$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft File: b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft (raw, json) Hash identifier: KToxavBSLNSAHRBobqJOEeuTgODGHTrDppJRIdK16Ag= Subject key identifier: 75:E0:62:74:A1:18:8B:E6:E8:29:FE:0B:20:BC:53:05:5F:07:68:1F Authority key identifier: 6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 Certificate issuer: /CN=A9173CCA/serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft Manifest number: D8 Signing time: Sun 19 Oct 2025 08:39:57 +0000 Manifest this update: Sun 19 Oct 2025 08:39:57 +0000 Manifest next update: Sun 26 Oct 2025 08:39:57 +0000 Files and hashes: 1: b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl (hash: 6mRgBFuo3ZEqCHn6+WMUkYjypFuQ3/MP8CMu5bsvL28=) 2: 3866993C6A6711EF929E6773C4F9AE02.roa (hash: blrLiUR2o+nqfH3V7oxiwVZEehZHbPAqakKDEvu+zf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:39:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CCA, serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Validity Not Before: Oct 19 08:39:57 2025 GMT Not After : Oct 26 08:39:57 2025 GMT Subject: CN=68f4a3dd-dfea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d1:96:a7:8e:27:47:f4:0e:3c:98:ef:b5:42: 3c:f5:9b:1a:87:ed:38:aa:a3:1f:37:b7:6f:dc:74: 8c:a3:fd:3b:00:09:7c:b8:8e:bd:de:17:d8:01:e9: 92:27:7f:87:76:c7:0a:31:3c:f6:0d:34:f1:c5:47: 2a:e7:aa:8e:c5:23:e4:67:33:0e:c8:a1:79:bf:c4: c0:45:a4:7a:8c:a4:d7:a2:1b:0f:71:9d:44:87:4e: b5:16:67:99:df:b5:53:93:49:1b:94:7d:78:20:02: 6c:ad:80:6c:c5:03:b3:47:71:f7:3b:99:69:14:de: ac:35:0e:9c:4b:1e:11:35:5c:4f:96:c1:13:44:ba: d9:8e:59:b9:a4:18:52:89:3a:1d:e9:98:cf:34:ba: 15:29:e5:23:70:35:b3:ca:eb:95:f7:8f:9e:78:ca: f3:c7:73:57:18:0e:a0:b2:c6:ae:a2:b1:e3:8d:78: 3d:81:be:42:67:64:be:be:d1:bd:1e:09:89:58:14: 79:05:db:2d:a5:e6:73:db:a4:5f:9c:84:bd:b0:2c: 63:df:b7:aa:f6:02:f8:74:33:a1:d9:6b:89:ee:7b: 23:c3:07:93:54:a1:7f:1b:a8:37:dd:64:97:97:d1: c0:81:96:fa:4a:52:37:a8:de:c2:2a:55:17:90:b9: de:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:E0:62:74:A1:18:8B:E6:E8:29:FE:0B:20:BC:53:05:5F:07:68:1F X509v3 Authority Key Identifier: keyid:6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:a8:03:03:1c:a4:ab:99:32:5f:f4:85:1b:15:13:90:89:39: e5:ba:5b:4a:c9:f3:bd:35:f7:4e:9c:8a:3f:c1:7a:bf:d5:1f: 3e:a2:4b:1a:05:f9:e4:a1:2d:9d:1e:97:c7:6d:07:1f:17:d9: 32:7e:1a:dd:df:75:1d:c0:0e:69:3d:b4:4b:11:ae:ef:3b:00: f1:dc:8c:b1:49:34:50:fc:97:c2:36:0f:ab:ec:e5:13:a4:10: a2:4c:2a:ec:68:f4:ac:4f:33:2d:85:fb:96:68:bc:33:6d:29: f1:4f:2c:af:3d:66:af:65:7e:e7:1d:ec:95:0c:c3:9d:87:01: fc:3f:86:0b:08:9b:b1:f1:b0:34:eb:64:19:c0:43:69:75:7a: 25:87:00:51:6c:48:2d:04:16:af:02:90:9b:2b:cd:76:57:67: 1f:d1:a0:7b:fd:6d:50:9d:04:1e:af:3c:95:f7:41:fb:7b:dd: 66:22:a1:0e:54:f6:fb:88:39:56:fe:8a:26:a0:31:c6:c8:29: 15:3c:79:1a:ef:5e:aa:58:a2:a6:e2:6a:39:b2:cc:1b:be:85: 5d:63:01:44:5b:66:58:b3:7e:68:3a:25:61:8a:6b:f9:e0:dc: 78:d6:ce:2a:42:fa:ee:9e:27:7e:75:ef:31:1f:d9:81:bd:de: 81:a5:8e:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDQ0ExMTAvBgNVBAUTKDZGRDVCNzQzMUU3MTUwRUQ2NTBGN0YyN0EzRENGOEM1 Q0VBQzc3NjQwHhcNMjUxMDE5MDgzOTU3WhcNMjUxMDI2MDgzOTU3WjAYMRYwFAYD VQQDEw02OGY0YTNkZC1kZmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotGWp44nR/QOPJjvtUI89Zsah+04qqMfN7dv3HSMo/07AAl8uI693hfYAemS J3+HdscKMTz2DTTxxUcq56qOxSPkZzMOyKF5v8TARaR6jKTXohsPcZ1Eh061FmeZ 37VTk0kblH14IAJsrYBsxQOzR3H3O5lpFN6sNQ6cSx4RNVxPlsETRLrZjlm5pBhS iTod6ZjPNLoVKeUjcDWzyuuV94+eeMrzx3NXGA6gssauorHjjXg9gb5CZ2S+vtG9 HgmJWBR5BdstpeZz26RfnIS9sCxj37eq9gL4dDOh2WuJ7nsjwweTVKF/G6g33WSX l9HAgZb6SlI3qN7CKlUXkLnedwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXgYnSh GIvm6Cn+CyC8UwVfB2gfMB8GA1UdIwQYMBaAFG/Vt0MecVDtZQ9/J6Pc+MXOrHdk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NDQS8xQ0E5QjgyNDY1 NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVPMWxEMzhubzl6NHhjNnNk MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5VzNReDV4VU8xbEQzOG5vOXo0eGM2c2QyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NDQS8xQ0E5QjgyNDY1NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVP MWxEMzhubzl6NHhjNnNkMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYqAMDHKSrmTJf9IUbFROQiTnlultKyfO9NfdOnIo/wXq/1R8+oksa BfnkoS2dHpfHbQcfF9kyfhrd33UdwA5pPbRLEa7vOwDx3IyxSTRQ/JfCNg+r7OUT pBCiTCrsaPSsTzMthfuWaLwzbSnxTyyvPWavZX7nHeyVDMOdhwH8P4YLCJux8bA0 62QZwENpdXolhwBRbEgtBBavApCbK812V2cf0aB7/W1QnQQerzyV90H7e91mIqEO VPb7iDlW/oomoDHGyCkVPHka716qWKKm4mo5sswbvoVdYwFEW2ZYs35oOiVhimv5 4Nx41s4qQvrunid+de8xH9mBvd6BpY4Q -----END CERTIFICATE-----Generated at Mon Oct 20 05:43:58 2025 by rpki-client