$ rpki-client -vvf rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft File: aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft (raw, json) Hash identifier: lld5hpjolFrghGmcGle5PtalziUeUU2PdsSrUKiktOQ= Subject key identifier: 36:09:CB:2D:0A:E5:B8:99:0C:82:59:0F:10:77:66:8F:7E:A6:1A:89 Authority key identifier: 69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 Certificate issuer: /CN=A9119333/serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Certificate serial: 2306 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft Manifest number: 22C3 Signing time: Fri 24 Oct 2025 16:07:45 +0000 Manifest this update: Fri 24 Oct 2025 16:07:44 +0000 Manifest next update: Fri 31 Oct 2025 16:07:44 +0000 Files and hashes: 1: aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl (hash: vH2cSab27XDe5wozgfWy4SzoiyN31eW7wk4VHNeeCY0=) 2: 443C3AF2D3F611EFB03C5C14C4F9AE02.roa (hash: QalrWEPHK1c0+wAh4Y9v/QxVAuOH9u4KL51JrDmBQPs=) 3: DD73806ED3C811EF9D76942FC4F9AE02.roa (hash: yV/SjGOrZoU6XjMAo/QC3pR5jQlSni/vmLDt0r4ftkA=) 4: 1AC9199AD3CB11EF84052053C4F9AE02.roa (hash: 3g8CG6eXI2y/sKSche4ErWaN1/woBDrqwhgjSA2yZ4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 16:07:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8966 (0x2306) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119333, serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Validity Not Before: Oct 24 16:07:44 2025 GMT Not After : Oct 31 16:07:44 2025 GMT Subject: CN=68fba451-77b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:bf:2d:a2:d8:e4:13:ba:eb:62:52:bf:09:7c: fd:4a:10:04:69:70:3a:e1:39:14:27:19:22:c1:6d: b4:94:6c:6b:59:1e:a3:0d:b1:3a:66:cf:46:2b:7b: 18:fc:6c:f1:66:d5:8b:81:50:aa:a9:74:3f:5c:2d: 54:5b:e8:ed:41:7c:7b:68:e8:a0:79:8c:e4:8b:46: 01:26:e2:b0:78:1a:13:35:f1:00:cb:c6:d8:1f:e6: 5b:72:e2:f8:0d:ee:c8:aa:6a:7d:a3:05:52:06:44: 9a:bc:ad:5a:a6:d6:c9:e6:9e:75:c0:5f:41:6b:19: 23:f6:fe:da:37:a1:05:4e:d6:25:12:49:95:f3:78: 57:5a:88:85:e1:4b:71:86:8c:0c:cc:97:bb:b6:9f: 48:45:f5:e0:32:48:ab:d6:39:44:c6:77:46:87:c4: ea:54:97:55:b4:ff:74:01:86:8d:3e:f0:f5:4b:f9: 1d:29:c2:6b:ce:27:09:57:a3:7a:15:9f:a5:9e:e3: 45:f4:bb:9b:86:44:1c:ad:13:ab:3c:f9:fd:be:ca: b6:62:10:50:d9:ce:13:32:95:b7:f2:38:2c:fc:27: 62:c8:c2:23:7c:b6:43:53:fc:b3:60:b1:d2:a3:05: 95:50:ee:b8:a7:c8:02:0a:8e:15:91:8f:7e:0a:d5: 55:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:09:CB:2D:0A:E5:B8:99:0C:82:59:0F:10:77:66:8F:7E:A6:1A:89 X509v3 