$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft File: ulHQnhOT5woFhzID_3zE4f1-pw8.mft (raw, json) Hash identifier: w9FL08COT8CJ+duhhD2kUGEsfSSYNE+POaVYMKnd3hw= Subject key identifier: 52:CA:95:76:95:61:70:E6:50:24:8E:22:BE:39:67:D3:82:E2:D2:ED Authority key identifier: BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F Certificate issuer: /CN=A9168B03/serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Certificate serial: 1C27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft Manifest number: 1C19 Signing time: Mon 20 Oct 2025 16:30:46 +0000 Manifest this update: Mon 20 Oct 2025 16:30:45 +0000 Manifest next update: Mon 27 Oct 2025 16:30:45 +0000 Files and hashes: 1: ulHQnhOT5woFhzID_3zE4f1-pw8.crl (hash: QTy1WmFU7jIoRKiEAz95uqZylxDfSlV5LFCRbtcrQc0=) 2: D3EAE1500B5911EA8CC1114BC4F9AE02.roa (hash: iw8R7e0/cuiLe2UpbocEUV4DYRPW2H32JZcJjyrYF2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:30:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7207 (0x1c27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B03, serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Validity Not Before: Oct 20 16:30:45 2025 GMT Not After : Oct 27 16:30:45 2025 GMT Subject: CN=68f663b6-d591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:71:34:53:43:46:f4:22:cb:c9:2b:da:b0:e4: 6f:90:d1:82:c1:34:ca:5c:a3:1c:a9:24:a1:40:d2: 48:00:b5:00:14:4b:59:28:b2:ab:be:47:b9:e7:dd: 3a:ec:09:c0:a1:e5:58:dc:03:57:6d:18:35:bc:f7: 40:12:c2:a5:8f:6d:34:32:93:02:39:b9:16:82:6d: 9b:67:11:0e:f6:72:7b:6f:e3:bc:06:0b:db:5d:73: 2b:f7:57:64:05:51:df:d7:3f:85:04:94:67:d2:6e: 89:0d:b1:1a:1f:db:98:d1:9d:7c:13:f2:01:ae:35: 8e:17:34:22:26:9b:09:77:7b:cd:2b:f6:2a:55:2f: 91:cd:5a:54:13:6e:b9:c3:3f:e7:f0:d5:3a:61:0b: 5a:6a:f2:bc:0d:fa:23:97:d1:29:30:0c:04:d1:f1: b4:ba:79:f1:b9:a4:f3:2e:0b:0b:41:9c:12:15:21: 0a:1c:9d:6b:a9:cd:b5:64:9d:46:80:7f:59:2c:81: 93:a8:bc:52:42:9b:a6:95:e4:e4:9d:74:6a:e6:c0: 10:7e:ca:1f:aa:3c:f3:20:81:97:92:37:0b:dc:34: 06:95:c5:7e:9a:a6:8c:e3:38:cb:2d:66:7d:05:16: 9d:31:ed:02:05:ad:1b:95:88:86:b2:34:8b:45:67: c8:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:CA:95:76:95:61:70:E6:50:24:8E:22:BE:39:67:D3:82:E2:D2:ED X509v3 Authority Key Identifier: keyid:BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:83:31:3b:35:25:0e:80:f9:f9:37:ca:54:bb:1f:fd:25:b9: cf:e4:d4:bf:ae:d1:84:8e:af:eb:70:31:58:25:c9:8a:53:26: ff:34:23:e1:1a:24:df:94:bb:78:28:e5:97:d1:1b:a5:a5:d7: ab:f7:9e:78:2a:68:c2:13:7d:e9:46:ce:b9:fb:38:68:de:4e: da:7a:70:ec:fd:eb:ce:fd:b4:15:2e:dd:c2:5a:c4:fe:88:ce: 7c:37:32:51:1f:07:2e:29:e7:10:22:df:fe:d8:98:38:25:e9: cb:bc:0d:c6:35:8f:fa:23:0e:a4:05:d8:8b:5f:b9:f2:09:c8: 8d:49:7a:33:b0:3f:54:d0:27:7e:da:27:5b:92:79:c4:ca:f5: 3c:9e:55:42:88:88:78:d9:8a:a5:03:ae:fc:78:0c:19:5c:40: 55:4a:d9:84:77:a5:2c:b9:7a:37:02:c0:48:26:22:3d:ee:9a: 2c:eb:c0:9c:a8:26:65:e0:c2:68:07:7c:4e:c1:f8:07:8d:d0: 97:84:3d:d8:cb:8f:e6:fe:4f:78:a1:c1:48:0d:77:f3:81:7e: 6f:20:26:28:2f:34:73:a7:e2:53:48:20:fc:e0:c3:cf:f7:be: 3e:cc:75:eb:1c:0e:10:f5:10:21:6f:21:2d:8e:da:29:4a:b7: e9:e6:43:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCMDMxMTAvBgNVBAUTKEJBNTFEMDlFMTM5M0U3MEEwNTg3MzIwM0ZGN0NDNEUx RkQ3RUE3MEYwHhcNMjUxMDIwMTYzMDQ1WhcNMjUxMDI3MTYzMDQ1WjAYMRYwFAYD VQQDEw02OGY2NjNiNi1kNTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqHE0U0NG9CLLySvasORvkNGCwTTKXKMcqSShQNJIALUAFEtZKLKrvke55906 7AnAoeVY3ANXbRg1vPdAEsKlj200MpMCObkWgm2bZxEO9nJ7b+O8BgvbXXMr91dk BVHf1z+FBJRn0m6JDbEaH9uY0Z18E/IBrjWOFzQiJpsJd3vNK/YqVS+RzVpUE265 wz/n8NU6YQtaavK8Dfojl9EpMAwE0fG0unnxuaTzLgsLQZwSFSEKHJ1rqc21ZJ1G gH9ZLIGTqLxSQpumleTknXRq5sAQfsofqjzzIIGXkjcL3DQGlcV+mqaM4zjLLWZ9 BRadMe0CBa0blYiGsjSLRWfIpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFLKlXaV YXDmUCSOIr45Z9OC4tLtMB8GA1UdIwQYMBaAFLpR0J4Tk+cKBYcyA/98xOH9fqcP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEIwMy9EMTE4RTY3OEY5 OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3b0ZoeklEXzN6RTRmMS1w dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VsSFFuaE9UNXdvRmh6SURfM3pFNGYxLXB3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEIwMy9EMTE4RTY3OEY5OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3 b0ZoeklEXzN6RTRmMS1wdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjgzE7NSUOgPn5N8pUux/9JbnP5NS/rtGEjq/rcDFYJcmKUyb/NCPh GiTflLt4KOWX0Rulpder9554KmjCE33pRs65+zho3k7aenDs/evO/bQVLt3CWsT+ iM58NzJRHwcuKecQIt/+2Jg4JenLvA3GNY/6Iw6kBdiLX7nyCciNSXozsD9U0Cd+ 2idbknnEyvU8nlVCiIh42YqlA678eAwZXEBVStmEd6UsuXo3AsBIJiI97pos68Cc qCZl4MJoB3xOwfgHjdCXhD3Yy4/m/k94ocFIDXfzgX5vICYoLzRzp+JTSCD84MPP 974+zHXrHA4Q9RAhbyEtjtopSrfp5kPP -----END CERTIFICATE-----Generated at Mon Oct 20 22:24:02 2025 by rpki-client