$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: 9AhXbciOS/fHZI/ZJSr0BkG5ljX7ndJLf4IE6ikSzGY= Subject key identifier: 2C:3C:52:45:2E:81:82:0D:22:76:F8:AC:04:74:5F:6B:66:6D:72:3D Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 09C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 09A5 Signing time: Sun 26 Oct 2025 20:38:22 +0000 Manifest this update: Sun 26 Oct 2025 20:38:22 +0000 Manifest next update: Sun 02 Nov 2025 20:38:22 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: BpGklX6bifgy9lkKqJAkN1BLq98dLM5HlkBN99fa9oQ=) 2: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: fDQ1zYNxLplPrz4Qpls9Fd7tB57/fNGS1+72t/RyA84=) 3: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: +eSXmzBbgmezGg93b3TG7JXzkYgFkvNOYfX8lsh6cSU=) 4: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: hhUYjpSKNDr9BFxXK1UJmQWhlN0RGm+4+TzTlDKxlz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 20:38:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2501 (0x9c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: Oct 26 20:38:22 2025 GMT Not After : Nov 2 20:38:22 2025 GMT Subject: CN=68fe86be-9871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9c:b8:6c:22:ea:84:3f:8b:27:ef:86:67:c4: d1:4a:98:8f:d9:74:59:fe:66:52:77:3a:0a:bf:24: ad:b5:b1:ae:92:2f:b1:1f:a0:10:11:ba:c4:0e:c1: 7c:b1:9a:b4:e8:a6:38:4d:05:3c:03:da:0e:cc:78: ec:6b:b8:3b:1e:41:9f:bf:cd:1f:6d:76:c8:c0:c4: 7f:bb:1a:56:ea:3e:5a:1b:14:bf:86:d8:8c:8b:a9: fe:81:0e:88:31:96:c1:87:17:b4:85:27:60:14:0e: d1:45:b0:d2:e7:78:33:4a:82:ce:c6:79:2c:d4:79: 31:ea:bf:eb:96:ad:97:cd:77:da:61:ea:71:d8:ff: d0:8d:36:71:fc:9e:e4:ce:32:dd:6e:4f:77:4f:ce: e2:29:be:36:b6:fb:29:fb:c7:6d:36:4c:f7:05:51: 6b:8a:88:b2:dc:7a:2d:5e:3c:b8:c8:80:b1:cd:14: 46:d8:dc:53:36:b4:38:29:f2:43:f6:10:81:6a:39: f3:b4:8b:e4:ca:1e:9c:f8:f7:3d:3a:86:8b:dd:eb: 3b:b3:80:14:4f:49:f1:ce:4d:d7:1f:eb:c0:9b:b6: 9a:8c:bc:4f:83:9a:9f:dc:94:05:67:6d:ed:63:a8: de:a1:a8:cb:58:0b:43:33:c3:4f:6f:f8:1b:17:62: 3c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:3C:52:45:2E:81:82:0D:22:76:F8:AC:04:74:5F:6B:66:6D:72:3D X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:28:0b:7a:cf:bc:09:c9:fa:60:5d:d8:ab:81:17:14:05:94: 3f:dc:b9:4a:46:00:3e:fc:30:44:34:d2:b3:51:cd:5a:5c:fb: 0c:49:8d:57:df:76:bd:70:f2:18:ce:b9:5b:bc:1d:ff:ba:1b: ab:0b:03:e5:6b:9f:08:40:49:28:e0:ea:71:c1:fc:d9:07:4a: ba:a9:29:3a:10:a7:4c:ca:25:a8:43:13:13:d0:f0:1a:35:83: 65:43:fc:7d:f9:69:06:cb:40:2b:59:eb:9c:8b:1f:d2:57:6f: f9:9a:b3:e6:eb:27:18:81:ed:ad:a3:ae:e3:25:0e:55:6c:7b: f3:ab:94:07:dd:e4:0c:69:85:da:1d:74:28:d0:85:61:29:3e: 04:73:fc:fe:ab:d6:0b:3b:ab:9e:f9:f6:f3:a5:75:5c:24:22: a3:fa:35:a7:35:51:76:54:d5:5e:a6:70:d5:f6:a6:53:8d:84: 06:33:d8:27:f7:ba:37:78:15:1a:75:cb:51:87:fb:9f:d3:30: 8f:e0:ab:66:d6:3d:41:22:27:45:8f:b0:ce:10:bf:04:49:31: 8c:81:a2:b2:fc:d9:b0:23:e5:8c:62:39:b5:a1:ed:b8:d3:97: c4:cf:ee:0e:c3:7b:78:91:b3:6b:f1:a5:29:3e:6c:04:7c:63: 3b:2e:b7:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjUxMDI2MjAzODIyWhcNMjUxMTAyMjAzODIyWjAYMRYwFAYD VQQDEw02OGZlODZiZS05ODcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypy4bCLqhD+LJ++GZ8TRSpiP2XRZ/mZSdzoKvySttbGuki+xH6AQEbrEDsF8 sZq06KY4TQU8A9oOzHjsa7g7HkGfv80fbXbIwMR/uxpW6j5aGxS/htiMi6n+gQ6I MZbBhxe0hSdgFA7RRbDS53gzSoLOxnks1Hkx6r/rlq2XzXfaYepx2P/QjTZx/J7k zjLdbk93T87iKb42tvsp+8dtNkz3BVFrioiy3HotXjy4yICxzRRG2NxTNrQ4KfJD 9hCBajnztIvkyh6c+Pc9OoaL3es7s4AUT0nxzk3XH+vAm7aajLxPg5qf3JQFZ23t Y6jeoajLWAtDM8NPb/gbF2I8YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCw8UkUu gYINInb4rAR0X2tmbXI9MB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhKAt6z7wJyfpgXdirgRcUBZQ/3LlKRgA+/DBENNKzUc1aXPsMSY1X 33a9cPIYzrlbvB3/uhurCwPla58IQEko4OpxwfzZB0q6qSk6EKdMyiWoQxMT0PAa NYNlQ/x9+WkGy0ArWeucix/SV2/5mrPm6ycYge2to67jJQ5VbHvzq5QH3eQMaYXa HXQo0IVhKT4Ec/z+q9YLO6ue+fbzpXVcJCKj+jWnNVF2VNVepnDV9qZTjYQGM9gn 97o3eBUadctRh/uf0zCP4Ktm1j1BIidFj7DOEL8ESTGMgaKy/NmwI+WMYjm1oe24 05fEz+4Ow3t4kbNr8aUpPmwEfGM7Lrdf -----END CERTIFICATE-----Generated at Mon Oct 27 16:59:28 2025 by rpki-client