$ rpki-client -vvf rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft File: 7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft (raw, json) Hash identifier: WKWCOW3hCXH5XLExscnqVfs24o3s/G1k2xuS+4AL4Us= Subject key identifier: 1E:8E:89:BC:A8:D1:B8:CB:63:1F:5C:C1:11:30:E7:34:29:EB:A0:5C Authority key identifier: EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66 Certificate issuer: /CN=A9126A3C/serialNumber=EE819A49B8C8A84413EE8FE8326EF137F5185C66 Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft Manifest number: 9C Signing time: Mon 27 Oct 2025 08:39:55 +0000 Manifest this update: Mon 27 Oct 2025 08:39:54 +0000 Manifest next update: Mon 03 Nov 2025 08:39:54 +0000 Files and hashes: 1: 7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl (hash: xHAtxNwwkhEsee8B5oX8+nxA9SWWepNGryk8a53o9rw=) 2: 16E1C8ECC6DB11EFBDDB8A0AC4F9AE02.roa (hash: NFkplWmsMA3dKF672WmukIl9RpnNjHUYN1V/j7l+GN0=) 3: E11BD76CC6D911EF8CC3C849C4F9AE02.roa (hash: FPrJ8rYYz3zXm+ulxONvcKZWR1V8127XQSJ/4rwqktA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 08:39:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126A3C, serialNumber=EE819A49B8C8A84413EE8FE8326EF137F5185C66 Validity Not Before: Oct 27 08:39:54 2025 GMT Not After : Nov 3 08:39:54 2025 GMT Subject: CN=68ff2fdb-5d3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d0:f0:eb:63:d8:bb:55:4e:c4:c3:df:04:3d: 17:89:1a:85:38:4a:18:cd:21:f3:f5:ec:c7:82:a7: cd:78:3b:a9:3f:68:b8:5b:d4:e8:15:af:25:99:b9: 2e:8c:3c:76:d8:20:df:0c:69:46:5e:c2:79:2b:c3: c6:54:d5:68:00:63:38:6e:5d:56:0d:2c:6b:56:8e: ea:45:19:38:10:c6:26:ac:28:19:b4:9c:1b:0d:07: b3:f2:85:c8:00:bb:e4:ff:8e:7c:84:a7:24:3e:2a: 02:cf:bd:30:99:c9:e9:5c:d0:d2:d6:77:92:d5:3a: 04:ed:d6:13:18:40:17:3e:e6:60:ca:9e:ab:ad:9a: ca:45:1a:9a:41:a6:88:d3:3d:74:ed:b3:2b:ea:9c: 3c:30:96:71:0a:7b:ee:c0:af:53:dd:e1:84:be:e3: cc:a1:8d:69:c2:af:ba:d9:87:90:35:55:f8:d6:cd: 75:5a:3c:3f:4e:7e:47:fc:f6:d9:df:44:bf:ad:03: 03:a5:b0:18:55:51:18:a9:24:44:05:aa:a3:d5:7f: ae:b1:f8:53:c1:dd:0c:17:92:a2:27:c9:25:b0:7b: c1:6e:c2:c7:99:b5:75:d1:e7:79:b3:d5:b2:f2:fb: 87:37:f3:c5:09:51:6d:09:c9:a8:5a:75:ab:e5:61: 96:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:8E:89:BC:A8:D1:B8:CB:63:1F:5C:C1:11:30:E7:34:29:EB:A0:5C X509v3 Authority Key Identifier: keyid:EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:72:5e:8f:61:24:f7:68:d9:48:8b:db:bc:f1:47:c9:8a:11: 