$ rpki-client -vvf rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.mft File: MYj5ufXpCvsNsN5lZfAskL7qSNA.mft (raw, json) Hash identifier: 0ELrVFu9s7YOGpjMG6HwlB77pmm0/JygLpGrKoe8OZY= Subject key identifier: D6:0F:2F:3F:E8:42:1D:E3:15:79:41:31:11:9E:9A:75:C5:A7:01:40 Authority key identifier: 31:88:F9:B9:F5:E9:0A:FB:0D:B0:DE:65:65:F0:2C:90:BE:EA:48:D0 Certificate issuer: /CN=A9184AB8/serialNumber=3188F9B9F5E90AFB0DB0DE6565F02C90BEEA48D0 Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYj5ufXpCvsNsN5lZfAskL7qSNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.mft Manifest number: 9B Signing time: Sun 19 Oct 2025 09:45:48 +0000 Manifest this update: Sun 19 Oct 2025 09:45:47 +0000 Manifest next update: Sun 26 Oct 2025 09:45:47 +0000 Files and hashes: 1: MYj5ufXpCvsNsN5lZfAskL7qSNA.crl (hash: RSqpd3+nQ63qKs5OKjUaBWAdgnhC/5G7NCqTjm/ydZE=) 2: ED63E306F5EC11EFBB174335C4F9AE02.roa (hash: SWCcm9UJuFnyydTujMQaVhSJ1qOMjifkiPJ4UhwGm9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.crl rsync://rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYj5ufXpCvsNsN5lZfAskL7qSNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:45:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9184AB8, serialNumber=3188F9B9F5E90AFB0DB0DE6565F02C90BEEA48D0 Validity Not Before: Oct 19 09:45:47 2025 GMT Not After : Oct 26 09:45:47 2025 GMT Subject: CN=68f4b34c-aa4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:8b:35:ef:6d:5c:53:7d:30:80:92:61:0f:dd: 51:28:1d:8f:a2:e4:b5:a7:bd:04:1e:7e:f8:66:f0: 4b:30:d9:24:02:48:00:c4:40:d0:36:6a:ab:50:aa: b8:1c:38:dd:bd:33:97:2f:6a:ca:64:cd:fe:96:b5: 05:89:a5:f2:6a:0c:0c:bd:c1:82:3c:30:1b:a5:fa: 76:5b:7f:fd:cd:5b:2c:6b:af:15:f8:d3:77:dd:92: 23:35:ec:f3:cb:51:7f:5a:f0:99:d8:f5:18:37:a1: 46:0b:f6:50:c0:63:60:7f:84:c6:9f:49:44:e7:6e: 3e:1b:db:41:3a:fa:be:78:70:18:d5:79:e0:54:a9: 16:7a:89:8e:3e:40:32:01:72:14:6c:15:32:7d:1a: 8b:64:c9:fa:cb:42:06:36:ab:8f:5b:32:df:43:2f: 29:77:a0:20:ee:3e:3e:55:16:b8:20:47:d5:24:b3: 34:f7:ef:2d:b9:ca:da:52:59:c7:39:cb:25:1e:be: 5d:e0:9a:c8:42:57:64:06:61:93:16:94:c2:48:e0: c0:12:6c:bb:0b:68:9d:da:7d:23:95:5b:fd:de:d9: 6e:72:01:b7:4f:f3:14:82:61:49:45:66:a5:23:a9: 38:14:23:e8:3e:92:db:e3:cd:fd:f2:7d:4d:5e:0f: f0:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:0F:2F:3F:E8:42:1D:E3:15:79:41:31:11:9E:9A:75:C5:A7:01:40 X509v3 Authority Key Identifier: