$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft File: H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft (raw, json) Hash identifier: PqoJdbzSNPmUT7njCcdTYiIIHk16/PRHjE2hPp6kkjc= Subject key identifier: B8:90:CF:53:A4:E3:5F:7A:E3:C3:CD:65:55:37:A1:6A:4D:F0:E9:3C Authority key identifier: 1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 Certificate issuer: /CN=A917B4DF/serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Certificate serial: 0646 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft Manifest number: 063F Signing time: Sun 19 Oct 2025 00:16:13 +0000 Manifest this update: Sun 19 Oct 2025 00:16:13 +0000 Manifest next update: Sun 26 Oct 2025 00:16:13 +0000 Files and hashes: 1: H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl (hash: c/+thBE0Gr8hU9/JZiqI9NF1rS4QfhwOJi28hELooXI=) 2: F8CE85E2B30211EBA63AE482C4F9AE02.roa (hash: JNO//UyjyCwtO6c12uk/NjDfBJbKa4UXXgFo1EP+Qts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1606 (0x646) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4DF, serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Validity Not Before: Oct 19 00:16:13 2025 GMT Not After : Oct 26 00:16:13 2025 GMT Subject: CN=68f42dcd-f672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7d:25:33:49:41:54:4c:34:55:c7:7d:fc:48: 24:d2:08:9d:59:b5:c4:9e:81:9c:bb:26:46:13:0d: a8:77:be:80:e0:eb:c5:4f:37:30:59:3a:b6:93:00: b8:44:0e:6d:ad:47:95:b1:b7:81:ae:e8:e9:42:f6: f4:7f:cc:d2:16:8c:fc:73:c1:02:31:4f:e0:b7:de: d0:b2:c4:a8:af:97:e2:e5:c3:23:34:89:ba:6f:d7: ca:c1:63:cb:dd:3b:35:21:73:ab:cb:e1:73:97:ec: a5:53:65:60:a2:36:e1:71:d2:b8:19:dc:06:31:fc: 6d:0e:c1:9d:dc:21:ff:5f:07:be:f5:cd:d4:9d:d9: 93:ea:94:51:ac:87:e3:6f:81:42:f6:f0:97:1c:f4: 4c:32:10:e1:13:87:72:cf:1e:92:8d:56:dd:12:a1: d4:cf:55:33:b0:81:26:82:a1:ab:7a:af:17:1f:4a: ba:2e:f1:1c:d9:d4:57:94:aa:e5:c1:87:b1:ff:59: 20:1e:ff:99:40:88:dd:b1:37:55:91:f8:83:5a:32: 02:9f:75:db:1f:9e:7c:60:19:37:4f:1c:d4:e5:e6: 7d:36:ca:51:33:95:f9:47:37:f8:c7:15:69:3b:3f: d5:5a:40:a8:97:8a:1e:7f:dd:00:30:99:29:24:ed: ef:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:90:CF:53:A4:E3:5F:7A:E3:C3:CD:65:55:37:A1:6A:4D:F0:E9:3C X509v3 Authority Key Identifier: keyid:1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:13:eb:05:e1:cf:9c:8c:fe:04:2c:e0:a0:5e:99:6f:d5:12: c1:57:cd:a7:64:94:dd:db:ad:9a:d7:89:52:19:e4:de:c8:11: 98:f0:96:ae:df:b8:55:94:71:4d:11:58:cb:5b:df:49:85:74: 81:20:52:96:fa:d5:4b:1d:89:08:fb:fe:e0:88:a8:60:5d:d4: 13:39:17:a9:8a:3e:23:3b:e3:12:49:35:1e:21:66:df:ef:a9: 34:89:7e:17:68:24:a2:48:9b:47:de:81:4e:86:27:08:8a:f2: db:9f:8c:33:85:11:13:9c:00:26:6b:53:35:49:83:c0:0e:9b: 60:16:9c:f8:a3:8b:39:cc:a3:64:e7:b9:94:b2:e8:fa:ef:90: 14:cf:d3:1b:65:e2:c7:04:d4:d6:06:98:25:87:95:0e:2e:0a: 57:24:07:b6:fd:1a:cb:05:96:ea:47:3c:b8:f9:f9:2d:8a:f5: 05:99:6b:10:57:70:1c:ae:f0:f8:23:e3:5f:d3:20:a1:2a:9f: 3c:f4:a2:41:05:30:54:af:ac:d7:20:0a:2c:b1:2a:e0:a9:fe: 7f:44:88:73:33:4d:bf:c7:44:95:4a:14:14:58:ac:73:ad:b5: 4d:39:cc:b8:86:c0:0f:d4:a6:0f:6d:a0:51:f4:e7:91:a1:a8: 7a:c8:18:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0REYxMTAvBgNVBAUTKDFGRDhFQzdDNjU0N0FFQzUyQUQ3RTBFMEJDMzJDRjdD QUEyMjFFMzcwHhcNMjUxMDE5MDAxNjEzWhcNMjUxMDI2MDAxNjEzWjAYMRYwFAYD VQQDEw02OGY0MmRjZC1mNjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyn0lM0lBVEw0Vcd9/Egk0gidWbXEnoGcuyZGEw2od76A4OvFTzcwWTq2kwC4 RA5trUeVsbeBrujpQvb0f8zSFoz8c8ECMU/gt97QssSor5fi5cMjNIm6b9fKwWPL 3Ts1IXOry+Fzl+ylU2VgojbhcdK4GdwGMfxtDsGd3CH/Xwe+9c3UndmT6pRRrIfj b4FC9vCXHPRMMhDhE4dyzx6SjVbdEqHUz1UzsIEmgqGreq8XH0q6LvEc2dRXlKrl wYex/1kgHv+ZQIjdsTdVkfiDWjICn3XbH558YBk3TxzU5eZ9NspRM5X5Rzf4xxVp Oz/VWkCol4oef90AMJkpJO3vDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLiQz1Ok 419648PNZVU3oWpN8Ok8MB8GA1UdIwQYMBaAFB/Y7HxlR67FKtfg4Lwyz3yqIh43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRERi81Q0YxRjdBMkFE NUUxMUVCQUREOTA1NzlDNEY5QUUwMi9IOWpzZkdWSHJzVXExLURndkRMUGZLb2lI amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g5anNmR1ZIcnNVcTEtRGd2RExQZktvaUhqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRERi81Q0YxRjdBMkFENUUxMUVCQUREOTA1NzlDNEY5QUUwMi9IOWpzZkdWSHJz VXExLURndkRMUGZLb2lIamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLE+sF4c+cjP4ELOCgXplv1RLBV82nZJTd262a14lSGeTeyBGY8Jau 37hVlHFNEVjLW99JhXSBIFKW+tVLHYkI+/7giKhgXdQTORepij4jO+MSSTUeIWbf 76k0iX4XaCSiSJtH3oFOhicIivLbn4wzhRETnAAma1M1SYPADptgFpz4o4s5zKNk 57mUsuj675AUz9MbZeLHBNTWBpglh5UOLgpXJAe2/RrLBZbqRzy4+fktivUFmWsQ V3AcrvD4I+Nf0yChKp889KJBBTBUr6zXIAossSrgqf5/RIhzM02/x0SVShQUWKxz rbVNOcy4hsAP1KYPbaBR9OeRoah6yBhA -----END CERTIFICATE-----Generated at Mon Oct 20 04:07:21 2025 by rpki-client