$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft File: sDQcND_hUl92ySmWEMoOeOk-h8M.mft (raw, json) Hash identifier: YETv2ufYEWZuUHvuSqyrygdJVQ5zEs0tsgGFzJzrrAY= Subject key identifier: 48:9E:64:72:DD:12:32:5B:D3:D5:D4:03:48:C6:FA:1A:7D:6C:6C:D9 Authority key identifier: B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3 Certificate issuer: /CN=A9167FBA/serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft Manifest number: 6F Signing time: Sun 19 Oct 2025 10:15:57 +0000 Manifest this update: Sun 19 Oct 2025 10:15:57 +0000 Manifest next update: Sun 26 Oct 2025 10:15:57 +0000 Files and hashes: 1: sDQcND_hUl92ySmWEMoOeOk-h8M.crl (hash: iu85tW1lEp/98X/KwXrZAXJZV5EeP8MVhRTrKsVQ3Ag=) 2: F4B92E1C05A111F082D17325C4F9AE02.roa (hash: kGx1CJpE3cHBsf4M7cgjGHBrxKAD0rzUUv2UM3HRfTY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:15:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA, serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3 Validity Not Before: Oct 19 10:15:57 2025 GMT Not After : Oct 26 10:15:57 2025 GMT Subject: CN=68f4ba5d-928e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:7f:e0:be:60:b1:14:d9:bb:de:41:ca:94:16: a4:8f:ff:57:f4:33:60:89:60:8f:6a:22:be:ee:44: 20:1c:cf:ea:35:ce:38:23:42:21:02:0d:ea:dc:77: 7e:c1:a3:f2:8f:de:5d:84:1d:e3:b6:f5:2d:2e:5d: be:17:80:2b:ef:f8:e4:0a:89:1d:70:4d:0a:a4:d8: 6d:c8:a3:b6:a0:2d:1d:a1:d3:48:e8:6c:e3:53:8d: c3:c7:5a:2e:fd:13:e7:b6:65:8c:34:67:3e:5d:4d: 4d:b3:b4:36:d8:1a:43:41:38:5e:bc:6e:5d:ca:7b: e3:63:b0:9b:f1:ba:07:b8:a1:16:d2:fa:36:e3:76: ac:b9:84:87:4b:b0:59:17:02:47:31:d8:be:e9:8d: 2c:94:40:bf:f0:2e:f0:30:2a:49:89:6f:60:ab:e2: 8a:93:33:aa:f2:fb:61:17:b5:7e:ff:9e:e0:96:5c: d8:95:b0:c3:ae:3b:53:83:2d:81:fe:ee:b6:e9:3d: fe:a6:16:21:af:8e:34:74:40:d0:aa:7c:58:d8:68: 3a:e5:9b:18:4d:4d:87:6c:eb:b7:44:3a:99:f3:43: 96:66:48:41:41:ef:be:85:1e:7e:15:5d:4a:33:e5: e9:32:4c:d2:b8:50:81:a1:cf:bd:4e:d7:7a:39:25: 1c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:9E:64:72:DD:12:32:5B:D3:D5:D4:03:48:C6:FA:1A:7D:6C:6C:D9 X509v3 Authority Key Identifier: keyid:B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:99:67:79:5d:48:3c:b7:2a:d9:37:9c:55:42:e2:9d:6a:7c: 17:06:50:5d:e5:b3:e1:eb:fc:b4:2a:d0:5e:fb:79:fc:1f:b3: