$ rpki-client -vvf rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft File: o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft (raw, json) Hash identifier: FpjHNehMJftifaJsduYdivzeW7+89JZHOW3kXL6IqA8= Subject key identifier: 59:F8:88:9F:8F:8F:36:17:AB:C3:49:3C:AF:A5:3C:FC:CE:C4:B7:4F Authority key identifier: A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 Certificate issuer: /CN=A914F6AF/serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Certificate serial: 0223 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft Manifest number: 0220 Signing time: Mon 03 Nov 2025 02:01:08 +0000 Manifest this update: Mon 03 Nov 2025 02:01:08 +0000 Manifest next update: Mon 10 Nov 2025 02:01:08 +0000 Files and hashes: 1: o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl (hash: 60kPHye89vbpAJsvnq8pfE2f+tBB8qRCxc7N/HAR9WM=) 2: CCCA3842714711EDBB61A87FC4F9AE02.roa (hash: ph/hTIyNCTBKdvnOQ1KHBJ908JBT9ekK4yiE8SJtW4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 547 (0x223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F6AF, serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Validity Not Before: Nov 3 02:01:08 2025 GMT Not After : Nov 10 02:01:08 2025 GMT Subject: CN=69080ce4-9d54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ba:e2:ca:b2:e7:51:ba:a5:2c:d7:0a:99:3d: 21:38:64:5a:b8:68:1c:8d:fa:49:c7:3f:28:6c:06: f7:a7:ef:fb:79:16:ba:77:92:11:3e:cf:25:84:dd: 81:53:9e:f9:6d:22:0e:98:0f:2c:98:8a:25:a1:c8: eb:b1:bd:28:c4:8c:64:3d:38:71:24:42:18:14:3f: 0f:1a:7b:db:3c:e0:0a:c3:2f:e1:6b:64:1d:fb:ad: 99:73:89:b8:21:67:28:ad:9c:5e:b6:45:05:56:16: fa:c1:97:58:d7:1b:29:eb:87:59:13:b2:3a:de:f9: ec:fb:1f:15:98:f6:62:55:3b:f9:d9:6e:4c:0e:50: 1b:19:36:89:d5:9d:bd:02:e6:4b:2f:03:05:ab:aa: 2b:bd:68:08:8c:9a:75:e9:cd:d5:7f:72:34:12:76: cf:17:a0:e9:7f:67:63:8c:54:d9:c3:44:84:9f:af: e7:fe:fb:5e:28:d9:ad:f5:0c:05:3b:1d:7c:71:77: f1:46:47:ce:27:ae:5b:d0:5a:23:50:81:71:ff:e1: ef:57:fc:6c:df:77:71:7d:26:ae:aa:f2:bc:3f:c3: 46:fa:45:08:6a:31:0f:c2:00:2a:95:b1:db:a9:40: d5:cd:3f:9e:3d:5f:a3:d7:51:35:6f:a7:30:8b:f0: 4e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:F8:88:9F:8F:8F:36:17:AB:C3:49:3C:AF:A5:3C:FC:CE:C4:B7:4F X509v3 Authority Key Identifier: keyid:A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:c5:a9:27:f1:4d:e4:4f:6e:fb:ac:41:72:f4:56:44:48:15: 66:ae:c7:2a:8d:bd:9b:c2:fd:7a:8c:71:fc:01:89:64:aa:ea: e6:c5:4c:f6:d0:2f:aa:ff:72:3e:80:0c:c8:3f:76:2c:3b:df: 08:e8:f9:be:da:ea:8e:d5:7b:ed:62:05:60:6e:3a:31:4e:c9: e4:eb:5e:dc:4e:8e:10:80:78:18:3d:a5:7f:30:f6:1e:da:41: 85:95:a6:64:ad:5b:c6:06:7e:ad:bb:b3:3f:d9:6f:16:99:da: b3:e0:91:9b:f0:5e:56:a1:c5:f3:47:e3:de:41:f5:5b:80:8d: 0d:08:49:f0:8f:2e:ea:b7:2b:af:ae:dd:51:b8:25:ff:a2:04: 6a:ec:a9:73:6e:d5:c1:8d:e8:36:63:a4:b0:e1:ab:d8:f6:ee: df:ef:23:ba:1a:7b:a4:3b:4f:d2:e4:07:c3:ad:d0:dc:17:e8: 81:d9:f0:a1:ea:7e:5a:1a:61:9d:bb:e1:43:99:a7:40:5d:b7: 24:30:14:39:12:53:67:00:f6:26:db:17:40:bd:a4:1b:56:c6: ab:6c:5b:a9:3a:8c:7f:df:c3:1f:b7:1d:cf:97:2e:8f:76:58: b8:09:6c:73:ee:54:d4:45:33:0d:9f:fa:53:cb:96:c0:1d:39: 08:d3:50:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2QUYxMTAvBgNVBAUTKEEzRDI1MEM1RDUyQzVBOEFDNjdCQTAyMTg4NEQxOTFB NUQ0QTcxODIwHhcNMjUxMTAzMDIwMTA4WhcNMjUxMTEwMDIwMTA4WjAYMRYwFAYD VQQDEw02OTA4MGNlNC05ZDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7riyrLnUbqlLNcKmT0hOGRauGgcjfpJxz8obAb3p+/7eRa6d5IRPs8lhN2B U575bSIOmA8smIolocjrsb0oxIxkPThxJEIYFD8PGnvbPOAKwy/ha2Qd+62Zc4m4 IWcorZxetkUFVhb6wZdY1xsp64dZE7I63vns+x8VmPZiVTv52W5MDlAbGTaJ1Z29 AuZLLwMFq6orvWgIjJp16c3Vf3I0EnbPF6Dpf2djjFTZw0SEn6/n/vteKNmt9QwF Ox18cXfxRkfOJ65b0FojUIFx/+HvV/xs33dxfSauqvK8P8NG+kUIajEPwgAqlbHb qUDVzT+ePV+j11E1b6cwi/BOPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFn4iJ+P jzYXq8NJPK+lPPzOxLdPMB8GA1UdIwQYMBaAFKPSUMXVLFqKxnugIYhNGRpdSnGC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjZBRi9GNkQ4REE5Qzcx NDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dvckdlNkFoaUUwWkdsMUtj WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285SlF4ZFVzV29yR2U2QWhpRTBaR2wxS2NZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjZBRi9GNkQ4REE5QzcxNDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dv ckdlNkFoaUUwWkdsMUtjWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBxakn8U3kT277rEFy9FZESBVmrscqjb2bwv16jHH8AYlkqurmxUz2 0C+q/3I+gAzIP3YsO98I6Pm+2uqO1XvtYgVgbjoxTsnk617cTo4QgHgYPaV/MPYe 2kGFlaZkrVvGBn6tu7M/2W8Wmdqz4JGb8F5WocXzR+PeQfVbgI0NCEnwjy7qtyuv rt1RuCX/ogRq7KlzbtXBjeg2Y6Sw4avY9u7f7yO6GnukO0/S5AfDrdDcF+iB2fCh 6n5aGmGdu+FDmadAXbckMBQ5ElNnAPYm2xdAvaQbVsarbFupOox/38Mftx3Ply6P dli4CWxz7lTURTMNn/pTy5bAHTkI01Bm -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:22 2025 by rpki-client