$ rpki-client -vvf rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft File: MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft (raw, json) Hash identifier: eGwb7/D6nKaleTMkfFr3yiLoQWKMZeQJvJBio8fyTZU= Subject key identifier: D3:42:CE:C8:D4:A7:EC:61:22:DD:35:28:7C:14:21:98:B0:E7:10:90 Authority key identifier: 32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 Certificate issuer: /CN=A9172B41/serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Certificate serial: 04B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft Manifest number: 04B2 Signing time: Sun 19 Oct 2025 01:44:03 +0000 Manifest this update: Sun 19 Oct 2025 01:44:03 +0000 Manifest next update: Sun 26 Oct 2025 01:44:03 +0000 Files and hashes: 1: MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl (hash: vD1py6yivVejO52649/n0ffoXlbEFmX1E8JWvrO8v4A=) 2: 5C7731E64B7111EC8E9FCB48C4F9AE02.roa (hash: VtnOs46KlpQVSJ9THDVnSS8EzLS3A9xUSm3n/4RNrWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:44:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1208 (0x4b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172B41, serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Validity Not Before: Oct 19 01:44:03 2025 GMT Not After : Oct 26 01:44:03 2025 GMT Subject: CN=68f44263-16c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8a:07:60:2d:df:03:ee:60:c2:c6:77:5f:c1: 1a:26:d1:d2:84:33:e7:c3:e6:81:10:e0:fc:5e:20: 01:73:5e:0f:20:10:42:3c:ba:23:34:f7:73:75:2d: 85:b8:90:b9:72:d2:94:07:68:87:7a:d4:36:b7:d4: 32:5a:c9:7e:22:2c:d9:94:25:95:cb:08:0d:81:df: 05:3b:2b:af:e5:85:f3:fc:9b:02:d0:a4:44:fb:fb: a4:6a:a7:e9:29:44:5d:a7:96:30:00:bd:a1:dd:5a: 20:0c:a4:34:d8:fe:4c:12:8b:d2:ef:9c:45:bb:3d: 0a:00:86:4d:a7:14:13:17:fb:aa:d9:08:48:eb:c6: 73:52:2b:94:a8:c4:58:bb:f8:0d:89:00:d3:b9:48: 5b:ff:ec:ef:98:95:98:e8:b9:7f:ba:0a:be:7f:7d: d2:16:be:73:b3:d1:f2:ed:a0:12:d1:20:cc:72:58: ba:18:c7:46:50:80:90:fa:b1:e8:fc:41:5d:3d:b4: d8:99:e9:7b:47:17:ba:aa:e0:62:dc:90:76:02:b0: b2:0f:65:cb:b6:6f:4b:d1:39:23:f6:01:ed:bb:d6: d9:54:8d:27:7a:25:a2:5c:3d:c0:9b:77:e0:13:5c: ae:6a:ae:6e:ac:8b:13:a5:71:fd:ab:81:47:9a:a6: a5:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:42:CE:C8:D4:A7:EC:61:22:DD:35:28:7C:14:21:98:B0:E7:10:90 X509v3 Authority Key Identifier: keyid:32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:95:61:4f:07:44:36:68:a2:a8:16:8d:8a:04:6a:40:28:e5: 9b:c2:0d:d9:b3:c0:fe:14:13:63:7d:d7:b2:a8:99:3c:ce:34: 9b:9a:67:0a:c7:8e:2e:c8:72:51:17:52:97:47:e7:90:a4:57: 4f:af:29:8c:27:bc:1f:56:d1:db:47:79:d9:fb:35:c3:ae:41: 04:87:1f:fe:e7:6c:a6:0c:50:99:10:e6:55:cf:b5:d5:5f:ce: b3:a2:af:78:04:7c:77:ca:b2:e1:d6:af:94:ff:da:55:b9:61: 1c:9d:e4:02:97:b2:f9:ed:2e:d0:a3:b9:27:93:4e:00:fd:23: cb:04:d5:f6:82:a1:6c:5a:67:80:8e:b2:20:eb:f1:91:b9:f8: 8b:ed:90:59:f9:62:50:c7:30:67:9d:69:9e:70:2c:78:c2:cb: e2:c0:8c:52:fa:4a:fd:dd:cf:bb:5d:b3:9d:a8:cb:6f:15:7b: 09:1b:5a:d6:1f:1c:1b:46:fa:2a:5d:1c:25:0a:03:86:d3:bd: df:6c:5f:c1:41:f5:5a:37:8b:c7:f5:b5:a9:f1:cd:49:cd:89: 34:11:a7:dc:4e:68:da:2c:9f:70:d4:66:6f:82:a5:3d:e2:10: cc:6f:81:e9:a8:c2:59:2a:c9:9f:b7:0d:23:13:63:06:64:11: ff:d0:9a:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJCNDExMTAvBgNVBAUTKDMyRTBGNzAwRTM4NzI0NTFBMUE4MzJDRDdEREU0MTc1 QkZCQTgzNjkwHhcNMjUxMDE5MDE0NDAzWhcNMjUxMDI2MDE0NDAzWjAYMRYwFAYD VQQDEw02OGY0NDI2My0xNmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsIoHYC3fA+5gwsZ3X8EaJtHShDPnw+aBEOD8XiABc14PIBBCPLojNPdzdS2F uJC5ctKUB2iHetQ2t9QyWsl+IizZlCWVywgNgd8FOyuv5YXz/JsC0KRE+/ukaqfp KURdp5YwAL2h3VogDKQ02P5MEovS75xFuz0KAIZNpxQTF/uq2QhI68ZzUiuUqMRY u/gNiQDTuUhb/+zvmJWY6Ll/ugq+f33SFr5zs9Hy7aAS0SDMcli6GMdGUICQ+rHo /EFdPbTYmel7Rxe6quBi3JB2ArCyD2XLtm9L0Tkj9gHtu9bZVI0neiWiXD3Am3fg E1yuaq5urIsTpXH9q4FHmqaluQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNNCzsjU p+xhIt01KHwUIZiw5xCQMB8GA1UdIwQYMBaAFDLg9wDjhyRRoagyzX3eQXW/uoNp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkI0MS8xNkMwQTcxNjRC NkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpGR2hxRExOZmQ1QmRiLTZn MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL011RDNBT09ISkZHaHFETE5mZDVCZGItNmcyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkI0MS8xNkMwQTcxNjRCNkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpG R2hxRExOZmQ1QmRiLTZnMmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANlWFPB0Q2aKKoFo2KBGpAKOWbwg3Zs8D+FBNjfdeyqJk8zjSbmmcK x44uyHJRF1KXR+eQpFdPrymMJ7wfVtHbR3nZ+zXDrkEEhx/+52ymDFCZEOZVz7XV X86zoq94BHx3yrLh1q+U/9pVuWEcneQCl7L57S7Qo7knk04A/SPLBNX2gqFsWmeA jrIg6/GRufiL7ZBZ+WJQxzBnnWmecCx4wsviwIxS+kr93c+7XbOdqMtvFXsJG1rW HxwbRvoqXRwlCgOG073fbF/BQfVaN4vH9bWp8c1JzYk0EafcTmjaLJ9w1GZvgqU9 4hDMb4HpqMJZKsmftw0jE2MGZBH/0Jpe -----END CERTIFICATE-----Generated at Mon Oct 20 22:46:43 2025 by rpki-client