$ rpki-client -vvf rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/1w6O-A81h--QKJbYsw3LC26zOa8.mft File: 1w6O-A81h--QKJbYsw3LC26zOa8.mft (raw, json) Hash identifier: D/0nzTiP8wf0F5V626cmgTTVrj5gmNIBDX0+Wg7R7ZI= Subject key identifier: 5E:AF:FA:07:F5:BD:D6:63:B1:5D:52:5A:CD:76:D4:70:E4:F5:B4:A5 Authority key identifier: D7:0E:8E:F8:0F:35:87:EF:90:28:96:D8:B3:0D:CB:0B:6E:B3:39:AF Certificate issuer: /CN=A9180323/serialNumber=D70E8EF80F3587EF902896D8B30DCB0B6EB339AF Certificate serial: 34D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w6O-A81h--QKJbYsw3LC26zOa8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/1w6O-A81h--QKJbYsw3LC26zOa8.mft Manifest number: 34D2 Signing time: Mon 20 Oct 2025 14:49:25 +0000 Manifest this update: Mon 20 Oct 2025 14:49:24 +0000 Manifest next update: Mon 27 Oct 2025 14:49:24 +0000 Files and hashes: 1: 1w6O-A81h--QKJbYsw3LC26zOa8.crl (hash: BSZz4cuR4We9hXgLB8xJY+IvpOwUNIxWTmiFBsnIfFo=) 2: A8306EA22D6911EC9F557316C4F9AE02.roa (hash: rE1TXLdPZcY3h9jlnYDyq1t/H9nQEEAEe+EgSWZL+Ds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/1w6O-A81h--QKJbYsw3LC26zOa8.crl rsync://rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/1w6O-A81h--QKJbYsw3LC26zOa8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w6O-A81h--QKJbYsw3LC26zOa8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13528 (0x34d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180323, serialNumber=D70E8EF80F3587EF902896D8B30DCB0B6EB339AF Validity Not Before: Oct 20 14:49:24 2025 GMT Not After : Oct 27 14:49:24 2025 GMT Subject: CN=68f64bf4-5c07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9d:c4:ff:b7:a3:02:ef:04:db:bc:64:5d:4b: cc:85:b9:4e:e2:ed:83:ad:4a:65:78:49:a0:bd:24: e3:c4:ac:fe:31:f0:32:cd:b4:ad:f4:7e:26:ba:a0: 8e:a3:ce:41:be:af:ae:fa:f5:82:57:41:b9:c4:59: d8:8d:58:9e:df:42:cd:f8:29:1c:3b:e5:ef:bd:02: b3:80:63:bd:9d:4a:d8:43:f3:e8:c8:05:03:0f:d7: f2:34:48:04:c9:08:61:65:a0:d1:a5:f7:18:96:05: 79:50:40:a6:fa:c3:6f:cc:20:a6:7c:e3:b3:32:fa: c4:34:5b:84:f1:0c:90:a8:64:8e:b5:4b:c7:fe:f8: ec:71:bf:40:91:40:b2:77:64:37:b2:95:0e:0d:8a: f8:fe:df:56:f9:bb:2d:28:9f:a4:47:b1:c1:3d:7d: e2:8a:4d:19:4d:ee:cf:78:f9:55:f7:06:09:7e:98: 7a:2c:36:1b:5e:27:25:6b:90:4d:2e:9e:de:a4:87: 63:2b:4e:89:62:04:cd:a6:36:66:7d:14:41:7e:e2: 89:46:49:86:48:ae:d1:61:6d:07:92:65:9e:7b:2d: 0a:77:97:7e:f1:db:c9:af:68:43:dd:39:2e:f1:9d: 1f:33:b2:e1:76:e8:7f:b6:05:4b:58:22:f5:f0:37: 83:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:AF:FA:07:F5:BD:D6:63:B1:5D:52:5A:CD:76:D4:70:E4:F5:B4:A5 X509v3 Authority Key Identifier: keyid:D7:0E:8E:F8:0F:35:87:EF:90:28:96:D8:B3:0D:CB:0B:6E:B3:39:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/1w6O-A81h--QKJbYsw3LC26zOa8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w6O-A81h--QKJbYsw3LC26zOa8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/1w6O-A81h--QKJbYsw3LC26zOa8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:d8:03:52:a7:67:0c:f0:ed:8f:c7:cb:e1:e0:e5:c5:81:9e: ef:40:f9:b1:e2:a3:fc:c8:91:f6:0a:a3:14:ea:75:ce:e5:4e: 63:91:e6:e0:70:a2:c8:04:e0:a2:c6:31:e7:07:08:e0:cf:26: 8c:0b:4d:2e:95:c6:56:d6:6d:40:63:44:3f:ef:06:84:27:4b: b9:82:d1:ce:97:5d:8d:2b:7a:75:6a:73:cb:c0:f1:a1:51:12: 7b:b5:45:eb:20:24:83:af:58:26:cb:d7:8a:de:8a:e1:be:a9: c9:91:ce:f2:b7:92:87:21:d9:28:ec:57:41:19:a1:d5:a9:d6: e8:8d:6c:b7:10:ad:37:1c:4a:87:a9:be:46:97:5d:b9:27:70: dd:74:be:c6:6f:08:ef:7b:4c:ea:30:e6:50:ed:61:8e:47:c6: b9:17:1b:d1:72:3d:80:31:68:fd:ba:be:88:eb:d7:d5:c6:eb: 0a:93:72:e3:1a:d5:24:d9:41:aa:b1:47:de:2c:91:e1:f0:55: 5f:f8:e0:1f:91:7c:29:98:1c:56:41:ce:76:a0:9f:2e:9d:bc: 4a:ab:fe:6a:3a:ef:80:9b:57:c7:44:0e:5a:d3:da:72:09:a8: dd:75:bc:41:d4:e7:aa:e8:1d:0e:cb:c0:1a:8e:e0:ad:85:1d: d4:e8:73:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzMjMxMTAvBgNVBAUTKEQ3MEU4RUY4MEYzNTg3RUY5MDI4OTZEOEIzMERDQjBC NkVCMzM5QUYwHhcNMjUxMDIwMTQ0OTI0WhcNMjUxMDI3MTQ0OTI0WjAYMRYwFAYD VQQDEw02OGY2NGJmNC01YzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZ3E/7ejAu8E27xkXUvMhblO4u2DrUpleEmgvSTjxKz+MfAyzbSt9H4muqCO o85Bvq+u+vWCV0G5xFnYjVie30LN+CkcO+XvvQKzgGO9nUrYQ/PoyAUDD9fyNEgE yQhhZaDRpfcYlgV5UECm+sNvzCCmfOOzMvrENFuE8QyQqGSOtUvH/vjscb9AkUCy d2Q3spUODYr4/t9W+bstKJ+kR7HBPX3iik0ZTe7PePlV9wYJfph6LDYbXicla5BN Lp7epIdjK06JYgTNpjZmfRRBfuKJRkmGSK7RYW0HkmWeey0Kd5d+8dvJr2hD3Tku 8Z0fM7Lhduh/tgVLWCL18DeDKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6v+gf1 vdZjsV1SWs121HDk9bSlMB8GA1UdIwQYMBaAFNcOjvgPNYfvkCiW2LMNywtuszmv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDMyMy80RUI5NDI2QzFE OTMxMUUyQkY3OEQ4RjYwOEIwMkNEMi8xdzZPLUE4MWgtLVFLSmJZc3czTEMyNnpP YTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF3Nk8tQTgxaC0tUUtKYllzdzNMQzI2ek9hOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDMyMy80RUI5NDI2QzFEOTMxMUUyQkY3OEQ4RjYwOEIwMkNEMi8xdzZPLUE4MWgt LVFLSmJZc3czTEMyNnpPYTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAs2ANSp2cM8O2Px8vh4OXFgZ7vQPmx4qP8yJH2CqMU6nXO5U5jkebg cKLIBOCixjHnBwjgzyaMC00ulcZW1m1AY0Q/7waEJ0u5gtHOl12NK3p1anPLwPGh URJ7tUXrICSDr1gmy9eK3orhvqnJkc7yt5KHIdko7FdBGaHVqdbojWy3EK03HEqH qb5Gl125J3DddL7Gbwjve0zqMOZQ7WGOR8a5FxvRcj2AMWj9ur6I69fVxusKk3Lj GtUk2UGqsUfeLJHh8FVf+OAfkXwpmBxWQc52oJ8unbxKq/5qOu+Am1fHRA5a09py CajddbxB1Oeq6B0Oy8AajuCthR3U6HOj -----END CERTIFICATE-----Generated at Mon Oct 20 21:38:40 2025 by rpki-client