$ rpki-client -vvf rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft File: E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft (raw, json) Hash identifier: K83gpHyVhrow7x6hXprMT3Xt+u/yhS/tNjAmyWQA4Mc= Subject key identifier: 54:EC:90:B1:46:60:07:41:EE:CE:9A:4B:72:0C:CD:C8:23:E5:F1:C9 Authority key identifier: 13:D7:A1:3B:42:3B:B6:E8:7A:1A:75:B7:49:3F:0B:C1:9D:0C:EA:A3 Certificate issuer: /CN=A917B633/serialNumber=13D7A13B423BB6E87A1A75B7493F0BC19D0CEAA3 Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft Manifest number: C0 Signing time: Sun 19 Oct 2025 08:58:59 +0000 Manifest this update: Sun 19 Oct 2025 08:58:58 +0000 Manifest next update: Sun 26 Oct 2025 08:58:58 +0000 Files and hashes: 1: E9ehO0I7tuh6GnW3ST8LwZ0M6qM.crl (hash: DxQhon0zFdF7EnE0YqIV+jsflQpGlbO/QF/8VoALvcQ=) 2: 3E4867CC86DC11EFA6022627C4F9AE02.roa (hash: kBrZwIHTbaSnaE7XdLULllQIjEnMuSEphHZrV4DhNKM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.crl rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:58:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B633, serialNumber=13D7A13B423BB6E87A1A75B7493F0BC19D0CEAA3 Validity Not Before: Oct 19 08:58:58 2025 GMT Not After : Oct 26 08:58:58 2025 GMT Subject: CN=68f4a852-eacc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3b:b4:f0:bc:a8:d0:e3:6f:21:a9:de:eb:a8: d9:5f:f7:eb:f1:43:6e:52:06:62:aa:73:a6:18:18: d2:bc:86:5d:5e:ec:fd:93:f8:6a:72:2d:b5:90:df: c7:25:e0:b9:9e:f3:54:70:13:dc:89:5b:f5:73:ba: ce:cf:d4:97:ec:43:c4:32:d8:53:47:6e:50:9e:2f: 1c:0f:30:34:03:3c:93:6f:3b:60:57:51:1b:00:e9: 65:60:e5:6c:bb:88:7b:8e:b3:e2:35:d0:0b:bb:22: 44:a2:25:06:4d:24:bc:ad:03:8a:c7:55:3a:5a:68: c9:15:4f:3a:da:a9:dc:26:bb:e0:3a:19:04:26:bd: 8d:1f:38:52:f1:b5:d9:4f:7e:30:e4:ea:a8:f5:19: e2:5b:05:43:f1:35:4a:1b:aa:7c:4c:6e:7e:f0:39: 98:63:12:b1:ce:02:70:2c:96:97:c0:41:ca:b7:93: 17:65:37:43:8a:8d:38:31:41:11:6e:c0:be:0c:a9: c7:a4:ae:72:e0:55:13:7f:b4:00:a0:23:f7:e1:8c: 1d:6d:45:8d:5b:19:99:de:4f:80:0c:f8:7b:b7:49: 32:e6:b0:b3:90:02:5b:37:09:b1:83:7f:19:25:34: cc:af:e8:d0:07:e2:67:ab:b1:a8:08:cb:db:7c:90: 4f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:EC:90:B1:46:60:07:41:EE:CE:9A:4B:72:0C:CD:C8:23:E5:F1:C9 X509v3 Authority Key Identifier: keyid:13:D7:A1:3B:42:3B:B6:E8:7A:1A:75:B7:49:3F:0B:C1:9D:0C:EA:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:f3:09:31:c8:1c:85:1e:10:e1:11:21:2a:16:09:ec:0a:2f: b7:6b:48:d6:21:c8:b1:ef:d2:52:3d:15:86:5a:95:e2:14:21: 05:e6:90:0b:22:ca:7a:a3:d9:a7:ef:76:3e:34:b0:a9:8c:8d: d8:07:c7:fb:9e:5a:19:ca:2d:48:5e:33:c3:a6:fa:af:29:15: cb:b7:f1:05:e3:49:8a:11:a9:d9:95:4c:ef:41:28:f9:82:80: 89:07:a6:6d:c6:b5:d9:b9:a7:0a:ee:a1:d5:20:8b:ee:68:2e: 50:40:b7:75:e8:a5:a0:2d:c2:c7:23:11:3c:df:13:94:c9:51: e3:b3:1d:4b:7b:9c:03:8f:e1:9b:41:c9:48:20:60:60:05:db: 37:bc:bb:59:ee:7b:ab:2b:42:78:2d:fa:36:f2:e7:17:aa:7a: fd:6c:38:a2:21:dd:c3:23:0e:5a:50:06:ce:fb:c2:39:2e:da: c2:b1:5c:82:e7:34:6a:2e:40:2f:b8:95:76:31:a5:5d:d6:00: 0a:90:ed:a8:18:fe:0c:f4:9a:2d:50:32:a7:cf:13:cc:45:3f: d6:72:78:d3:e4:95:51:8b:00:1a:e6:81:ff:f8:28:b0:c3:20: 4e:16:af:d3:e4:53:53:c9:f3:f0:6f:83:27:ab:81:ea:19:53: 26:f8:3f:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I2MzMxMTAvBgNVBAUTKDEzRDdBMTNCNDIzQkI2RTg3QTFBNzVCNzQ5M0YwQkMx OUQwQ0VBQTMwHhcNMjUxMDE5MDg1ODU4WhcNMjUxMDI2MDg1ODU4WjAYMRYwFAYD VQQDEw02OGY0YTg1Mi1lYWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zu08Lyo0ONvIane66jZX/fr8UNuUgZiqnOmGBjSvIZdXuz9k/hqci21kN/H JeC5nvNUcBPciVv1c7rOz9SX7EPEMthTR25Qni8cDzA0AzyTbztgV1EbAOllYOVs u4h7jrPiNdALuyJEoiUGTSS8rQOKx1U6WmjJFU862qncJrvgOhkEJr2NHzhS8bXZ T34w5Oqo9RniWwVD8TVKG6p8TG5+8DmYYxKxzgJwLJaXwEHKt5MXZTdDio04MUER bsC+DKnHpK5y4FUTf7QAoCP34YwdbUWNWxmZ3k+ADPh7t0ky5rCzkAJbNwmxg38Z JTTMr+jQB+Jnq7GoCMvbfJBPIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFTskLFG YAdB7s6aS3IMzcgj5fHJMB8GA1UdIwQYMBaAFBPXoTtCO7boehp1t0k/C8GdDOqj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjYzMy9EMEFCOTNFNDg2 RDkxMUVGOEI4QkVCMUZDNEY5QUUwMi9FOWVoTzBJN3R1aDZHblczU1Q4THdaME02 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0U5ZWhPMEk3dHVoNkduVzNTVDhMd1owTTZxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjYzMy9EMEFCOTNFNDg2RDkxMUVGOEI4QkVCMUZDNEY5QUUwMi9FOWVoTzBJN3R1 aDZHblczU1Q4THdaME02cU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCs8wkxyByFHhDhESEqFgnsCi+3a0jWIcix79JSPRWGWpXiFCEF5pAL Isp6o9mn73Y+NLCpjI3YB8f7nloZyi1IXjPDpvqvKRXLt/EF40mKEanZlUzvQSj5 goCJB6ZtxrXZuacK7qHVIIvuaC5QQLd16KWgLcLHIxE83xOUyVHjsx1Le5wDj+Gb QclIIGBgBds3vLtZ7nurK0J4Lfo28ucXqnr9bDiiId3DIw5aUAbO+8I5LtrCsVyC 5zRqLkAvuJV2MaVd1gAKkO2oGP4M9JotUDKnzxPMRT/WcnjT5JVRiwAa5oH/+Ciw wyBOFq/T5FNTyfPwb4Mnq4HqGVMm+D/M -----END CERTIFICATE-----Generated at Tue Oct 21 02:25:40 2025 by rpki-client