$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft File: cI8eBxM4VcgHTu1fjIO0RmpgesI.mft (raw, json) Hash identifier: 8o7tPc2BP5F5W7sgxCOOCaNLLYux5AuKn5jyRSI0Ays= Subject key identifier: 0B:12:4C:63:6B:FB:72:D0:2E:3E:B7:51:9A:4C:ED:F8:3E:6C:E9:F2 Authority key identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 Certificate issuer: /CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Certificate serial: 0155 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft Manifest number: 0151 Signing time: Sun 19 Oct 2025 06:56:55 +0000 Manifest this update: Sun 19 Oct 2025 06:56:54 +0000 Manifest next update: Sun 26 Oct 2025 06:56:54 +0000 Files and hashes: 1: cI8eBxM4VcgHTu1fjIO0RmpgesI.crl (hash: GCt43fHNl4d72QnUz3/ITJvcDRX/VzZ7QfuVXYRqsBE=) 2: BFC0298670DC11EF8B65D95AC4F9AE02.roa (hash: UgEzMnFdPuD9AyKqWzCGknoXwkBXShyWFB2xX76uKRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:56:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 341 (0x155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D16, serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Validity Not Before: Oct 19 06:56:54 2025 GMT Not After : Oct 26 06:56:54 2025 GMT Subject: CN=68f48bb6-ae8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:96:a8:b2:1a:65:85:92:67:02:3a:ed:f7:03: 89:6d:2b:e5:7f:00:ba:2f:98:67:d5:30:2d:df:bd: fc:7c:54:1f:95:b5:5b:4e:ab:31:19:c2:92:1a:52: e5:f2:5a:85:01:72:87:d1:3e:e3:45:c0:3f:b2:80: 95:f7:c8:d5:d3:8d:be:76:4c:94:34:59:6b:16:b4: 14:5c:b4:7c:58:1e:37:ad:03:94:fb:57:77:28:c6: 49:53:21:e8:82:3c:71:2f:43:58:1d:76:e6:a2:cd: d4:e4:b7:73:37:9f:51:06:5e:8a:46:4e:63:89:1f: 12:92:04:29:a6:5e:36:fc:ea:c6:30:fb:1a:81:09: 74:dd:fd:27:64:f6:62:76:3c:bb:8e:83:8c:e5:f9: 21:1f:0b:aa:9f:3e:1c:71:6a:1f:01:ef:b7:b4:4d: de:7b:6f:41:d9:bf:98:95:69:f8:d2:62:bb:35:b4: ef:05:83:f5:fe:96:06:24:dc:3b:36:04:04:07:92: e6:61:bb:f2:aa:90:49:64:70:dc:fa:3d:02:17:e2: fb:75:24:f7:fd:fc:f6:a9:42:8a:2f:b6:75:8a:39: 77:94:c3:e4:06:2d:2e:5e:3f:d5:27:d3:70:83:af: 18:c3:d4:1b:92:29:cc:45:85:b1:28:6b:ea:8f:f2: 1f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:12:4C:63:6B:FB:72:D0:2E:3E:B7:51:9A:4C:ED:F8:3E:6C:E9:F2 X509v3 Authority Key Identifier: keyid:70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:ca:c3:ac:d2:19:f3:42:d0:f2:56:63:06:3b:f0:a3:64:3c: 0e:e5:00:62:67:33:c5:38:51:03:29:79:eb:66:c8:f4:aa:7b: 28:ec:d2:a6:c9:f5:e4:2c:33:f6:95:fb:59:6a:17:48:44:a5: 1b:46:e1:50:d4:7a:e2:b8:4a:16:80:19:31:92:5a:3e:40:a1: 92:15:08:dc:40:b5:21:5d:f1:21:73:2a:03:e9:27:64:f0:92: 7b:ed:08:c0:45:1d:0f:7c:7f:9c:c1:46:4e:f5:ab:eb:e0:78: 7b:b0:03:ba:6f:60:d0:fe:fb:f8:d6:11:42:a8:08:9a:2f:3c: cc:20:c3:61:78:b9:7f:e5:a3:b2:22:6b:8a:e0:01:2e:1a:9a: dd:2d:9e:3d:19:a8:fd:52:b1:bb:b3:8f:7c:4e:90:40:1d:dc: 5c:6a:b1:3d:78:17:9f:c4:e9:a2:cd:48:6f:23:97:cf:12:48: 36:2e:53:3d:72:f5:e8:ba:46:55:7a:de:62:0b:b8:fb:93:80: 3e:37:2b:8d:d4:7c:b4:6f:0c:a0:1f:9b:b4:ec:ff:e4:95:cc: 2b:0c:45:ab:fe:45:ff:e0:20:f3:db:a6:0b:54:4f:0a:29:4c: e9:a6:4f:9e:64:11:9b:07:4e:92:05:b9:b3:59:8f:5b:0b:10: 9a:3b:1a:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMTYxMTAvBgNVBAUTKDcwOEYxRTA3MTMzODU1QzgwNzRFRUQ1RjhDODNCNDQ2 NkE2MDdBQzIwHhcNMjUxMDE5MDY1NjU0WhcNMjUxMDI2MDY1NjU0WjAYMRYwFAYD VQQDEw02OGY0OGJiNi1hZThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpaoshplhZJnAjrt9wOJbSvlfwC6L5hn1TAt3738fFQflbVbTqsxGcKSGlLl 8lqFAXKH0T7jRcA/soCV98jV042+dkyUNFlrFrQUXLR8WB43rQOU+1d3KMZJUyHo gjxxL0NYHXbmos3U5LdzN59RBl6KRk5jiR8SkgQppl42/OrGMPsagQl03f0nZPZi djy7joOM5fkhHwuqnz4ccWofAe+3tE3ee29B2b+YlWn40mK7NbTvBYP1/pYGJNw7 NgQEB5LmYbvyqpBJZHDc+j0CF+L7dST3/fz2qUKKL7Z1ijl3lMPkBi0uXj/VJ9Nw g68Yw9QbkinMRYWxKGvqj/IfJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsSTGNr +3LQLj63UZpM7fg+bOnyMB8GA1UdIwQYMBaAFHCPHgcTOFXIB07tX4yDtEZqYHrC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQxNi82NTZEMTdBOEFF OUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZjZ0hUdTFmaklPMFJtcGdl c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NJOGVCeE00VmNnSFR1MWZqSU8wUm1wZ2VzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQxNi82NTZEMTdBOEFFOUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZj Z0hUdTFmaklPMFJtcGdlc0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDaysOs0hnzQtDyVmMGO/CjZDwO5QBiZzPFOFEDKXnrZsj0qnso7NKm yfXkLDP2lftZahdIRKUbRuFQ1HriuEoWgBkxklo+QKGSFQjcQLUhXfEhcyoD6Sdk 8JJ77QjARR0PfH+cwUZO9avr4Hh7sAO6b2DQ/vv41hFCqAiaLzzMIMNheLl/5aOy ImuK4AEuGprdLZ49Gaj9UrG7s498TpBAHdxcarE9eBefxOmizUhvI5fPEkg2LlM9 cvXoukZVet5iC7j7k4A+NyuN1Hy0bwygH5u07P/klcwrDEWr/kX/4CDz26YLVE8K KUzppk+eZBGbB06SBbmzWY9bCxCaOxo1 -----END CERTIFICATE-----Generated at Mon Oct 20 21:24:32 2025 by rpki-client