$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft File: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft (raw, json) Hash identifier: ilUUQTzwh3OoHLcWa3xKn0nlFB/Q/vAiaV3JRvZIZJ0= Subject key identifier: DF:E4:C2:2A:A5:41:D6:79:C7:52:D2:11:C9:FA:6E:80:71:CF:BF:41 Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0CF4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft Manifest number: 0CB3 Signing time: Sat 18 Oct 2025 19:07:19 +0000 Manifest this update: Sat 18 Oct 2025 19:07:18 +0000 Manifest next update: Sat 25 Oct 2025 19:07:18 +0000 Files and hashes: 1: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl (hash: MqrCijmDsKHJyvVK5YCECfmm5KZHftv3gMQ5pXhTlww=) 2: 0EF9BE4E276F11EEB328204AC4F9AE02.roa (hash: ySE2YBsbAXt0k1PEdiGam1s5GhhHLonIBlG28ashrzw=) 3: 451C283AFE4911ED9352E438C4F9AE02.roa (hash: 9xj2eLyG/tdesiN53tFy07gS2PXLIBFRo+Pfj6Aj7f4=) 4: D47B21C24FFE11EAA0E4ED42C4F9AE02.roa (hash: dJZrsN09jQhR1tV/MBGDtF9J2z2S5+/G8ySEaBQlIWI=) 5: 76BF7682061B11EAAD56521BC4F9AE02.roa (hash: 5k3lhIIOE5jK/yOHyIZ8i0wDdX2SrJVnqaK6Nl9SYpA=) 6: 430342A4C02B11EA85244830C4F9AE02.roa (hash: 0bKIGEsq8hLfPMAMaZjPiHvxpIZHU52fzssXfn7yiXU=) 7: E397AB78866F11EBA76EED3EC4F9AE02.roa (hash: DBPGuu5yRvDvP4FC/IjV2H3T+xTKFbXciVMjwanRb/4=) 8: E0848D606F7611EDB491621FC4F9AE02.roa (hash: /EuxmPPRYBaK5xLwAa5WDWDWOcYmzlBlj89Amjexk/E=) 9: CF257402276E11EEBE7B7B49C4F9AE02.roa (hash: DfS1XhJ0VY2l1Vl6FaTOWiiwrvVb4J6NRESIx8xEXkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3316 (0xcf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5, serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: Oct 18 19:07:18 2025 GMT Not After : Oct 25 19:07:18 2025 GMT Subject: CN=68f3e567-7eee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:79:f3:61:95:66:d6:dd:ae:88:15:65:94:79: 78:ab:86:96:e5:40:00:32:ba:d3:2c:d4:bc:59:cf: 5b:bb:79:ba:9e:11:dc:e8:88:bf:70:96:a2:0b:cf: 77:9f:b8:6b:74:ce:a2:ba:d4:6a:62:a6:19:a7:69: b2:b6:7e:a6:e8:6c:09:e8:51:d1:a4:2f:a3:6d:bc: 13:61:a7:12:c1:40:d8:cb:73:f6:78:0d:ef:ec:f9: 84:b5:13:74:c4:6e:81:ae:11:62:e3:32:37:0a:90: 7e:f5:99:ad:75:c2:d0:68:d3:47:5c:60:d9:e2:38: 09:17:90:66:5a:89:9b:5a:7b:f4:0a:cb:e6:11:97: 9b:f9:ad:84:67:8a:51:6d:7d:b5:cc:87:c9:5d:43: 14:ea:3a:58:73:86:53:fb:55:7e:be:9c:b5:41:f4: 00:55:57:bf:52:6d:7f:80:66:fd:bf:08:2d:ac:6e: ab:c7:03:77:e5:6f:5f:9e:26:eb:2f:22:e7:2b:d9: 