$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json) Hash identifier: AoM+adufaC8qR//aRV2+ZRx58f7I5nQ75gzEszu/BcQ= Subject key identifier: B2:DB:88:C6:85:3A:CA:56:7E:AD:2C:1A:09:2B:BE:44:34:80:AE:0A Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: 01EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft Manifest number: 01E9 Signing time: Sun 19 Oct 2025 05:01:18 +0000 Manifest this update: Sun 19 Oct 2025 05:01:17 +0000 Manifest next update: Sun 26 Oct 2025 05:01:17 +0000 Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: Ke3CSigiulKgKZOLF/nfQt1XymAC5+ujsjPwO+COTzg=) 2: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (hash: 1DI+mqIXwfIJnsuS//oB0VNc4iGbxjDEhe/n7gNnlpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73, serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: Oct 19 05:01:17 2025 GMT Not After : Oct 26 05:01:17 2025 GMT Subject: CN=68f4709d-89ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:4f:a7:2e:02:db:d7:54:99:84:c8:03:38:11: 19:a6:22:34:f2:13:b5:48:e7:d6:c2:07:e1:61:99: 15:cc:ae:17:f6:34:77:08:cf:59:71:d8:53:b3:91: ab:f0:ec:83:fc:56:b1:36:88:77:59:47:07:86:5b: 88:4c:6d:1b:4b:4d:5a:4d:fc:d0:7e:35:2a:a3:a9: 9f:51:e9:6d:59:22:31:de:46:5c:e9:0f:21:61:26: 61:f8:7a:ae:d1:17:0e:3e:29:4b:c8:1f:20:64:75: e1:28:a6:a6:56:3a:f2:8c:3e:e6:67:b4:6b:4c:eb: b2:ee:40:ab:14:9b:82:00:d9:f0:aa:c1:9a:7a:ee: 0b:56:7e:6b:79:9c:8d:9e:e4:72:50:b4:9a:66:22: 07:fc:e8:6d:9a:06:e8:07:5f:4e:2d:bf:a5:42:19: 57:b3:4d:b2:ea:a6:5c:68:bd:e0:6c:60:d3:ca:af: b6:f2:c2:fc:1a:83:3f:a6:de:0d:8e:d6:f3:77:c3: 4e:50:19:21:12:a8:a5:a9:6c:a3:a7:89:11:1d:75: a0:e2:c2:98:50:b9:6a:40:80:d9:39:02:4c:6b:28: b0:c2:45:46:bc:ec:f0:69:f4:57:b6:57:43:33:16: 4d:aa:46:83:3e:1b:76:cb:4c:46:18:84:a9:f2:a3: 55:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:DB:88:C6:85:3A:CA:56:7E:AD:2C:1A:09:2B:BE:44:34:80:AE:0A X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:4d:d7:9e:75:85:2f:15:4e:03:af:67:e0:64:39:28:b8:33: 68:1f:98:8b:15:a0:19:ba:9e:91:c4:23:be:0a:52:0d:75:ee: 84:04:ab:07:b0:84:57:32:69:0e:87:4d:da:39:e0:5b:9f:27: d3:39:3c:7f:06:34:f1:aa:73:eb:ee:f4:1c:89:48:aa:73:62: 62:a9:10:37:c9:42:22:49:10:02:2c:ad:18:9d:a8:44:df:d0: e7:cd:aa:eb:61:ab:19:0d:9d:7f:4b:9c:8e:f3:c9:6d:f6:35: 46:3f:40:d3:20:1a:4c:97:89:e5:e9:fa:51:29:a1:9f:af:00: 9e:6b:d5:2a:c9:71:3e:2a:33:cf:0a:f4:f4:e7:71:e5:b5:8a: 8b:bc:f4:b1:f2:d5:70:0d:86:ac:5d:ff:f2:4b:ac:b7:ee:d1: c7:96:ee:69:95:83:93:25:c0:ee:3d:ca:58:ba:67:4b:d1:e2: ff:ea:67:24:54:c7:83:c1:b8:b8:97:5e:2a:7d:7b:b9:05:7f: fe:85:df:11:93:81:64:91:61:1a:ec:2d:92:c1:2a:4b:7d:20: 7d:fe:31:06:81:9c:f2:bb:52:68:5b:bc:98:78:d6:27:35:c0: cb:49:2e:77:0a:55:57:fe:62:57:33:ad:34:d0:1f:4c:22:38: a9:4a:ba:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjUxMDE5MDUwMTE3WhcNMjUxMDI2MDUwMTE3WjAYMRYwFAYD VQQDEw02OGY0NzA5ZC04OWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoU+nLgLb11SZhMgDOBEZpiI08hO1SOfWwgfhYZkVzK4X9jR3CM9ZcdhTs5Gr 8OyD/FaxNoh3WUcHhluITG0bS01aTfzQfjUqo6mfUeltWSIx3kZc6Q8hYSZh+Hqu 0RcOPilLyB8gZHXhKKamVjryjD7mZ7RrTOuy7kCrFJuCANnwqsGaeu4LVn5reZyN nuRyULSaZiIH/OhtmgboB19OLb+lQhlXs02y6qZcaL3gbGDTyq+28sL8GoM/pt4N jtbzd8NOUBkhEqilqWyjp4kRHXWg4sKYULlqQIDZOQJMayiwwkVGvOzwafRXtldD MxZNqkaDPht2y0xGGISp8qNV2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLLbiMaF OspWfq0sGgkrvkQ0gK4KMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEM3My84RTVDOUNDMEMzMTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21j RWM5dUI0WmZkbHNqaGxZNGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHTdeedYUvFU4Dr2fgZDkouDNoH5iLFaAZup6RxCO+ClINde6EBKsH sIRXMmkOh03aOeBbnyfTOTx/BjTxqnPr7vQciUiqc2JiqRA3yUIiSRACLK0YnahE 39DnzarrYasZDZ1/S5yO88lt9jVGP0DTIBpMl4nl6fpRKaGfrwCea9UqyXE+KjPP CvT053HltYqLvPSx8tVwDYasXf/yS6y37tHHlu5plYOTJcDuPcpYumdL0eL/6mck VMeDwbi4l14qfXu5BX/+hd8Rk4FkkWEa7C2SwSpLfSB9/jEGgZzyu1JoW7yYeNYn NcDLSS53ClVX/mJXM6000B9MIjipSrqI -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:55 2025 by rpki-client