$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: vJnY5pIslI8jxx9xw6Bxx4vDjFlc1TRUAwmQ5ETVG84= Subject key identifier: 6A:A3:6D:07:03:BB:A9:C4:82:70:C3:FE:8F:6F:B5:82:F5:B0:02:EE Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 09CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 09AA Signing time: Tue 04 Nov 2025 20:08:22 +0000 Manifest this update: Tue 04 Nov 2025 20:08:21 +0000 Manifest next update: Tue 11 Nov 2025 20:08:21 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: co3q6z1yyUy482/kxKA87d3+ehR/6vrbKRAsaDHYAsA=) 2: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: fDQ1zYNxLplPrz4Qpls9Fd7tB57/fNGS1+72t/RyA84=) 3: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: +eSXmzBbgmezGg93b3TG7JXzkYgFkvNOYfX8lsh6cSU=) 4: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: hhUYjpSKNDr9BFxXK1UJmQWhlN0RGm+4+TzTlDKxlz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:08:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2506 (0x9ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: Nov 4 20:08:21 2025 GMT Not After : Nov 11 20:08:21 2025 GMT Subject: CN=690a5d35-42a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:08:6a:55:41:62:7f:1a:9c:97:12:04:90:5a: c6:22:6f:3e:a2:0b:d0:07:b8:aa:6b:11:9d:b6:e9: 40:20:d9:15:04:a9:4a:6a:6a:f3:68:be:6a:00:e2: c2:28:98:8d:02:2c:54:67:3b:59:f7:df:67:ea:54: b5:17:ae:f2:e7:fd:b4:8f:5c:b3:05:ee:00:ab:fe: 54:ac:5e:53:e6:e0:5b:b7:64:17:80:92:a5:2c:b5: 97:04:d4:b2:1c:1e:07:21:d6:cc:b2:5d:eb:9b:7e: ff:01:fd:43:a1:f9:f1:86:32:69:cb:d8:63:ca:e7: 14:86:9c:6e:56:7a:ee:0e:6c:31:30:8e:21:50:34: 3a:6b:34:58:9c:ce:12:a8:01:49:a8:9b:0f:3f:62: 87:4e:1e:25:ec:4d:ed:ce:2c:e0:4f:c9:c7:32:5e: c7:b6:d5:3b:ee:f9:50:9d:bb:f8:75:7c:42:80:d8: d3:bb:51:f2:0c:d6:7f:8e:d7:82:93:c8:7f:55:27: 8b:23:a6:97:22:75:34:64:47:3f:55:08:7d:b5:42: f6:3d:72:6a:2e:a6:78:c4:de:b8:93:e7:8b:0f:7e: fb:93:b6:2c:bd:f3:91:04:af:88:75:56:34:b8:2c: a4:3a:38:89:56:e4:28:76:02:b3:56:28:1e:a6:cc: 28:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:A3:6D:07:03:BB:A9:C4:82:70:C3:FE:8F:6F:B5:82:F5:B0:02:EE X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:ec:a8:fc:7a:ef:85:69:27:87:ba:00:4a:28:38:48:df:f6: ec:e5:81:35:3c:39:61:37:9c:fc:bc:d0:50:96:10:fa:9e:ad: 67:95:85:f9:d9:12:19:38:f7:fb:04:58:99:8e:de:3c:07:5a: 1a:99:a9:a0:fb:46:ec:ee:3b:e1:94:0f:7f:6e:f9:1e:2e:f0: 8f:72:50:c0:bc:74:c3:34:6b:e7:6d:f6:04:14:14:8c:4f:85: 9a:d4:7e:ad:24:7c:47:d2:df:05:15:96:2d:28:4f:ba:d2:7e: 5f:74:ca:7a:46:32:c6:a0:1b:71:82:c8:29:e2:62:67:24:2f: 8b:d7:16:8e:9a:62:d5:99:32:ef:49:43:5f:f3:e3:ef:cc:79: 74:cf:a2:52:24:8c:19:e0:8b:fa:bd:48:f7:de:fc:8f:c4:36: 7f:7e:ac:09:fd:6e:1e:3f:e2:05:97:c5:b3:03:7b:b5:47:1b: 01:11:5f:03:e0:15:54:3e:5a:01:89:58:0b:98:9f:79:a1:0f: 3e:30:06:c5:97:24:93:12:f7:48:76:a5:da:20:50:a5:bc:64: 72:91:af:46:a1:f2:38:5c:ab:a0:ad:12:cf:62:af:ea:e7:2b: f5:0b:3c:f6:a0:34:b8:db:23:cc:cc:ac:1f:e5:2d:0c:68:a9: 3c:51:03:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjUxMTA0MjAwODIxWhcNMjUxMTExMjAwODIxWjAYMRYwFAYD VQQDEw02OTBhNWQzNS00MmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQhqVUFifxqclxIEkFrGIm8+ogvQB7iqaxGdtulAINkVBKlKamrzaL5qAOLC KJiNAixUZztZ999n6lS1F67y5/20j1yzBe4Aq/5UrF5T5uBbt2QXgJKlLLWXBNSy HB4HIdbMsl3rm37/Af1DofnxhjJpy9hjyucUhpxuVnruDmwxMI4hUDQ6azRYnM4S qAFJqJsPP2KHTh4l7E3tzizgT8nHMl7HttU77vlQnbv4dXxCgNjTu1HyDNZ/jteC k8h/VSeLI6aXInU0ZEc/VQh9tUL2PXJqLqZ4xN64k+eLD377k7YsvfORBK+IdVY0 uCykOjiJVuQodgKzVigepswofQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqjbQcD u6nEgnDD/o9vtYL1sALuMB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt7Kj8eu+FaSeHugBKKDhI3/bs5YE1PDlhN5z8vNBQlhD6nq1nlYX5 2RIZOPf7BFiZjt48B1oamamg+0bs7jvhlA9/bvkeLvCPclDAvHTDNGvnbfYEFBSM T4Wa1H6tJHxH0t8FFZYtKE+60n5fdMp6RjLGoBtxgsgp4mJnJC+L1xaOmmLVmTLv SUNf8+PvzHl0z6JSJIwZ4Iv6vUj33vyPxDZ/fqwJ/W4eP+IFl8WzA3u1RxsBEV8D 4BVUPloBiVgLmJ95oQ8+MAbFlySTEvdIdqXaIFClvGRyka9GofI4XKugrRLPYq/q 5yv1Czz2oDS42yPMzKwf5S0MaKk8UQM8 -----END CERTIFICATE-----Generated at Wed Nov 5 15:34:32 2025 by rpki-client