$ rpki-client -vvf rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft File: CkIqY5fY62yzV3UpfOtVpeGP4eI.mft (raw, json) Hash identifier: e0eKNmKbPrtCKyyfptOwyIHeGvDvVODbyxJdhgEO15s= Subject key identifier: A7:8C:B5:1D:64:51:42:E3:29:34:95:58:63:79:DD:D1:C5:85:96:F6 Authority key identifier: 0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 Certificate issuer: /CN=A9176AFD/serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Certificate serial: 1925 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft Manifest number: 1913 Signing time: Tue 04 Nov 2025 16:32:31 +0000 Manifest this update: Tue 04 Nov 2025 16:32:31 +0000 Manifest next update: Tue 11 Nov 2025 16:32:31 +0000 Files and hashes: 1: CkIqY5fY62yzV3UpfOtVpeGP4eI.crl (hash: LSFT2zE00fup92RIYoq284Mu1pAVBs1XYlQjddQ5kgA=) 2: D6D99A3EBE3711EDA6617C5DC4F9AE02.roa (hash: LY7vLpDfVXZjs8mY5Lmcq8YY4mbx+XwbeXcZe9sNvfM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:32:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6437 (0x1925) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176AFD, serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Validity Not Before: Nov 4 16:32:31 2025 GMT Not After : Nov 11 16:32:31 2025 GMT Subject: CN=690a2a9f-bed7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b8:b9:df:af:d5:ba:e3:51:ea:1c:0e:fe:a9: 5c:35:b3:35:c9:03:21:2d:0d:b6:25:5b:9f:1e:b8: 73:cb:4b:12:e3:79:90:3c:65:fe:10:68:3d:ab:94: 7e:29:75:5e:a7:32:92:b8:d2:6a:30:b1:ac:66:b9: 9d:9e:c0:36:e9:6b:91:7b:84:b4:e4:e3:e4:36:a0: b5:dc:07:62:8f:06:8e:aa:2b:99:35:f8:bc:34:87: 38:49:b4:fd:25:6d:93:28:32:0d:fc:d7:fa:de:5f: 8f:59:df:f7:49:38:9d:b2:f9:3f:71:9a:ee:3d:8f: 93:2c:ed:aa:91:bd:74:82:fb:05:84:71:90:1b:5e: 6b:93:5c:4e:38:37:4d:b3:bc:46:c4:35:3a:a3:8f: ff:fc:14:ef:90:71:3f:a8:0f:25:d3:40:99:99:13: 38:c5:ac:21:85:a1:67:59:d6:96:0a:87:a6:a1:0a: 52:7b:56:ff:3b:a1:d8:e2:90:38:9f:3b:f7:8e:c5: 57:77:55:91:cf:aa:78:2c:f1:01:e5:54:e3:48:f0: ef:f5:55:dd:17:bc:b9:55:0d:c2:82:1d:78:e5:c3: 54:ff:b5:03:1b:b1:48:a7:95:72:59:81:b1:95:bd: a4:ec:be:23:8b:2d:c8:e1:84:02:36:63:cb:c8:c3: e4:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:8C:B5:1D:64:51:42:E3:29:34:95:58:63:79:DD:D1:C5:85:96:F6 X509v3 Authority Key Identifier: keyid:0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:3b:5a:8e:f0:73:45:56:25:4f:34:13:94:8d:43:07:27:a4: dd:da:8b:a6:2a:b7:05:89:82:d8:29:52:61:b4:c2:5f:37:10: 42:60:78:c5:fc:d6:92:17:cd:b4:3a:73:38:5e:ad:96:00:33: 9f:61:ad:e1:04:af:82:de:ea:55:ca:6f:51:8b:22:17:ef:b7: 86:2e:51:d0:14:dd:b9:08:ff:e5:00:44:8c:00:a3:2c:7f:5d: 03:b8:ec:23:18:f9:39:ef:45:9e:23:a3:a8:6a:b7:1f:8e:07: 04:1c:47:5f:79:b3:e4:c6:46:4e:9e:1c:80:e4:b6:16:f5:0d: 65:ee:10:fb:aa:a5:81:2a:64:52:72:c3:36:ba:87:b9:77:6d: f9:27:e5:af:3c:46:e0:0c:9a:4e:84:dc:e0:17:dd:27:5c:5f: e5:60:95:c6:4c:51:c0:83:e9:a5:d9:37:95:84:38:a5:17:b9: 36:0e:9c:30:0a:96:58:94:2a:3b:86:cf:87:f7:d3:1f:07:5f: c3:e3:c2:4b:3c:c3:5d:51:24:2b:a1:6a:68:6c:81:44:0a:aa: f8:14:ac:bd:cd:79:3f:1e:d5:23:c3:52:37:66:61:c2:2f:ce: 2b:35:39:ff:a3:2b:67:a0:33:fe:20:9b:e5:37:de:7b:f1:ef: 90:ec:12:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZBRkQxMTAvBgNVBAUTKDBBNDIyQTYzOTdEOEVCNkNCMzU3NzUyOTdDRUI1NUE1 RTE4RkUxRTIwHhcNMjUxMTA0MTYzMjMxWhcNMjUxMTExMTYzMjMxWjAYMRYwFAYD VQQDEw02OTBhMmE5Zi1iZWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Li536/VuuNR6hwO/qlcNbM1yQMhLQ22JVufHrhzy0sS43mQPGX+EGg9q5R+ KXVepzKSuNJqMLGsZrmdnsA26WuRe4S05OPkNqC13AdijwaOqiuZNfi8NIc4SbT9 JW2TKDIN/Nf63l+PWd/3STidsvk/cZruPY+TLO2qkb10gvsFhHGQG15rk1xOODdN s7xGxDU6o4///BTvkHE/qA8l00CZmRM4xawhhaFnWdaWCoemoQpSe1b/O6HY4pA4 nzv3jsVXd1WRz6p4LPEB5VTjSPDv9VXdF7y5VQ3Cgh145cNU/7UDG7FIp5VyWYGx lb2k7L4jiy3I4YQCNmPLyMPkbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKeMtR1k UULjKTSVWGN53dHFhZb2MB8GA1UdIwQYMBaAFApCKmOX2Otss1d1KXzrVaXhj+Hi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkFGRC81QkIyMjMwQTky RjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYyeXpWM1VwZk90VnBlR1A0 ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrSXFZNWZZNjJ5elYzVXBmT3RWcGVHUDRlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkFGRC81QkIyMjMwQTkyRjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYy eXpWM1VwZk90VnBlR1A0ZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHO1qO8HNFViVPNBOUjUMHJ6Td2oumKrcFiYLYKVJhtMJfNxBCYHjF /NaSF820OnM4Xq2WADOfYa3hBK+C3upVym9RiyIX77eGLlHQFN25CP/lAESMAKMs f10DuOwjGPk570WeI6OoarcfjgcEHEdfebPkxkZOnhyA5LYW9Q1l7hD7qqWBKmRS csM2uoe5d235J+WvPEbgDJpOhNzgF90nXF/lYJXGTFHAg+ml2TeVhDilF7k2Dpww CpZYlCo7hs+H99MfB1/D48JLPMNdUSQroWpobIFECqr4FKy9zXk/HtUjw1I3ZmHC L84rNTn/oytnoDP+IJvlN9578e+Q7BJ4 -----END CERTIFICATE-----Generated at Wed Nov 5 21:27:12 2025 by rpki-client