ed:a9:fa:6f:68:2e:53:20:d9:0b:89:5c:71:d0:48:e5:b9:f3: ec:4c:70:75:04:e6:31:e9:1e:14:28:30:15:d2:42:92:5e:e0: d9:d0:7f:66:a4:8e:86:49:48:76:b3:f0:93:96:8e:36:fb:47: e5:7e:42:8e:ad:6d:2b:fa:b2:d5:fb:41:b9:09:d8:f7:7b:fa: 50:44:1f:4d:7f:ca:48:ab:cf:f2:05:dc:d2:a7:9e:f2:68:d4: d8:cc:80:7e:ba:f7:2e:4d:88:3b:7c:d3:43:bf:b4:0b:47:ba: 76:85:ee:36:ec:da:7c:91:4c:3a:94:c2:1a:fa:92:f0:c3:0b: e6:80:d1:18:29:7d:3e:9c:3e:d0:db:76:e4:50:7e:3b:d4:1b: 0d:26:b9:99:be:72:55:e2:db:82:61:92:97:fb:1a:72:a3:cb: 8c:9a:3b:73:12:6a:c6:13:e7:7b:51:91:9e:c1:38:e0:87:a4: c4:dc:3b:9c:42:21:81:c0:1c:ec:0b:9a:05:04:43:79:af:89: 73:65:0e:b1:d7:b2:cc:43:6d:d8:bd:78:51:e4:d5:12:5f:2f: 7c:8d:db:c6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0ZCQTExMC8GA1UEBRMoQjAzNDFDMzQzRkUxNTI1Rjc2QzkyOTk2MTBDQTBFNzhF OTNFODdDMzAeFw0yNTEwMTkxMDE1NTdaFw0yNTEwMjYxMDE1NTdaMBgxFjAUBgNV BAMTDTY4ZjRiYTVkLTkyOGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgf+C+YLEU2bveQcqUFqSP/1f0M2CJYI9qIr7uRCAcz+o1zjgjQiECDercd37B o/KP3l2EHeO29S0uXb4XgCvv+OQKiR1wTQqk2G3Io7agLR2h00jobONTjcPHWi79 E+e2ZYw0Zz5dTU2ztDbYGkNBOF68bl3Ke+NjsJvxuge4oRbS+jbjdqy5hIdLsFkX Akcx2L7pjSyUQL/wLvAwKkmJb2Cr4oqTM6ry+2EXtX7/nuCWXNiVsMOuO1ODLYH+ 7rbpPf6mFiGvjjR0QNCqfFjYaDrlmxhNTYds67dEOpnzQ5ZmSEFB776FHn4VXUoz 5ekyTNK4UIGhz71O13o5JRwfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSJ5kct0S MlvT1dQDSMb6Gn1sbNkwHwYDVR0jBBgwFoAUsDQcND/hUl92ySmWEMoOeOk+h8Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3RkJBLzQyRkMzRDhBMDQ4 RjExRjA4NzJFODU0N0M0RjlBRTAyL3NEUWNORF9oVWw5MnlTbVdFTW9PZU9rLWg4 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvc0RRY05EX2hVbDkyeVNtV0VNb09lT2staDhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3 RkJBLzQyRkMzRDhBMDQ4RjExRjA4NzJFODU0N0M0RjlBRTAyL3NEUWNORF9oVWw5 MnlTbVdFTW9PZU9rLWg4TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIeZZ3ldSDy3Ktk3nFVC4p1qfBcGUF3ls+Hr/LQq0F77efwfs+2p+m9o LlMg2QuJXHHQSOW58+xMcHUE5jHpHhQoMBXSQpJe4NnQf2akjoZJSHaz8JOWjjb7 R+V+Qo6tbSv6stX7QbkJ2Pd7+lBEH01/ykirz/IF3NKnnvJo1NjMgH669y5NiDt8 00O/tAtHunaF7jbs2nyRTDqUwhr6kvDDC+aA0RgpfT6cPtDbduRQfjvUGw0muZm+ clXi24Jhkpf7GnKjy4yaO3MSasYT53tRkZ7BOOCHpMTcO5xCIYHAHOwLmgUEQ3mv iXNlDrHXssxDbdi9eFHk1RJfL3yN28Y= -----END CERTIFICATE-----Generated at Tue Oct 21 02:15:31 2025 by rpki-client