$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft File: G395gdniwsMPbyw0hxophthfiQ4.mft (raw, json) Hash identifier: MOiUpuWGEmr/lBIAh7KK/RIlPwiZEJVRV0y/Y4stDdM= Subject key identifier: E5:DF:20:64:A8:91:51:40:A3:D9:96:E0:21:C8:24:30:92:53:C1:48 Authority key identifier: 1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E Certificate issuer: /CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Certificate serial: 0547 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft Manifest number: 0542 Signing time: Sun 19 Oct 2025 01:11:34 +0000 Manifest this update: Sun 19 Oct 2025 01:11:33 +0000 Manifest next update: Sun 26 Oct 2025 01:11:33 +0000 Files and hashes: 1: G395gdniwsMPbyw0hxophthfiQ4.crl (hash: t+ttw8lMW1+N5lmkrlbwoa+YrXyfM1jYS1xX7TQT+TU=) 2: 5D7779A6108A11EC9E1F3D49C4F9AE02.roa (hash: PG236be1E8/bdu91IiVOrP0tedgETPtMVawr3zFO1mw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:11:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1351 (0x547) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AE9, serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Validity Not Before: Oct 19 01:11:33 2025 GMT Not After : Oct 26 01:11:33 2025 GMT Subject: CN=68f43ac6-7840 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:33:65:db:4d:96:27:18:d0:fb:00:bc:ed:8e: 2a:1a:3f:0a:4c:6e:df:c8:d7:15:0a:18:1e:bc:94: 9f:28:22:b6:12:0b:f8:fa:dd:d3:86:68:18:00:de: 5a:7e:e4:a7:76:29:79:38:dd:15:7a:fe:92:6b:7a: f2:3c:1d:15:07:a7:4e:ac:ed:6d:46:0c:4c:d9:c6: 49:dd:8a:36:71:55:27:74:04:4f:0e:9c:d7:e6:17: 44:80:18:98:c8:65:7c:55:ef:2b:64:bb:60:2b:0c: fa:ce:9b:c9:2b:91:9d:f3:eb:1a:90:f4:e1:31:4b: 47:8b:b9:01:46:dd:0b:dc:97:0f:b9:82:8b:1d:d5: 52:6b:6c:c7:b0:87:b5:df:37:4e:3f:bb:b7:a7:94: a4:47:45:59:d8:2c:f5:94:ff:ef:39:76:ee:be:c6: 58:3c:48:e8:3d:b2:48:1e:15:61:1e:e2:47:e3:97: 2d:6a:a3:22:71:7d:fc:36:dc:d7:cb:34:b5:37:db: 6c:39:06:d1:7a:fc:06:b5:84:b7:83:2d:80:36:37: 08:9a:a8:6d:9f:d7:3f:c6:15:df:3a:b4:11:f3:8a: c7:d7:7a:ce:b7:fc:ce:1a:fd:d4:3a:c4:8c:f2:1e: b3:da:e7:88:e5:c7:0b:bf:19:0c:eb:f5:15:ea:25: 91:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:DF:20:64:A8:91:51:40:A3:D9:96:E0:21:C8:24:30:92:53:C1:48 X509v3 Authority Key Identifier: keyid:1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:92:c1:28:20:d0:55:6a:29:7c:32:5d:8d:d1:2e:01:77:37: ef:d9:84:8d:65:d8:63:1d:a9:e7:d0:9f:2d:1e:7c:a0:5b:12: 89:f2:89:6a:35:e5:cd:c1:39:75:7f:b8:c6:d3:fc:87:2c:f4: 91:6f:66:e3:d3:5c:84:db:61:d1:60:f7:b5:12:6e:6a:48:23: b4:ae:4b:a4:d0:a2:c3:82:a2:71:55:78:4e:0e:ac:44:cb:13: 53:d7:2c:ac:3d:b2:70:fa:3a:1f:45:2b:a7:60:d9:c7:59:f8: c7:75:1f:49:79:fe:34:90:12:e4:2f:33:a4:da:74:a8:d3:06: fe:b3:f6:1a:01:7e:7a:e4:03:5c:4a:5b:59:de:ee:2d:07:a7: 3a:d4:61:35:e0:1e:e6:92:0a:0a:eb:2d:1e:3b:60:72:b7:cc: d0:ce:6c:7f:48:6c:0a:fa:8f:7a:e3:a2:47:b2:a8:3a:d6:3e: 63:47:12:d6:f1:a8:37:94:f8:1c:02:1f:07:c9:9a:7b:e1:fd: 87:91:c0:a6:d8:83:83:e8:76:11:33:49:71:9c:a6:20:6a:a5: c5:29:0b:eb:4d:8a:1c:69:77:de:7a:c6:fc:9f:2f:17:1c:65: 57:08:8a:dc:65:f4:cc:04:e2:e2:7f:a9:6a:97:55:58:eb:9b: ba:f4:20:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRTkxMTAvBgNVBAUTKDFCN0Y3OTgxRDlFMkMyQzMwRjZGMkMzNDg3MUEyOTg2 RDg1Rjg5MEUwHhcNMjUxMDE5MDExMTMzWhcNMjUxMDI2MDExMTMzWjAYMRYwFAYD VQQDEw02OGY0M2FjNi03ODQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTNl202WJxjQ+wC87Y4qGj8KTG7fyNcVChgevJSfKCK2Egv4+t3ThmgYAN5a fuSndil5ON0Vev6Sa3ryPB0VB6dOrO1tRgxM2cZJ3Yo2cVUndARPDpzX5hdEgBiY yGV8Ve8rZLtgKwz6zpvJK5Gd8+sakPThMUtHi7kBRt0L3JcPuYKLHdVSa2zHsIe1 3zdOP7u3p5SkR0VZ2Cz1lP/vOXbuvsZYPEjoPbJIHhVhHuJH45ctaqMicX38NtzX yzS1N9tsOQbRevwGtYS3gy2ANjcImqhtn9c/xhXfOrQR84rH13rOt/zOGv3UOsSM 8h6z2ueI5ccLvxkM6/UV6iWRAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOXfIGSo kVFAo9mW4CHIJDCSU8FIMB8GA1UdIwQYMBaAFBt/eYHZ4sLDD28sNIcaKYbYX4kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFFOS8wOTEyMDM4MDEw ODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdzTVBieXcwaHhvcGh0aGZp UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0czOTVnZG5pd3NNUGJ5dzBoeG9waHRoZmlRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFFOS8wOTEyMDM4MDEwODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdz TVBieXcwaHhvcGh0aGZpUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUksEoINBVail8Ml2N0S4Bdzfv2YSNZdhjHann0J8tHnygWxKJ8olq NeXNwTl1f7jG0/yHLPSRb2bj01yE22HRYPe1Em5qSCO0rkuk0KLDgqJxVXhODqxE yxNT1yysPbJw+jofRSunYNnHWfjHdR9Jef40kBLkLzOk2nSo0wb+s/YaAX565ANc SltZ3u4tB6c61GE14B7mkgoK6y0eO2Byt8zQzmx/SGwK+o9646JHsqg61j5jRxLW 8ag3lPgcAh8HyZp74f2HkcCm2IOD6HYRM0lxnKYgaqXFKQvrTYocaXfeesb8ny8X HGVXCIrcZfTMBOLif6lql1VY65u69CBQ -----END CERTIFICATE-----Generated at Mon Oct 20 16:35:24 2025 by rpki-client