$ rpki-client -vvf rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft File: 0pm8o5yZPbgNETe5mbIhhGrPVWs.mft (raw, json) Hash identifier: R7NhFWHOkJBkD934AnKpcPMYjaMHo61VD7zYdFrwMes= Subject key identifier: 04:D6:27:9F:5D:BA:EF:41:6A:96:43:49:D6:E9:ED:D1:86:96:E2:21 Authority key identifier: D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B Certificate issuer: /CN=A9115C2E/serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B Certificate serial: 051C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft Manifest number: 0516 Signing time: Wed 22 Oct 2025 20:30:08 +0000 Manifest this update: Wed 22 Oct 2025 20:30:08 +0000 Manifest next update: Wed 29 Oct 2025 20:30:08 +0000 Files and hashes: 1: 0pm8o5yZPbgNETe5mbIhhGrPVWs.crl (hash: Ccm8z8p5y+R1I79DCyseMnOVAEI02v28W63Kf75idNs=) 2: F490AE2431D811ECA3C4CE3EC4F9AE02.roa (hash: /oifx1YqYxKOVaxnhM6Z6BMW1b5AcpZK0vDtcYNO6Zg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.crl rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 20:30:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1308 (0x51c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115C2E, serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B Validity Not Before: Oct 22 20:30:08 2025 GMT Not After : Oct 29 20:30:08 2025 GMT Subject: CN=68f93ed0-3487 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:57:25:42:b4:03:dc:bd:14:41:a9:bf:da:29: f8:4f:56:8b:71:06:ca:37:00:69:04:46:3e:44:db: 1e:e8:88:44:c9:08:f0:95:25:97:57:ae:a9:1b:3f: 35:28:9c:72:a0:c9:b3:b7:35:ff:be:79:05:71:d4: cd:24:f1:ac:4b:02:c2:36:da:8b:81:39:49:e0:69: f2:4d:d3:99:0c:44:ce:0f:30:e7:e9:12:76:1f:15: dd:af:da:c3:5b:55:5e:2c:af:d5:9b:ae:0f:b8:35: 70:84:02:13:79:a3:3b:cf:d4:7c:da:73:7b:82:81: e4:f6:56:a6:aa:34:b5:b6:3e:ad:3f:ac:cf:b9:dc: 5f:ee:19:7a:8c:7d:88:7c:38:f8:8e:86:79:eb:ca: fe:d9:79:c9:33:c8:29:85:e9:3d:31:ba:d1:31:b4: 01:6d:de:7e:ea:9d:82:49:50:40:9e:a6:d7:b1:5e: 2c:a9:ba:8c:ed:52:57:a3:72:80:2f:24:98:96:ea: 99:f3:14:67:be:c7:1b:d4:f0:04:f9:69:e4:5d:53: e3:9e:76:ce:1a:72:e1:03:93:ed:30:82:ed:0b:d0: 56:00:33:a6:35:1c:a0:75:95:2a:fa:91:78:ec:39: 1d:8e:32:cd:64:f8:92:6c:ec:9b:58:37:aa:22:7c: b7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:D6:27:9F:5D:BA:EF:41:6A:96:43:49:D6:E9:ED:D1:86:96:E2:21 X509v3 Authority Key Identifier: keyid:D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:2b:84:11:48:eb:c6:bb:d8:8d:66:72:bf:70:ab:3a:56:d0: 