$ rpki-client -vvf rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft File: CkIqY5fY62yzV3UpfOtVpeGP4eI.mft (raw, json) Hash identifier: 4gVCSZ5AJH/HzrYSfRImQf8wKkBDQ6x8ErUOkRek6xo= Subject key identifier: AB:68:A1:E2:D4:23:16:E1:4A:4E:95:D2:E6:EE:A2:17:F7:95:53:6A Authority key identifier: 0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 Certificate issuer: /CN=A9176AFD/serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Certificate serial: 191C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft Manifest number: 190A Signing time: Sat 18 Oct 2025 16:49:41 +0000 Manifest this update: Sat 18 Oct 2025 16:49:41 +0000 Manifest next update: Sat 25 Oct 2025 16:49:41 +0000 Files and hashes: 1: CkIqY5fY62yzV3UpfOtVpeGP4eI.crl (hash: lNYlvN65ulfLrCf1+46Gy8dimAzmXL2tii3YVvuMagY=) 2: D6D99A3EBE3711EDA6617C5DC4F9AE02.roa (hash: LY7vLpDfVXZjs8mY5Lmcq8YY4mbx+XwbeXcZe9sNvfM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:49:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6428 (0x191c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176AFD, serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Validity Not Before: Oct 18 16:49:41 2025 GMT Not After : Oct 25 16:49:41 2025 GMT Subject: CN=68f3c525-dfa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bd:18:e6:f9:db:ee:a9:ed:e5:a4:8d:c7:6c: 67:5c:87:d4:c6:3b:4f:70:1d:4b:74:55:84:11:c1: 09:61:32:71:7f:2c:07:52:09:9c:a3:c7:c1:89:be: 05:ed:ef:b0:f2:f0:9e:d3:62:14:b1:3e:14:91:bb: 56:93:87:42:57:c8:44:c3:f9:70:bc:fc:62:6d:22: c3:6e:67:89:49:5f:b6:ff:a6:b4:87:d4:f7:83:02: d0:fa:fd:21:39:32:0c:c1:04:ed:95:2c:cf:4e:40: 83:d1:45:95:a9:1e:5f:0a:25:84:e6:3a:66:cd:ea: 81:ae:37:c2:dd:8b:54:a5:d6:25:29:9a:76:34:b5: 4e:3f:ab:2e:05:a9:60:85:92:67:c3:e6:bb:7c:44: cc:a6:65:ea:5e:f6:ad:0b:f7:2c:f8:c3:28:d7:3d: 3f:e7:65:36:4e:0d:24:aa:c7:90:c8:a1:99:10:05: 2d:d2:49:13:d7:42:31:1f:73:10:3e:2a:b2:85:ea: a4:26:4c:4d:cc:c3:d9:02:fb:00:0c:7d:75:73:e1: d1:2f:42:20:e8:35:07:e4:07:1e:10:87:f6:cc:ff: 85:36:0e:b8:20:6c:d4:c0:e5:6c:7c:b7:2b:ee:e9: ad:98:68:22:c4:bb:a4:34:5d:0e:db:86:7a:4a:d9: 35:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:68:A1:E2:D4:23:16:E1:4A:4E:95:D2:E6:EE:A2:17:F7:95:53:6A X509v3 Authority Key Identifier: keyid:0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:2b:42:c1:07:ee:61:23:e7:3f:cf:25:f6:7e:bc:05:60:49: f5:54:aa:f4:47:6d:03:3b:05:6b:81:93:46:f2:15:a6:c7:94: 3e:6d:2f:1d:8f:6a:48:86:4d:9f:8a:f6:83:ee:4f:4c:71:cc: a9:11:58:29:78:4e:39:c8:c9:bf:46:b6:08:40:d4:b1:f9:2e: 17:76:19:63:92:c9:f9:2d:b7:58:d2:bf:e0:be:3f:b3:62:19: f9:b8:15:7a:47:cb:67:41:21:67:08:88:32:71:88:3c:4d:28: fb:79:f0:fb:b0:80:56:b4:5d:da:b0:79:2d:4f:b8:48:ae:3c: 24:08:d3:0f:cb:89:b7:de:c8:1a:23:d8:49:61:92:d9:82:9a: 92:c1:36:ee:cb:0a:1a:27:bc:44:35:cc:38:00:d2:5a:4e:42: 05:94:bd:c2:ae:c7:2e:dd:2f:73:77:c5:1c:68:3e:64:98:1f: fb:40:33:ea:06:17:ff:e8:1f:bf:3e:73:ba:46:8b:f5:82:af: 28:28:04:ea:02:84:d7:0d:14:18:17:95:17:3e:fa:83:85:c5: 71:c9:5a:b2:0b:2f:9e:2a:22:db:8c:cd:51:3c:d6:fb:90:c3: 9f:fc:be:30:25:78:10:e5:b2:59:35:0f:cd:a0:60:05:cb:b8: c1:b8:4f:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGRwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZBRkQxMTAvBgNVBAUTKDBBNDIyQTYzOTdEOEVCNkNCMzU3NzUyOTdDRUI1NUE1 RTE4RkUxRTIwHhcNMjUxMDE4MTY0OTQxWhcNMjUxMDI1MTY0OTQxWjAYMRYwFAYD VQQDEw02OGYzYzUyNS1kZmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxr0Y5vnb7qnt5aSNx2xnXIfUxjtPcB1LdFWEEcEJYTJxfywHUgmco8fBib4F 7e+w8vCe02IUsT4UkbtWk4dCV8hEw/lwvPxibSLDbmeJSV+2/6a0h9T3gwLQ+v0h OTIMwQTtlSzPTkCD0UWVqR5fCiWE5jpmzeqBrjfC3YtUpdYlKZp2NLVOP6suBalg hZJnw+a7fETMpmXqXvatC/cs+MMo1z0/52U2Tg0kqseQyKGZEAUt0kkT10IxH3MQ PiqyheqkJkxNzMPZAvsADH11c+HRL0Ig6DUH5AceEIf2zP+FNg64IGzUwOVsfLcr 7umtmGgixLukNF0O24Z6Stk1gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKtooeLU IxbhSk6V0ubuohf3lVNqMB8GA1UdIwQYMBaAFApCKmOX2Otss1d1KXzrVaXhj+Hi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkFGRC81QkIyMjMwQTky RjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYyeXpWM1VwZk90VnBlR1A0 ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrSXFZNWZZNjJ5elYzVXBmT3RWcGVHUDRlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkFGRC81QkIyMjMwQTkyRjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYy eXpWM1VwZk90VnBlR1A0ZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9K0LBB+5hI+c/zyX2frwFYEn1VKr0R20DOwVrgZNG8hWmx5Q+bS8d j2pIhk2fivaD7k9MccypEVgpeE45yMm/RrYIQNSx+S4Xdhljksn5LbdY0r/gvj+z Yhn5uBV6R8tnQSFnCIgycYg8TSj7efD7sIBWtF3asHktT7hIrjwkCNMPy4m33sga I9hJYZLZgpqSwTbuywoaJ7xENcw4ANJaTkIFlL3Crscu3S9zd8UcaD5kmB/7QDPq Bhf/6B+/PnO6Rov1gq8oKATqAoTXDRQYF5UXPvqDhcVxyVqyCy+eKiLbjM1RPNb7 kMOf/L4wJXgQ5bJZNQ/NoGAFy7jBuE80 -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:37 2025 by rpki-client