$ rpki-client -vvf rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft File: ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft (raw, json) Hash identifier: 2kbBQ5x77oGKElJBrzLze9i+q/96azC/GTCGOoIqkwI= Subject key identifier: 0B:0E:AD:70:A1:A9:EE:CF:B1:11:D5:08:EA:3D:48:92:B3:4C:5C:B7 Authority key identifier: 4E:81:E0:F6:A8:3A:DC:2A:D5:23:26:64:A9:54:D2:67:CB:43:D9:0A Certificate issuer: /CN=A9130138/serialNumber=4E81E0F6A83ADC2AD5232664A954D267CB43D90A Certificate serial: 03B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft Manifest number: 0394 Signing time: Thu 23 Oct 2025 02:09:01 +0000 Manifest this update: Thu 23 Oct 2025 02:09:00 +0000 Manifest next update: Thu 30 Oct 2025 02:09:00 +0000 Files and hashes: 1: ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl (hash: 7FvMpqYp8jmjRwo6s9VU1jf+rA0vdEnb1fiNCza1u/0=) 2: 6D3CF65A134311EEA2AF3B1EC4F9AE02.roa (hash: TGtBMLjAQZMZJ1khWN0b0rXwvGwxupeZB+kuz4CTJXg=) 3: 5E0B2804158811EEA0660D12C4F9AE02.roa (hash: L2Pd8jB/i+ABeqpyLFwMSDyc47P9cj5jXqAEMCEAC1Q=) 4: 2A616414808A11EF813A8343C4F9AE02.roa (hash: 7hic6UONO0B455KhpL0YJRnN6Tw5oyNjErH5A+IJRxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 02:09:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 944 (0x3b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130138, serialNumber=4E81E0F6A83ADC2AD5232664A954D267CB43D90A Validity Not Before: Oct 23 02:09:00 2025 GMT Not After : Oct 30 02:09:00 2025 GMT Subject: CN=68f98e3d-2c00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d6:d4:bd:e2:bb:d5:7b:f4:fc:2d:7f:a5:df: 63:a0:52:bc:ce:33:46:ed:21:b5:f9:d1:e9:8c:d5: 1f:a8:b3:68:41:bb:a4:3a:7a:61:62:57:10:fe:2b: 67:a4:b8:67:f9:4e:11:04:4f:c1:4f:23:27:b9:4c: 38:fd:e7:78:ea:a4:7f:cc:33:e8:57:94:2e:81:1b: a2:1f:d8:f9:c9:fa:63:db:1f:29:85:24:5f:de:45: 4d:96:28:cf:03:bc:f9:e8:5f:41:6d:c5:e8:37:47: 9f:7d:07:2d:a4:4b:7c:2d:07:95:20:1f:3e:e0:4d: 0c:6b:38:9a:f8:04:89:f8:26:a2:63:28:5d:c8:32: 29:65:10:33:e8:a4:ae:6c:14:f6:44:d7:ad:c5:b1: 97:f8:a4:e0:70:17:c0:ad:80:9d:37:22:03:d8:06: 1f:24:49:98:f5:93:ec:e9:9d:74:d3:ac:18:3d:c2: b0:71:d2:cf:bf:7d:8d:53:31:b8:68:ed:fc:a7:ce: a4:ef:11:3d:c4:c7:d9:8c:f6:0b:8b:f9:27:3c:b7: 4c:68:97:32:70:5f:1e:ca:4b:3d:c7:30:00:ec:c8: c1:56:6b:8d:76:4a:c7:44:db:45:cf:73:03:d0:97: 90:62:83:5a:ad:50:5e:50:31:f2:e0:36:e8:68:74: 07:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:0E:AD:70:A1:A9:EE:CF:B1:11:D5:08:EA:3D:48:92:B3:4C:5C:B7 X509v3 Authority Key Identifier: