$ rpki-client -vvf rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft File: cXGYzRpGea2dRS7h2wLQASpDdOw.mft (raw, json) Hash identifier: +rKeNAeOYkfbYpjp3x+iRMzSfHo0je9Bd+E5V4dVHZM= Subject key identifier: 5E:AB:A1:1D:35:EF:6C:95:25:56:4D:45:F3:ED:19:8C:FE:8F:21:4E Authority key identifier: 71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC Certificate issuer: /CN=A9169F49/serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft Manifest number: 75 Signing time: Sun 19 Oct 2025 10:07:56 +0000 Manifest this update: Sun 19 Oct 2025 10:07:56 +0000 Manifest next update: Sun 26 Oct 2025 10:07:56 +0000 Files and hashes: 1: cXGYzRpGea2dRS7h2wLQASpDdOw.crl (hash: zUOtUovoheiL/dsJDAuec1702GkmwQ1GblXt91OQ3pg=) 2: 2B42D1D8F9B611EFB3AB154BC4F9AE02.roa (hash: qRFt1VDcs2OHFjFWZc9CCxRhXeBrmwOFxAL6+b0Q2Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169F49, serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Validity Not Before: Oct 19 10:07:56 2025 GMT Not After : Oct 26 10:07:56 2025 GMT Subject: CN=68f4b87c-71eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1e:b8:db:34:63:55:7c:f1:9a:59:e4:85:5e: e7:fe:96:77:08:3a:09:d2:ab:a0:c2:7d:88:7a:72: 8f:72:b0:c3:fb:29:60:2a:ea:7f:ce:f6:64:6c:8b: 8a:d6:16:77:ce:9e:95:dc:f3:44:ea:91:f5:c6:65: 68:4a:e4:c3:48:3f:e6:c1:bc:4c:33:7d:c2:e6:04: f7:69:b3:93:47:70:ef:fe:11:10:8a:65:b7:a2:52: d5:1d:bf:5f:99:49:8a:6b:b3:ca:b2:d9:c1:af:cf: 61:1c:18:9f:b8:6c:63:dc:68:87:bf:d2:45:7e:06: fd:ff:05:a7:cc:a7:3f:6d:79:b8:43:c9:7b:bb:f5: a6:9b:f5:23:3c:24:d4:39:e3:7c:49:fa:94:3e:ca: 95:2b:24:f7:68:ca:9d:17:10:d1:76:e6:39:de:4c: 11:0f:f1:f9:f8:76:b3:46:d3:54:b9:1a:34:da:a2: a2:ad:68:90:ad:a1:ae:c8:97:c3:8c:dd:07:7f:4e: be:a3:68:89:58:70:8b:85:85:ea:ca:f1:b8:66:10: 4c:05:64:25:ae:b1:83:c4:7d:92:0a:90:9f:29:d2: dc:29:50:02:50:33:fa:f6:0c:a8:49:3f:57:11:d0: 71:23:a2:8b:f6:8b:2a:dc:4d:32:5b:f6:17:ef:2a: 20:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:AB:A1:1D:35:EF:6C:95:25:56:4D:45:F3:ED:19:8C:FE:8F:21:4E X509v3 Authority Key Identifier: keyid:71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:d2:a4:1b:69:92:1d:4d:a0:ca:8d:0e:cd:b9:a9:66:18:fa: eb:c9:95:41:be:95:26:3d:8b:e6:55:e0:7d:24:2c:98:80:41: 09:d5:62:12:9d:d3:6e:56:9c:83:f1:ba:48:0f:5a:41:01:b3: ce:5a:5a:9c:49:67:04:b6:c0:87:4f:7f:bc:cb:59:ae:43:eb: ca:f6:92:bc:4e:45:4e:15:b1:76:19:6e:6f:9c:cf:f0:cc:f2: a9:2e:e5:d1:f9:a8:21:8c:33:88:e9:42:d8:93:1d:33:a9:96: 6d:59:a9:0c:a5:b6:c4:12:bf:41:dc:e4:c6:c1:96:60:09:27: 03:7f:24:ed:fc:ab:07:1f:1c:4c:4f:e1:5d:73:5f:d4:12:b9: d9:e8:92:42:77:01:94:80:fa:e6:76:e1:44:d3:ec:86:50:16: 41:37:7e:69:21:66:d4:7e:bf:7d:94:f1:c6:78:e8:82:89:88: af:6a:74:64:16:f0:26:07:15:4a:70:c4:2d:5d:97:a7:19:e3: 02:1c:1b:b1:2b:85:28:1a:16:db:63:f0:fe:e7:08:05:29:3f: bb:3b:20:e9:e7:75:54:de:95:f7:43:cb:f4:ed:e6:75:6e:ec: 4b:58:b8:29:57:44:ae:8c:92:d6:30:37:f0:22:34:7c:27:49: 83:c8:55:b7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OUY0OTExMC8GA1UEBRMoNzE3MTk4Q0QxQTQ2NzlBRDlENDUyRUUxREIwMkQwMDEy QTQzNzRFQzAeFw0yNTEwMTkxMDA3NTZaFw0yNTEwMjYxMDA3NTZaMBgxFjAUBgNV BAMTDTY4ZjRiODdjLTcxZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrHrjbNGNVfPGaWeSFXuf+lncIOgnSq6DCfYh6co9ysMP7KWAq6n/O9mRsi4rW FnfOnpXc80TqkfXGZWhK5MNIP+bBvEwzfcLmBPdps5NHcO/+ERCKZbeiUtUdv1+Z SYprs8qy2cGvz2EcGJ+4bGPcaIe/0kV+Bv3/BafMpz9tebhDyXu79aab9SM8JNQ5 43xJ+pQ+ypUrJPdoyp0XENF25jneTBEP8fn4drNG01S5GjTaoqKtaJCtoa7Il8OM 3Qd/Tr6jaIlYcIuFherK8bhmEEwFZCWusYPEfZIKkJ8p0twpUAJQM/r2DKhJP1cR 0HEjoov2iyrcTTJb9hfvKiAfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXquhHTXv bJUlVk1F8+0ZjP6PIU4wHwYDVR0jBBgwFoAUcXGYzRpGea2dRS7h2wLQASpDdOww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5RjQ5L0IyQzVGQjlBRjlC NTExRUZBNUQ3M0M0N0M0RjlBRTAyL2NYR1l6UnBHZWEyZFJTN2gyd0xRQVNwRGRP dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY1hHWXpScEdlYTJkUlM3aDJ3TFFBU3BEZE93LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5 RjQ5L0IyQzVGQjlBRjlCNTExRUZBNUQ3M0M0N0M0RjlBRTAyL2NYR1l6UnBHZWEy ZFJTN2gyd0xRQVNwRGRPdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACbSpBtpkh1NoMqNDs25qWYY+uvJlUG+lSY9i+ZV4H0kLJiAQQnVYhKd 025WnIPxukgPWkEBs85aWpxJZwS2wIdPf7zLWa5D68r2krxORU4VsXYZbm+cz/DM 8qku5dH5qCGMM4jpQtiTHTOplm1ZqQyltsQSv0Hc5MbBlmAJJwN/JO38qwcfHExP 4V1zX9QSudnokkJ3AZSA+uZ24UTT7IZQFkE3fmkhZtR+v32U8cZ46IKJiK9qdGQW 8CYHFUpwxC1dl6cZ4wIcG7ErhSgaFttj8P7nCAUpP7s7IOnndVTelfdDy/Tt5nVu 7EtYuClXRK6MktYwN/AiNHwnSYPIVbc= -----END CERTIFICATE-----Generated at Mon Oct 20 04:18:55 2025 by rpki-client