$ rpki-client -vvf rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.mft File: Scnp4yJ81VrSmiE8uqF0eFoWXH4.mft (raw, json) Hash identifier: W5W60d1PGifg8I1+t7NCy0pRyhwgYjZ7J1L4V8GERZw= Subject key identifier: 19:B8:74:F8:4B:55:CC:D6:2B:FF:B8:43:8A:A2:03:19:66:47:61:F3 Authority key identifier: 49:C9:E9:E3:22:7C:D5:5A:D2:9A:21:3C:BA:A1:74:78:5A:16:5C:7E Certificate issuer: /CN=A9194EF2/serialNumber=49C9E9E3227CD55AD29A213CBAA174785A165C7E Certificate serial: 0D96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Scnp4yJ81VrSmiE8uqF0eFoWXH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.mft Manifest number: 0D8E Signing time: Sat 18 Oct 2025 18:36:01 +0000 Manifest this update: Sat 18 Oct 2025 18:36:00 +0000 Manifest next update: Sat 25 Oct 2025 18:36:00 +0000 Files and hashes: 1: Scnp4yJ81VrSmiE8uqF0eFoWXH4.crl (hash: RUXl9UFB3xWAbiHV07108Qd9RGJz/mpF0UK4ZdqDSjs=) 2: 1214EE40D2BF11E9A7F4EF1FC4F9AE02.roa (hash: kfnndHzaWyTnp8z7+y1i5jZZ9EYcGBwsAArn1r5+vLU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.crl rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Scnp4yJ81VrSmiE8uqF0eFoWXH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:36:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3478 (0xd96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194EF2, serialNumber=49C9E9E3227CD55AD29A213CBAA174785A165C7E Validity Not Before: Oct 18 18:36:00 2025 GMT Not After : Oct 25 18:36:00 2025 GMT Subject: CN=68f3de11-84eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9e:13:9f:41:73:e2:be:c9:70:c6:31:06:8a: 08:e9:44:10:ab:0f:08:ce:7f:05:91:99:65:4b:9f: ec:06:56:46:06:75:dc:c4:75:ff:48:3e:bd:85:40: 2c:73:6e:f4:28:e9:fe:52:a5:3f:d1:59:46:93:17: 9d:8b:e3:b3:89:ce:8c:4b:08:f5:d7:0a:37:ce:a2: 88:d8:4b:aa:29:a3:b7:c5:0e:85:68:2e:76:f0:ce: dd:92:c3:d4:19:01:3d:1f:47:6e:19:ad:36:1a:b9: 52:16:a3:bb:37:a7:15:89:51:22:26:2b:e4:82:f1: 6c:3b:8c:13:32:c3:48:7b:6a:6b:70:4a:e0:95:14: 03:da:24:b2:bb:51:fa:27:b4:2c:5a:47:63:1c:11: cb:a5:65:56:da:86:ee:18:d6:f9:c4:63:c0:aa:31: e0:7a:15:4d:9f:79:e9:0d:54:11:19:57:05:64:56: 32:c1:94:b5:7e:ab:4a:dc:3b:68:2c:3e:04:1d:c0: 67:78:3e:ea:41:29:bf:85:a5:e1:dd:68:61:c1:5b: 0c:aa:ed:31:2b:48:cf:e8:58:bf:a1:ba:84:eb:95: fd:22:6e:25:c2:79:5c:90:8f:6b:83:ed:88:33:3c: 6a:1a:16:ad:eb:a8:11:91:e9:d0:63:6e:bf:18:bc: 0a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:B8:74:F8:4B:55:CC:D6:2B:FF:B8:43:8A:A2:03:19:66:47:61:F3 X509v3 Authority Key Identifier: