$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft File: rwJRH3yA38Do7VBvZjD2e9ZADgk.mft (raw, json) Hash identifier: 41LZGaOrYeso/gzbN2EZBEpabOIsQT7a4pJTH5Oeomw= Subject key identifier: FA:E8:DB:B4:1B:5C:7D:CC:9D:15:B8:C8:FB:21:38:E7:6B:5C:A6:7C Authority key identifier: AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 Certificate issuer: /CN=A9168B4A/serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Certificate serial: 1481 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft Manifest number: 1460 Signing time: Fri 24 Oct 2025 17:18:32 +0000 Manifest this update: Fri 24 Oct 2025 17:18:31 +0000 Manifest next update: Fri 31 Oct 2025 17:18:31 +0000 Files and hashes: 1: rwJRH3yA38Do7VBvZjD2e9ZADgk.crl (hash: +rx6V7h/ixVaeZCeO6wtMA7MK0qV1i+7QiJw7j3yPuI=) 2: A83ECFAE791B11F0B7D48969C4F9AE02.roa (hash: FOnoWXzG/xzvG2wY9SEKlskrDJv5q/5MAP/jyysv8e0=) 3: 4C6227D2B69B11EFA181E00AC4F9AE02.roa (hash: iaZ3s82xkjY2XfRTWiPnjnqnF2ySFKKm+AeAW0yRT+E=) 4: 983A5536450611F093EC3A65C4F9AE02.roa (hash: jXDJFKBYyl2AMr2aBeeaX3dJKta1vZTtNnECUVWIxl8=) 5: 26F19BD2EFFE11EDA34BD84DC4F9AE02.roa (hash: Z27ILnU+TOqVLLhIyXtiXXV0PlnGYmkYaaio5+3e2ug=) 6: 97A9C872450611F093EC3A65C4F9AE02.roa (hash: U8BSX2DX6JtfXzvuoqYA9Tm3bqF1pxPrmS12/E0gdmw=) 7: 7F444842C3A411ED8EFA6F13C4F9AE02.roa (hash: 8uWfW9Bx2UJleM0TwlNLkikjSTgRwN2eIHzYdV+mzGQ=) 8: 98A0F2BE450611F093EC3A65C4F9AE02.roa (hash: mH5FkT85wXX1fDkYIcXzDeEU3PHEwchgtocWPplcMrs=) 9: 7EA2ADC0C3A411ED8EFA6F13C4F9AE02.roa (hash: 3SvNLk7hW+Uo3wG2xJFv1wsrHQt1APNp92391QdFtgI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 17:18:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5249 (0x1481) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B4A, serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Validity Not Before: Oct 24 17:18:31 2025 GMT Not After : Oct 31 17:18:31 2025 GMT Subject: CN=68fbb4e8-28bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:01:4a:3c:49:c8:5d:f7:9f:e7:60:61:e3:62: c8:85:1c:a4:cf:78:6c:69:f2:05:24:c9:91:3a:7d: 1e:33:ab:30:0d:dd:f2:d7:f2:72:cb:42:a2:7d:39: 5b:32:c0:a0:c6:96:b6:ba:94:39:49:5c:69:7d:d8: 4e:1c:15:10:a1:a3:cf:ad:3b:79:f5:27:1e:9d:73: ff:a0:04:4c:53:4a:c7:d1:10:15:68:4b:6a:8e:01: c1:77:29:9d:c7:1a:18:eb:4a:71:8d:0e:6e:8f:35: 22:c1:aa:13:d3:d8:ba:41:5a:1b:f3:8e:f9:a5:6b: c0:22:10:27:c4:ea:81:51:de:19:a3:89:8e:e1:50: 3d:3a:ec:5b:ee:c7:e8:b7:d9:86:10:03:15:87:b7: db:d0:17:b1:08:e1:1a:bc:03:ec:90:b2:32:a0:00: c7:b0:c4:8c:44:0d:cd:cf:b3:5a:52:b3:fe:c6:97: d7:e7:e1:d0:b7:c0:72:24:5c:8c:17:25:18:fe:f8: 8a:ce:f7:15:24:59:84:6b:b6:a0:13:8f:d0:93:99: c9:9f:3a:5b:56:0c:7b:21:5d:61:e9:e4:7a:00:52: f9:9f:41:09:d4:05:a7:c2:e1:63:0c:78:67:aa:02: 