Signing time: Sun 19 Oct 2025 07:58:46 +0000 Manifest this update: Sun 19 Oct 2025 07:58:44 +0000 Manifest next update: Sun 26 Oct 2025 07:58:44 +0000 Files and hashes: 1: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl (hash: wbsq3pjoVitB5dGEgf8eSzmCyrmyy0RCJQcJlbI0yWs=) 2: D16A1B5C225711EF975F6747C4F9AE02.roa (hash: Oq3D4ezYunPFGiMcUlxoGy2jtufjcwOjdtjOKgqjtFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:58:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5, serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Validity Not Before: Oct 19 07:58:44 2025 GMT Not After : Oct 26 07:58:44 2025 GMT Subject: CN=68f49a35-97c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6b:5f:43:fa:d0:92:c0:29:61:29:b9:f8:b6: 88:eb:b3:10:ff:16:b5:bd:f4:2f:d6:ad:79:80:c5: ea:fb:75:fc:27:bb:8e:79:05:90:15:3f:e0:79:a5: d0:81:38:0e:39:49:50:10:6c:b9:44:5a:e0:9c:35: 83:39:92:bc:05:11:5f:56:59:9c:3c:32:64:ba:db: 85:e4:1c:65:67:80:46:00:72:72:c5:bc:00:1b:89: 1a:85:20:52:b3:e2:7c:46:7d:01:af:d9:fd:45:38: 29:29:3a:70:04:3a:b4:19:cf:c6:15:cd:cf:15:17: 7a:de:56:ab:31:a0:e4:d8:28:c5:a0:42:c8:ec:f5: b0:89:81:6f:14:ba:d7:a0:fc:02:64:40:b1:f2:9d: 6b:6f:83:9f:2d:2d:92:1a:e2:7f:f4:c6:cc:cf:c1: ab:12:95:cd:83:ad:5c:8b:2c:f7:b6:2b:bf:3b:87: 1c:54:23:00:15:fb:b9:61:92:ca:13:73:e1:0e:0c: 98:20:b5:c1:c0:67:f8:77:dd:d7:c0:e7:28:cc:dc: d1:f5:fc:5b:d7:c0:fa:f6:eb:0e:15:df:1a:6c:a4: 90:10:67:65:4a:69:ad:1b:8c:0c:bb:ff:af:30:48: ab:fe:5c:99:9c:bc:94:a6:c2:c0:f6:c1:f3:df:06: b3:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:CE:A2:B0:54:E4:B6:91:FF:94:C5:13:4B:BB:94:75:4C:4D:C8:D9 X509v3 Authority Key Identifier: keyid:FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:46:c8:e0:47:32:5f:27:5f:3b:01:98:56:f3:97:3e:02:96: 5d:38:c5:8d:1f:05:24:80:27:91:35:1c:fd:08:20:8c:60:bc: 4a:65:74:35:e4:6a:db:a2:6d:4d:02:34:93:0f:80:be:5a:0e: 42:be:80:bf:3c:79:1c:12:22:d9:36:21:92:18:76:20:33:ba: 80:ac:40:88:8d:8e:4a:28:a7:04:31:3e:7c:03:da:2b:67:3c: 23:7b:38:28:e8:ff:26:5b:96:c3:ea:e7:f9:df:2a:53:ac:a3: e6:88:22:90:91:76:fb:a2:6f:b0:24:c6:b6:4d:cc:10:4a:a8: d3:b4:8f:95:ee:b4:fa:5c:c1:a7:86:2f:9e:6a:6f:7b:46:f3: 65:ef:39:c4:5c:de:c1:6c:18:e7:ea:05:60:24:0b:52:18:d8: df:08:32:32:ec:07:fe:cd:83:cb:4f:b1:2a:6d:db:e8:64:82: a7:44:97:7b:8a:e1:8d:54:7f:10:76:05:d4:7e:4b:75:65:c5: 45:4a:d5:68:e3:da:65:85:11:41:2a:9f:d7:95:c1:49:e1:97: c7:f0:c8:e5:e2:1e:5e:ca:ce:9e:a4:50:d2:f5:e9:6a:56:d6: 0f:c8:e6:dc:63:74:81:f3:43:fb:68:40:88:a6:1e:c0:80:e6: 59:33:f1:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKEZBODExRjUyRTUxOTVBNDI5RDcwNkQxOUMwMDMyMzdD MzIwOUFBMzcwHhcNMjUxMDE5MDc1ODQ0WhcNMjUxMDI2MDc1ODQ0WjAYMRYwFAYD VQQDEw02OGY0OWEzNS05N2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmtfQ/rQksApYSm5+LaI67MQ/xa1vfQv1q15gMXq+3X8J7uOeQWQFT/geaXQ gTgOOUlQEGy5RFrgnDWDOZK8BRFfVlmcPDJkutuF5BxlZ4BGAHJyxbwAG4kahSBS s+J8Rn0Br9n9RTgpKTpwBDq0Gc/GFc3PFRd63larMaDk2CjFoELI7PWwiYFvFLrX oPwCZECx8p1rb4OfLS2SGuJ/9MbMz8GrEpXNg61ciyz3tiu/O4ccVCMAFfu5YZLK E3PhDgyYILXBwGf4d93XwOcozNzR9fxb18D69usOFd8abKSQEGdlSmmtG4wMu/+v MEir/lyZnLyUpsLA9sHz3wazvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAjOorBU 5LaR/5TFE0u7lHVMTcjZMB8GA1UdIwQYMBaAFPqBH1LlGVpCnXBtGcADI3wyCao3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9GQTM3QzYzRTIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldrS2RjRzBad0FNamZESUpx amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vRWZVdVVaV2tLZGNHMFp3QU1qZkRJSnFqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9GQTM3QzYzRTIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldr S2RjRzBad0FNamZESUpxamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQRsjgRzJfJ187AZhW85c+ApZdOMWNHwUkgCeRNRz9CCCMYLxKZXQ1 5Grbom1NAjSTD4C+Wg5CvoC/PHkcEiLZNiGSGHYgM7qArECIjY5KKKcEMT58A9or Zzwjezgo6P8mW5bD6uf53ypTrKPmiCKQkXb7om+wJMa2TcwQSqjTtI+V7rT6XMGn hi+eam97RvNl7znEXN7BbBjn6gVgJAtSGNjfCDIy7Af+zYPLT7EqbdvoZIKnRJd7 iuGNVH8QdgXUfkt1ZcVFStVo49plhRFBKp/XlcFJ4ZfH8Mjl4h5eys6epFDS9elq VtYPyObcY3SB80P7aECIph7AgOZZM/Em -----END CERTIFICATE-----Generated at Mon Oct 20 13:50:19 2025 by rpki-client