$ rpki-client -vvf rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft File: piPcBe58I3DKREMQhN5RMh83pwQ.mft (raw, json) Hash identifier: sGQnqoncs7DbbjQYg6zBnJIuVpx2uh4eTJVSUSl38Aw= Subject key identifier: 53:9E:1B:69:47:A7:96:41:45:16:B2:C7:09:FE:1D:A8:C0:56:FB:D8 Authority key identifier: A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04 Certificate issuer: /CN=A9146179/serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704 Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft Manifest number: A7 Signing time: Fri 17 Oct 2025 09:34:10 +0000 Manifest this update: Fri 17 Oct 2025 09:34:09 +0000 Manifest next update: Fri 24 Oct 2025 09:34:09 +0000 Files and hashes: 1: piPcBe58I3DKREMQhN5RMh83pwQ.crl (hash: OFt1zr+2YkgSk7gZrtnPSRWLSD/zjZmOn0ACnWcMLdI=) 2: B93E11C0AA7C11EFA2125D79C4F9AE02.roa (hash: L6gwOkLW0S9oSXFYmJ2NgzIUWM0zCt+FTxcWMzfbAlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 09:34:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146179, serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704 Validity Not Before: Oct 17 09:34:09 2025 GMT Not After : Oct 24 09:34:09 2025 GMT Subject: CN=68f20d92-bb67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:40:5b:0f:79:b2:90:93:70:ab:50:50:5f:01: ba:57:90:12:0d:2a:75:f1:e3:40:73:25:56:35:88: 4b:b2:d3:7d:54:5a:92:55:7a:f9:e6:c6:89:be:cd: e1:4e:cc:a5:c3:db:7a:ce:f1:7e:f4:8b:10:e6:ef: ae:01:b2:8f:88:45:84:50:21:b3:50:58:a5:88:8e: 31:f1:dd:c7:b8:f7:d3:d7:81:cc:45:47:52:9f:22: dd:65:20:ea:db:29:1f:fd:3a:b1:b7:d1:9c:74:09: 51:a5:24:72:a0:06:d6:6e:81:f1:bd:61:02:f7:d8: e2:2f:a0:3f:d5:af:3d:da:83:08:e5:c3:7f:d8:e1: 33:af:c5:91:7c:2f:41:aa:d5:d0:53:7f:4f:ab:72: 84:e5:4e:6a:f1:0b:54:6c:97:85:ea:3b:a2:8f:c6: 38:23:15:28:e2:3a:fe:67:a8:0f:0e:dd:6e:c2:8c: 50:be:bb:68:bd:36:0f:10:65:44:94:57:60:63:72: f3:fb:a3:f7:55:ce:10:44:7c:2d:26:08:1b:6c:0e: 0e:90:85:47:7a:1e:01:f1:90:1f:1c:50:04:91:97: 3b:54:77:18:a1:da:6d:cd:44:c7:d5:55:82:ef:48: 62:11:75:9e:6a:0c:3e:a4:ea:10:4e:d9:d4:1a:4b: 35:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:9E:1B:69:47:A7:96:41:45:16:B2:C7:09:FE:1D:A8:C0:56:FB:D8 X509v3 Authority Key Identifier: keyid:A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:f5:53:18:d9:26:a2:dc:a5:4c:fd:56:df:ee:b0:fb:93:22: ed:96:85:fc:9e:77:ef:05:61:cc:e3:e5:7b:0f:ca:8a:ff:fe: b6:bb:38:4d:e9:75:3e:fc:99:50:70:cf:23:3a:1e:a1:2b:3c: f8:e8:52:7e:00:d1:65:57:c1:3e:c5:48:44:f4:4d:94:eb:7c: e5:65:a9:ef:6e:75:23:6c:31:dd:08:d1:af:8b:dd:49:64:74: ad:d1:f0:96:db:c8:a0:2a:92:66:1b:b8:82:9d:7c:5f:87:2e: 91:9d:c5:8e:b3:c9:26:81:e7:3f:b3:d7:09:6f:f1:79:84:5c: e8:3c:45:96:32:d1:b8:fa:b0:16:e7:b9:45:39:b3:83:59:1b: b4:2b:ec:b9:e8:84:52:4c:df:74:bf:31:dd:35:6e:ee:18:0f: a7:92:2c:3d:bf:2b:16:ad:c4:ac:94:61:b8:f3:e5:2f:ac:39: 6d:c3:d2:31:e3:50:10:86:1b:d9:cb:7b:0e:68:d6:c4:2b:fc: 1f:21:d3:23:06:90:e9:2f:21:80:79:7a:61:40:76:90:89:b9: a5:ad:b9:dc:c4:bd:b0:27:f1:60:fa:09:a8:db:92:9e:14:fa: 54:c6:b4:8c:a1:5b:a3:8b:dc:2d:76:c4:87:ad:95:6c:f8:ba: a7:09:52:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYxNzkxMTAvBgNVBAUTKEE2MjNEQzA1RUU3QzIzNzBDQTQ0NDMxMDg0REU1MTMy MUYzN0E3MDQwHhcNMjUxMDE3MDkzNDA5WhcNMjUxMDI0MDkzNDA5WjAYMRYwFAYD VQQDEw02OGYyMGQ5Mi1iYjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7EBbD3mykJNwq1BQXwG6V5ASDSp18eNAcyVWNYhLstN9VFqSVXr55saJvs3h Tsylw9t6zvF+9IsQ5u+uAbKPiEWEUCGzUFiliI4x8d3HuPfT14HMRUdSnyLdZSDq 2ykf/Tqxt9GcdAlRpSRyoAbWboHxvWEC99jiL6A/1a892oMI5cN/2OEzr8WRfC9B qtXQU39Pq3KE5U5q8QtUbJeF6juij8Y4IxUo4jr+Z6gPDt1uwoxQvrtovTYPEGVE lFdgY3Lz+6P3Vc4QRHwtJggbbA4OkIVHeh4B8ZAfHFAEkZc7VHcYodptzUTH1VWC 70hiEXWeagw+pOoQTtnUGks1IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOeG2lH p5ZBRRayxwn+HajAVvvYMB8GA1UdIwQYMBaAFKYj3AXufCNwykRDEITeUTIfN6cE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjE3OS80QkZEOUJCQ0FB N0MxMUVGQTMzQkZENzdDNEY5QUUwMi9waVBjQmU1OEkzREtSRU1RaE41Uk1oODNw d1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BpUGNCZTU4STNES1JFTVFoTjVSTWg4M3B3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjE3OS80QkZEOUJCQ0FBN0MxMUVGQTMzQkZENzdDNEY5QUUwMi9waVBjQmU1OEkz REtSRU1RaE41Uk1oODNwd1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg9VMY2Sai3KVM/Vbf7rD7kyLtloX8nnfvBWHM4+V7D8qK//62uzhN 6XU+/JlQcM8jOh6hKzz46FJ+ANFlV8E+xUhE9E2U63zlZanvbnUjbDHdCNGvi91J ZHSt0fCW28igKpJmG7iCnXxfhy6RncWOs8kmgec/s9cJb/F5hFzoPEWWMtG4+rAW 57lFObODWRu0K+y56IRSTN90vzHdNW7uGA+nkiw9vysWrcSslGG48+UvrDltw9Ix 41AQhhvZy3sOaNbEK/wfIdMjBpDpLyGAeXphQHaQibmlrbncxL2wJ/Fg+gmo25Ke FPpUxrSMoVuji9wtdsSHrZVs+LqnCVLV -----END CERTIFICATE-----Generated at Sat Oct 18 23:35:51 2025 by rpki-client