45:5f:0a:9e:51:d6:c1:06:a3:16:af:9c:ad:1e:d1: 70:79:15:43:ee:84:1d:fb:14:74:79:eb:ad:01:28: b8:23:e4:56:17:33:f5:e3:1d:1a:69:d5:34:ea:b4: b0:d0:a5:2b:6e:85:40:84:56:73:47:d2:56:1b:a5: f5:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:E4:C2:2A:A5:41:D6:79:C7:52:D2:11:C9:FA:6E:80:71:CF:BF:41 X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:a2:08:02:96:10:31:bb:a0:97:4b:b2:33:aa:9c:05:06:be: 6d:60:90:ff:76:be:1d:d9:52:33:0d:99:ee:bc:a4:fd:b3:eb: ba:13:08:66:f3:67:48:dc:85:9f:75:0e:99:a8:38:82:d8:f2: ba:78:3c:b4:88:df:50:44:ce:92:e1:80:ce:09:dd:14:cb:db: 55:a7:a6:56:12:62:59:d8:cd:39:61:f3:f8:77:8e:a8:6a:df: 33:29:ae:5f:59:7d:cd:90:2f:24:cb:41:7e:5a:49:e2:12:e9: fc:1a:65:8a:22:6c:73:0c:86:2d:52:84:f1:93:da:7f:30:e1: d8:18:e2:5d:6b:bf:c9:50:33:41:18:81:24:09:c7:54:b5:d0: 35:a9:4f:d4:87:bc:2b:31:8d:fe:b9:ae:99:d2:c7:05:48:3e: 83:1f:4a:31:59:71:56:b6:4b:2a:8f:aa:9b:6f:9d:d3:3c:c5: 94:4c:63:4d:2a:8f:c7:16:ce:a4:cd:3b:3d:18:79:8e:5d:c4: 9d:ed:6f:f6:27:09:84:2e:5b:ec:19:42:27:41:0c:06:9a:b6: 6e:f3:2f:96:b5:a8:e5:48:f3:99:f2:f1:91:3b:50:e5:8c:fe: 5f:ee:f0:14:75:c1:7b:05:6d:1b:58:0e:09:e8:2b:23:45:34: e2:cc:8d:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjUxMDE4MTkwNzE4WhcNMjUxMDI1MTkwNzE4WjAYMRYwFAYD VQQDEw02OGYzZTU2Ny03ZWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHnzYZVm1t2uiBVllHl4q4aW5UAAMrrTLNS8Wc9bu3m6nhHc6Ii/cJaiC893 n7hrdM6iutRqYqYZp2mytn6m6GwJ6FHRpC+jbbwTYacSwUDYy3P2eA3v7PmEtRN0 xG6BrhFi4zI3CpB+9ZmtdcLQaNNHXGDZ4jgJF5BmWombWnv0CsvmEZeb+a2EZ4pR bX21zIfJXUMU6jpYc4ZT+1V+vpy1QfQAVVe/Um1/gGb9vwgtrG6rxwN35W9fnibr LyLnK9lFXwqeUdbBBqMWr5ytHtFweRVD7oQd+xR0eeutASi4I+RWFzP14x0aadU0 6rSw0KUrboVAhFZzR9JWG6X1/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN/kwiql QdZ5x1LSEcn6boBxz79BMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEVCNS9BRkVBMjlDMjA2MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1w SWJobVpPTUx4WHdnN1JxTVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBoggClhAxu6CXS7IzqpwFBr5tYJD/dr4d2VIzDZnuvKT9s+u6Ewhm 82dI3IWfdQ6ZqDiC2PK6eDy0iN9QRM6S4YDOCd0Uy9tVp6ZWEmJZ2M05YfP4d46o at8zKa5fWX3NkC8ky0F+WkniEun8GmWKImxzDIYtUoTxk9p/MOHYGOJda7/JUDNB GIEkCcdUtdA1qU/Uh7wrMY3+ua6Z0scFSD6DH0oxWXFWtksqj6qbb53TPMWUTGNN Ko/HFs6kzTs9GHmOXcSd7W/2JwmELlvsGUInQQwGmrZu8y+WtajlSPOZ8vGRO1Dl jP5f7vAUdcF7BW0bWA4J6CsjRTTizI2q -----END CERTIFICATE-----Generated at Mon Oct 20 04:24:57 2025 by rpki-client