$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft File: v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft (raw, json) Hash identifier: 1fkjLLrTApmezPsdoHOK39//v82v1gugdYSMKy8WK7A= Subject key identifier: 51:6F:9F:30:CC:CF:36:BB:D8:D8:B5:51:3C:29:F4:52:41:3C:E2:DC Authority key identifier: BF:AF:23:63:75:77:29:EE:05:AB:21:B7:1D:20:5A:B4:18:E1:B8:34 Certificate issuer: /CN=A9167FF5/serialNumber=BFAF2363757729EE05AB21B71D205AB418E1B834 Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft Manifest number: 01E7 Signing time: Sun 19 Oct 2025 05:00:14 +0000 Manifest this update: Sun 19 Oct 2025 05:00:14 +0000 Manifest next update: Sun 26 Oct 2025 05:00:14 +0000 Files and hashes: 1: v68jY3V3Ke4FqyG3HSBatBjhuDQ.crl (hash: fghobp5J5pvdzW7vTl/6a6pwWDGyOcKirtRXp5BAr9E=) 2: DCEA0362C17C11ED92AD7D85C4F9AE02.roa (hash: iJgF3xLl/F7BTTiuttHhI1X4PDcUoYj6A2s1rvrmJk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.crl rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FF5, serialNumber=BFAF2363757729EE05AB21B71D205AB418E1B834 Validity Not Before: Oct 19 05:00:14 2025 GMT Not After : Oct 26 05:00:14 2025 GMT Subject: CN=68f4705e-ed28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:32:b8:a8:89:66:2a:c6:8d:82:93:57:27:cc: e4:4a:92:ac:a1:be:8e:c3:0c:23:1e:60:65:a1:24: fa:67:c8:ec:52:f2:a5:cd:c4:73:c4:c2:08:40:f9: 41:9c:c8:c3:4d:f0:ce:9b:3e:f9:1c:1b:64:64:c8: a9:c0:a3:ae:cf:0c:ed:d9:93:7d:69:a9:2b:fa:b0: 6a:6d:f0:ba:8d:d1:71:e3:db:39:4f:1e:d8:69:7f: 33:9f:9d:b4:dd:48:3e:1a:92:10:01:71:da:f8:08: ad:21:62:90:9f:36:61:49:bb:97:92:fe:f3:0c:c4: 0b:3b:92:42:89:ac:10:7b:09:5b:9a:12:94:80:d0: 06:01:4e:b4:4e:1b:8f:1a:45:f1:83:e5:46:6c:d9: 71:0f:bd:7e:f6:c4:7b:85:c9:11:fe:fb:63:a8:4d: dc:51:7e:e8:a2:27:a4:50:bc:4f:3f:8d:bb:6d:3b: 75:e4:dd:f6:28:36:26:d0:6e:f7:62:01:1d:b8:e7: 83:90:a7:d6:74:8c:a1:a8:25:1b:31:bc:ed:44:3e: d0:fb:10:9b:6c:c4:e0:55:88:32:28:e7:d2:7f:ee: 63:b7:23:6a:d5:4d:c1:32:6a:e1:2d:35:b7:1e:4d: f5:35:94:32:6b:96:2d:33:01:7e:ae:d4:35:23:04: 97:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:6F:9F:30:CC:CF:36:BB:D8:D8:B5:51:3C:29:F4:52:41:3C:E2:DC X509v3 Authority Key Identifier: keyid:BF:AF:23:63:75:77:29:EE:05:AB:21:B7:1D:20:5A:B4:18:E1:B8:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:cf:22:26:45:07:8d:3d:6e:07:77:78:0a:06:2d:76:17:40: 