65:b4:53:aa:cc:9b:0d:36:5b:a6:b2:fc:a2:3f:4b:c7:01:ca: 7c:85:6c:21:2a:ca:86:2c:16:c3:f2:ac:8d:ac:ec:b7:ce:48: 7d:85:87:0f:e3:9f:02:8d:a1:81:a4:22:2e:8a:a6:c6:42:f2: 8f:15:0a:52:55:e3:15:1a:b4:c6:cf:d2:0e:b8:0e:56:9d:4f: bd:8e:e4:47:bd:d8:06:f3:b7:3d:b3:f2:93:b2:b9:56:68:9a: 13:e5:c0:06:54:8c:d5:c6:62:f9:69:f0:56:e2:e1:c9:e5:62: 69:d1:74:e3:ee:e0:40:b4:e8:38:0d:90:1f:11:45:37:1c:56: f3:57:06:a9:b8:56:0c:75:ee:f9:d0:7f:25:fd:b0:ef:a9:4c: 17:31:8f:84:79:5a:81:27:de:2f:2a:86:e9:26:bc:f6:d1:ab: f8:b4:78:18:ae:56:f6:b1:31:b8:d0:39:12:f9:6b:2b:87:7d: 20:fa:6e:29:67:13:e3:3b:25:ee:3f:32:60:d4:b1:44:65:53: bc:d0:6f:f9:5f:2f:93:af:c3:ca:9b:d6:84:5d:16:5c:f8:45: cc:0a:0f:a0:f1:bc:d2:31:3a:2c:f2:ab:a0:90:4a:e0:41:7f: ab:e2:86:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDMkUxMTAvBgNVBAUTKEQyOTlCQ0EzOUM5OTNEQjgwRDExMzdCOTk5QjIyMTg0 NkFDRjU1NkIwHhcNMjUxMDIyMjAzMDA4WhcNMjUxMDI5MjAzMDA4WjAYMRYwFAYD VQQDEw02OGY5M2VkMC0zNDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1clQrQD3L0UQam/2in4T1aLcQbKNwBpBEY+RNse6IhEyQjwlSWXV66pGz81 KJxyoMmztzX/vnkFcdTNJPGsSwLCNtqLgTlJ4GnyTdOZDETODzDn6RJ2HxXdr9rD W1VeLK/Vm64PuDVwhAITeaM7z9R82nN7goHk9lamqjS1tj6tP6zPudxf7hl6jH2I fDj4joZ568r+2XnJM8gphek9MbrRMbQBbd5+6p2CSVBAnqbXsV4sqbqM7VJXo3KA LySYluqZ8xRnvscb1PAE+WnkXVPjnnbOGnLhA5PtMILtC9BWADOmNRygdZUq+pF4 7DkdjjLNZPiSbOybWDeqIny39QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFATWJ59d uu9BapZDSdbp7dGGluIhMB8GA1UdIwQYMBaAFNKZvKOcmT24DRE3uZmyIYRqz1Vr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUMyRS85NTI3RTZCNDI2 OEUxMUVDOEVEMEJBNkVDNEY5QUUwMi8wcG04bzV5WlBiZ05FVGU1bWJJaGhHclBW V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBwbThvNXlaUGJnTkVUZTVtYkloaEdyUFZXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NUMyRS85NTI3RTZCNDI2OEUxMUVDOEVEMEJBNkVDNEY5QUUwMi8wcG04bzV5WlBi Z05FVGU1bWJJaGhHclBWV3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvK4QRSOvGu9iNZnK/cKs6VtBltFOqzJsNNlumsvyiP0vHAcp8hWwh KsqGLBbD8qyNrOy3zkh9hYcP458CjaGBpCIuiqbGQvKPFQpSVeMVGrTGz9IOuA5W nU+9juRHvdgG87c9s/KTsrlWaJoT5cAGVIzVxmL5afBW4uHJ5WJp0XTj7uBAtOg4 DZAfEUU3HFbzVwapuFYMde750H8l/bDvqUwXMY+EeVqBJ94vKobpJrz20av4tHgY rlb2sTG40DkS+Wsrh30g+m4pZxPjOyXuPzJg1LFEZVO80G/5Xy+Tr8PKm9aEXRZc +EXMCg+g8bzSMTos8qugkErgQX+r4oYe -----END CERTIFICATE-----Generated at Thu Oct 23 05:52:39 2025 by rpki-client