$ rpki-client -vvf rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft File: ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft (raw, json) Hash identifier: IkV2OtqEToxiLEJU6YpyOtq8yNDQZutvZ1WjTnofPbA= Subject key identifier: 4B:EE:48:CB:32:88:A2:60:05:DF:68:5A:C9:53:2C:A6:ED:D4:D6:81 Authority key identifier: 72:41:E8:F0:38:B9:F2:52:FB:61:CA:41:B6:A4:FC:16:7B:77:55:26 Certificate issuer: /CN=A9161477/serialNumber=7241E8F038B9F252FB61CA41B6A4FC167B775526 Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft Manifest number: 7C Signing time: Thu 23 Oct 2025 08:51:48 +0000 Manifest this update: Thu 23 Oct 2025 08:51:47 +0000 Manifest next update: Thu 30 Oct 2025 08:51:47 +0000 Files and hashes: 1: ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl (hash: LUlXH2ugXurEPrgwDgCafeoJFD5mv37dLju9KdoJSbY=) 2: CAB73E3AF3FC11EF83B4DD30C4F9AE02.roa (hash: BR0iac6RCibng8iXx5EGv9yUT7uect2xiyJYOcbA9Hs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 08:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161477, serialNumber=7241E8F038B9F252FB61CA41B6A4FC167B775526 Validity Not Before: Oct 23 08:51:47 2025 GMT Not After : Oct 30 08:51:47 2025 GMT Subject: CN=68f9eca4-2a42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:73:c5:0c:e7:6a:32:79:5b:0c:64:be:f9:f8: 54:f0:3d:32:0f:a3:3d:88:90:9f:dd:6b:ae:87:81: c0:d1:aa:d5:3b:13:df:ee:d7:5c:ba:08:13:19:84: 91:38:8b:fb:0d:0a:f3:ca:ab:59:89:76:e7:31:b4: 48:be:06:ef:7f:73:d6:e5:25:81:80:8e:61:8c:4e: 72:76:ec:c5:2c:03:41:51:8d:99:bb:e0:67:07:81: 4e:73:0a:aa:fc:6a:8e:4e:ab:17:d2:d5:fa:18:95: 34:fb:4d:91:3d:b7:ba:91:de:86:3c:fe:af:f2:36: 5a:9a:0f:ff:a9:61:d1:51:d5:fe:7d:67:23:85:fc: c3:31:ce:4b:35:51:36:0b:c8:57:49:bf:54:bc:9b: d2:92:3b:8a:27:76:04:20:be:ac:1b:2a:d1:f0:b8: de:d4:72:c7:5c:13:d9:d5:6d:30:d0:0d:6b:a7:32: fc:88:bf:0e:44:15:3a:07:ec:2e:b6:e7:99:1d:55: 08:11:01:dd:87:93:3b:fa:2c:50:1b:97:5e:bc:7e: 1a:3b:98:ee:a9:2e:fa:c7:1e:5a:90:df:5b:a9:30: ee:13:0b:02:c3:e4:68:43:23:2f:19:99:97:97:99: c5:4d:65:86:67:61:35:f7:a3:52:91:56:ac:dd:35: 13:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:EE:48:CB:32:88:A2:60:05:DF:68:5A:C9:53:2C:A6:ED:D4:D6:81 X509v3 Authority Key Identifier: keyid:72:41:E8:F0:38:B9:F2:52:FB:61:CA:41:B6:A4:FC:16:7B:77:55:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:da:58:5d:84:d9:f5:b3:e8:5e:27:ab:f2:01:82:29:5f:92: a7:bc:ae:2e:bf:b7:ce:55:e2:4c:44:3a:3d:f8:70:98:73:8a: 98:73:dd:19:ad:db:66:94:7d:0a:5e:96:64:6d:2e:1d:9a:0c: 33:da:9a:a7:87:dd:5e:33:2d:9c:d9:f4:a3:4d:6d:15:11:a8: 7d:3a:13:d7:f9:32:a8:bc:df:a3:03:41:08:f5:5e:57:88:60: d6:7a:c7:dd:94:7f:49:b0:d1:e3:46:e7:59:e7:0e:6c:ca:0e: 40:4c:34:6a:1d:9f:03:0a:29:5f:c2:46:2d:05:e4:01:78:bb: 55:a3:2c:3c:dd:12:1e:e7:42:36:77:a1:bc:46:99:5b:a5:64: a9:33:07:8b:5b:bf:cc:ce:a3:a9:31:35:37:5a:ff:8c:fc:0e: b7:04:87:ca:07:bb:60:fa:8a:9a:1c:43:2c:7d:a2:af:26:7b: 9d:61:72:08:3a:5c:62:22:c7:46:4d:32:c3:0b:93:bc:0f:8d: 39:0b:71:10:37:cc:2b:f5:aa:42:f1:0a:be:34:bf:9d:e5:02: 42:ba:fa:cf:cf:c3:a8:ae:27:b1:4a:fa:20:c8:8f:08:7b:0c: 69:c8:b1:c3:b7:e4:fa:78:a1:9d:e9:07:30:55:f4:e7:d8:70: fa:45:a2:12 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTQ3NzExMC8GA1UEBRMoNzI0MUU4RjAzOEI5RjI1MkZCNjFDQTQxQjZBNEZDMTY3 Qjc3NTUyNjAeFw0yNTEwMjMwODUxNDdaFw0yNTEwMzAwODUxNDdaMBgxFjAUBgNV BAMTDTY4ZjllY2E0LTJhNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHc8UM52oyeVsMZL75+FTwPTIPoz2IkJ/da66HgcDRqtU7E9/u11y6CBMZhJE4 i/sNCvPKq1mJducxtEi+Bu9/c9blJYGAjmGMTnJ27MUsA0FRjZm74GcHgU5zCqr8 ao5OqxfS1foYlTT7TZE9t7qR3oY8/q/yNlqaD/+pYdFR1f59ZyOF/MMxzks1UTYL yFdJv1S8m9KSO4ondgQgvqwbKtHwuN7UcsdcE9nVbTDQDWunMvyIvw5EFToH7C62 55kdVQgRAd2Hkzv6LFAbl168fho7mO6pLvrHHlqQ31upMO4TCwLD5GhDIy8ZmZeX mcVNZYZnYTX3o1KRVqzdNRMVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUS+5IyzKI omAF32hayVMspu3U1oEwHwYDVR0jBBgwFoAUckHo8Di58lL7YcpBtqT8Fnt3VSYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxNDc3LzZCNzAzNUY4RjNG QzExRUY5OUQ1MzczMEM0RjlBRTAyL2NrSG84RGk1OGxMN1ljcEJ0cVQ4Rm50M1ZT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY2tIbzhEaTU4bEw3WWNwQnRxVDhGbnQzVlNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYx NDc3LzZCNzAzNUY4RjNGQzExRUY5OUQ1MzczMEM0RjlBRTAyL2NrSG84RGk1OGxM N1ljcEJ0cVQ4Rm50M1ZTWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADraWF2E2fWz6F4nq/IBgilfkqe8ri6/t85V4kxEOj34cJhziphz3Rmt 22aUfQpelmRtLh2aDDPamqeH3V4zLZzZ9KNNbRURqH06E9f5Mqi836MDQQj1XleI YNZ6x92Uf0mw0eNG51nnDmzKDkBMNGodnwMKKV/CRi0F5AF4u1WjLDzdEh7nQjZ3 obxGmVulZKkzB4tbv8zOo6kxNTda/4z8DrcEh8oHu2D6ipocQyx9oq8me51hcgg6 XGIix0ZNMsMLk7wPjTkLcRA3zCv1qkLxCr40v53lAkK6+s/Pw6iuJ7FK+iDIjwh7 DGnIscO35Pp4oZ3pBzBV9OfYcPpFohI= -----END CERTIFICATE-----Generated at Fri Oct 24 06:15:06 2025 by rpki-client