keyid:31:88:F9:B9:F5:E9:0A:FB:0D:B0:DE:65:65:F0:2C:90:BE:EA:48:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYj5ufXpCvsNsN5lZfAskL7qSNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9184AB8/3B0A9C64D1B011EF8C20DD32C4F9AE02/MYj5ufXpCvsNsN5lZfAskL7qSNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:91:99:95:ef:fd:32:b5:9e:c6:c9:d3:e2:18:d0:23:10:4d: ee:b0:d9:e4:fb:0b:c9:51:ac:e8:6c:24:78:17:f5:39:4b:fb: 3b:e5:95:e0:7e:f2:c9:ea:95:5a:75:82:1d:26:01:48:58:19: 8e:e9:01:83:75:48:66:e1:9f:55:58:04:71:e4:63:14:90:87: 4d:9b:67:ab:38:ff:9e:83:29:7f:4d:9e:70:0f:d9:15:2f:90: b3:b1:6e:0b:3a:00:28:39:87:3a:b4:6b:ff:0c:ac:75:a2:44: 06:25:f5:7d:77:08:28:83:fb:e2:1f:1c:8b:18:b5:64:67:08: 52:dd:7b:0d:9e:08:a0:9d:52:7d:23:8b:bc:c2:99:12:d6:8d: 54:51:59:f1:21:3f:78:88:91:90:e9:38:b6:d0:ad:85:03:19: 4e:62:bc:65:d2:9a:59:11:5b:e7:2a:a4:55:ab:2f:a8:79:99: 4f:58:1a:18:a1:4b:e6:2c:00:ce:52:c8:7f:7e:4b:7a:d6:09: ee:a2:8d:7c:bc:49:c3:b6:e1:e2:5f:6b:3f:60:f0:c0:72:4a: 3f:e8:1f:97:40:e0:df:a3:49:ad:75:b8:f2:34:ff:6a:25:65: 46:01:83:2c:9f:2a:99:a6:74:ed:bd:93:99:03:2c:20:ea:fe: b4:cb:51:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODRBQjgxMTAvBgNVBAUTKDMxODhGOUI5RjVFOTBBRkIwREIwREU2NTY1RjAyQzkw QkVFQTQ4RDAwHhcNMjUxMDE5MDk0NTQ3WhcNMjUxMDI2MDk0NTQ3WjAYMRYwFAYD VQQDEw02OGY0YjM0Yy1hYTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApIs1721cU30wgJJhD91RKB2PouS1p70EHn74ZvBLMNkkAkgAxEDQNmqrUKq4 HDjdvTOXL2rKZM3+lrUFiaXyagwMvcGCPDAbpfp2W3/9zVssa68V+NN33ZIjNezz y1F/WvCZ2PUYN6FGC/ZQwGNgf4TGn0lE524+G9tBOvq+eHAY1XngVKkWeomOPkAy AXIUbBUyfRqLZMn6y0IGNquPWzLfQy8pd6Ag7j4+VRa4IEfVJLM09+8tucraUlnH OcslHr5d4JrIQldkBmGTFpTCSODAEmy7C2id2n0jlVv93tlucgG3T/MUgmFJRWal I6k4FCPoPpLb48398n1NXg/wLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNYPLz/o Qh3jFXlBMRGemnXFpwFAMB8GA1UdIwQYMBaAFDGI+bn16Qr7DbDeZWXwLJC+6kjQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NEFCOC8zQjBBOUM2NEQx QjAxMUVGOEMyMEREMzJDNEY5QUUwMi9NWWo1dWZYcEN2c05zTjVsWmZBc2tMN3FT TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01ZajV1ZlhwQ3ZzTnNONWxaZkFza0w3cVNOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NEFCOC8zQjBBOUM2NEQxQjAxMUVGOEMyMEREMzJDNEY5QUUwMi9NWWo1dWZYcEN2 c05zTjVsWmZBc2tMN3FTTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEkZmV7/0ytZ7GydPiGNAjEE3usNnk+wvJUazobCR4F/U5S/s75ZXg fvLJ6pVadYIdJgFIWBmO6QGDdUhm4Z9VWARx5GMUkIdNm2erOP+egyl/TZ5wD9kV L5CzsW4LOgAoOYc6tGv/DKx1okQGJfV9dwgog/viHxyLGLVkZwhS3XsNngignVJ9 I4u8wpkS1o1UUVnxIT94iJGQ6Ti20K2FAxlOYrxl0ppZEVvnKqRVqy+oeZlPWBoY oUvmLADOUsh/fkt61gnuoo18vEnDtuHiX2s/YPDAcko/6B+XQODfo0mtdbjyNP9q JWVGAYMsnyqZpnTtvZOZAywg6v60y1HI -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:47 2025 by rpki-client