$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft File: rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft (raw, json) Hash identifier: ZKrrmgqP7TsEwDABTN8ikuM6Qg5IlPvU63aNWnO4QHI= Subject key identifier: 9D:A6:B2:B1:D1:2E:9C:77:A1:39:81:07:30:02:39:AD:B0:B5:8C:DF Authority key identifier: AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 Certificate issuer: /CN=A9172FC5/serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft Manifest number: A9 Signing time: Fri 17 Oct 2025 09:34:37 +0000 Manifest this update: Fri 17 Oct 2025 09:34:36 +0000 Manifest next update: Fri 24 Oct 2025 09:34:36 +0000 Files and hashes: 1: rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl (hash: AAFzt2UtdUhpcjuWVBc1A8MbHHGrArm6W2TNINin9Zg=) 2: 15B99EFC016111F0B1B6A34EC4F9AE02.roa (hash: fNaQxATAW6BCNgpllm+ul+pMRSXup8I9s/wGqDPcAs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 09:34:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172FC5, serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Validity Not Before: Oct 17 09:34:36 2025 GMT Not After : Oct 24 09:34:36 2025 GMT Subject: CN=68f20dac-4aaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:76:62:e9:b6:91:56:86:5e:74:78:f2:6a:78: 0b:9c:05:ad:42:68:a0:b6:90:db:db:a4:6f:a2:0d: f9:75:fc:ec:d0:ef:5f:26:e6:49:e4:8e:71:39:ba: f4:0a:06:b2:94:a2:b6:20:a0:a1:91:cf:92:73:1f: d5:96:e1:60:07:7a:24:18:fc:6f:4c:ea:27:a4:58: 8b:be:58:98:3a:57:56:46:d5:79:1a:d7:97:fc:dc: c3:4f:e0:13:77:42:68:24:e7:15:99:d6:3e:47:25: 0b:bc:d9:b4:e7:11:b1:2f:e7:7d:0b:fa:1c:2c:e1: 3d:95:9f:ca:c1:f8:c4:2d:01:60:33:b0:7d:39:d4: 10:87:71:28:7a:ed:71:2b:15:63:b8:9f:72:57:23: d2:2e:6b:6e:ce:2e:e8:32:58:b6:43:03:ce:08:dc: e3:4e:84:8a:54:6b:4a:91:a1:42:7a:fc:9d:fd:37: 2d:92:c1:94:39:ff:73:60:08:0e:19:bc:b2:51:61: ff:8b:be:3c:8b:07:c1:83:41:3c:db:75:e7:04:81: 72:6b:9c:f0:16:c7:0e:60:73:bd:15:83:24:47:c1: 0c:07:e5:1e:ea:59:6f:56:4c:0b:b1:08:b0:8f:1c: cc:5b:60:4d:31:24:c5:8a:b3:3d:d4:0f:90:82:72: 62:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:A6:B2:B1:D1:2E:9C:77:A1:39:81:07:30:02:39:AD:B0:B5:8C:DF X509v3 Authority Key Identifier: keyid:AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:82:4c:07:f5:70:0f:9c:fe:a8:b8:83:af:29:94:bb:26:83: 7b:3d:eb:3e:21:78:6b:95:a0:e8:05:1e:35:c9:87:a6:af:9a: 46:5a:04:a1:f4:cf:06:b2:99:23:02:ce:27:30:bc:07:b0:44: 8d:d7:d1:1a:13:c6:49:08:bd:d9:d8:38:12:a8:db:cd:23:3a: 47:de:f2:fe:ee:b1:71:c2:05:3e:6e:63:ae:83:8e:eb:8b:9a: 5a:3b:da:a9:71:ce:08:6a:a2:cc:45:7d:6d:bf:fe:68:24:48: 8c:b4:85:76:4a:f8:e7:ca:7d:4f:cb:b2:d0:eb:44:3a:da:5d: 76:ef:de:78:9f:25:78:d3:2b:4e:70:1e:b4:e7:9d:fe:b8:2f: e4:3b:78:36:19:70:4b:8b:f9:d9:6e:2b:c9:57:88:4b:5a:80: 3d:eb:bb:fa:31:1a:f9:4f:1f:97:6e:c2:d7:6b:b1:b7:38:dd: da:d7:b0:aa:60:87:fe:69:7c:ac:d3:94:51:95:de:92:a0:fc: 74:0e:cd:13:e0:b5:50:14:bd:bc:27:93:05:5d:8b:78:fb:f6: 43:5a:e2:3d:dc:39:61:a0:60:66:dd:b2:ee:19:2e:71:d9:20: 58:36:f1:aa:b3:d6:9f:25:b3:25:2d:b9:27:27:5d:8b:57:28: 8a:58:2c:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJGQzUxMTAvBgNVBAUTKEFENTQ1RDI1MDRGRTFERTkyQUUxNzY2REY0NjU3NjM3 REI3QTdFNzUwHhcNMjUxMDE3MDkzNDM2WhcNMjUxMDI0MDkzNDM2WjAYMRYwFAYD VQQDEw02OGYyMGRhYy00YWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApXZi6baRVoZedHjyangLnAWtQmigtpDb26Rvog35dfzs0O9fJuZJ5I5xObr0 CgaylKK2IKChkc+Scx/VluFgB3okGPxvTOonpFiLvliYOldWRtV5GteX/NzDT+AT d0JoJOcVmdY+RyULvNm05xGxL+d9C/ocLOE9lZ/KwfjELQFgM7B9OdQQh3Eoeu1x KxVjuJ9yVyPSLmtuzi7oMli2QwPOCNzjToSKVGtKkaFCevyd/TctksGUOf9zYAgO GbyyUWH/i748iwfBg0E823XnBIFya5zwFscOYHO9FYMkR8EMB+Ue6llvVkwLsQiw jxzMW2BNMSTFirM91A+QgnJiGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ2msrHR Lpx3oTmBBzACOa2wtYzfMB8GA1UdIwQYMBaAFK1UXSUE/h3pKuF2bfRldjfben51 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkZDNS9FNTM5Q0RBMEFC M0YxMUVGQkUwMkNGMTRDNEY5QUUwMi9yVlJkSlFULUhla3E0WFp0OUdWMk45dDZm blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JWUmRKUVQtSGVrcTRYWnQ5R1YyTjl0NmZuVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkZDNS9FNTM5Q0RBMEFCM0YxMUVGQkUwMkNGMTRDNEY5QUUwMi9yVlJkSlFULUhl a3E0WFp0OUdWMk45dDZmblUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7gkwH9XAPnP6ouIOvKZS7JoN7Pes+IXhrlaDoBR41yYemr5pGWgSh 9M8GspkjAs4nMLwHsESN19EaE8ZJCL3Z2DgSqNvNIzpH3vL+7rFxwgU+bmOug47r i5paO9qpcc4IaqLMRX1tv/5oJEiMtIV2Svjnyn1Py7LQ60Q62l127954nyV40ytO cB60553+uC/kO3g2GXBLi/nZbivJV4hLWoA967v6MRr5Tx+XbsLXa7G3ON3a17Cq YIf+aXys05RRld6SoPx0Ds0T4LVQFL28J5MFXYt4+/ZDWuI93DlhoGBm3bLuGS5x 2SBYNvGqs9afJbMlLbknJ12LVyiKWCzB -----END CERTIFICATE-----Generated at Sat Oct 18 23:36:32 2025 by rpki-client