$ rpki-client -vvf rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft File: FN2GhClPGzOjE6-48OuhyKADeAk.mft (raw, json) Hash identifier: QnyTBlbzEjDYeRxBFBKBT5Oaf5Cd5vHIdn2pxF/rmEc= Subject key identifier: F4:48:89:71:F7:FD:2A:7D:C3:0B:54:77:E5:D3:B4:66:CD:3B:5B:F1 Authority key identifier: 14:DD:86:84:29:4F:1B:33:A3:13:AF:B8:F0:EB:A1:C8:A0:03:78:09 Certificate issuer: /CN=A9160A05/serialNumber=14DD8684294F1B33A313AFB8F0EBA1C8A0037809 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft Manifest number: D6 Signing time: Mon 03 Nov 2025 05:51:17 +0000 Manifest this update: Mon 03 Nov 2025 05:51:16 +0000 Manifest next update: Mon 10 Nov 2025 05:51:16 +0000 Files and hashes: 1: FN2GhClPGzOjE6-48OuhyKADeAk.crl (hash: 2NUAIbpkSDKB1BFd7GixlhGnKIeC5e9hW2Qx6RX6YT0=) 2: F7981812F38811EFAC05053AC4F9AE02.roa (hash: D/9SKPwUI+9VjDA2s/SYyY7F96WxlOAy4mRC6PjrPZo=) 3: E9B0903AF38811EF81B8CE39C4F9AE02.roa (hash: 2fQyEMRkeBroC7JG6dhKWVMOmAu2peytDIRfiN3h3TE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.crl rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:51:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160A05, serialNumber=14DD8684294F1B33A313AFB8F0EBA1C8A0037809 Validity Not Before: Nov 3 05:51:16 2025 GMT Not After : Nov 10 05:51:16 2025 GMT Subject: CN=690842d5-f05b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:51:63:bc:ce:29:7c:18:ad:70:40:8c:b2:5b: cb:fa:2d:53:12:db:b9:d7:03:b7:df:91:cc:05:dc: b3:c1:1f:81:55:ca:67:78:7a:12:92:5e:59:8e:30: cb:e8:2c:5b:67:b0:a5:88:18:07:e8:4f:03:f9:86: c5:47:c4:b4:c7:ab:91:b4:7f:e5:40:55:a8:4b:7d: 70:bf:99:80:87:ac:88:67:22:ab:3c:50:7d:ae:e6: 9a:12:fc:9f:bc:9b:50:d0:78:99:60:e6:b0:af:77: f9:99:dd:4b:2e:8d:1b:ae:cb:fc:5a:c2:2c:c3:ae: 7a:6c:fb:f3:31:98:30:8a:5e:a0:ac:e4:d2:55:2b: 9b:b6:d6:72:50:b5:d7:ce:ff:4f:73:b4:f4:63:48: 2a:d2:f3:c9:a8:cb:19:99:51:db:12:63:ea:e6:0f: f4:ff:5b:d7:d3:3e:bc:3c:a1:3e:a1:b1:7c:84:07: ef:fe:9f:ab:46:60:a3:d1:dd:82:95:8e:f0:a5:95: 8f:ca:9c:e0:79:93:69:76:42:b7:21:f4:4c:80:b8: 96:af:9a:9d:f9:cc:ef:80:08:81:b6:dc:41:c3:d9: ad:d5:33:c6:e8:38:b0:2d:67:29:5b:42:ae:f0:ea: d6:c9:38:b6:09:39:1a:93:05:f3:56:bc:8a:b2:95: 6c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:48:89:71:F7:FD:2A:7D:C3:0B:54:77:E5:D3:B4:66:CD:3B:5B:F1 X509v3 Authority Key Identifier: keyid:14:DD:86:84:29:4F:1B:33:A3:13:AF:B8:F0:EB:A1:C8:A0:03:78:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:ed:66:e6:c1:b0:4f:0f:fe:2e:87:3a:be:a5:e7:63:2a:c2: c4:6b:3b:8d:14:74:b4:1e:c3:35:d4:f3:3e:4f:f4:65:11:bc: 63:6f:99:49:9d:15:88:f7:f5:d1:c9:f3:f8:a7:c5:4c:31:58: 05:ab:6f:e1:69:d8:65:15:f6:34:df:62:1d:e5:d9:a3:5c:3a: 21:bf:a9:d8:8b:e5:83:5b:cd:3d:b6:c2:aa:cd:24:e2:c7:43: 70:d1:a5:df:44:df:1d:39:d5:77:d6:ea:7b:5d:59:1a:af:14: ce:27:9f:55:97:ea:48:ef:60:9f:05:08:f1:e3:a5:77:6d:67: 56:00:0a:f5:6c:44:2b:84:e3:f6:cf:51:17:2a:44:56:c9:88: 31:91:94:34:d0:75:45:c7:4b:ce:f1:4f:1b:b4:c1:c7:34:32: 6d:1e:4f:30:5f:77:9e:54:eb:05:aa:b3:52:64:44:7b:56:b3: ec:23:c1:c8:c8:f2:94:a5:10:e1:f1:10:1a:4a:93:48:b2:23: d6:fa:16:cf:58:72:30:41:66:e6:f4:d8:ea:3e:22:72:38:63: 87:f1:16:36:e0:c2:a4:bb:e9:f8:c1:27:06:4f:28:f2:c7:27: dd:9d:76:12:95:7d:08:64:49:f7:d4:56:cf:3f:4a:6f:8c:85: 59:01:24:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBBMDUxMTAvBgNVBAUTKDE0REQ4Njg0Mjk0RjFCMzNBMzEzQUZCOEYwRUJBMUM4 QTAwMzc4MDkwHhcNMjUxMTAzMDU1MTE2WhcNMjUxMTEwMDU1MTE2WjAYMRYwFAYD VQQDEw02OTA4NDJkNS1mMDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlFjvM4pfBitcECMslvL+i1TEtu51wO335HMBdyzwR+BVcpneHoSkl5ZjjDL 6CxbZ7CliBgH6E8D+YbFR8S0x6uRtH/lQFWoS31wv5mAh6yIZyKrPFB9ruaaEvyf vJtQ0HiZYOawr3f5md1LLo0brsv8WsIsw656bPvzMZgwil6grOTSVSubttZyULXX zv9Pc7T0Y0gq0vPJqMsZmVHbEmPq5g/0/1vX0z68PKE+obF8hAfv/p+rRmCj0d2C lY7wpZWPypzgeZNpdkK3IfRMgLiWr5qd+czvgAiBttxBw9mt1TPG6DiwLWcpW0Ku 8OrWyTi2CTkakwXzVryKspVsqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPRIiXH3 /Sp9wwtUd+XTtGbNO1vxMB8GA1UdIwQYMBaAFBTdhoQpTxszoxOvuPDrocigA3gJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEEwNS9EMTdDODg2ODdD OEExMUVGOEZBQjY5MDlDNEY5QUUwMi9GTjJHaENsUEd6T2pFNi00OE91aHlLQURl QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0ZOMkdoQ2xQR3pPakU2LTQ4T3VoeUtBRGVBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEEwNS9EMTdDODg2ODdDOEExMUVGOEZBQjY5MDlDNEY5QUUwMi9GTjJHaENsUEd6 T2pFNi00OE91aHlLQURlQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCO7WbmwbBPD/4uhzq+pedjKsLEazuNFHS0HsM11PM+T/RlEbxjb5lJ nRWI9/XRyfP4p8VMMVgFq2/hadhlFfY032Id5dmjXDohv6nYi+WDW809tsKqzSTi x0Nw0aXfRN8dOdV31up7XVkarxTOJ59Vl+pI72CfBQjx46V3bWdWAAr1bEQrhOP2 z1EXKkRWyYgxkZQ00HVFx0vO8U8btMHHNDJtHk8wX3eeVOsFqrNSZER7VrPsI8HI yPKUpRDh8RAaSpNIsiPW+hbPWHIwQWbm9NjqPiJyOGOH8RY24MKku+n4wScGTyjy xyfdnXYSlX0IZEn31FbPP0pvjIVZASQ+ -----END CERTIFICATE-----Generated at Tue Nov 4 03:50:01 2025 by rpki-client