keyid:4E:81:E0:F6:A8:3A:DC:2A:D5:23:26:64:A9:54:D2:67:CB:43:D9:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130138/63A4D1BCC47A11EC8B344964C4F9AE02/ToHg9qg63CrVIyZkqVTSZ8tD2Qo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:2f:33:94:0c:0d:5a:40:e0:9a:27:30:9b:0f:06:0c:09:3b: 2b:07:6c:ad:e5:6d:c3:2d:a1:fa:db:94:2b:4f:0a:2b:c5:28: 0a:f0:78:09:4b:a9:ec:fa:c3:5c:4b:a0:ff:a2:80:b1:c2:81: f6:fa:d2:14:0e:15:90:9e:6d:c0:80:9f:b5:98:b5:6e:47:a7: d9:71:79:ce:71:21:13:2c:9c:e9:0e:1b:07:be:02:c1:7a:ef: 45:aa:27:70:af:80:c1:4e:ce:86:8c:3a:12:88:7c:56:99:bd: d7:8c:19:41:e6:3c:d6:67:06:fb:55:81:3d:eb:13:5e:71:67: c1:85:d0:0c:17:c2:7a:1e:06:57:4b:fe:77:d7:5f:85:39:67: 1c:e5:d0:b7:7b:dd:dd:4f:21:e7:48:96:fb:a5:dd:e0:ab:33: 7a:f7:b7:04:07:55:f6:fc:ec:4c:64:6f:77:63:f6:a2:80:ad: 8f:b4:43:04:dd:ec:6b:f0:b2:87:f8:db:5e:bf:f4:e6:90:1c: 7d:85:d3:95:5d:9b:c4:78:51:fe:3d:b9:0c:dd:61:ec:fc:43: 47:c5:8e:1c:c6:07:b8:7a:94:f2:3d:45:3d:50:fe:91:57:31: bf:3e:1f:61:9d:02:b6:98:97:0a:6c:cf:f5:02:cc:37:ef:3a: bc:66:21:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxMzgxMTAvBgNVBAUTKDRFODFFMEY2QTgzQURDMkFENTIzMjY2NEE5NTREMjY3 Q0I0M0Q5MEEwHhcNMjUxMDIzMDIwOTAwWhcNMjUxMDMwMDIwOTAwWjAYMRYwFAYD VQQDEw02OGY5OGUzZC0yYzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9bUveK71Xv0/C1/pd9joFK8zjNG7SG1+dHpjNUfqLNoQbukOnphYlcQ/itn pLhn+U4RBE/BTyMnuUw4/ed46qR/zDPoV5QugRuiH9j5yfpj2x8phSRf3kVNlijP A7z56F9BbcXoN0effQctpEt8LQeVIB8+4E0Mazia+ASJ+CaiYyhdyDIpZRAz6KSu bBT2RNetxbGX+KTgcBfArYCdNyID2AYfJEmY9ZPs6Z1006wYPcKwcdLPv32NUzG4 aO38p86k7xE9xMfZjPYLi/knPLdMaJcycF8eyks9xzAA7MjBVmuNdkrHRNtFz3MD 0JeQYoNarVBeUDHy4DboaHQHBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsOrXCh qe7PsRHVCOo9SJKzTFy3MB8GA1UdIwQYMBaAFE6B4PaoOtwq1SMmZKlU0mfLQ9kK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDEzOC82M0E0RDFCQ0M0 N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi9Ub0hnOXFnNjNDclZJeVprcVZUU1o4dEQy UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RvSGc5cWc2M0NyVkl5WmtxVlRTWjh0RDJRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDEzOC82M0E0RDFCQ0M0N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi9Ub0hnOXFnNjND clZJeVprcVZUU1o4dEQyUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvLzOUDA1aQOCaJzCbDwYMCTsrB2yt5W3DLaH625QrTworxSgK8HgJ S6ns+sNcS6D/ooCxwoH2+tIUDhWQnm3AgJ+1mLVuR6fZcXnOcSETLJzpDhsHvgLB eu9Fqidwr4DBTs6GjDoSiHxWmb3XjBlB5jzWZwb7VYE96xNecWfBhdAMF8J6HgZX S/5311+FOWcc5dC3e93dTyHnSJb7pd3gqzN697cEB1X2/OxMZG93Y/aigK2PtEME 3exr8LKH+Ntev/TmkBx9hdOVXZvEeFH+PbkM3WHs/ENHxY4cxge4epTyPUU9UP6R VzG/Ph9hnQK2mJcKbM/1Asw37zq8ZiG7 -----END CERTIFICATE-----Generated at Thu Oct 23 09:57:11 2025 by rpki-client