$ rpki-client -vvf rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft File: punLpSnAWpYkymA1SKPjFJF1jys.mft (raw, json) Hash identifier: usAn17vub7Vgd/YIQYz8KZmmh77vGl93QW7MbBY90h4= Subject key identifier: 27:55:49:AA:52:F2:0A:29:0A:49:21:8B:CC:09:DA:29:DA:F1:01:F2 Authority key identifier: A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B Certificate issuer: /CN=A9189B41/serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft Manifest number: DB Signing time: Sun 19 Oct 2025 08:37:07 +0000 Manifest this update: Sun 19 Oct 2025 08:37:06 +0000 Manifest next update: Sun 26 Oct 2025 08:37:06 +0000 Files and hashes: 1: punLpSnAWpYkymA1SKPjFJF1jys.crl (hash: bpuUJ/XlIiWsFX4kq0pU8qR2ylcp2EzL6w3ex9bUCyQ=) 2: 17AF252C605A11EFB7F45361C4F9AE02.roa (hash: IdTeZSdJYpvrv4PlLAcbyZ45qrh+mkn1A6fS8tzZ0GE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:37:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189B41, serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B Validity Not Before: Oct 19 08:37:06 2025 GMT Not After : Oct 26 08:37:06 2025 GMT Subject: CN=68f4a333-8498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6b:50:20:54:ef:9b:a7:ab:44:15:67:47:21: 9a:dc:07:32:4c:d7:26:f2:d4:a1:44:da:e1:54:12: 44:b8:62:18:c8:26:a3:ca:6e:15:9b:8b:9b:b5:85: ff:41:35:bb:51:9a:39:e6:09:3e:e4:51:ef:ee:03: a2:86:72:e4:f8:7e:e4:d7:b1:ad:36:b7:49:8a:70: 4c:4b:87:7d:39:11:22:a6:95:07:de:82:45:5b:01: 79:9b:01:73:82:6a:23:c9:ed:dd:b8:9a:b0:97:8e: 9d:4f:5e:ca:54:9e:5c:b6:a0:e7:d7:3d:49:34:47: 79:a5:91:72:cf:e2:c8:46:5a:ff:6d:15:cc:7f:08: 9b:e8:68:8d:6b:6a:ee:43:ea:bd:51:6b:17:15:6b: 0a:b9:3a:44:62:19:dc:2e:d5:b5:52:d1:1c:36:5c: 1d:b0:21:75:86:1e:8a:7e:1b:41:3d:ed:ef:f4:27: 4d:41:f2:f4:00:08:c7:ed:13:ef:84:29:aa:7f:10: 94:a6:99:82:00:45:cf:89:66:74:45:76:be:17:2a: a8:e3:b4:46:91:0f:a0:dc:df:b6:f0:a3:6d:fc:f6: f4:33:9c:56:ab:6b:67:6b:f9:76:90:55:5b:3a:6a: 18:99:4c:e2:61:5b:44:bd:b6:75:6b:77:bc:10:0b: eb:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:55:49:AA:52:F2:0A:29:0A:49:21:8B:CC:09:DA:29:DA:F1:01:F2 X509v3 Authority Key Identifier: keyid:A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:4d:5b:28:e1:42:ee:a2:9d:08:10:c0:2b:17:df:a3:ae:4e: 9b:a6:ad:d8:b0:c7:43:df:39:55:56:3d:90:95:8c:ca:cd:67: 86:02:ce:49:0b:ca:70:50:80:ca:ed:99:58:f9:ef:00:3c:00: 55:f5:f5:ce:51:16:3a:30:5c:7f:f5:ab:fb:16:67:f6:bf:cc: e7:82:5f:7b:9c:b3:91:bd:f7:88:c0:82:c3:b7:46:26:a1:12: 3d:29:f3:22:ee:c1:eb:46:b8:1f:a1:20:15:02:d9:66:85:cf: d1:de:d1:0d:88:9a:2a:38:38:cf:e9:67:e5:b5:6e:3c:e9:ca: 30:e7:dc:19:6b:90:ce:d0:bd:23:bf:e0:a8:2b:48:38:fb:40: 2b:de:8f:13:c8:7a:b2:21:54:20:7c:58:58:8a:49:81:16:45: 37:81:15:0a:f7:b7:ae:46:3b:cc:24:ad:a7:b5:6d:a0:83:6f: f6:1d:45:9e:49:8f:1c:f8:62:f4:8a:bb:fa:aa:c5:4a:ba:a6: 79:08:04:4b:98:91:a5:40:3b:cd:24:d3:63:82:f5:ae:2d:68: 97:66:f3:4c:c4:27:2d:00:15:aa:97:1a:1e:fb:c4:98:e0:c9: 0d:b4:d7:99:3c:ad:e7:95:40:20:4b:10:e8:16:38:3e:9a:53: 81:ef:b0:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlCNDExMTAvBgNVBAUTKEE2RTlDQkE1MjlDMDVBOTYyNENBNjAzNTQ4QTNFMzE0 OTE3NThGMkIwHhcNMjUxMDE5MDgzNzA2WhcNMjUxMDI2MDgzNzA2WjAYMRYwFAYD VQQDEw02OGY0YTMzMy04NDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmtQIFTvm6erRBVnRyGa3AcyTNcm8tShRNrhVBJEuGIYyCajym4Vm4ubtYX/ QTW7UZo55gk+5FHv7gOihnLk+H7k17GtNrdJinBMS4d9OREippUH3oJFWwF5mwFz gmojye3duJqwl46dT17KVJ5ctqDn1z1JNEd5pZFyz+LIRlr/bRXMfwib6GiNa2ru Q+q9UWsXFWsKuTpEYhncLtW1UtEcNlwdsCF1hh6KfhtBPe3v9CdNQfL0AAjH7RPv hCmqfxCUppmCAEXPiWZ0RXa+Fyqo47RGkQ+g3N+28KNt/Pb0M5xWq2tna/l2kFVb OmoYmUziYVtEvbZ1a3e8EAvrywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdVSapS 8gopCkkhi8wJ2ina8QHyMB8GA1UdIwQYMBaAFKbpy6UpwFqWJMpgNUij4xSRdY8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUI0MS82OUI3Njk4RTYw NTkxMUVGOUMyMjM3NjBDNEY5QUUwMi9wdW5McFNuQVdwWWt5bUExU0tQakZKRjFq eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3B1bkxwU25BV3BZa3ltQTFTS1BqRkpGMWp5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUI0MS82OUI3Njk4RTYwNTkxMUVGOUMyMjM3NjBDNEY5QUUwMi9wdW5McFNuQVdw WWt5bUExU0tQakZKRjFqeXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaTVso4ULuop0IEMArF9+jrk6bpq3YsMdD3zlVVj2QlYzKzWeGAs5J C8pwUIDK7ZlY+e8APABV9fXOURY6MFx/9av7Fmf2v8zngl97nLORvfeIwILDt0Ym oRI9KfMi7sHrRrgfoSAVAtlmhc/R3tENiJoqODjP6WfltW486cow59wZa5DO0L0j v+CoK0g4+0Ar3o8TyHqyIVQgfFhYikmBFkU3gRUK97euRjvMJK2ntW2gg2/2HUWe SY8c+GL0irv6qsVKuqZ5CARLmJGlQDvNJNNjgvWuLWiXZvNMxCctABWqlxoe+8SY 4MkNtNeZPK3nlUAgSxDoFjg+mlOB77Cq -----END CERTIFICATE-----Generated at Tue Oct 21 05:01:26 2025 by rpki-client