$ rpki-client -vvf rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft File: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft (raw, json) Hash identifier: 00w3uMpK6tTVBYgewzfY8uZuQHKKgSDlyypTRg3fOTU= Subject key identifier: B2:FF:01:EC:1C:9F:C7:CB:2D:20:4E:10:A3:EF:37:22:C5:F2:E8:1B Authority key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 Certificate issuer: /CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Certificate serial: 0387 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft Manifest number: 037F Signing time: Sun 19 Oct 2025 02:50:29 +0000 Manifest this update: Sun 19 Oct 2025 02:50:28 +0000 Manifest next update: Sun 26 Oct 2025 02:50:28 +0000 Files and hashes: 1: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl (hash: 9Fyz9lTQUk4fcT2aM1gZz4u96e89mTE5/8iup0mP4j4=) 2: A26E4F16C13411ECA5838429C4F9AE02.roa (hash: iCw79y4BWdxeg4SkApinNCBIqylm75Jz7mdMCrDh0eI=) 3: A1CB8D62C13411ECA5838429C4F9AE02.roa (hash: fD9tz1Cxj0LH2YQosk7eVSKaAn/WfIdEtafahpCOyrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:50:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 903 (0x387) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917039B, serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Validity Not Before: Oct 19 02:50:28 2025 GMT Not After : Oct 26 02:50:28 2025 GMT Subject: CN=68f451f4-81f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ce:75:7c:55:2e:8b:0c:91:e3:06:34:07:bf: d7:ec:a5:8c:47:10:fe:26:54:89:e1:ea:6e:1f:38: 75:c6:d7:5f:04:44:58:1a:73:37:3d:f6:66:73:a6: c4:b4:a9:b7:97:7f:4b:85:72:f0:d2:51:4d:b5:59: 97:14:cc:f7:72:d8:7f:63:16:60:86:47:8e:52:30: 1b:06:c7:d6:38:1e:83:47:93:7f:34:c9:c4:92:e5: cc:bd:3d:8b:c9:4f:1c:db:b6:6f:94:cb:ae:22:b0: b1:ab:0a:ed:b4:8e:ee:5f:69:6d:08:d1:f1:cb:88: 37:b9:c3:dd:41:0e:4e:e1:5f:8a:d4:80:b9:f8:e6: 3e:6c:5b:2e:57:70:5c:8d:b3:11:e5:7f:cd:8d:05: 36:13:66:42:4b:c1:8f:2b:c1:8f:87:fd:c3:52:99: 48:d4:08:09:84:ee:e6:cf:5c:1b:bc:24:66:0c:d4: c2:28:e0:1a:1d:02:e5:f7:88:f7:f5:35:fa:01:c4: 7a:49:1f:fa:1f:c5:3c:c6:bd:be:d2:70:6c:be:02: 93:6b:ef:8c:0c:e5:da:fd:31:24:d8:5b:a8:a2:66: 88:10:19:71:1f:23:e9:16:90:bf:fe:ac:88:be:04: 00:9b:1f:da:f7:58:e5:92:5d:0b:8a:0f:c3:0e:5d: a6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:FF:01:EC:1C:9F:C7:CB:2D:20:4E:10:A3:EF:37:22:C5:F2:E8:1B X509v3 Authority Key Identifier: keyid:D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:68:64:59:28:21:b7:c1:87:af:eb:ba:4b:65:a4:7e:a8:fd: b8:fc:6c:1c:53:32:d2:4e:03:01:10:fd:8a:75:fb:fd:a2:90: fa:f3:4c:7d:e4:78:bb:95:1f:6b:9c:b9:64:6f:f6:34:58:eb: 9c:1d:d6:1a:8b:cb:16:8e:9e:0e:ea:aa:14:e0:42:f7:c7:fe: 8d:cb:9b:67:f9:6b:25:3b:2f:2c:89:f6:93:fe:d8:08:35:8f: fe:3f:ba:d6:52:c2:06:53:79:fd:ea:49:54:86:2b:82:77:94: 02:86:b1:b9:f9:f6:fb:9b:33:7a:dc:ee:1a:4d:c9:5c:cd:61: e5:09:2b:45:95:f2:d5:21:f7:a8:72:ea:2f:a4:1e:d8:ed:7d: 17:27:e6:fd:a6:b2:76:3f:f6:d6:9b:87:e8:07:a1:5b:94:22: fe:75:69:a0:98:c5:0f:a3:fd:4f:e6:58:0a:92:33:fa:2a:a8: 16:f1:89:8d:24:fd:eb:12:b5:ec:a8:b4:99:33:e6:f5:4b:ae: d1:26:bd:2d:9e:4e:22:d7:08:a7:d2:fb:0b:f8:ef:f7:62:03: 66:9f:44:8a:3c:de:4f:e2:8c:b2:5d:07:26:68:5e:28:53:3a: c8:b1:98:4b:4e:e3:e2:9c:1a:a0:7a:11:ce:62:df:c0:2b:7f: f6:f6:d7:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzOUIxMTAvBgNVBAUTKEQyMTAyMkMwMEYwREJCRTU4QTk5QTFFNjczRDNBRTFD NURGRENCODkwHhcNMjUxMDE5MDI1MDI4WhcNMjUxMDI2MDI1MDI4WjAYMRYwFAYD VQQDEw02OGY0NTFmNC04MWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxc51fFUuiwyR4wY0B7/X7KWMRxD+JlSJ4epuHzh1xtdfBERYGnM3PfZmc6bE tKm3l39LhXLw0lFNtVmXFMz3cth/YxZghkeOUjAbBsfWOB6DR5N/NMnEkuXMvT2L yU8c27ZvlMuuIrCxqwrttI7uX2ltCNHxy4g3ucPdQQ5O4V+K1IC5+OY+bFsuV3Bc jbMR5X/NjQU2E2ZCS8GPK8GPh/3DUplI1AgJhO7mz1wbvCRmDNTCKOAaHQLl94j3 9TX6AcR6SR/6H8U8xr2+0nBsvgKTa++MDOXa/TEk2FuoomaIEBlxHyPpFpC//qyI vgQAmx/a91jlkl0Lig/DDl2m1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLL/Aewc n8fLLSBOEKPvNyLF8ugbMB8GA1UdIwQYMBaAFNIQIsAPDbvlipmh5nPTrhxd/cuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDM5Qi85OUY1NDQ3OEMx MzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUtV0ttYUhtYzlPdUhGMzl5 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoQWl3QThOdS1XS21hSG1jOU91SEYzOXk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDM5Qi85OUY1NDQ3OEMxMzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUt V0ttYUhtYzlPdUhGMzl5NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkaGRZKCG3wYev67pLZaR+qP24/GwcUzLSTgMBEP2Kdfv9opD680x9 5Hi7lR9rnLlkb/Y0WOucHdYai8sWjp4O6qoU4EL3x/6Ny5tn+WslOy8sifaT/tgI NY/+P7rWUsIGU3n96klUhiuCd5QChrG5+fb7mzN63O4aTclczWHlCStFlfLVIfeo cuovpB7Y7X0XJ+b9prJ2P/bWm4foB6FblCL+dWmgmMUPo/1P5lgKkjP6KqgW8YmN JP3rErXsqLSZM+b1S67RJr0tnk4i1win0vsL+O/3YgNmn0SKPN5P4oyyXQcmaF4o UzrIsZhLTuPinBqgehHOYt/AK3/29tdc -----END CERTIFICATE-----Generated at Mon Oct 20 16:16:52 2025 by rpki-client