$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft File: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json) Hash identifier: YzGnh8NQpX13ciyHN5cIQJ7BKwPIKrx29WYBVbKnW3o= Subject key identifier: D5:69:60:A4:EA:00:4A:32:8D:02:E6:A3:81:C8:74:87:BE:A1:50:B1 Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 0506 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft Manifest number: 04FB Signing time: Mon 27 Oct 2025 00:41:30 +0000 Manifest this update: Mon 27 Oct 2025 00:41:30 +0000 Manifest next update: Mon 03 Nov 2025 00:41:30 +0000 Files and hashes: 1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: 7BqoFqvmZbLVJ01jCXGHbbtMga+w2PLFMh3uREdf8Xc=) 2: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: 4FN1ls050r3VusXGiD5QsVc+2i8lsZWUOsjCg4ks1ns=) 3: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: xSXFEgaEwRI11lRD4Ufv2Q0UsgFam8SFWBwH7ownsu0=) 4: 9BBDF5DEFFD611EF9AE4D35EC4F9AE02.roa (hash: XhD4C1tmuOJjIi4uib9jXt7/7FR/n9zJv0iU9Ika1Yo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 00:41:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1286 (0x506) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Validity Not Before: Oct 27 00:41:30 2025 GMT Not After : Nov 3 00:41:30 2025 GMT Subject: CN=68febfba-c0a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a7:dc:1d:d8:23:f9:52:d3:ff:ef:97:fe:b8: 09:47:f4:b3:e1:6e:b8:8f:5b:27:15:7b:21:e9:95: 17:41:66:a1:2f:c2:37:cd:9d:bf:4c:57:11:8e:2d: 54:c6:fe:a1:74:27:92:f4:bb:41:1a:bd:e1:d7:d5: 81:d8:35:dc:56:ea:0c:b5:1a:f2:9e:c4:ea:64:e8: 04:2b:5c:86:f4:0b:3d:9b:6d:79:5a:8e:e1:1f:bf: f5:76:ee:05:7c:91:67:1d:9d:1a:50:a5:30:7d:c3: 6b:75:18:00:f5:ed:3e:b8:d9:4e:eb:d6:53:9a:5a: ea:88:97:77:16:1a:dc:50:8f:a8:20:21:5a:a4:f2: ef:df:f7:ba:b3:a3:c7:86:be:95:13:f7:73:23:4a: e2:93:6d:2a:9b:c7:4a:64:48:3c:f3:b7:03:d1:d6: cb:c7:7a:4e:6f:58:7f:53:f9:9c:4a:b7:fa:28:91: 3b:f9:df:db:b6:c2:7a:f2:73:dd:fd:d8:de:84:bb: 20:70:5d:6d:e9:f2:5e:08:dc:8a:dd:55:f7:f4:0e: 39:36:09:a1:f3:98:df:4e:34:ea:bd:f3:e6:7d:6e: 94:c8:43:d3:06:1c:c1:2e:2f:75:71:ad:7f:f9:bf: c4:99:80:fd:b5:aa:ff:c9:00:4a:8c:e1:4d:c7:b6: a2:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:69:60:A4:EA:00:4A:32:8D:02:E6:A3:81:C8:74:87:BE:A1:50:B1 X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:33:d2:51:fd:f6:85:8f:e2:fa:03:70:e4:ed:09:bc:dd:78: 32:66:18:20:15:90:94:75:cf:56:4c:b3:c3:a0:f1:52:cd:3f: 14:4a:06:4f:c7:73:f1:ae:08:b9:71:cc:af:d3:95:7d:d0:52: c6:78:62:58:0e:3c:99:cf:d6:a2:00:06:7a:6a:81:99:93:7c: 7c:a2:9d:99:f6:3a:96:92:81:ad:63:4b:75:71:a2:bb:42:6e: 63:7b:f1:f3:a6:32:bf:6e:e1:5c:2f:5a:65:16:ce:e6:03:5a: 83:ad:ca:52:cc:e6:77:43:f4:f6:8c:c3:8a:37:13:18:e4:1d: 74:6b:b5:19:09:f5:cb:81:e6:d3:06:40:83:2b:cc:b7:ee:c0: 8f:77:69:b5:a5:bb:18:06:39:14:7c:bd:ea:5b:df:3c:f8:6a: 38:9b:aa:fa:cc:01:ee:86:aa:9a:cb:c7:c4:2c:00:68:65:68: 7a:25:93:bc:46:3a:8e:52:ba:e3:80:dd:11:96:18:5f:e2:b7: d2:b5:39:0c:c5:2c:d1:24:25:7e:cf:08:ef:dd:2f:e8:df:25: a0:a7:05:a6:83:65:bf:fd:90:a4:97:94:6e:d9:00:26:8b:dd: 71:b0:f1:ec:82:50:37:ef:53:9b:51:37:5e:5a:ac:5f:36:66: e4:9a:36:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjUxMDI3MDA0MTMwWhcNMjUxMTAzMDA0MTMwWjAYMRYwFAYD VQQDEw02OGZlYmZiYS1jMGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKfcHdgj+VLT/++X/rgJR/Sz4W64j1snFXsh6ZUXQWahL8I3zZ2/TFcRji1U xv6hdCeS9LtBGr3h19WB2DXcVuoMtRrynsTqZOgEK1yG9As9m215Wo7hH7/1du4F fJFnHZ0aUKUwfcNrdRgA9e0+uNlO69ZTmlrqiJd3FhrcUI+oICFapPLv3/e6s6PH hr6VE/dzI0rik20qm8dKZEg887cD0dbLx3pOb1h/U/mcSrf6KJE7+d/btsJ68nPd /djehLsgcF1t6fJeCNyK3VX39A45Ngmh85jfTjTqvfPmfW6UyEPTBhzBLi91ca1/ +b/EmYD9tar/yQBKjOFNx7aiXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNVpYKTq AEoyjQLmo4HIdIe+oVCxMB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zNTkwNjVBNjMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZN UXkza2JVdy0yaFQyUXYyaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdM9JR/faFj+L6A3Dk7Qm83XgyZhggFZCUdc9WTLPDoPFSzT8USgZP x3Pxrgi5ccyv05V90FLGeGJYDjyZz9aiAAZ6aoGZk3x8op2Z9jqWkoGtY0t1caK7 Qm5je/HzpjK/buFcL1plFs7mA1qDrcpSzOZ3Q/T2jMOKNxMY5B10a7UZCfXLgebT BkCDK8y37sCPd2m1pbsYBjkUfL3qW988+Go4m6r6zAHuhqqay8fELABoZWh6JZO8 RjqOUrrjgN0Rlhhf4rfStTkMxSzRJCV+zwjv3S/o3yWgpwWmg2W//ZCkl5Ru2QAm i91xsPHsglA371ObUTdeWqxfNmbkmjau -----END CERTIFICATE-----Generated at Tue Oct 28 12:57:47 2025 by rpki-client