$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft File: 5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft (raw, json) Hash identifier: Jbk6P0DglAvif/m9cDY5zdhj5aR4ontyS3V4wcgmYfg= Subject key identifier: AA:5A:7F:03:4E:B4:D7:33:B3:57:0A:12:7A:3E:66:A2:AF:40:37:76 Authority key identifier: E6:B5:4D:02:7C:E3:49:8B:F3:5E:4D:06:5B:C4:78:A9:36:C1:61:69 Certificate issuer: /CN=A9170DD8/serialNumber=E6B54D027CE3498BF35E4D065BC478A936C16169 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft Manifest number: D8 Signing time: Sun 19 Oct 2025 08:40:09 +0000 Manifest this update: Sun 19 Oct 2025 08:40:08 +0000 Manifest next update: Sun 26 Oct 2025 08:40:08 +0000 Files and hashes: 1: 5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl (hash: 7kZ5/zC4PN2arwZFr+R4RTtOkjslHNOgJ8sFoE6eseo=) 2: 4D06CD2C667411EF8E723587C4F9AE02.roa (hash: 4PdtbIsL2ZotyQ7lOujn962oNOjC34OWUPtAk2nb5/I=) 3: 4CA4BE8E667411EF8E723587C4F9AE02.roa (hash: 8qwHnAzkWpQMSqbxW4gRTYW6uWniUVjWaHfJJJJlxJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:40:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DD8, serialNumber=E6B54D027CE3498BF35E4D065BC478A936C16169 Validity Not Before: Oct 19 08:40:08 2025 GMT Not After : Oct 26 08:40:08 2025 GMT Subject: CN=68f4a3e9-b311 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:28:4e:4e:68:6f:63:c6:c3:8a:2d:a9:ab:97: fb:36:9f:06:69:20:3f:12:47:22:37:2e:1c:20:32: e0:ea:ab:19:8a:a0:76:34:2d:c6:2a:1c:b6:da:3c: d7:ba:18:3c:c2:52:c2:6f:3c:91:2c:f5:c5:4f:44: 88:95:46:05:0d:58:cf:03:12:07:ff:e8:be:56:85: 6f:6d:44:f5:53:80:94:75:b9:d5:c8:c5:5b:54:c9: 4e:bc:2d:dc:f6:3e:66:6c:a3:83:68:0f:08:17:76: b5:79:dd:86:ac:3a:ba:ef:a9:f9:80:fb:f8:50:4a: fa:fa:f9:18:e2:c2:08:02:5f:af:7a:2f:36:7b:75: 61:ef:d7:8c:9c:57:7a:3d:2e:a2:d9:fd:f6:76:2e: e7:6f:84:6f:b1:42:5f:9d:8c:00:3d:0d:08:76:26: ec:1e:6b:82:97:ed:7d:9d:ec:a4:d4:f9:22:45:51: 1d:12:37:0a:54:73:67:a1:a0:36:fc:64:49:36:09: 4b:59:93:84:7b:ca:78:56:92:a3:84:83:2b:5d:0e: 3f:55:f8:8c:01:9f:2d:6a:d9:49:e8:7d:e9:6f:b7: 34:f8:be:e1:da:5e:00:80:51:3b:26:ba:f3:8e:5c: 05:b7:48:91:28:04:a7:ca:85:a6:32:c7:07:cc:78: 9f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:5A:7F:03:4E:B4:D7:33:B3:57:0A:12:7A:3E:66:A2:AF:40:37:76 X509v3 Authority Key Identifier: keyid:E6:B5:4D:02:7C:E3:49:8B:F3:5E:4D:06:5B:C4:78:A9:36:C1:61:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:34:29:ff:ff:7c:1c:03:d3:5a:de:89:b9:af:16:67:96:32: a1:24:98:7d:ab:71:e9:a8:59:a4:24:cc:f8:1c:47:05:6f:a8: d7:b4:27:69:61:ce:f5:1c:6f:0b:41:7e:c1:12:1e:6b:ea:9d: 0d:95:00:42:9c:63:05:cd:72:b2:30:b8:04:e1:e8:3b:0c:31: b8:14:11:68:03:79:db:83:fc:53:b9:d9:a0:84:de:30:56:9e: fe:3c:6b:0d:80:0c:e7:01:2d:0f:f7:1c:d3:f5:73:b9:3f:0a: ba:e7:f7:69:03:27:8e:97:62:69:06:bc:38:94:30:7d:28:7d: 9c:56:fa:3e:30:2b:a9:af:4a:c1:9f:3b:20:5e:a9:1f:46:72: 18:c2:2e:22:2f:cc:05:58:50:96:16:b9:d2:fd:5a:64:b8:92: 94:a9:4d:19:f5:09:7d:f9:02:07:21:e9:4f:7b:4c:bc:07:63: 32:0d:79:6a:e1:a4:92:26:56:66:c3:e8:3c:fb:33:43:76:1d: 0c:f7:07:5c:b5:e7:29:cf:3d:a9:3a:d4:a8:d1:8a:d6:35:08: 2f:db:ea:af:26:4c:23:fa:55:dd:f0:47:00:76:b8:58:ed:35: 7b:57:d9:f7:e0:9f:29:38:5d:c5:76:33:d3:0f:1e:b1:0b:41: 3c:31:4d:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERDgxMTAvBgNVBAUTKEU2QjU0RDAyN0NFMzQ5OEJGMzVFNEQwNjVCQzQ3OEE5 MzZDMTYxNjkwHhcNMjUxMDE5MDg0MDA4WhcNMjUxMDI2MDg0MDA4WjAYMRYwFAYD VQQDEw02OGY0YTNlOS1iMzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxShOTmhvY8bDii2pq5f7Np8GaSA/EkciNy4cIDLg6qsZiqB2NC3GKhy22jzX uhg8wlLCbzyRLPXFT0SIlUYFDVjPAxIH/+i+VoVvbUT1U4CUdbnVyMVbVMlOvC3c 9j5mbKODaA8IF3a1ed2GrDq676n5gPv4UEr6+vkY4sIIAl+vei82e3Vh79eMnFd6 PS6i2f32di7nb4RvsUJfnYwAPQ0IdibsHmuCl+19neyk1PkiRVEdEjcKVHNnoaA2 /GRJNglLWZOEe8p4VpKjhIMrXQ4/VfiMAZ8tatlJ6H3pb7c0+L7h2l4AgFE7Jrrz jlwFt0iRKASnyoWmMscHzHifuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKpafwNO tNczs1cKEno+ZqKvQDd2MB8GA1UdIwQYMBaAFOa1TQJ840mL815NBlvEeKk2wWFp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEREOC9BNjZBNzVFRTY1 QkIxMUVGQUZBMzJGODJDNEY5QUUwMi81clZOQW56alNZdnpYazBHVzhSNHFUYkJZ V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVyVk5BbnpqU1l2elhrMEdXOFI0cVRiQllXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEREOC9BNjZBNzVFRTY1QkIxMUVGQUZBMzJGODJDNEY5QUUwMi81clZOQW56alNZ dnpYazBHVzhSNHFUYkJZV2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTNCn//3wcA9Na3om5rxZnljKhJJh9q3HpqFmkJMz4HEcFb6jXtCdp Yc71HG8LQX7BEh5r6p0NlQBCnGMFzXKyMLgE4eg7DDG4FBFoA3nbg/xTudmghN4w Vp7+PGsNgAznAS0P9xzT9XO5Pwq65/dpAyeOl2JpBrw4lDB9KH2cVvo+MCupr0rB nzsgXqkfRnIYwi4iL8wFWFCWFrnS/VpkuJKUqU0Z9Ql9+QIHIelPe0y8B2MyDXlq 4aSSJlZmw+g8+zNDdh0M9wdctecpzz2pOtSo0YrWNQgv2+qvJkwj+lXd8EcAdrhY 7TV7V9n34J8pOF3FdjPTDx6xC0E8MU0m -----END CERTIFICATE-----Generated at Tue Oct 21 00:09:29 2025 by rpki-client