$ rpki-client -vvf rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft File: ghhST3oWtYwNm3OUAxk5fuT8pv0.mft (raw, json) Hash identifier: I9Fqbp8w/MEwDXnkGHw+b1FE7wCNpm5aByFJQL9MiIg= Subject key identifier: 8A:B9:87:EC:FF:FC:5F:3B:AB:45:6E:25:B7:98:00:8C:27:99:1B:2E Authority key identifier: 82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD Certificate issuer: /CN=A9179EE2/serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Certificate serial: 0826 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft Manifest number: 0814 Signing time: Wed 22 Oct 2025 21:41:54 +0000 Manifest this update: Wed 22 Oct 2025 21:41:54 +0000 Manifest next update: Wed 29 Oct 2025 21:41:54 +0000 Files and hashes: 1: ghhST3oWtYwNm3OUAxk5fuT8pv0.crl (hash: 0n+jpt/UpNX4RKl69CwAP0pJVyTSCTC2omgq+YmWxCY=) 2: 816A256CF57311EA86849119C4F9AE02.roa (hash: jh/uFXEIZPMO8B1QG/kheiWEegpd+33S7ffLLKrSdB0=) 3: 81E94F18F57311EA86849119C4F9AE02.roa (hash: d2TZXE18Xt38fADyNBS1PVNUEthCJSPtYY97KfIT80k=) 4: FD10505CC75011EFBA3D195BC4F9AE02.roa (hash: 5TA62bj3DT+mJ8Nio1yv4R6VCuB4DLublpXb87Ez56Y=) 5: 431106B2125611ED9FB5292EC4F9AE02.roa (hash: yYe2S/r+iFZmGGM++jOhHqDjwT0Z+vvfLaaWlIwsXLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 21:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2086 (0x826) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179EE2, serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Validity Not Before: Oct 22 21:41:54 2025 GMT Not After : Oct 29 21:41:54 2025 GMT Subject: CN=68f94fa2-71a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8a:41:fd:f6:43:bd:65:0f:bc:14:78:66:67: e9:14:f1:c1:ad:8a:d8:b3:ef:74:c1:12:b6:4d:6a: 9a:ff:0d:92:64:50:3f:f5:64:a3:58:c0:7b:5d:3d: 94:f9:b6:58:b4:9f:e5:a4:e3:cc:4f:7c:e8:92:8c: e5:53:33:6a:90:4d:47:04:4e:48:cd:bc:2d:87:d4: 51:0b:78:84:90:90:c9:fb:62:6a:f4:21:95:04:c5: 64:4c:33:9e:9b:d4:46:ad:cc:91:bf:b3:cc:c0:05: 03:b7:0e:f7:61:ab:16:f8:9e:26:d3:8c:7e:f4:83: 16:7b:82:e5:a8:63:33:d2:a6:3c:b3:f8:15:18:0e: a9:91:1b:ca:8f:13:51:f7:55:47:6a:7e:5f:67:ec: c3:be:1a:0b:41:a6:9e:9e:13:46:62:f3:79:a0:07: fa:fb:e7:ed:e7:df:d0:1e:e0:a3:e9:1e:5e:9c:97: 3a:3d:42:ea:1e:99:69:3e:bf:4f:d1:85:a5:cc:2a: 01:c1:1b:db:1b:82:0e:70:d6:e5:f3:c0:d9:71:4c: 72:ab:64:c4:e3:d7:5f:a8:02:ed:ed:88:b1:40:32: ba:60:1a:7a:97:fa:63:66:0c:d2:e7:cc:86:87:7b: e8:aa:ec:01:26:5b:f3:38:2d:b0:ff:22:4b:cd:24: c1:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:B9:87:EC:FF:FC:5F:3B:AB:45:6E:25:B7:98:00:8C:27:99:1B:2E