$ rpki-client -vvf rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft File: 9MxDBOF5Dgj17JKahzciadCPtoE.mft (raw, json) Hash identifier: 4+dSnloyFZEyI6onGY43sKhjUMBXhIZfLPp3RjzxfHY= Subject key identifier: 44:DD:85:5E:5C:AF:B9:69:49:8B:8A:A4:2A:95:2D:30:6A:CA:59:97 Authority key identifier: F4:CC:43:04:E1:79:0E:08:F5:EC:92:9A:87:37:22:69:D0:8F:B6:81 Certificate issuer: /CN=A9167BCA/serialNumber=F4CC4304E1790E08F5EC929A87372269D08FB681 Certificate serial: 0440 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft Manifest number: 043B Signing time: Sat 25 Oct 2025 03:17:25 +0000 Manifest this update: Sat 25 Oct 2025 03:17:25 +0000 Manifest next update: Sat 01 Nov 2025 03:17:25 +0000 Files and hashes: 1: 9MxDBOF5Dgj17JKahzciadCPtoE.crl (hash: ali5XA/Vop95Ab0WmyAPtyY3BCu1s7YKsYrKyrXbjsE=) 2: 0E7858548CBB11ECB0842F23C4F9AE02.roa (hash: q3e8py5/C6+zKkUP8OOrbssys+IzckfYmM1B63yGsr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.crl rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 03:17:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1088 (0x440) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167BCA, serialNumber=F4CC4304E1790E08F5EC929A87372269D08FB681 Validity Not Before: Oct 25 03:17:25 2025 GMT Not After : Nov 1 03:17:25 2025 GMT Subject: CN=68fc4145-592d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:cc:24:b2:5c:25:cc:37:70:dd:30:18:9f:d7: 61:14:65:f2:67:5e:fe:1a:03:aa:0a:96:d7:b3:95: c9:32:21:af:28:0d:e8:7d:7d:d2:4a:3c:e3:d3:e0: 7f:70:3d:73:df:52:a4:de:7d:0f:cb:5d:be:24:ae: 78:67:32:db:42:1d:77:2d:08:54:79:d7:b2:14:be: 0d:14:dc:cb:0b:68:5a:6b:ac:88:c2:cb:79:59:46: e0:f2:63:24:1f:d6:72:26:df:12:89:95:5c:fb:5e: 2c:e8:99:90:18:9d:15:3a:50:f5:cd:1a:2e:3f:cb: 92:f5:c9:5f:15:92:b4:59:73:1e:6d:12:9f:a8:1c: 7f:38:0f:11:12:82:a4:b7:f0:8a:81:54:95:0b:19: 7c:84:03:74:de:8f:e7:6c:3d:a5:f0:7d:1b:9b:29: 05:01:52:ac:7f:97:8d:b5:ea:e7:6d:37:12:b2:11: 6f:24:0c:a0:5b:e9:36:e8:30:0d:69:54:27:72:64: 50:52:af:21:c0:a0:6d:ce:e7:9c:58:ea:bf:65:62: 33:7e:cf:6b:bb:83:91:c8:e1:1f:ba:43:b8:1c:b5: 70:e0:87:3f:27:6b:49:08:62:1d:aa:01:13:42:8a: 99:f5:f6:a4:12:1e:a5:ce:be:99:3a:e8:70:70:f1: c6:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:DD:85:5E:5C:AF:B9:69:49:8B:8A:A4:2A:95:2D:30:6A:CA:59:97 X509v3 Authority Key Identifier: keyid:F4:CC:43:04:E1:79:0E:08:F5:EC:92:9A:87:37:22:69:D0:8F:B6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:5b:e5:c6:64:b1:68:2d:92:df:97:56:55:8d:02:ba:65:c7: e9:ec:45:94:0d:65:89:3f:4a:d0:be:b7:bd:1e:72:09:7e:10: 4c:b2:1c:53:70:3c:3c:9a:97:86:f4:71:44:92:d6:18:bb:48: 18:54:1a:9a:cf:3c:26:88:e5:5d:9a:b3:21:f0:51:ef:32:dd: 79:93:7b:52:aa:12:c9:59:e1:b0:ed:2e:02:e9:ca:37:bf:4c: b3:ea:f0:1d:e0:19:47:95:d3:32:72:a2:91:4a:03:9e:43:ca: 11:7a:ac:16:83:31:d1:67:cc:9f:d4:9d:29:fd:5c:c2:15:8a: dc:10:94:bb:af:e5:8b:8f:65:90:5e:62:97:8d:cd:31:be:2a: e3:fa:ef:fe:df:7b:44:5c:cd:ab:c0:43:ec:c1:03:86:fa:4d: a0:ca:c4:a2:d7:79:0a:86:5a:b2:84:54:52:30:af:61:bf:40: 1e:8f:ce:49:09:0b:e4:ff:68:27:e4:8d:be:ba:2d:3c:15:ad: 76:d9:07:b6:90:ce:63:e5:61:e1:38:e3:80:60:69:0a:45:76: 9a:ed:06:ff:cb:08:9b:92:df:53:8c:05:83:0c:5a:d6:3a:c3: 8a:4e:41:1f:78:5f:e2:14:cc:6b:38:cc:42:a6:c5:9d:be:a4: f5:31:f0:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdCQ0ExMTAvBgNVBAUTKEY0Q0M0MzA0RTE3OTBFMDhGNUVDOTI5QTg3MzcyMjY5 RDA4RkI2ODEwHhcNMjUxMDI1MDMxNzI1WhcNMjUxMTAxMDMxNzI1WjAYMRYwFAYD VQQDEw02OGZjNDE0NS01OTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcwkslwlzDdw3TAYn9dhFGXyZ17+GgOqCpbXs5XJMiGvKA3ofX3SSjzj0+B/ cD1z31Kk3n0Py12+JK54ZzLbQh13LQhUedeyFL4NFNzLC2haa6yIwst5WUbg8mMk H9ZyJt8SiZVc+14s6JmQGJ0VOlD1zRouP8uS9clfFZK0WXMebRKfqBx/OA8REoKk t/CKgVSVCxl8hAN03o/nbD2l8H0bmykFAVKsf5eNternbTcSshFvJAygW+k26DAN aVQncmRQUq8hwKBtzuecWOq/ZWIzfs9ru4ORyOEfukO4HLVw4Ic/J2tJCGIdqgET QoqZ9fakEh6lzr6ZOuhwcPHG/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFETdhV5c r7lpSYuKpCqVLTBqylmXMB8GA1UdIwQYMBaAFPTMQwTheQ4I9eySmoc3ImnQj7aB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0JDQS82MkJDRDVERTdB OUIxMUVDOENDMjc0MkJDNEY5QUUwMi85TXhEQk9GNURnajE3SkthaHpjaWFkQ1B0 b0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlNeERCT0Y1RGdqMTdKS2FoemNpYWRDUHRvRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0JDQS82MkJDRDVERTdBOUIxMUVDOENDMjc0MkJDNEY5QUUwMi85TXhEQk9GNURn ajE3SkthaHpjaWFkQ1B0b0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIW+XGZLFoLZLfl1ZVjQK6Zcfp7EWUDWWJP0rQvre9HnIJfhBMshxT cDw8mpeG9HFEktYYu0gYVBqazzwmiOVdmrMh8FHvMt15k3tSqhLJWeGw7S4C6co3 v0yz6vAd4BlHldMycqKRSgOeQ8oReqwWgzHRZ8yf1J0p/VzCFYrcEJS7r+WLj2WQ XmKXjc0xvirj+u/+33tEXM2rwEPswQOG+k2gysSi13kKhlqyhFRSMK9hv0Aej85J CQvk/2gn5I2+ui08Fa122Qe2kM5j5WHhOOOAYGkKRXaa7Qb/ywibkt9TjAWDDFrW OsOKTkEfeF/iFMxrOMxCpsWdvqT1MfDk -----END CERTIFICATE-----Generated at Sat Oct 25 13:09:43 2025 by rpki-client