$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft File: 1AwbOf4FNm7Ysj4IgLaet198kOI.mft (raw, json) Hash identifier: mlKM+6Djw7waR30a4i00aIP18rA/CqzOZx2qV287hJI= Subject key identifier: CA:94:61:04:C8:8F:8D:C7:04:24:FE:11:12:D9:2A:0A:2A:B2:B6:5A Authority key identifier: D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 Certificate issuer: /CN=A9171A26/serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Certificate serial: 0B45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft Manifest number: 0B3E Signing time: Sat 18 Oct 2025 20:07:50 +0000 Manifest this update: Sat 18 Oct 2025 20:07:49 +0000 Manifest next update: Sat 25 Oct 2025 20:07:49 +0000 Files and hashes: 1: 1AwbOf4FNm7Ysj4IgLaet198kOI.crl (hash: obDQpivK/Qsul7CoXiwMvE6E+jgR8NrOANlATmfuv6Q=) 2: 5C9BC9D045C311EA9DE6F237C4F9AE02.roa (hash: ZtnYKrh+yDnEIQelTNQoTzDHev59ss72beEWQRcR3+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:07:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2885 (0xb45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A26, serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Validity Not Before: Oct 18 20:07:49 2025 GMT Not After : Oct 25 20:07:49 2025 GMT Subject: CN=68f3f396-fb35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2d:6f:ad:c8:87:97:01:be:78:02:e2:40:e6: 16:bc:05:4f:d0:dc:91:48:d9:31:ee:ca:3f:5b:14: 1c:0a:07:5d:61:7e:e4:c9:58:8d:ac:b0:63:6b:d4: 27:7e:2a:ac:9c:d3:91:9e:8e:51:57:d3:ff:52:55: a8:dd:f6:86:50:66:1e:96:c8:b2:3e:da:85:c0:1e: fc:c7:ad:b9:2e:fe:86:23:34:36:98:4c:f6:39:04: aa:99:9c:c6:e4:d7:70:63:00:63:d3:ff:43:59:2f: 4c:71:62:31:cf:f1:56:61:85:fa:00:f0:f4:2b:d4: 7f:ec:3d:7f:ad:96:1a:68:6a:1a:44:69:aa:93:8a: e8:9e:ee:56:0f:26:49:2c:9c:50:a2:ee:94:98:e3: 86:3d:f2:6c:06:d9:e5:5a:92:f7:24:0c:89:58:5e: 29:d7:e4:2b:ce:c8:8b:05:33:c0:19:24:61:de:5e: fa:31:25:ed:ee:b6:e5:1a:33:e5:77:40:88:18:65: 04:46:2e:a7:89:3f:69:0e:08:5e:9c:ab:31:bf:1c: 03:7b:25:79:82:bb:79:93:67:82:c1:0a:c5:6f:a7: 6f:69:9b:ad:7f:29:39:04:88:7d:45:c4:d4:8a:ac: 2e:90:d3:a4:c3:41:7d:90:1e:cc:af:bb:fe:f4:5c: 05:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:94:61:04:C8:8F:8D:C7:04:24:FE:11:12:D9:2A:0A:2A:B2:B6:5A X509v3 Authority Key Identifier: keyid:D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:f4:b9:06:b6:86:00:b8:c7:a1:48:4b:06:73:1b:35:36:0b: 75:0a:b8:c5:8f:e3:33:15:32:d6:49:9c:35:3f:5e:3f:5c:dc: 3f:62:69:a8:23:8f:b6:01:8b:e4:3a:d8:41:97:a0:a9:bd:1c: bf:73:1f:55:1c:cc:ef:3a:ed:c7:fe:f7:93:8e:e6:6d:5e:0a: b9:a6:b4:9b:a7:64:1c:6f:9d:e7:67:e6:73:3a:1b:9c:52:a7: 78:13:64:28:da:ea:2e:77:52:6a:20:e4:39:70:bb:cc:5e:b5: 08:45:fa:6f:89:c5:f8:ee:18:41:4b:93:60:46:bd:2e:73:34: 71:3d:79:81:2a:80:a5:ec:12:ec:b1:1d:72:2c:82:b1:b0:d4: e3:1d:2c:52:c6:4b:70:c9:b0:d5:29:17:aa:64:5d:d1:02:9b: 30:3f:30:4b:f9:af:28:e3:b7:97:1f:d3:19:52:d3:94:ef:2b: ca:24:0d:f7:06:66:44:13:2e:b4:54:41:5e:a0:e3:96:3e:fa: 5f:3d:1f:64:56:b0:ad:eb:a8:4a:07:2f:75:1b:9e:66:b7:d7: 5c:79:a1:97:55:77:62:11:91:b5:d1:ad:a8:14:84:fc:16:9a: 67:6f:27:f8:4f:0a:16:89:12:31:79:44:48:01:22:76:c9:ea: 95:24:b7:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBMjYxMTAvBgNVBAUTKEQ0MEMxQjM5RkUwNTM2NkVEOEIyM0UwODgwQjY5RUI3 NUY3QzkwRTIwHhcNMjUxMDE4MjAwNzQ5WhcNMjUxMDI1MjAwNzQ5WjAYMRYwFAYD VQQDEw02OGYzZjM5Ni1mYjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsy1vrciHlwG+eALiQOYWvAVP0NyRSNkx7so/WxQcCgddYX7kyViNrLBja9Qn fiqsnNORno5RV9P/UlWo3faGUGYelsiyPtqFwB78x625Lv6GIzQ2mEz2OQSqmZzG 5NdwYwBj0/9DWS9McWIxz/FWYYX6APD0K9R/7D1/rZYaaGoaRGmqk4ronu5WDyZJ LJxQou6UmOOGPfJsBtnlWpL3JAyJWF4p1+QrzsiLBTPAGSRh3l76MSXt7rblGjPl d0CIGGUERi6niT9pDghenKsxvxwDeyV5grt5k2eCwQrFb6dvaZutfyk5BIh9RcTU iqwukNOkw0F9kB7Mr7v+9FwFzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqUYQTI j43HBCT+ERLZKgoqsrZaMB8GA1UdIwQYMBaAFNQMGzn+BTZu2LI+CIC2nrdffJDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUEyNi9CRTUzMTJBMjQ1 QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5tN1lzajRJZ0xhZXQxOThr T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBd2JPZjRGTm03WXNqNElnTGFldDE5OGtPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUEyNi9CRTUzMTJBMjQ1QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5t N1lzajRJZ0xhZXQxOThrT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo9LkGtoYAuMehSEsGcxs1Ngt1CrjFj+MzFTLWSZw1P14/XNw/Ymmo I4+2AYvkOthBl6CpvRy/cx9VHMzvOu3H/veTjuZtXgq5prSbp2Qcb53nZ+ZzOhuc Uqd4E2Qo2uoud1JqIOQ5cLvMXrUIRfpvicX47hhBS5NgRr0uczRxPXmBKoCl7BLs sR1yLIKxsNTjHSxSxktwybDVKReqZF3RApswPzBL+a8o47eXH9MZUtOU7yvKJA33 BmZEEy60VEFeoOOWPvpfPR9kVrCt66hKBy91G55mt9dceaGXVXdiEZG10a2oFIT8 Fppnbyf4TwoWiRIxeURIASJ2yeqVJLeB -----END CERTIFICATE-----Generated at Mon Oct 20 07:54:50 2025 by rpki-client