$ rpki-client -vvf rpki.apnic.net/member_repository/A9172C46/900389FE710D11F08083452FC4F9AE02/8D39OxYGRUyhuoaQPnmtpwULoWo.mft File: 8D39OxYGRUyhuoaQPnmtpwULoWo.mft (raw, json) Hash identifier: phMuuVsREdXMC10vyIeTUDg7iThDMxwFErN/YacQIB8= Subject key identifier: 80:74:14:8E:73:82:72:35:A4:8B:57:B9:3A:4C:A7:33:9C:49:60:30 Authority key identifier: F0:3D:FD:3B:16:06:45:4C:A1:BA:86:90:3E:79:AD:A7:05:0B:A1:6A Certificate issuer: /CN=A9172C46/serialNumber=F03DFD3B1606454CA1BA86903E79ADA7050BA16A Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8D39OxYGRUyhuoaQPnmtpwULoWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172C46/900389FE710D11F08083452FC4F9AE02/8D39OxYGRUyhuoaQPnmtpwULoWo.mft Manifest number: 2F Signing time: Sun 19 Oct 2025 11:14:58 +0000 Manifest this update: Sun 19 Oct 2025 11:14:58 +0000 Manifest next update: Sun 26 Oct 2025 11:14:58 +0000 Files and hashes: 1: 8D39OxYGRUyhuoaQPnmtpwULoWo.crl (hash: saOpw/MD2kTbi/ZyzwyZLM+4tT/SBMuOL4mAi7ICaHQ=) 2: 2E834C9C719311F08B21BD17C4F9AE02.roa (hash: S2srypxp7sEj5mgpvV1lWNa9dizgL57pVNGYl/RcGuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172C46/900389FE710D11F08083452FC4F9AE02/8D39OxYGRUyhuoaQPnmtpwULoWo.crl rsync://rpki.apnic.net/member_repository/A9172C46/900389FE710D11F08083452FC4F9AE02/8D39OxYGRUyhuoaQPnmtpwULoWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8D39OxYGRUyhuoaQPnmtpwULoWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:14:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172C46, serialNumber=F03DFD3B1606454CA1BA86903E79ADA7050BA16A Validity Not Before: Oct 19 11:14:58 2025 GMT Not After : Oct 26 11:14:58 2025 GMT Subject: CN=68f4c832-2a70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:af:96:d2:65:d6:b0:0b:90:ea:df:6c:c9:67: f1:67:b9:98:71:0d:4d:0d:b2:ac:67:7f:48:e9:c9: 6e:63:1a:73:de:06:eb:ca:c1:92:59:e4:08:eb:a2: 3d:95:5d:e9:58:55:ce:6f:79:ef:03:ad:5a:8c:15: c9:42:40:bf:cb:c5:dd:da:12:ca:00:24:8d:64:e3: 5f:f0:79:82:89:2d:81:25:a6:39:3f:dc:8f:b2:03: 0b:19:31:43:1f:e7:6d:d0:b0:ac:2e:b6:e6:6b:89: 15:1b:17:12:68:90:33:22:71:77:84:a5:d0:7d:65: 34:e8:93:06:a5:61:4f:51:33:5c:90:44:cf:06:1d: b8:e6:f3:59:14:10:cd:a4:1b:31:2f:4c:83:98:49: bc:d3:d8:5b:da:4d:e3:69:8a:7e:7b:32:00:2c:c4: 14:58:5e:16:3e:a3:0e:4e:30:5f:d1:3f:0b:90:00: 05:5b:a4:2b:d8:6c:23:58:ff:71:91:ba:f6:f3:32: 30:39:0e:69:c5:9a:6b:22:13:55:05:7d:98:5e:c6: 22:a6:b0:50:66:70:df:b1:9d:b8:17:81:fa:49:9c: 27:38:f9:99:98:3e:bb:bd:78:b7:bf:89:5c:79:30: 25:96:23:61:7c:bb:1b:41:32:2f:df:72:52:4d:95: b3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:74:14:8E:73:82:72:35:A4:8B:57:B9:3A:4C:A7:33:9C:49:60:30 X509v3 Authority Key Identifier: keyid:F0:3D:FD:3B:16:06:45:4C:A1:BA:86:90:3E:79:AD:A7:05:0B:A1:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172C46/900389FE710D11F08083452FC4F9AE02/8D39OxYGRUyhuoaQPnmtpwULoWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8D39OxYGRUyhuoaQPnmtpwULoWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172C46/900389FE710D11F08083452FC4F9AE02/8D39OxYGRUyhuoaQPnmtpwULoWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:b3:11:97:ee:36:7e:c4:ec:dc:8a:cb:81:6e:26:68:83:99: 66:56:64:3b:7c:0a:70:69:d0:d1:8e:0d:86:27:63:39:5a:51: a7:36:8a:a6:4e:c3:71:63:b8:90:e7:d7:58:3f:ad:16:89:42: 57:eb:94:eb:f7:77:02:a3:1f:66:3a:de:9f:7e:b4:82:44:6a: 21:ff:86:e4:2a:d3:64:d9:8f:83:24:16:53:3f:13:85:3c:e1: 84:51:74:ce:2e:c9:d1:df:d1:85:cd:54:54:f3:1b:ed:29:16: ee:bf:a8:19:cf:8d:b4:c3:b6:92:68:45:92:38:db:99:a8:d3: e3:7f:1b:82:77:8a:cc:8d:cf:7b:ee:be:0e:37:e9:82:3e:a4: 22:08:70:cc:a3:55:9e:9e:d8:3f:72:4e:01:8b:61:6d:2c:ff: 96:92:c1:f9:42:98:b5:98:66:0a:e4:ef:ff:48:6d:35:5b:32: 6a:c4:58:ff:30:3a:cb:8c:2f:d5:d2:2d:5e:c9:dd:0d:4b:a2: 9f:df:19:e3:33:0d:f2:23:46:ac:66:0a:82:4d:5a:82:37:2b: be:e1:f8:1c:ca:2d:04:ea:92:fe:b1:84:8a:c5:a8:c6:00:08: e2:9f:88:89:ac:b2:5f:b3:d0:7b:ea:c6:fc:12:35:14:66:33: 5d:51:5e:18 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MkM0NjExMC8GA1UEBRMoRjAzREZEM0IxNjA2NDU0Q0ExQkE4NjkwM0U3OUFEQTcw NTBCQTE2QTAeFw0yNTEwMTkxMTE0NThaFw0yNTEwMjYxMTE0NThaMBgxFjAUBgNV BAMTDTY4ZjRjODMyLTJhNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2r5bSZdawC5Dq32zJZ/FnuZhxDU0Nsqxnf0jpyW5jGnPeBuvKwZJZ5Ajroj2V XelYVc5vee8DrVqMFclCQL/Lxd3aEsoAJI1k41/weYKJLYElpjk/3I+yAwsZMUMf 523QsKwutuZriRUbFxJokDMicXeEpdB9ZTTokwalYU9RM1yQRM8GHbjm81kUEM2k GzEvTIOYSbzT2FvaTeNpin57MgAsxBRYXhY+ow5OMF/RPwuQAAVbpCvYbCNY/3GR uvbzMjA5DmnFmmsiE1UFfZhexiKmsFBmcN+xnbgXgfpJnCc4+ZmYPru9eLe/iVx5 MCWWI2F8uxtBMi/fclJNlbNdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgHQUjnOC cjWki1e5OkynM5xJYDAwHwYDVR0jBBgwFoAU8D39OxYGRUyhuoaQPnmtpwULoWow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyQzQ2LzkwMDM4OUZFNzEw RDExRjA4MDgzNDUyRkM0RjlBRTAyLzhEMzlPeFlHUlV5aHVvYVFQbm10cHdVTG9X by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOEQzOU94WUdSVXlodW9hUVBubXRwd1VMb1dvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcy QzQ2LzkwMDM4OUZFNzEwRDExRjA4MDgzNDUyRkM0RjlBRTAyLzhEMzlPeFlHUlV5 aHVvYVFQbm10cHdVTG9Xby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHKzEZfuNn7E7NyKy4FuJmiDmWZWZDt8CnBp0NGODYYnYzlaUac2iqZO w3FjuJDn11g/rRaJQlfrlOv3dwKjH2Y63p9+tIJEaiH/huQq02TZj4MkFlM/E4U8 4YRRdM4uydHf0YXNVFTzG+0pFu6/qBnPjbTDtpJoRZI425mo0+N/G4J3isyNz3vu vg436YI+pCIIcMyjVZ6e2D9yTgGLYW0s/5aSwflCmLWYZgrk7/9IbTVbMmrEWP8w OsuML9XSLV7J3Q1Lop/fGeMzDfIjRqxmCoJNWoI3K77h+BzKLQTqkv6xhIrFqMYA COKfiImssl+z0HvqxvwSNRRmM11RXhg= -----END CERTIFICATE-----Generated at Mon Oct 20 13:50:06 2025 by rpki-client