$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft File: J7kXbXUBrEb9oBkmur5-vwlfko4.mft (raw, json) Hash identifier: FxR8TlLw2jqC7OyV3ZsjqxfaY1XbBrffCl5UNlpGV9w= Subject key identifier: 43:41:F2:37:24:81:63:23:8E:73:EB:31:91:71:86:02:15:CB:1C:66 Authority key identifier: 27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E Certificate issuer: /CN=A9171D35/serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Certificate serial: 0F14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft Manifest number: 0EFE Signing time: Mon 20 Oct 2025 18:07:50 +0000 Manifest this update: Mon 20 Oct 2025 18:07:50 +0000 Manifest next update: Mon 27 Oct 2025 18:07:50 +0000 Files and hashes: 1: J7kXbXUBrEb9oBkmur5-vwlfko4.crl (hash: STboj1Txu3xSrpSX+mrXNJdjjox+8yKP5ISGrHIZraE=) 2: C74924EE159F11EEBCFC135CC4F9AE02.roa (hash: A7sH5kT/nJtv/IMtWiRgvA6A10KdIHaRx/+kfjus0Io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 18:07:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3860 (0xf14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D35, serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Validity Not Before: Oct 20 18:07:50 2025 GMT Not After : Oct 27 18:07:50 2025 GMT Subject: CN=68f67a76-6be3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:64:77:a7:a2:01:96:1e:7c:84:bc:b4:be:21: f2:28:0b:fa:df:cf:13:d7:8b:42:a2:68:88:70:8d: 73:c5:ec:0b:53:95:14:a7:90:10:d4:56:cf:a9:72: f6:93:30:c2:4c:e0:d5:44:f5:32:93:88:45:28:f8: 45:6a:05:dc:54:e8:54:e7:f2:8f:2f:80:6a:3a:22: 76:d1:6c:20:33:fd:59:55:6c:dc:7a:db:52:ff:9f: be:93:2f:af:55:69:2b:16:6b:8b:fe:5d:34:5a:e1: 1c:74:08:57:c4:f2:58:71:00:c8:9a:aa:c9:cf:fc: 31:c6:85:d3:c2:21:85:47:dd:f3:0c:e4:8d:59:53: ba:76:6c:69:92:ee:1a:36:3b:fe:fa:39:1f:c0:c3: 71:0a:5d:dd:14:a8:71:d8:a2:23:ad:30:c0:33:0c: ff:cc:c4:8e:e2:fb:e3:b4:bc:4c:0d:29:dc:ab:60: 38:81:d2:e5:af:45:34:e2:bc:8a:ba:bd:8f:09:7a: 81:5a:fd:7b:98:1c:38:97:27:ad:ae:d6:7c:ab:9e: f3:9b:9b:dc:0a:c3:2d:d8:70:1a:3e:6e:08:77:b9: ac:e5:64:2a:8c:70:8c:e6:d1:f7:38:81:ab:d1:52: 39:13:ad:7b:4a:8f:bf:50:f7:ea:ec:e9:74:cd:af: ba:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:41:F2:37:24:81:63:23:8E:73:EB:31:91:71:86:02:15:CB:1C:66 X509v3 Authority Key Identifier: keyid:27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:97:ab:3c:4d:93:36:1d:d1:bb:a0:bb:1b:4c:80:08:3f:aa: dc:4e:28:47:97:1c:c7:c9:da:52:c2:90:57:2f:3a:f3:55:04: a5:db:36:64:6f:30:6a:5d:f4:2f:1c:30:73:9c:92:2a:0d:44: e9:14:20:4c:2d:ff:70:60:2c:fa:a5:a3:ad:f7:77:e1:d8:0a: 4e:5a:5a:e3:d6:11:5a:7b:a2:d4:8e:f2:62:d3:b2:97:65:38: 6d:54:ef:f4:9d:e3:f2:4e:e3:11:64:4f:6b:b5:95:cf:cb:2a: da:d6:6c:32:44:64:67:ae:ea:f9:a3:fe:77:85:5d:89:bb:75: 80:2e:58:e0:00:f4:11:a6:84:8a:2d:79:5e:95:90:00:f3:41: bd:c5:cf:b0:46:46:14:28:65:b5:53:49:d5:b0:1e:71:16:fe: 7f:36:0d:20:2e:00:c7:8e:b6:72:f4:0d:76:55:7c:61:23:8c: cc:22:4c:8f:94:d4:4c:11:30:30:e3:33:65:6f:4a:b1:25:17: 87:9c:13:b4:dc:a2:df:98:55:28:0c:dd:58:64:32:08:9c:4a: 8d:a4:2e:e0:d1:4a:bd:fb:e7:26:ad:d6:5d:1f:59:cc:d2:72: ec:0a:86:b7:ca:67:6b:d3:b3:dd:2f:cb:34:5f:85:8e:3d:16: 5f:28:58:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMzUxMTAvBgNVBAUTKDI3QjkxNzZENzUwMUFDNDZGREEwMTkyNkJBQkU3RUJG MDk1RjkyOEUwHhcNMjUxMDIwMTgwNzUwWhcNMjUxMDI3MTgwNzUwWjAYMRYwFAYD VQQDEw02OGY2N2E3Ni02YmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6WR3p6IBlh58hLy0viHyKAv6388T14tComiIcI1zxewLU5UUp5AQ1FbPqXL2 kzDCTODVRPUyk4hFKPhFagXcVOhU5/KPL4BqOiJ20WwgM/1ZVWzcettS/5++ky+v VWkrFmuL/l00WuEcdAhXxPJYcQDImqrJz/wxxoXTwiGFR93zDOSNWVO6dmxpku4a Njv++jkfwMNxCl3dFKhx2KIjrTDAMwz/zMSO4vvjtLxMDSncq2A4gdLlr0U04ryK ur2PCXqBWv17mBw4lyetrtZ8q57zm5vcCsMt2HAaPm4Id7ms5WQqjHCM5tH3OIGr 0VI5E617So+/UPfq7Ol0za+6wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFENB8jck gWMjjnPrMZFxhgIVyxxmMB8GA1UdIwQYMBaAFCe5F211AaxG/aAZJrq+fr8JX5KO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzNS9FQTREQ0ExQzhF REExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJFYjlvQmttdXI1LXZ3bGZr bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3a1hiWFVCckViOW9Ca211cjUtdndsZmtvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQzNS9FQTREQ0ExQzhFREExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJF YjlvQmttdXI1LXZ3bGZrbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHl6s8TZM2HdG7oLsbTIAIP6rcTihHlxzHydpSwpBXLzrzVQSl2zZk bzBqXfQvHDBznJIqDUTpFCBMLf9wYCz6paOt93fh2ApOWlrj1hFae6LUjvJi07KX ZThtVO/0nePyTuMRZE9rtZXPyyra1mwyRGRnrur5o/53hV2Ju3WALljgAPQRpoSK LXlelZAA80G9xc+wRkYUKGW1U0nVsB5xFv5/Ng0gLgDHjrZy9A12VXxhI4zMIkyP lNRMETAw4zNlb0qxJReHnBO03KLfmFUoDN1YZDIInEqNpC7g0Uq9++cmrdZdH1nM 0nLsCoa3ymdr07PdL8s0X4WOPRZfKFgV -----END CERTIFICATE-----Generated at Tue Oct 21 01:02:51 2025 by rpki-client