keyid:49:C9:E9:E3:22:7C:D5:5A:D2:9A:21:3C:BA:A1:74:78:5A:16:5C:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Scnp4yJ81VrSmiE8uqF0eFoWXH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:e0:9d:72:92:52:d1:69:ef:79:bd:86:0b:22:2d:31:5b:30: fd:ed:9e:83:3a:a1:d7:88:b9:ce:de:46:c4:6f:71:54:50:8b: b3:7b:96:99:b8:e0:0b:16:cd:23:b8:91:60:fc:4b:5a:70:b0: 45:ee:3d:8d:5c:18:f1:d2:54:59:62:02:6a:cb:43:c0:e0:f0: 43:2e:ca:19:2c:f2:17:ec:2b:fd:4d:5f:57:fc:4f:db:83:8a: c3:3f:9c:da:15:c3:42:05:e4:30:68:f9:07:fc:71:50:bf:75: 11:09:fa:18:cb:77:3a:14:7b:39:a5:ac:37:ce:6d:d1:20:33: 50:17:bc:af:bc:b9:42:6c:d9:55:44:8e:e4:d1:f2:77:da:07: a8:5e:f6:72:76:e7:7a:17:f7:f8:85:e3:90:79:d0:9e:b1:18: 9f:c6:f3:88:f9:c2:d7:06:b6:1a:b3:35:fe:09:be:4d:db:ab: f0:62:da:23:c4:85:a3:53:75:6a:8a:29:b5:a0:2a:8d:f1:69: 6e:e9:5d:52:1e:0b:ed:f5:1e:c2:52:8a:48:37:c5:11:7c:1c: 4c:f8:95:f9:33:e7:81:da:28:40:5a:32:8d:ca:91:f9:d2:f0: d8:33:2b:d3:53:37:d9:87:8e:61:32:f8:18:24:5f:d5:24:c0: cd:17:ca:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRFRjIxMTAvBgNVBAUTKDQ5QzlFOUUzMjI3Q0Q1NUFEMjlBMjEzQ0JBQTE3NDc4 NUExNjVDN0UwHhcNMjUxMDE4MTgzNjAwWhcNMjUxMDI1MTgzNjAwWjAYMRYwFAYD VQQDEw02OGYzZGUxMS04NGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3p4Tn0Fz4r7JcMYxBooI6UQQqw8Izn8FkZllS5/sBlZGBnXcxHX/SD69hUAs c270KOn+UqU/0VlGkxedi+Ozic6MSwj11wo3zqKI2EuqKaO3xQ6FaC528M7dksPU GQE9H0duGa02GrlSFqO7N6cViVEiJivkgvFsO4wTMsNIe2prcErglRQD2iSyu1H6 J7QsWkdjHBHLpWVW2obuGNb5xGPAqjHgehVNn3npDVQRGVcFZFYywZS1fqtK3Dto LD4EHcBneD7qQSm/haXh3WhhwVsMqu0xK0jP6Fi/obqE65X9Im4lwnlckI9rg+2I MzxqGhat66gRkenQY26/GLwKMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBm4dPhL VczWK/+4Q4qiAxlmR2HzMB8GA1UdIwQYMBaAFEnJ6eMifNVa0pohPLqhdHhaFlx+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEVGMi9CNjQ0MUVCNkQy QkQxMUU5OUExRDRCMURDNEY5QUUwMi9TY25wNHlKODFWclNtaUU4dXFGMGVGb1dY SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NjbnA0eUo4MVZyU21pRTh1cUYwZUZvV1hINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEVGMi9CNjQ0MUVCNkQyQkQxMUU5OUExRDRCMURDNEY5QUUwMi9TY25wNHlKODFW clNtaUU4dXFGMGVGb1dYSDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv4J1yklLRae95vYYLIi0xWzD97Z6DOqHXiLnO3kbEb3FUUIuze5aZ uOALFs0juJFg/EtacLBF7j2NXBjx0lRZYgJqy0PA4PBDLsoZLPIX7Cv9TV9X/E/b g4rDP5zaFcNCBeQwaPkH/HFQv3URCfoYy3c6FHs5paw3zm3RIDNQF7yvvLlCbNlV RI7k0fJ32geoXvZydud6F/f4heOQedCesRifxvOI+cLXBrYaszX+Cb5N26vwYtoj xIWjU3Vqiim1oCqN8Wlu6V1SHgvt9R7CUopIN8URfBxM+JX5M+eB2ihAWjKNypH5 0vDYMyvTUzfZh45hMvgYJF/VJMDNF8or -----END CERTIFICATE-----Generated at Mon Oct 20 11:40:29 2025 by rpki-client