$ rpki-client -vvf rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft File: dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft (raw, json) Hash identifier: av0ZOKkJdF6o34F+A8Rc319JCqZDV0p0zUlro6+f7MY= Subject key identifier: 00:0B:CE:58:1C:C6:95:20:DA:FE:9E:09:49:92:C6:17:92:11:8A:A0 Authority key identifier: 74:A1:16:69:C4:3E:53:B0:F2:1D:4B:41:3F:92:D9:EA:91:31:55:03 Certificate issuer: /CN=A9178424/serialNumber=74A11669C43E53B0F21D4B413F92D9EA91315503 Certificate serial: FA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft Manifest number: F7 Signing time: Thu 23 Oct 2025 07:08:48 +0000 Manifest this update: Thu 23 Oct 2025 07:08:48 +0000 Manifest next update: Thu 30 Oct 2025 07:08:48 +0000 Files and hashes: 1: dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl (hash: 5fBz+n+INGf4DIFieTDUBhKx/UVWpLCmv5ymOTJvcM4=) 2: D672BC9638E411EF8BF0C15EC4F9AE02.roa (hash: BbrjGfo0UoZCcLf+k7hQstWYPdgNNbc+IXBk8J2BWwE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 07:08:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178424, serialNumber=74A11669C43E53B0F21D4B413F92D9EA91315503 Validity Not Before: Oct 23 07:08:48 2025 GMT Not After : Oct 30 07:08:48 2025 GMT Subject: CN=68f9d480-342e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5f:4f:3f:b0:da:de:84:8c:b1:eb:a5:56:ec: 6b:2e:64:3d:08:26:37:db:b5:04:27:51:44:87:d2: 18:ef:88:60:a4:b7:56:cb:e4:97:6e:10:da:13:b7: 81:11:24:0b:41:54:7f:aa:35:4a:ea:e7:48:04:0b: 10:81:89:66:b0:0e:41:6d:12:b0:9f:fc:da:16:1c: d6:14:9c:09:6d:b8:24:a7:d9:c4:eb:52:68:f1:d0: 2f:dc:b0:e5:36:c5:b4:c3:f9:7b:56:19:f3:e6:d1: 7f:a5:70:8f:10:2f:32:19:f2:6b:f3:62:26:e8:6a: d3:e1:5f:ce:17:b1:3f:1c:a7:77:96:48:88:37:3f: e2:96:6b:45:e4:08:29:78:f7:cc:79:21:77:27:62: 1d:88:3d:ad:ec:65:d3:8f:da:9a:a1:26:41:f7:f2: 23:21:2d:86:c1:42:83:44:ca:31:bc:ac:b6:95:2b: 15:e7:33:d2:f7:9d:ca:0a:61:6d:6f:fd:b4:37:ff: a2:c0:36:f3:04:64:c9:67:4b:02:fa:f8:34:9e:ee: b3:80:bf:b3:cc:5d:95:11:3d:0b:9c:9f:f3:eb:40: 38:2c:21:52:c9:ff:6b:d1:1a:8f:65:95:31:56:64: 6d:7a:2d:8f:97:c7:49:90:99:c6:c5:fd:db:ad:b6: 06:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:0B:CE:58:1C:C6:95:20:DA:FE:9E:09:49:92:C6:17:92:11:8A:A0 X509v3 Authority Key Identifier: keyid:74:A1:16:69:C4:3E:53:B0:F2:1D:4B:41:3F:92:D9:EA:91:31:55:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:cd:86:15:e7:ba:11:e9:f4:25:ba:c0:eb:6b:e1:dc:a2:b3: b6:a1:2b:97:4d:55:94:0d:75:1a:19:fb:1a:03:31:19:54:8d: 0a:ad:aa:b5:0a:cb:85:3b:9d:34:7f:e7:e3:f1:1d:df:9e:0c: cf:9b:d6:25:ef:28:09:76:67:be:21:7c:f9:20:24:4b:81:78: 09:14:49:50:00:4f:f7:38:ba:0c:06:76:c1:b8:69:65:78:8c: ea:8c:be:9f:32:9d:37:89:e5:de:68:93:ac:8f:43:c1:3e:73: b9:01:8f:e7:f7:bf:2a:de:32:33:af:e8:6c:ff:d4:a6:82:07: a0:72:c7:6a:f7:92:08:89:b4:9e:ed:ab:b3:dc:82:24:6d:b0: 48:6b:9a:46:8f:9b:8c:bd:74:97:18:7a:94:75:10:7f:61:9b: 05:9c:ca:52:75:7b:e2:91:4d:d5:95:65:f2:87:a8:6e:68:99: fc:1c:4c:01:8d:6f:29:e4:26:67:82:1c:a5:d2:5c:bc:81:83: 68:14:0a:56:16:94:cf:4e:ab:ff:9e:3b:74:9d:7f:66:07:17: 74:23:79:5e:46:cc:d8:8a:a7:fc:ec:22:d1:19:94:de:32:ab: b7:d9:dc:c0:2f:a9:61:77:c9:3a:a5:5f:e0:42:b1:85:b5:f0: 4e:4a:33:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg0MjQxMTAvBgNVBAUTKDc0QTExNjY5QzQzRTUzQjBGMjFENEI0MTNGOTJEOUVB OTEzMTU1MDMwHhcNMjUxMDIzMDcwODQ4WhcNMjUxMDMwMDcwODQ4WjAYMRYwFAYD VQQDEw02OGY5ZDQ4MC0zNDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArV9PP7Da3oSMseulVuxrLmQ9CCY327UEJ1FEh9IY74hgpLdWy+SXbhDaE7eB ESQLQVR/qjVK6udIBAsQgYlmsA5BbRKwn/zaFhzWFJwJbbgkp9nE61Jo8dAv3LDl NsW0w/l7Vhnz5tF/pXCPEC8yGfJr82Im6GrT4V/OF7E/HKd3lkiINz/ilmtF5Agp ePfMeSF3J2IdiD2t7GXTj9qaoSZB9/IjIS2GwUKDRMoxvKy2lSsV5zPS953KCmFt b/20N/+iwDbzBGTJZ0sC+vg0nu6zgL+zzF2VET0LnJ/z60A4LCFSyf9r0RqPZZUx VmRtei2Pl8dJkJnGxf3brbYGjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAALzlgc xpUg2v6eCUmSxheSEYqgMB8GA1UdIwQYMBaAFHShFmnEPlOw8h1LQT+S2eqRMVUD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODQyNC83OTNFQTZEQTM4 RTMxMUVGOTE0QjJGMzNDNEY5QUUwMi9kS0VXYWNRLVU3RHlIVXRCUDVMWjZwRXhW UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RLRVdhY1EtVTdEeUhVdEJQNUxaNnBFeFZRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODQyNC83OTNFQTZEQTM4RTMxMUVGOTE0QjJGMzNDNEY5QUUwMi9kS0VXYWNRLVU3 RHlIVXRCUDVMWjZwRXhWUU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZzYYV57oR6fQlusDra+HcorO2oSuXTVWUDXUaGfsaAzEZVI0Kraq1 CsuFO500f+fj8R3fngzPm9Yl7ygJdme+IXz5ICRLgXgJFElQAE/3OLoMBnbBuGll eIzqjL6fMp03ieXeaJOsj0PBPnO5AY/n978q3jIzr+hs/9Smggegcsdq95IIibSe 7auz3IIkbbBIa5pGj5uMvXSXGHqUdRB/YZsFnMpSdXvikU3VlWXyh6huaJn8HEwB jW8p5CZnghyl0ly8gYNoFApWFpTPTqv/njt0nX9mBxd0I3leRszYiqf87CLRGZTe Mqu32dzAL6lhd8k6pV/gQrGFtfBOSjM6 -----END CERTIFICATE-----Generated at Fri Oct 24 05:55:37 2025 by rpki-client