9e:db:4f:70:6c:78:eb:48:37:ba:a2:29:fe:fb:79:b4:7d:9d: c8:4a:f1:5f:9a:3d:84:0b:af:7f:82:32:1f:76:89:f2:72:ea: 93:c9:3a:a6:7a:52:3b:22:76:7c:a5:70:6c:6f:f5:11:3e:a1: 4f:55:98:60:af:91:dd:fe:3d:04:1f:0b:5e:49:03:4b:7c:4a: 76:37:78:8c:3c:7b:27:4f:5e:65:e4:b6:f4:98:3a:24:06:91: ad:bd:32:d5:d3:6c:8e:0e:b4:d6:1c:03:f9:a7:33:04:55:66: de:51:a4:d5:55:ab:12:cd:63:b1:9e:86:9f:b6:cb:d4:fe:dd: f0:9e:83:55:66:a1:70:e6:09:14:92:fa:8a:26:0d:46:bf:dc: 17:99:20:7a:fd:df:e9:8a:f8:fb:d6:46:c2:29:a1:6d:1e:ed: 00:c5:5c:bb:d2:f1:40:2a:13:39:3b:dd:bf:08:39:af:66:33: 32:b1:33:45:b2:4d:70:4e:f4:dc:bb:e1:5e:30:f2:cc:ce:3c: a2:93:a2:0e:06:f1:e1:07:6a:43:8c:cc:3b:ba:17:4a:c6:a8: 88:f4:4c:3f:5d:09:a4:8c:65:e3:19:99:5f:93:09:95:42:c0: 27:5b:de:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdGRjUxMTAvBgNVBAUTKEJGQUYyMzYzNzU3NzI5RUUwNUFCMjFCNzFEMjA1QUI0 MThFMUI4MzQwHhcNMjUxMDE5MDUwMDE0WhcNMjUxMDI2MDUwMDE0WjAYMRYwFAYD VQQDEw02OGY0NzA1ZS1lZDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjK4qIlmKsaNgpNXJ8zkSpKsob6OwwwjHmBloST6Z8jsUvKlzcRzxMIIQPlB nMjDTfDOmz75HBtkZMipwKOuzwzt2ZN9aakr+rBqbfC6jdFx49s5Tx7YaX8zn520 3Ug+GpIQAXHa+AitIWKQnzZhSbuXkv7zDMQLO5JCiawQewlbmhKUgNAGAU60ThuP GkXxg+VGbNlxD71+9sR7hckR/vtjqE3cUX7ooiekULxPP427bTt15N32KDYm0G73 YgEduOeDkKfWdIyhqCUbMbztRD7Q+xCbbMTgVYgyKOfSf+5jtyNq1U3BMmrhLTW3 Hk31NZQya5YtMwF+rtQ1IwSX/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFFvnzDM zza72Ni1UTwp9FJBPOLcMB8GA1UdIwQYMBaAFL+vI2N1dynuBashtx0gWrQY4bg0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0ZGNS8yNzIwNDM5MkMx NzgxMUVEQUY1NEE5NUZDNEY5QUUwMi92NjhqWTNWM0tlNEZxeUczSFNCYXRCamh1 RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Y2OGpZM1YzS2U0RnF5RzNIU0JhdEJqaHVEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0ZGNS8yNzIwNDM5MkMxNzgxMUVEQUY1NEE5NUZDNEY5QUUwMi92NjhqWTNWM0tl NEZxeUczSFNCYXRCamh1RFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuzyImRQeNPW4Hd3gKBi12F0Ce209wbHjrSDe6oin++3m0fZ3ISvFf mj2EC69/gjIfdonycuqTyTqmelI7InZ8pXBsb/URPqFPVZhgr5Hd/j0EHwteSQNL fEp2N3iMPHsnT15l5Lb0mDokBpGtvTLV02yODrTWHAP5pzMEVWbeUaTVVasSzWOx noaftsvU/t3wnoNVZqFw5gkUkvqKJg1Gv9wXmSB6/d/pivj71kbCKaFtHu0AxVy7 0vFAKhM5O92/CDmvZjMysTNFsk1wTvTcu+FeMPLMzjyik6IOBvHhB2pDjMw7uhdK xqiI9Ew/XQmkjGXjGZlfkwmVQsAnW95I -----END CERTIFICATE-----Generated at Sun Oct 19 23:22:18 2025 by rpki-client