$ rpki-client -vvf rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft File: ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft (raw, json) Hash identifier: DQ7M/RI1kJkTWUBFjnzzV0Qo6nXPZB2McAGrXyosdGo= Subject key identifier: C2:FA:11:3D:6B:AF:6C:30:52:39:29:41:68:62:B7:85:0B:4C:B7:C5 Authority key identifier: 72:41:E8:F0:38:B9:F2:52:FB:61:CA:41:B6:A4:FC:16:7B:77:55:26 Certificate issuer: /CN=A9161477/serialNumber=7241E8F038B9F252FB61CA41B6A4FC167B775526 Certificate serial: 84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft Manifest number: 82 Signing time: Mon 03 Nov 2025 06:40:47 +0000 Manifest this update: Mon 03 Nov 2025 06:40:46 +0000 Manifest next update: Mon 10 Nov 2025 06:40:46 +0000 Files and hashes: 1: ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl (hash: qa+DUlZp7GbG0rHu9gPqg+Bmby6wcU/lJgPpTJblLbA=) 2: CAB73E3AF3FC11EF83B4DD30C4F9AE02.roa (hash: BR0iac6RCibng8iXx5EGv9yUT7uect2xiyJYOcbA9Hs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:40:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161477, serialNumber=7241E8F038B9F252FB61CA41B6A4FC167B775526 Validity Not Before: Nov 3 06:40:46 2025 GMT Not After : Nov 10 06:40:46 2025 GMT Subject: CN=69084e6f-1193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5d:af:f6:62:b0:50:89:cf:35:4a:6d:50:63: e2:db:1f:02:7d:9f:e3:60:7d:ac:ac:9c:93:49:69: ba:ab:6b:6a:7f:59:47:1d:c2:b5:f2:5c:9b:3c:7d: 3a:32:f3:f9:26:e3:60:66:91:03:cd:26:7f:09:61: c0:69:70:0c:e1:c1:51:f8:0f:90:e3:23:64:d9:a0: 59:f1:09:c3:b9:88:5a:a0:c3:ae:1a:53:bf:91:10: a5:6f:c7:74:da:ea:47:ff:da:36:34:4b:c9:6a:0f: 3d:02:5f:84:01:07:2e:2b:e8:95:38:72:84:51:df: eb:f3:32:4f:4b:32:ff:c1:a7:d4:0e:9a:ac:3c:b0: 40:de:95:a5:2c:c6:e1:96:f0:b5:24:b9:c8:ce:b7: 72:90:d7:25:7d:32:ba:b8:f3:30:fe:ba:77:0f:6f: 58:7a:56:88:21:c9:4f:08:fb:74:df:4d:98:f6:62: 40:89:6e:a8:d1:30:4f:03:85:c0:47:2a:f2:23:93: 51:d2:15:90:94:08:af:a4:bf:ac:49:ff:2e:09:88: 7c:fa:cb:69:81:f0:38:bd:c8:20:2c:fd:fc:49:6a: a3:b3:cf:85:60:f1:81:75:23:0c:59:cb:a2:c7:cf: cb:8c:c1:45:35:81:36:f0:d5:e7:11:1b:8b:0c:39: 0c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:FA:11:3D:6B:AF:6C:30:52:39:29:41:68:62:B7:85:0B:4C:B7:C5 X509v3 Authority Key Identifier: keyid:72:41:E8:F0:38:B9:F2:52:FB:61:CA:41:B6:A4:FC:16:7B:77:55:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:cd:7e:6e:05:9e:6e:75:d3:01:f5:a5:b4:5b:e9:a2:e8:7c: c4:4f:7c:24:a4:2e:b7:3c:c3:a0:c2:70:db:0f:81:84:00:a7: df:5d:51:1a:53:4c:98:48:bd:4b:d9:b8:28:39:58:10:e6:ba: 8a:ae:70:52:6e:d9:8d:a9:80:d0:53:03:0f:82:a7:ba:1d:fc: 2f:ee:41:b3:74:36:ef:da:f2:91:17:31:50:bb:ff:7c:e0:71: 11:ff:a1:24:0e:b9:25:a7:c5:07:1f:4c:60:16:f5:1a:4f:d8: f9:ce:18:a6:64:01:c1:5a:27:09:dc:37:3a:c9:5b:69:0e:11: 99:27:b5:45:43:2c:e4:b1:db:86:aa:05:01:68:d3:69:1f:53: be:53:84:9c:88:ef:9d:06:a5:98:8b:6f:54:92:19:2a:eb:77: f2:d7:78:f8:c1:e2:e3:b5:ba:35:fa:e4:71:3a:e1:d7:14:14: e3:e4:2b:3f:86:5f:21:19:93:cc:5e:0f:03:db:11:09:51:93: 4d:a1:7e:e3:d7:be:0e:24:a0:fa:cc:59:be:1f:70:d7:f8:c7: 0b:da:02:af:2e:9e:66:1b:d1:24:7d:45:72:9f:c1:53:1e:7f: d1:37:b5:d2:5e:a2:33:74:3d:46:f9:bd:ba:ea:df:39:8e:b5: 6d:48:7f:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE0NzcxMTAvBgNVBAUTKDcyNDFFOEYwMzhCOUYyNTJGQjYxQ0E0MUI2QTRGQzE2 N0I3NzU1MjYwHhcNMjUxMTAzMDY0MDQ2WhcNMjUxMTEwMDY0MDQ2WjAYMRYwFAYD VQQDEw02OTA4NGU2Zi0xMTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtF2v9mKwUInPNUptUGPi2x8CfZ/jYH2srJyTSWm6q2tqf1lHHcK18lybPH06 MvP5JuNgZpEDzSZ/CWHAaXAM4cFR+A+Q4yNk2aBZ8QnDuYhaoMOuGlO/kRClb8d0 2upH/9o2NEvJag89Al+EAQcuK+iVOHKEUd/r8zJPSzL/wafUDpqsPLBA3pWlLMbh lvC1JLnIzrdykNclfTK6uPMw/rp3D29YelaIIclPCPt0302Y9mJAiW6o0TBPA4XA RyryI5NR0hWQlAivpL+sSf8uCYh8+stpgfA4vcggLP38SWqjs8+FYPGBdSMMWcui x8/LjMFFNYE28NXnERuLDDkMbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFML6ET1r r2wwUjkpQWhit4ULTLfFMB8GA1UdIwQYMBaAFHJB6PA4ufJS+2HKQbak/BZ7d1Um MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTQ3Ny82QjcwMzVGOEYz RkMxMUVGOTlENTM3MzBDNEY5QUUwMi9ja0hvOERpNThsTDdZY3BCdHFUOEZudDNW U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrSG84RGk1OGxMN1ljcEJ0cVQ4Rm50M1ZTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTQ3Ny82QjcwMzVGOEYzRkMxMUVGOTlENTM3MzBDNEY5QUUwMi9ja0hvOERpNThs TDdZY3BCdHFUOEZudDNWU1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJzX5uBZ5uddMB9aW0W+mi6HzET3wkpC63PMOgwnDbD4GEAKffXVEa U0yYSL1L2bgoOVgQ5rqKrnBSbtmNqYDQUwMPgqe6Hfwv7kGzdDbv2vKRFzFQu/98 4HER/6EkDrklp8UHH0xgFvUaT9j5zhimZAHBWicJ3Dc6yVtpDhGZJ7VFQyzksduG qgUBaNNpH1O+U4SciO+dBqWYi29Ukhkq63fy13j4weLjtbo1+uRxOuHXFBTj5Cs/ hl8hGZPMXg8D2xEJUZNNoX7j174OJKD6zFm+H3DX+McL2gKvLp5mG9EkfUVyn8FT Hn/RN7XSXqIzdD1G+b266t85jrVtSH+1 -----END CERTIFICATE-----Generated at Tue Nov 4 19:05:36 2025 by rpki-client