$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft File: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft (raw, json) Hash identifier: lV9k2urioWZtolIu0NWrQAx3PFM2QkzlHmueMc0vA1c= Subject key identifier: 58:79:1E:7E:27:03:60:F9:84:36:C5:60:E9:01:AA:7E:FC:75:F1:78 Authority key identifier: AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 Certificate issuer: /CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Certificate serial: 04D7 Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft Manifest number: 04D1 Signing time: Sun 19 Oct 2025 01:37:26 +0000 Manifest this update: Sun 19 Oct 2025 01:37:26 +0000 Manifest next update: Sun 26 Oct 2025 01:37:26 +0000 Files and hashes: 1: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl (hash: m9iBmli/EtbxtynJqCjiJ4qpb9r+Hu528kouycvAStI=) 2: 887BE0D0405D11ECA642D813C4F9AE02.roa (hash: qxVcUGlCZn4SUG82SOAXq9RSMSYslC+bAGjT3ytadTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1239 (0x4d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Validity Not Before: Oct 19 01:37:26 2025 GMT Not After : Oct 26 01:37:26 2025 GMT Subject: CN=68f440d6-6012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:fe:09:03:fb:c9:40:d6:cf:53:3f:6c:4c:06: 73:47:85:11:6d:67:e2:36:37:a4:61:79:ea:99:7a: a6:25:79:2f:a0:9a:29:3e:1d:8c:30:6e:51:0a:35: 50:35:de:3a:47:b5:f8:86:d0:6a:fd:bc:55:21:19: 7c:7f:17:4a:f9:a1:c9:f2:8c:56:96:7f:5d:ee:03: 27:a5:9d:a8:22:8d:8e:0c:bb:8f:fd:04:63:77:de: b8:e0:a5:89:15:05:20:3f:84:75:c9:1b:8b:4d:1e: ef:b2:7f:52:53:d4:59:c2:fd:d6:47:c4:fa:99:09: 18:28:40:6c:ef:83:54:26:1b:1e:91:1a:86:29:f8: d9:5f:66:48:f8:b1:1a:2f:4e:9c:f4:a8:28:e6:19: 10:6c:7b:a7:a5:1a:b5:4c:14:8d:80:4d:ed:38:88: 4f:7a:97:2c:59:ad:de:1e:bd:0e:4d:ae:e7:16:e2: e4:bf:46:04:9c:8f:4d:a2:f2:df:65:74:81:1e:9b: 8d:70:48:b5:62:79:86:11:83:65:53:ec:89:85:fa: 32:da:a3:0a:5d:f2:0d:f8:5e:75:84:63:d0:4f:bf: 1d:94:95:1a:ad:34:b6:93:48:fb:e2:1d:dc:99:70: fa:eb:18:21:df:06:ff:3c:9e:0a:6b:e3:31:32:8f: be:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:79:1E:7E:27:03:60:F9:84:36:C5:60:E9:01:AA:7E:FC:75:F1:78 X509v3 Authority Key Identifier: keyid:AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:15:09:6e:ed:20:e7:b6:9a:87:18:a9:24:1e:29:7d:76:75: 6e:57:fe:8a:0b:a6:69:cf:1c:ff:80:47:ad:9c:18:38:2d:ed: 2f:a7:66:6a:b7:cb:59:9d:9e:86:30:c4:c7:22:9a:53:1b:71: da:c6:69:5f:9a:75:b8:ef:36:fb:a1:32:fc:56:ab:8f:89:70: 4c:e2:ce:d6:0e:e0:f3:5f:fd:71:78:1d:94:93:e9:0f:51:f5: cb:0c:f6:df:2e:bd:01:fe:4f:48:a0:cd:38:14:18:9f:95:88: 96:ff:92:e7:f4:be:fc:e3:9a:8b:95:a2:f6:6d:84:5f:dc:53: d5:66:9a:f8:57:11:04:99:42:ab:39:33:76:d8:f3:53:de:03: a9:96:a6:03:78:7c:04:f6:46:b8:d5:2e:15:65:3d:85:f8:12: a6:1e:57:60:23:42:dd:f9:ff:b0:3b:b2:9e:8e:4f:24:a6:4f: 46:55:7c:d5:6d:32:6c:7f:a2:f3:0c:6b:46:f3:35:53:5e:97: b3:f9:2b:b7:9b:32:cc:7c:3e:67:33:83:86:74:83:3e:5a:e9: 34:86:8d:3f:ce:1d:6f:22:17:a9:22:a1:99:ed:4f:ed:8b:70: cc:df:24:06:04:ae:b8:30:9b:7c:7b:d4:38:a7:aa:bb:04:45: be:81:f1:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKEFCQzZGQkE0Qjc4NDI4Mzg3OTE5MERDNzE3RTM0QjRD RDg4MkRBMDgwHhcNMjUxMDE5MDEzNzI2WhcNMjUxMDI2MDEzNzI2WjAYMRYwFAYD VQQDEw02OGY0NDBkNi02MDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4f4JA/vJQNbPUz9sTAZzR4URbWfiNjekYXnqmXqmJXkvoJopPh2MMG5RCjVQ Nd46R7X4htBq/bxVIRl8fxdK+aHJ8oxWln9d7gMnpZ2oIo2ODLuP/QRjd9644KWJ FQUgP4R1yRuLTR7vsn9SU9RZwv3WR8T6mQkYKEBs74NUJhsekRqGKfjZX2ZI+LEa L06c9Kgo5hkQbHunpRq1TBSNgE3tOIhPepcsWa3eHr0OTa7nFuLkv0YEnI9NovLf ZXSBHpuNcEi1YnmGEYNlU+yJhfoy2qMKXfIN+F51hGPQT78dlJUarTS2k0j74h3c mXD66xgh3wb/PJ4Ka+MxMo++MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFh5Hn4n A2D5hDbFYOkBqn78dfF4MB8GA1UdIwQYMBaAFKvG+6S3hCg4eRkNxxfjS0zYgtoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy81RDc4OTlGNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtEaDVHUTNIRi1OTFROaUMy Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL3E4YjdwTGVFS0RoNUdRM0hGLU5MVE5pQzJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy81RDc4OTlGNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtE aDVHUTNIRi1OTFROaUMyZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQFQlu7SDntpqHGKkkHil9dnVuV/6KC6Zpzxz/gEetnBg4Le0vp2Zq t8tZnZ6GMMTHIppTG3HaxmlfmnW47zb7oTL8VquPiXBM4s7WDuDzX/1xeB2Uk+kP UfXLDPbfLr0B/k9IoM04FBiflYiW/5Ln9L7845qLlaL2bYRf3FPVZpr4VxEEmUKr OTN22PNT3gOplqYDeHwE9ka41S4VZT2F+BKmHldgI0Ld+f+wO7Kejk8kpk9GVXzV bTJsf6LzDGtG8zVTXpez+Su3mzLMfD5nM4OGdIM+Wuk0ho0/zh1vIhepIqGZ7U/t i3DM3yQGBK64MJt8e9Q4p6q7BEW+gfHc -----END CERTIFICATE-----Generated at Mon Oct 20 23:11:22 2025 by rpki-client