7a:be:52:d2:94:a2:fb:a4:c8:5e:2e:1e:3b:59:e6: 21:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:E8:DB:B4:1B:5C:7D:CC:9D:15:B8:C8:FB:21:38:E7:6B:5C:A6:7C X509v3 Authority Key Identifier: keyid:AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:0e:67:8d:7a:1f:76:cb:38:fd:97:f7:e0:74:23:f9:c9:46: 08:18:4f:cc:e8:a8:f5:8c:73:1b:45:8f:44:e0:72:ee:cc:19: 5b:f8:c8:03:5f:53:5d:9e:60:37:77:8c:f5:09:0a:5f:2a:14: 80:3e:9b:73:8a:d5:3e:3b:51:97:25:2c:1d:41:5a:a9:c6:92: 93:cf:de:23:85:04:71:53:46:b5:a0:e1:b9:ba:36:1c:0c:52: 55:9b:dd:4d:8f:6b:87:a7:34:4f:02:20:52:56:80:94:8e:db: 71:b3:c3:ee:f6:f7:dd:b0:10:41:f0:92:d6:45:a4:87:2f:69: f6:99:58:1c:f1:1c:c9:0f:6a:f3:02:8d:f6:9f:cc:fd:eb:14: 98:29:43:68:6b:35:3d:4a:ec:62:d4:fe:7e:71:1c:f9:c4:16: 71:34:52:b3:d7:1f:9f:7b:33:ff:2f:20:a1:c1:1c:69:4b:c8: 07:6e:65:67:05:be:c6:83:33:13:47:f7:94:25:78:1a:95:cd: f7:fa:f4:de:31:27:a3:7c:86:26:b9:b5:0b:69:aa:9c:ac:82: 3b:ee:5f:67:4a:15:f5:19:0f:99:8f:39:80:68:4c:44:01:d8: 36:78:da:3f:01:52:fc:e5:4e:37:ef:89:9e:4a:9c:16:3d:7e: f2:cd:dc:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCNEExMTAvBgNVBAUTKEFGMDI1MTFGN0M4MERGQzBFOEVENTA2RjY2MzBGNjdC RDY0MDBFMDkwHhcNMjUxMDI0MTcxODMxWhcNMjUxMDMxMTcxODMxWjAYMRYwFAYD VQQDEw02OGZiYjRlOC0yOGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAngFKPEnIXfef52Bh42LIhRykz3hsafIFJMmROn0eM6swDd3y1/Jyy0KifTlb MsCgxpa2upQ5SVxpfdhOHBUQoaPPrTt59ScenXP/oARMU0rH0RAVaEtqjgHBdymd xxoY60pxjQ5ujzUiwaoT09i6QVob8475pWvAIhAnxOqBUd4Zo4mO4VA9Ouxb7sfo t9mGEAMVh7fb0BexCOEavAPskLIyoADHsMSMRA3Nz7NaUrP+xpfX5+HQt8ByJFyM FyUY/viKzvcVJFmEa7agE4/Qk5nJnzpbVgx7IV1h6eR6AFL5n0EJ1AWnwuFjDHhn qgJ6vlLSlKL7pMheLh47WeYhzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPro27Qb XH3MnRW4yPshOOdrXKZ8MB8GA1UdIwQYMBaAFK8CUR98gN/A6O1Qb2Yw9nvWQA4J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEI0QS8wQURCMTdDMDgw MEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4RG83VkJ2WmpEMmU5WkFE Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J3SlJIM3lBMzhEbzdWQnZaakQyZTlaQURnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEI0QS8wQURCMTdDMDgwMEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4 RG83VkJ2WmpEMmU5WkFEZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASDmeNeh92yzj9l/fgdCP5yUYIGE/M6Kj1jHMbRY9E4HLuzBlb+MgD X1NdnmA3d4z1CQpfKhSAPptzitU+O1GXJSwdQVqpxpKTz94jhQRxU0a1oOG5ujYc DFJVm91Nj2uHpzRPAiBSVoCUjttxs8Pu9vfdsBBB8JLWRaSHL2n2mVgc8RzJD2rz Ao32n8z96xSYKUNoazU9Suxi1P5+cRz5xBZxNFKz1x+fezP/LyChwRxpS8gHbmVn Bb7GgzMTR/eUJXgalc33+vTeMSejfIYmubULaaqcrII77l9nShX1GQ+ZjzmAaExE Adg2eNo/AVL85U4374meSpwWPX7yzdzd -----END CERTIFICATE-----Generated at Sat Oct 25 00:40:08 2025 by rpki-client