X509v3 Authority Key Identifier: keyid:82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:70:a0:1b:95:c8:e4:a5:d4:ae:7f:f8:e0:85:c7:e1:48:bf: d8:74:9b:52:20:c7:9c:b4:e5:c5:17:1f:00:8b:8a:48:7a:06: 57:e3:50:26:7e:8f:81:19:65:e9:da:3b:e2:33:5d:99:0c:51: 18:af:8d:8c:44:e3:14:b4:6c:26:e3:d6:4c:b7:6c:e6:ef:cb: ac:d3:85:a4:7e:07:f4:ca:43:90:1e:b1:85:1c:22:1b:e3:a7: d2:d8:4f:c3:3a:99:94:5c:f6:a0:2c:42:43:7c:36:ae:4c:b3: e6:d1:4a:3b:fb:c2:90:9b:56:46:75:7f:0a:12:9e:fb:44:c8: a1:01:e6:7e:e3:a3:00:97:ea:05:e1:82:be:58:80:74:f4:27: 74:49:bc:25:aa:6f:a9:78:c1:2a:13:eb:de:69:47:0a:b1:f3: 44:cb:34:bc:33:76:eb:d7:6d:a8:a3:23:4b:3f:9a:22:f4:71: 01:17:04:b7:71:ae:7a:e3:e0:b0:46:75:6f:54:95:fa:5e:b2: 6c:65:f1:ec:e1:cf:c5:52:5b:c2:db:1c:cb:84:66:3b:ec:9d: f0:03:45:8e:57:5e:cb:4e:98:99:56:e6:78:2b:16:50:76:c6: 49:77:48:6b:81:e1:c5:a9:68:cc:d9:8d:c4:18:8a:c4:a1:d9: df:de:ee:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlFRTIxMTAvBgNVBAUTKDgyMTg1MjRGN0ExNkI1OEMwRDlCNzM5NDAzMTkzOTdF RTRGQ0E2RkQwHhcNMjUxMDIyMjE0MTU0WhcNMjUxMDI5MjE0MTU0WjAYMRYwFAYD VQQDEw02OGY5NGZhMi03MWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtopB/fZDvWUPvBR4ZmfpFPHBrYrYs+90wRK2TWqa/w2SZFA/9WSjWMB7XT2U +bZYtJ/lpOPMT3zokozlUzNqkE1HBE5Izbwth9RRC3iEkJDJ+2Jq9CGVBMVkTDOe m9RGrcyRv7PMwAUDtw73YasW+J4m04x+9IMWe4LlqGMz0qY8s/gVGA6pkRvKjxNR 91VHan5fZ+zDvhoLQaaenhNGYvN5oAf6++ft59/QHuCj6R5enJc6PULqHplpPr9P 0YWlzCoBwRvbG4IOcNbl88DZcUxyq2TE49dfqALt7YixQDK6YBp6l/pjZgzS58yG h3voquwBJlvzOC2w/yJLzSTByQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIq5h+z/ /F87q0VuJbeYAIwnmRsuMB8GA1UdIwQYMBaAFIIYUk96FrWMDZtzlAMZOX7k/Kb9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUVFMi8wMkIyNzM4OEY1 NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZd05tM09VQXhrNWZ1VDhw djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doaFNUM29XdFl3Tm0zT1VBeGs1ZnVUOHB2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUVFMi8wMkIyNzM4OEY1NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZ d05tM09VQXhrNWZ1VDhwdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVcKAblcjkpdSuf/jghcfhSL/YdJtSIMectOXFFx8Ai4pIegZX41Am fo+BGWXp2jviM12ZDFEYr42MROMUtGwm49ZMt2zm78us04Wkfgf0ykOQHrGFHCIb 46fS2E/DOpmUXPagLEJDfDauTLPm0Uo7+8KQm1ZGdX8KEp77RMihAeZ+46MAl+oF 4YK+WIB09Cd0Sbwlqm+peMEqE+veaUcKsfNEyzS8M3br122ooyNLP5oi9HEBFwS3 ca564+CwRnVvVJX6XrJsZfHs4c/FUlvC2xzLhGY77J3wA0WOV17LTpiZVuZ4KxZQ dsZJd0hrgeHFqWjM2Y3EGIrEodnf3u5i -----END CERTIFICATE-----Generated at Fri Oct 24 00:09:15 2025 by rpki-client