Authority Key Identifier: keyid:69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:9b:07:51:67:33:71:df:df:2e:cd:27:eb:67:8b:11:96:6b: 23:62:83:21:23:ee:f2:33:8e:dc:c7:a8:43:ad:1f:41:31:c0: a9:9b:3d:49:1e:29:65:79:e0:a9:12:f7:2d:56:ca:56:e3:45: 6d:77:b2:c8:3a:81:dc:6d:e0:5d:8c:80:f5:8d:58:06:20:a0: 15:45:74:3b:af:ec:75:cb:64:60:a2:42:57:e2:c7:11:0d:af: e3:26:2d:6a:88:62:c0:0c:a4:32:1e:ff:f0:98:e3:74:93:6f: 5d:21:ef:4f:47:ff:43:b6:e3:3b:3c:d6:d4:ba:8f:58:9f:fd: 60:71:1e:ff:c1:16:fc:81:57:8e:9b:bd:18:59:1e:2d:28:5e: 4c:c7:28:e8:57:6c:8b:45:c8:d3:fe:d2:80:53:bb:db:bb:1c: 13:e5:e3:db:c0:b9:ec:c7:ae:1c:05:38:49:d2:12:6d:94:95: d9:88:15:2e:41:b9:e9:87:fd:41:19:68:9f:0e:81:35:ef:9a: 99:ca:e5:de:4b:5f:5d:e8:6c:95:dd:bf:b8:5a:fc:76:43:64: 59:a1:ad:83:ed:9e:e1:ce:15:2e:4d:97:0b:f4:3e:70:e2:6d: fc:47:6e:6b:bb:66:43:52:3a:07:aa:0c:4d:d0:dc:87:f8:1d: 11:80:db:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkzMzMxMTAvBgNVBAUTKDY5OUU2NzQyNTY3QkU3MzI5Q0MzQTc4NkRFQjc4NTdF MkMyNDIwRjkwHhcNMjUxMDI0MTYwNzQ0WhcNMjUxMDMxMTYwNzQ0WjAYMRYwFAYD VQQDEw02OGZiYTQ1MS03N2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA178totjkE7rrYlK/CXz9ShAEaXA64TkUJxkiwW20lGxrWR6jDbE6Zs9GK3sY /GzxZtWLgVCqqXQ/XC1UW+jtQXx7aOigeYzki0YBJuKweBoTNfEAy8bYH+ZbcuL4 De7Iqmp9owVSBkSavK1aptbJ5p51wF9Baxkj9v7aN6EFTtYlEkmV83hXWoiF4Utx howMzJe7tp9IRfXgMkir1jlExndGh8TqVJdVtP90AYaNPvD1S/kdKcJrzicJV6N6 FZ+lnuNF9LubhkQcrROrPPn9vsq2YhBQ2c4TMpW38jgs/CdiyMIjfLZDU/yzYLHS owWVUO64p8gCCo4VkY9+CtVV7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDYJyy0K 5biZDIJZDxB3Zo9+phqJMB8GA1UdIwQYMBaAFGmeZ0JWe+cynMOnht63hX4sJCD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTMzMy8wNjVEQTNCQUI4 NDQxMUU1QjUzNTdCMkZDNEY5QUUwMi9hWjVuUWxaNzV6S2N3NmVHM3JlRmZpd2tJ UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaNW5RbFo3NXpLY3c2ZUczcmVGZml3a0lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTMzMy8wNjVEQTNCQUI4NDQxMUU1QjUzNTdCMkZDNEY5QUUwMi9hWjVuUWxaNzV6 S2N3NmVHM3JlRmZpd2tJUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvmwdRZzNx398uzSfrZ4sRlmsjYoMhI+7yM47cx6hDrR9BMcCpmz1J HilleeCpEvctVspW40Vtd7LIOoHcbeBdjID1jVgGIKAVRXQ7r+x1y2RgokJX4scR Da/jJi1qiGLADKQyHv/wmON0k29dIe9PR/9DtuM7PNbUuo9Yn/1gcR7/wRb8gVeO m70YWR4tKF5MxyjoV2yLRcjT/tKAU7vbuxwT5ePbwLnsx64cBThJ0hJtlJXZiBUu Qbnph/1BGWifDoE175qZyuXeS19d6GyV3b+4Wvx2Q2RZoa2D7Z7hzhUuTZcL9D5w 4m38R25ru2ZDUjoHqgxN0NyH+B0RgNuU -----END CERTIFICATE-----Generated at Fri Oct 24 18:52:58 2025 by rpki-client