$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft File: 1CVu3CvBHIRdtQe3wKiTVEYutj0.mft (raw, json) Hash identifier: z2+eu7IxnwToc0drpbAL5dG705SsbTCmoHowCpZz4A0= Subject key identifier: 90:49:98:19:B3:99:5B:2E:6B:F2:4E:38:BD:D4:85:6F:9F:BE:58:C5 Authority key identifier: D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D Certificate issuer: /CN=A9170DA5/serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft Manifest number: 39 Signing time: Fri 17 Oct 2025 11:14:26 +0000 Manifest this update: Fri 17 Oct 2025 11:14:25 +0000 Manifest next update: Fri 24 Oct 2025 11:14:25 +0000 Files and hashes: 1: 1CVu3CvBHIRdtQe3wKiTVEYutj0.crl (hash: n9brr9C4vtNm5UxX35tBZtW8E5Il1erKfURI/L/FDbA=) 2: F91ECAD6571B11F093AD0C10C4F9AE02.roa (hash: YCsx3bwrgpHgvu8ysYuX5SuZfquoTIQRzefkEGq5/wA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 11:14:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Validity Not Before: Oct 17 11:14:25 2025 GMT Not After : Oct 24 11:14:25 2025 GMT Subject: CN=68f22512-bdfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:55:99:cb:34:e4:b6:14:d5:6b:58:52:69:8f: 5f:da:66:11:08:31:c2:02:bc:b6:9e:a8:17:2c:a2: ed:8d:cb:ba:21:35:1f:22:2e:2d:1b:fc:5f:66:6c: 73:73:e4:31:24:c2:cb:66:f7:71:2b:37:b8:14:b1: ba:ff:a7:66:d4:07:50:d8:98:43:8f:f0:9b:85:1d: 5b:45:0f:f9:f0:f9:c7:41:97:87:c7:e3:d7:2a:41: 62:a5:9e:af:e1:04:e9:95:fb:ec:aa:0f:3b:02:b1: a4:1d:71:f6:60:2c:86:43:55:f3:c4:67:03:e3:a4: 04:2d:cd:8d:4c:ff:97:05:70:e0:c8:3d:a3:cc:82: 2c:35:b5:fd:59:bd:d2:fb:12:7e:a1:71:c2:c0:b9: 81:f6:d7:b2:38:d8:92:4e:90:79:bc:56:d2:18:f9: 78:9c:b7:c3:c2:30:85:48:20:38:d6:9a:c9:b8:64: 57:ed:90:27:40:88:24:14:1b:7a:0a:08:dd:54:c3: a5:d4:e5:4c:34:66:8a:0e:d3:cb:c3:93:6d:33:62: f1:ca:e6:b8:0f:13:53:05:85:36:5b:16:35:15:c7: 2c:9a:12:21:4b:89:51:0e:a6:02:a2:a3:e8:2a:02: ac:c5:3a:a2:b9:e8:50:e8:9f:5c:36:cd:cc:73:97: 15:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:49:98:19:B3:99:5B:2E:6B:F2:4E:38:BD:D4:85:6F:9F:BE:58:C5 X509v3 Authority Key Identifier: keyid:D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:45:f1:36:81:8d:82:81:d7:7d:50:49:70:a7:82:e6:91:31: 1e:fc:c1:4a:07:c7:fc:53:f6:6b:1a:5f:51:a2:c8:63:a1:e0: 16:2b:1d:b2:35:23:c4:96:cd:f9:6b:b8:11:dc:e4:51:81:e7: fa:91:b4:71:4d:65:c0:0b:08:1a:9e:39:94:0b:3a:b5:20:58: 9e:2a:cb:91:5d:14:03:11:46:69:26:27:fb:60:91:bf:ac:16: 1e:1d:d0:ba:e5:ca:fc:8f:90:84:9a:e8:b0:31:c8:64:e2:d4: f0:3f:17:ac:b4:58:8f:3c:ca:3b:32:ac:f3:d2:17:b7:2c:64: 8e:be:10:03:97:2d:ee:3f:94:19:bc:2b:6c:09:e1:78:69:62: b3:83:3c:20:f8:94:4c:57:28:38:4b:e0:75:89:d0:66:29:ba: 96:1e:1b:48:1f:31:0b:03:d4:6b:2d:87:52:1a:ac:50:4f:98: e0:e6:ef:dc:e9:26:d5:b0:09:af:77:5a:a8:0a:ae:78:ba:a7: e3:9e:8d:a1:cb:2c:e4:32:07:83:f1:c2:c4:9b:a5:30:dc:4f: fc:58:2c:43:30:28:82:ec:1c:60:5f:77:67:4c:7f:33:a2:0f: 04:25:65:b7:49:77:d6:b0:45:c6:05:c7:98:f7:57:d0:89:96: ca:40:c2:a6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MERBNTExMC8GA1UEBRMoRDQyNTZFREMyQkMxMUM4NDVEQjUwN0I3QzBBODkzNTQ0 NjJFQjYzRDAeFw0yNTEwMTcxMTE0MjVaFw0yNTEwMjQxMTE0MjVaMBgxFjAUBgNV BAMTDTY4ZjIyNTEyLWJkZmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDVZnLNOS2FNVrWFJpj1/aZhEIMcICvLaeqBcsou2Ny7ohNR8iLi0b/F9mbHNz 5DEkwstm93ErN7gUsbr/p2bUB1DYmEOP8JuFHVtFD/nw+cdBl4fH49cqQWKlnq/h BOmV++yqDzsCsaQdcfZgLIZDVfPEZwPjpAQtzY1M/5cFcODIPaPMgiw1tf1ZvdL7 En6hccLAuYH217I42JJOkHm8VtIY+Xict8PCMIVIIDjWmsm4ZFftkCdAiCQUG3oK CN1Uw6XU5Uw0ZooO08vDk20zYvHK5rgPE1MFhTZbFjUVxyyaEiFLiVEOpgKio+gq AqzFOqK56FDon1w2zcxzlxW7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkEmYGbOZ Wy5r8k44vdSFb5++WMUwHwYDVR0jBBgwFoAU1CVu3CvBHIRdtQe3wKiTVEYutj0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwREE1L0M1NTk0MjRBNTcx QTExRjBCODUwNzM0MUM0RjlBRTAyLzFDVnUzQ3ZCSElSZHRRZTN3S2lUVkVZdXRq MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMUNWdTNDdkJISVJkdFFlM3dLaVRWRVl1dGowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw REE1L0M1NTk0MjRBNTcxQTExRjBCODUwNzM0MUM0RjlBRTAyLzFDVnUzQ3ZCSElS ZHRRZTN3S2lUVkVZdXRqMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGtF8TaBjYKB131QSXCnguaRMR78wUoHx/xT9msaX1GiyGOh4BYrHbI1 I8SWzflruBHc5FGB5/qRtHFNZcALCBqeOZQLOrUgWJ4qy5FdFAMRRmkmJ/tgkb+s Fh4d0LrlyvyPkISa6LAxyGTi1PA/F6y0WI88yjsyrPPSF7csZI6+EAOXLe4/lBm8 K2wJ4XhpYrODPCD4lExXKDhL4HWJ0GYpupYeG0gfMQsD1Gsth1IarFBPmODm79zp JtWwCa93WqgKrni6p+OejaHLLOQyB4PxwsSbpTDcT/xYLEMwKILsHGBfd2dMfzOi DwQlZbdJd9awRcYFx5j3V9CJlspAwqY= -----END CERTIFICATE-----Generated at Sat Oct 18 23:32:50 2025 by rpki-client