$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft File: af9o05rBdz4oqFeFx5G0qNmzhIY.mft (raw, json) Hash identifier: E1bJwf5mvURyOUyRTCnUK4uYASAbVf2rxJ6963i/XVk= Subject key identifier: FB:8E:0D:17:EB:CC:C1:9E:D2:1D:7B:1A:86:6E:7E:40:82:9F:C5:35 Authority key identifier: 69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86 Certificate issuer: /CN=A9148D61/serialNumber=69FF68D39AC1773E28A85785C791B4A8D9B38486 Certificate serial: 0244 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft Manifest number: 0236 Signing time: Wed 05 Nov 2025 02:16:45 +0000 Manifest this update: Wed 05 Nov 2025 02:16:45 +0000 Manifest next update: Wed 12 Nov 2025 02:16:45 +0000 Files and hashes: 1: af9o05rBdz4oqFeFx5G0qNmzhIY.crl (hash: stuPVyL9ci++393AIzRTnA7nvwXOEdHVy6qpdV6jou8=) 2: 349D4A7AB90A11EF97D24653C4F9AE02.roa (hash: sJy5pshkDUnbouI1mvCets72eh7H/oS/xnD04CW6At4=) 3: 34386BAAB90A11EF97D24653C4F9AE02.roa (hash: EFu9fWzB4CHYh3zr3NOY2aOQ9lFVqr9qWCqhREefbqg=) 4: 35ADE898B90A11EF97D24653C4F9AE02.roa (hash: HL9ak8W9+trC9MiHY74LwXsBVM1StTTPf6Gtlitiu6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:16:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 580 (0x244) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D61, serialNumber=69FF68D39AC1773E28A85785C791B4A8D9B38486 Validity Not Before: Nov 5 02:16:45 2025 GMT Not After : Nov 12 02:16:45 2025 GMT Subject: CN=690ab38d-dcf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:72:ef:48:c0:94:72:ac:2f:ee:34:91:d4:b2: 40:0d:5a:c9:80:83:03:6f:a8:ca:ed:8c:1e:f7:50: a7:9e:c8:4e:af:26:c0:52:24:23:66:4e:08:43:29: af:17:e3:0d:b0:ce:75:51:25:1f:de:f5:ee:55:94: 87:f6:98:3d:29:c0:2f:59:3f:48:59:ea:9a:c5:b7: d6:1b:77:4d:e5:88:90:03:ba:2d:03:cd:23:17:c4: fc:5a:56:74:6b:81:4c:e4:98:42:99:fa:2b:05:2a: 5f:26:1c:32:06:47:f9:a4:e1:17:05:be:77:fb:9f: a7:21:27:aa:df:7c:80:21:65:b1:c3:14:5c:72:17: 6c:cf:9e:ec:3b:03:97:b5:70:ed:60:d1:6e:49:5a: 24:17:da:c5:57:32:11:31:8f:04:e1:76:15:f6:15: f9:32:d9:4a:ad:47:77:2e:a9:88:fb:3c:86:bf:f4: 74:fa:6d:e5:d9:cd:fd:f4:6b:e6:ef:6a:85:70:a3: dd:67:f9:ae:27:7a:c7:ce:3c:38:22:7e:e2:fe:5e: 7c:ff:77:c3:ed:92:f7:51:98:dd:9b:a0:ed:e3:2a: d5:7e:89:e0:d8:18:b6:4e:fa:80:96:d9:8e:cc:29: ad:d9:53:82:96:68:f4:52:10:b9:fd:f0:91:e0:eb: 5d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:8E:0D:17:EB:CC:C1:9E:D2:1D:7B:1A:86:6E:7E:40:82:9F:C5:35 X509v3 Authority Key Identifier: keyid:69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:63:bb:8a:ba:3f:b6:24:c5:8c:21:e9:7f:68:f5:1c:0a:39: 8c:93:4b:4b:51:f1:6b:90:11:5a:5e:44:70:a1:62:5d:8c:77: f0:2f:53:38:92:96:20:c1:ae:16:d6:4a:84:65:35:43:18:d3: 6f:5c:da:22:48:c3:65:1f:a7:6e:6d:4b:bf:ad:f8:69:7a:97: d6:5c:c9:76:fb:8a:8a:b2:3a:b8:2a:c0:bc:39:fd:8a:f2:37: c2:6f:49:8f:88:bd:9e:93:08:56:08:8a:88:72:df:8a:1d:4c: 8c:9b:40:92:63:83:59:89:10:b0:6f:e0:30:ab:9e:51:58:9f: 0f:79:9b:9a:76:9a:51:5f:db:a4:eb:fa:96:48:ed:6c:c7:7b: f7:f0:4b:16:31:70:1a:b9:b1:b0:cc:8d:85:6a:c5:0d:b1:b1: ba:cc:f2:37:f6:f5:6e:65:fc:2d:33:7a:f2:24:bf:ee:39:ad: 79:08:96:61:b7:07:65:51:06:4b:22:f7:4c:fd:d6:7b:1b:2d: 34:71:5a:e0:94:47:00:03:46:c7:d7:41:09:3f:1d:38:46:f2: 38:20:88:ed:13:e7:9f:fd:82:8d:73:eb:b7:01:04:20:49:25: fc:b6:c7:0f:e7:c3:21:21:9f:d7:f1:01:8c:71:4a:eb:d5:bb: 10:d2:c8:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENjExMTAvBgNVBAUTKDY5RkY2OEQzOUFDMTc3M0UyOEE4NTc4NUM3OTFCNEE4 RDlCMzg0ODYwHhcNMjUxMTA1MDIxNjQ1WhcNMjUxMTEyMDIxNjQ1WjAYMRYwFAYD VQQDEw02OTBhYjM4ZC1kY2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlnLvSMCUcqwv7jSR1LJADVrJgIMDb6jK7Ywe91CnnshOrybAUiQjZk4IQymv F+MNsM51USUf3vXuVZSH9pg9KcAvWT9IWeqaxbfWG3dN5YiQA7otA80jF8T8WlZ0 a4FM5JhCmforBSpfJhwyBkf5pOEXBb53+5+nISeq33yAIWWxwxRcchdsz57sOwOX tXDtYNFuSVokF9rFVzIRMY8E4XYV9hX5MtlKrUd3LqmI+zyGv/R0+m3l2c399Gvm 72qFcKPdZ/muJ3rHzjw4In7i/l58/3fD7ZL3UZjdm6Dt4yrVfong2Bi2TvqAltmO zCmt2VOClmj0UhC5/fCR4OtdrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPuODRfr zMGe0h17GoZufkCCn8U1MB8GA1UdIwQYMBaAFGn/aNOawXc+KKhXhceRtKjZs4SG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ2MS8yOTVFNEM3NjYw MUIxMUVEQTVDNzI3NkVDNEY5QUUwMi9hZjlvMDVyQmR6NG9xRmVGeDVHMHFObXpo SVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FmOW8wNXJCZHo0b3FGZUZ4NUcwcU5temhJWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ2MS8yOTVFNEM3NjYwMUIxMUVEQTVDNzI3NkVDNEY5QUUwMi9hZjlvMDVyQmR6 NG9xRmVGeDVHMHFObXpoSVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7Y7uKuj+2JMWMIel/aPUcCjmMk0tLUfFrkBFaXkRwoWJdjHfwL1M4 kpYgwa4W1kqEZTVDGNNvXNoiSMNlH6dubUu/rfhpepfWXMl2+4qKsjq4KsC8Of2K 8jfCb0mPiL2ekwhWCIqIct+KHUyMm0CSY4NZiRCwb+Awq55RWJ8PeZuadppRX9uk 6/qWSO1sx3v38EsWMXAaubGwzI2FasUNsbG6zPI39vVuZfwtM3ryJL/uOa15CJZh twdlUQZLIvdM/dZ7Gy00cVrglEcAA0bH10EJPx04RvI4IIjtE+ef/YKNc+u3AQQg SSX8tscP58MhIZ/X8QGMcUrr1bsQ0sji -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:17 2025 by rpki-client