$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft File: rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft (raw, json) Hash identifier: fpsQ9hi0jfLCXrnc8cevYMI9+bUfZj4ssxAhXeh68iA= Subject key identifier: 17:3D:27:6E:4C:A2:7D:C3:EE:07:D0:2F:E5:22:EC:D8:C0:A8:B6:BE Authority key identifier: AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 Certificate issuer: /CN=A9172FC5/serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft Manifest number: AA Signing time: Sun 19 Oct 2025 09:23:13 +0000 Manifest this update: Sun 19 Oct 2025 09:23:13 +0000 Manifest next update: Sun 26 Oct 2025 09:23:13 +0000 Files and hashes: 1: rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl (hash: /2LR9Ro1Yu7OSvLf8aPCrNSmG/W1UexhfJa4iX97OYs=) 2: 15B99EFC016111F0B1B6A34EC4F9AE02.roa (hash: fNaQxATAW6BCNgpllm+ul+pMRSXup8I9s/wGqDPcAs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172FC5, serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Validity Not Before: Oct 19 09:23:13 2025 GMT Not After : Oct 26 09:23:13 2025 GMT Subject: CN=68f4ae01-c693 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:b6:f1:f5:c1:27:a1:56:bd:79:f9:44:2d:54: 82:c8:94:a7:d2:13:11:fa:c8:3c:54:b4:bf:2e:2f: 68:5d:63:2a:fa:e2:b4:88:bb:29:58:26:7e:e8:79: 57:a9:24:d5:62:ab:a1:91:dc:fe:c2:92:1b:82:85: 59:0a:4e:c6:3d:e8:5d:d1:04:25:97:03:22:d8:c8: 74:59:b4:95:99:4f:ee:c6:86:30:70:ef:9d:e5:7d: c1:37:16:ac:7c:34:23:58:0b:63:7c:f7:e5:61:e5: 66:02:68:59:9f:c9:b3:18:94:06:74:05:a8:02:bb: 57:fe:f0:a8:f9:37:7a:5f:11:fc:2d:f1:4e:90:21: 2f:14:68:09:c8:f4:92:31:14:2d:95:64:2b:b9:9f: f1:15:79:f6:51:b7:5e:25:be:6e:26:d1:a7:c4:a6: c0:40:e0:3e:83:96:1e:ca:68:af:0a:c9:b9:13:b6: 0d:56:5c:10:2d:7c:7e:29:73:bd:a5:0e:64:dd:69: 92:b3:9d:cd:11:70:25:11:5e:0e:4f:75:e5:25:4c: a8:ba:cc:d2:f3:89:d7:aa:4f:16:17:d3:65:6f:de: fb:12:5c:93:fb:c5:fd:89:f3:a2:f7:8a:e8:2c:44: b4:78:73:69:6d:d7:0a:c4:6c:b4:5c:5c:a6:07:5f: 79:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:3D:27:6E:4C:A2:7D:C3:EE:07:D0:2F:E5:22:EC:D8:C0:A8:B6:BE X509v3 Authority Key Identifier: keyid:AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:4c:44:7c:88:11:61:35:45:f1:8f:3c:62:23:f4:7e:90:38: 91:c7:b6:09:37:03:42:6c:2f:5f:a9:91:32:cd:9a:1b:79:29: 3f:f3:4e:3b:6a:3b:40:32:fb:e9:36:14:63:fe:fc:e7:43:23: 78:1e:6e:42:55:22:f7:af:9d:18:58:bc:0d:14:c5:78:38:59: 1f:06:82:20:71:c5:5e:58:5b:d0:83:e6:4c:42:9d:54:73:12: 2b:17:a6:cd:23:23:9b:24:5d:12:e1:7a:d1:a9:16:e6:d2:2d: 78:79:7b:13:2c:e2:49:06:19:1b:03:9c:9a:57:56:73:e0:02: 27:fb:33:57:30:c1:5d:0a:f1:39:82:54:e9:90:e4:98:c4:31: 7e:00:51:f4:1f:75:3f:1b:9e:e5:cb:9e:60:d8:88:31:ce:32: 14:07:cf:28:61:ef:63:d5:1c:db:76:eb:1e:0f:b8:80:81:bf: c0:1e:17:a7:0c:66:d1:17:d5:b0:9a:88:d2:72:41:a1:d0:7f: 8c:a1:ae:55:0d:49:b9:8a:84:1f:b2:30:4f:f8:43:04:77:2e: e5:d5:6d:19:58:59:81:8b:e4:e4:ae:de:2d:cf:9a:03:5b:60: 5f:03:b7:dc:bc:76:c0:b7:f8:8b:e1:3e:e2:e9:d5:14:90:1b: 7f:73:61:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJGQzUxMTAvBgNVBAUTKEFENTQ1RDI1MDRGRTFERTkyQUUxNzY2REY0NjU3NjM3 REI3QTdFNzUwHhcNMjUxMDE5MDkyMzEzWhcNMjUxMDI2MDkyMzEzWjAYMRYwFAYD VQQDEw02OGY0YWUwMS1jNjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/Lbx9cEnoVa9eflELVSCyJSn0hMR+sg8VLS/Li9oXWMq+uK0iLspWCZ+6HlX qSTVYquhkdz+wpIbgoVZCk7GPehd0QQllwMi2Mh0WbSVmU/uxoYwcO+d5X3BNxas fDQjWAtjfPflYeVmAmhZn8mzGJQGdAWoArtX/vCo+Td6XxH8LfFOkCEvFGgJyPSS MRQtlWQruZ/xFXn2UbdeJb5uJtGnxKbAQOA+g5YeymivCsm5E7YNVlwQLXx+KXO9 pQ5k3WmSs53NEXAlEV4OT3XlJUyouszS84nXqk8WF9Nlb977ElyT+8X9ifOi94ro LES0eHNpbdcKxGy0XFymB1956wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBc9J25M on3D7gfQL+Ui7NjAqLa+MB8GA1UdIwQYMBaAFK1UXSUE/h3pKuF2bfRldjfben51 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkZDNS9FNTM5Q0RBMEFC M0YxMUVGQkUwMkNGMTRDNEY5QUUwMi9yVlJkSlFULUhla3E0WFp0OUdWMk45dDZm blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JWUmRKUVQtSGVrcTRYWnQ5R1YyTjl0NmZuVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkZDNS9FNTM5Q0RBMEFCM0YxMUVGQkUwMkNGMTRDNEY5QUUwMi9yVlJkSlFULUhl a3E0WFp0OUdWMk45dDZmblUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoTER8iBFhNUXxjzxiI/R+kDiRx7YJNwNCbC9fqZEyzZobeSk/8047 ajtAMvvpNhRj/vznQyN4Hm5CVSL3r50YWLwNFMV4OFkfBoIgccVeWFvQg+ZMQp1U cxIrF6bNIyObJF0S4XrRqRbm0i14eXsTLOJJBhkbA5yaV1Zz4AIn+zNXMMFdCvE5 glTpkOSYxDF+AFH0H3U/G57ly55g2IgxzjIUB88oYe9j1RzbduseD7iAgb/AHhen DGbRF9WwmojSckGh0H+Moa5VDUm5ioQfsjBP+EMEdy7l1W0ZWFmBi+Tkrt4tz5oD W2BfA7fcvHbAt/iL4T7i6dUUkBt/c2Ea -----END CERTIFICATE-----Generated at Mon Oct 20 18:39:32 2025 by rpki-client