$ rpki-client -vvf rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.mft File: h9pEpM-DnDiBxrw4aDzNwwjKfOk.mft (raw, json) Hash identifier: utu8VaEG+zUwiKo3h+0UaP/9CxS65b8mp1vZuLUWYtM= Subject key identifier: 17:73:5E:0F:20:69:5A:A2:33:8C:74:B9:7A:59:6C:AD:3E:F1:CA:36 Authority key identifier: 87:DA:44:A4:CF:83:9C:38:81:C6:BC:38:68:3C:CD:C3:08:CA:7C:E9 Certificate issuer: /CN=A919D180/serialNumber=87DA44A4CF839C3881C6BC38683CCDC308CA7CE9 Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9pEpM-DnDiBxrw4aDzNwwjKfOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.mft Manifest number: 9C Signing time: Sat 25 Oct 2025 10:22:47 +0000 Manifest this update: Sat 25 Oct 2025 10:22:46 +0000 Manifest next update: Sat 01 Nov 2025 10:22:46 +0000 Files and hashes: 1: h9pEpM-DnDiBxrw4aDzNwwjKfOk.crl (hash: kwYi6eGnD2C1VbGcbNQozOcpUZf7mH/qMbJbqOnFrfM=) 2: C8D5160AE75E11EF97E59E40C4F9AE02.roa (hash: usgzG5l4Fc/vVVRb6d9DCRrnc0s/zMN8s4ksanz/FtM=) 3: 8A991E5AD6DC11EF9E9B2B15C4F9AE02.roa (hash: FHrz83TvBf0PQed/UPRQj7z6Reuifr4TTzu0H0Cz+Nc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.crl rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9pEpM-DnDiBxrw4aDzNwwjKfOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 10:22:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D180, serialNumber=87DA44A4CF839C3881C6BC38683CCDC308CA7CE9 Validity Not Before: Oct 25 10:22:46 2025 GMT Not After : Nov 1 10:22:46 2025 GMT Subject: CN=68fca4f7-958a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e8:8f:4d:78:38:58:7d:57:c7:0c:3c:7b:87: 1a:ca:04:18:56:5d:ff:b0:16:d4:7c:a6:e1:62:9a: c9:21:03:86:ec:a0:6a:66:eb:cc:24:f9:a2:c4:9c: 34:58:75:75:73:bf:19:0e:de:58:b6:eb:b1:db:e4: 87:9c:bb:2a:f3:94:8b:1a:90:08:dc:ef:5a:b1:47: d2:c6:f1:65:29:20:95:d2:2a:c0:3e:02:88:45:6f: 11:98:4c:d1:60:24:17:7c:e2:c6:22:08:79:6f:c0: 72:7c:95:13:c4:a6:50:03:35:d1:1f:af:20:28:d9: db:1a:b9:c0:b2:27:b8:de:42:06:70:9a:ea:58:9c: 50:4d:a3:40:02:5c:40:62:f8:e0:29:d5:e2:e2:4c: 6c:b2:f0:e0:63:37:b4:c1:fd:0c:6c:ca:12:09:13: c1:f1:b9:62:fa:16:ff:c1:db:9f:36:94:90:61:19: 6f:66:b6:5f:68:16:71:00:e3:ee:4a:06:66:7b:bf: 01:80:46:5e:c8:b2:4b:cc:74:e4:77:e8:d6:2c:7c: af:2b:c1:63:ea:68:41:2a:25:cc:82:b9:20:ed:08: 3b:92:85:cd:20:72:26:b6:2e:e3:59:33:75:d4:3e: 70:bd:29:8c:a9:d4:98:b9:73:61:2c:ab:c3:fa:12: df:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:73:5E:0F:20:69:5A:A2:33:8C:74:B9:7A:59:6C:AD:3E:F1:CA:36 X509v3 Authority Key Identifier: keyid:87:DA:44:A4:CF:83:9C:38:81:C6:BC:38:68:3C:CD:C3:08:CA:7C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9pEpM-DnDiBxrw4aDzNwwjKfOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D180/774287F2D6C711EFA3E1D81CC4F9AE02/h9pEpM-DnDiBxrw4aDzNwwjKfOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:cc:d5:7d:0f:fc:1b:31:bb:06:93:75:d4:6a:27:83:4c:d1: c7:52:34:15:9a:d6:fd:15:0b:61:17:7d:fc:f1:fd:63:06:f4: 09:3b:1b:b8:02:62:f7:2a:26:42:88:79:ab:37:a8:1a:95:de: 1a:ce:76:d2:c6:fa:1c:12:76:83:26:b6:cf:58:14:e6:21:98: 9d:07:10:e6:e4:d2:db:18:f8:27:0c:ef:4a:09:af:f6:74:30: 4b:fa:00:55:b9:23:70:a4:33:98:2a:e9:9b:6a:06:04:d6:91: d8:f1:77:e8:9f:8d:41:8f:31:bb:ab:6e:dc:a4:d4:a7:2a:e0: 8b:21:4b:a6:92:77:ec:3d:6f:aa:cf:ee:c7:3f:5c:9b:57:37: 0f:72:c3:a2:b7:d8:71:df:00:bd:10:36:58:1d:bc:17:db:37: f5:0e:6a:df:c1:a5:50:c7:1e:13:d9:6e:72:d8:35:23:97:65: ea:87:e9:a6:12:1b:d2:3f:06:ca:d2:cd:76:81:9e:fb:38:ea: 35:33:53:78:a9:02:dd:24:46:b3:41:e9:99:ee:41:46:89:f2: b2:96:a1:f9:48:9f:0f:ea:bb:60:5e:ec:84:8e:21:4a:5e:14: f4:1d:3a:c1:e9:2f:46:71:71:b7:74:6a:c0:eb:85:04:8a:b3: a9:cd:07:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxODAxMTAvBgNVBAUTKDg3REE0NEE0Q0Y4MzlDMzg4MUM2QkMzODY4M0NDREMz MDhDQTdDRTkwHhcNMjUxMDI1MTAyMjQ2WhcNMjUxMTAxMTAyMjQ2WjAYMRYwFAYD VQQDEw02OGZjYTRmNy05NThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAueiPTXg4WH1Xxww8e4caygQYVl3/sBbUfKbhYprJIQOG7KBqZuvMJPmixJw0 WHV1c78ZDt5Ytuux2+SHnLsq85SLGpAI3O9asUfSxvFlKSCV0irAPgKIRW8RmEzR YCQXfOLGIgh5b8ByfJUTxKZQAzXRH68gKNnbGrnAsie43kIGcJrqWJxQTaNAAlxA YvjgKdXi4kxssvDgYze0wf0MbMoSCRPB8bli+hb/wdufNpSQYRlvZrZfaBZxAOPu SgZme78BgEZeyLJLzHTkd+jWLHyvK8Fj6mhBKiXMgrkg7Qg7koXNIHImti7jWTN1 1D5wvSmMqdSYuXNhLKvD+hLfHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdzXg8g aVqiM4x0uXpZbK0+8co2MB8GA1UdIwQYMBaAFIfaRKTPg5w4gca8OGg8zcMIynzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDE4MC83NzQyODdGMkQ2 QzcxMUVGQTNFMUQ4MUNDNEY5QUUwMi9oOXBFcE0tRG5EaUJ4cnc0YUR6Tnd3aktm T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g5cEVwTS1EbkRpQnhydzRhRHpOd3dqS2ZPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDE4MC83NzQyODdGMkQ2QzcxMUVGQTNFMUQ4MUNDNEY5QUUwMi9oOXBFcE0tRG5E aUJ4cnc0YUR6Tnd3aktmT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRzNV9D/wbMbsGk3XUaieDTNHHUjQVmtb9FQthF3388f1jBvQJOxu4 AmL3KiZCiHmrN6gald4aznbSxvocEnaDJrbPWBTmIZidBxDm5NLbGPgnDO9KCa/2 dDBL+gBVuSNwpDOYKumbagYE1pHY8Xfon41BjzG7q27cpNSnKuCLIUumknfsPW+q z+7HP1ybVzcPcsOit9hx3wC9EDZYHbwX2zf1DmrfwaVQxx4T2W5y2DUjl2Xqh+mm EhvSPwbK0s12gZ77OOo1M1N4qQLdJEazQemZ7kFGifKylqH5SJ8P6rtgXuyEjiFK XhT0HTrB6S9GcXG3dGrA64UEirOpzQcW -----END CERTIFICATE-----Generated at Sat Oct 25 20:51:52 2025 by rpki-client