8d:eb:67:70:51:2f:2a:8c:b7:d4:d4:18:28:09:45:8e:83:f6: e7:71:a4:1d:b6:a7:11:20:8d:06:d5:f9:0b:92:93:aa:26:21: 39:ec:15:06:67:88:47:a8:86:86:98:06:a9:2f:ea:21:1a:74: 39:d1:d5:ed:66:97:81:dc:19:8e:59:70:fa:47:87:ee:d9:54: c2:a6:a3:fb:a5:9f:3a:a4:27:cd:ac:96:30:7b:7e:20:5b:39: 63:a6:56:fc:51:36:39:04:9c:4c:3a:5d:cb:e1:ee:05:38:8d: d5:02:b8:24:84:84:0a:0b:ea:b8:2c:1c:84:8e:d6:a7:53:4e: 11:49:00:78:41:67:73:11:87:e8:3b:4d:2d:84:69:84:68:a3: e5:55:ef:04:7f:79:df:e1:2b:30:27:ae:b0:00:97:71:14:a9: 68:95:36:9a:44:be:53:82:4e:db:cd:aa:37:0e:af:41:a0:80: 59:85:0a:d5:73:a0:8a:97:df:56:34:d0:1f:3c:78:09:e5:8b: 0f:77:50:cf:6f:f1:d9:9f:68:ff:81:f0:c1:a5:a5:19:d7:d2: e9:3d:52:c6:23:b9:51:50:91:80:b7:f4:66:c7:b8:74:70:20: 5a:36:62:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZBM0MxMTAvBgNVBAUTKEVFODE5QTQ5QjhDOEE4NDQxM0VFOEZFODMyNkVGMTM3 RjUxODVDNjYwHhcNMjUxMDI3MDgzOTU0WhcNMjUxMTAzMDgzOTU0WjAYMRYwFAYD VQQDEw02OGZmMmZkYi01ZDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydDw62PYu1VOxMPfBD0XiRqFOEoYzSHz9ezHgqfNeDupP2i4W9ToFa8lmbku jDx22CDfDGlGXsJ5K8PGVNVoAGM4bl1WDSxrVo7qRRk4EMYmrCgZtJwbDQez8oXI ALvk/458hKckPioCz70wmcnpXNDS1neS1ToE7dYTGEAXPuZgyp6rrZrKRRqaQaaI 0z107bMr6pw8MJZxCnvuwK9T3eGEvuPMoY1pwq+62YeQNVX41s11Wjw/Tn5H/PbZ 30S/rQMDpbAYVVEYqSREBaqj1X+usfhTwd0MF5KiJ8klsHvBbsLHmbV10ed5s9Wy 8vuHN/PFCVFtCcmoWnWr5WGWqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6Oibyo 0bjLYx9cwREw5zQp66BcMB8GA1UdIwQYMBaAFO6Bmkm4yKhEE+6P6DJu8Tf1GFxm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkEzQy83QkZCNENBQ0M2 QTAxMUVGOTI4Qjc5NjBDNEY5QUUwMi83b0dhU2JqSXFFUVQ3b19vTW03eE5fVVlY R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdvR2FTYmpJcUVRVDdvX29NbTd4Tl9VWVhHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkEzQy83QkZCNENBQ0M2QTAxMUVGOTI4Qjc5NjBDNEY5QUUwMi83b0dhU2JqSXFF UVQ3b19vTW03eE5fVVlYR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQcl6PYST3aNlIi9u88UfJihGN62dwUS8qjLfU1BgoCUWOg/bncaQd tqcRII0G1fkLkpOqJiE57BUGZ4hHqIaGmAapL+ohGnQ50dXtZpeB3BmOWXD6R4fu 2VTCpqP7pZ86pCfNrJYwe34gWzljplb8UTY5BJxMOl3L4e4FOI3VArgkhIQKC+q4 LByEjtanU04RSQB4QWdzEYfoO00thGmEaKPlVe8Ef3nf4SswJ66wAJdxFKlolTaa RL5Tgk7bzao3Dq9BoIBZhQrVc6CKl99WNNAfPHgJ5YsPd1DPb/HZn2j/gfDBpaUZ 19LpPVLGI7lRUJGAt/Rmx7h0cCBaNmId -----END CERTIFICATE-----Generated at Tue Oct 28 14:19:02 2025 by rpki-client