$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: xNBqpdWiiUOED4FmdzboeeLE6Q+3Kc0QisodqLQ3UrE= Subject key identifier: 88:FF:72:59:34:AF:36:19:07:D8:BF:9B:2D:B1:22:5D:EB:A3:B6:5E Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0C82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0C76 Signing time: Sat 18 Oct 2025 19:15:26 +0000 Manifest this update: Sat 18 Oct 2025 19:15:26 +0000 Manifest next update: Sat 25 Oct 2025 19:15:26 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: nH49zV2AZVfBnb9jUHc4JrWew3uYm73+b7lkrobx2hY=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: tpUvdm+xOrzX9mGh1yV4nPsE8GUAnESIDm4fhXo+ELs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:15:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3202 (0xc82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777, serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Validity Not Before: Oct 18 19:15:26 2025 GMT Not After : Oct 25 19:15:26 2025 GMT Subject: CN=68f3e74e-446c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:67:a4:13:23:0a:b7:fa:97:b1:cc:3c:8f:26: 01:0a:13:70:c2:66:6b:68:3f:8a:29:7f:0f:f3:e5: 02:54:df:99:f9:d0:2f:61:60:11:b4:26:df:b2:f6: d6:d5:fd:70:fb:5f:ee:2b:19:ca:0f:81:3b:24:b1: c7:6f:5a:c3:56:9e:ea:8e:d4:17:14:40:e7:29:28: a4:5a:ee:03:94:80:0f:1d:4a:45:60:4e:c7:49:5a: b1:ef:5f:f1:12:ae:7c:dd:a8:fc:96:1c:4e:02:9b: 1a:91:9c:99:24:da:1c:5f:4b:a7:63:92:eb:7c:43: f2:37:04:e4:0e:a8:a3:f4:02:6c:03:33:32:4d:d4: 0f:48:9f:42:68:40:03:50:7c:13:1e:0c:b9:b6:d5: 41:e7:ac:6d:5a:c5:67:3f:18:88:27:a1:49:76:98: 79:60:2c:a2:83:8c:0e:3e:09:a0:3f:16:48:30:19: df:8f:9c:b0:5d:6c:d3:80:8f:d5:0c:4f:75:8b:39: 42:19:2f:3e:3b:ea:47:73:b0:47:c5:f3:de:63:4d: b4:c4:97:77:08:c6:58:dc:63:56:98:12:6f:0f:b3: bf:e0:f1:1a:42:3c:15:15:9e:72:4e:ff:f8:f5:ca: 22:bd:9e:f8:49:63:0a:08:56:24:13:fe:0a:a4:8f: f2:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:FF:72:59:34:AF:36:19:07:D8:BF:9B:2D:B1:22:5D:EB:A3:B6:5E X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:dc:c7:bc:df:34:8a:2a:fc:4d:d3:cb:46:70:ec:5b:c6:90: 36:81:da:85:f4:27:dc:40:1c:7e:24:26:47:30:ff:a5:a4:8f: 02:eb:64:24:a4:36:b7:10:f8:19:0f:68:e7:09:30:a1:e4:9c: 49:94:da:29:45:20:79:fd:07:6b:84:52:b2:e7:73:60:6f:55: 0d:34:81:73:b3:45:34:37:7c:31:1f:0e:92:e2:80:39:ca:b0: 69:d3:9a:4a:51:7d:cc:91:66:9d:22:52:23:31:22:56:04:da: 62:3f:77:c2:34:de:cb:c3:62:21:da:ba:29:c2:54:32:a6:76: 54:55:51:5c:cf:e1:a7:87:36:16:df:f3:29:08:d1:fa:2e:2a: 99:34:b1:ed:8d:27:07:b1:c8:b8:95:31:82:52:d5:f2:1e:9e: 65:78:20:6f:ed:d7:7a:2a:99:9f:65:60:32:43:e4:53:dd:2d: e5:74:f9:25:f9:fd:82:93:e5:39:cc:9e:40:79:73:08:59:76: 50:5f:13:90:f3:8d:26:97:a2:db:c8:81:c7:f1:ed:e6:e4:13: 03:9e:06:49:b3:df:ae:bc:63:db:2d:c9:43:33:32:56:2c:57: 5c:c4:4a:cd:5f:ad:de:30:df:97:04:19:99:40:36:a3:1f:17: 12:40:75:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjUxMDE4MTkxNTI2WhcNMjUxMDI1MTkxNTI2WjAYMRYwFAYD VQQDEw02OGYzZTc0ZS00NDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3mekEyMKt/qXscw8jyYBChNwwmZraD+KKX8P8+UCVN+Z+dAvYWARtCbfsvbW 1f1w+1/uKxnKD4E7JLHHb1rDVp7qjtQXFEDnKSikWu4DlIAPHUpFYE7HSVqx71/x Eq583aj8lhxOApsakZyZJNocX0unY5LrfEPyNwTkDqij9AJsAzMyTdQPSJ9CaEAD UHwTHgy5ttVB56xtWsVnPxiIJ6FJdph5YCyig4wOPgmgPxZIMBnfj5ywXWzTgI/V DE91izlCGS8+O+pHc7BHxfPeY020xJd3CMZY3GNWmBJvD7O/4PEaQjwVFZ5yTv/4 9coivZ74SWMKCFYkE/4KpI/yZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIj/clk0 rzYZB9i/my2xIl3ro7ZeMB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDe3Me83zSKKvxN08tGcOxbxpA2gdqF9CfcQBx+JCZHMP+lpI8C62Qk pDa3EPgZD2jnCTCh5JxJlNopRSB5/QdrhFKy53Ngb1UNNIFzs0U0N3wxHw6S4oA5 yrBp05pKUX3MkWadIlIjMSJWBNpiP3fCNN7Lw2Ih2ropwlQypnZUVVFcz+GnhzYW 3/MpCNH6LiqZNLHtjScHsci4lTGCUtXyHp5leCBv7dd6KpmfZWAyQ+RT3S3ldPkl +f2Ck+U5zJ5AeXMIWXZQXxOQ840ml6LbyIHH8e3m5BMDngZJs9+uvGPbLclDMzJW LFdcxErNX63eMN+XBBmZQDajHxcSQHWO -----END CERTIFICATE-----Generated at Mon Oct 20 15:51:42 2025 by rpki-client