$ rpki-client -vvf rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft File: ghhST3oWtYwNm3OUAxk5fuT8pv0.mft (raw, json) Hash identifier: AEztSr8hMm6RY6TJ9RRbPdjrvdaWCsCT5oC9EEy9fIE= Subject key identifier: 56:25:D3:82:A0:32:32:33:B7:61:E0:ED:4B:19:91:C8:C3:71:FD:64 Authority key identifier: 82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD Certificate issuer: /CN=A9179EE2/serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Certificate serial: 082C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft Manifest number: 081A Signing time: Sun 02 Nov 2025 20:51:19 +0000 Manifest this update: Sun 02 Nov 2025 20:51:18 +0000 Manifest next update: Sun 09 Nov 2025 20:51:18 +0000 Files and hashes: 1: ghhST3oWtYwNm3OUAxk5fuT8pv0.crl (hash: iElbgLN1VbrggGL6FQqHNbtUGEUWjKB8Wf2V8nXndxE=) 2: 816A256CF57311EA86849119C4F9AE02.roa (hash: jh/uFXEIZPMO8B1QG/kheiWEegpd+33S7ffLLKrSdB0=) 3: 81E94F18F57311EA86849119C4F9AE02.roa (hash: d2TZXE18Xt38fADyNBS1PVNUEthCJSPtYY97KfIT80k=) 4: FD10505CC75011EFBA3D195BC4F9AE02.roa (hash: 5TA62bj3DT+mJ8Nio1yv4R6VCuB4DLublpXb87Ez56Y=) 5: 431106B2125611ED9FB5292EC4F9AE02.roa (hash: yYe2S/r+iFZmGGM++jOhHqDjwT0Z+vvfLaaWlIwsXLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:51:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2092 (0x82c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179EE2, serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Validity Not Before: Nov 2 20:51:18 2025 GMT Not After : Nov 9 20:51:18 2025 GMT Subject: CN=6907c447-8a68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:1c:30:34:83:d8:bd:f0:64:20:e9:35:99:12: 67:a2:4c:de:0c:f7:b3:16:c7:d8:b1:17:e3:3e:a3: 82:90:e4:97:9f:1f:e9:16:3d:c3:ea:cb:bc:db:fe: 6c:fd:c0:4c:e6:d2:14:9f:9d:6e:0a:e8:96:45:b3: da:5e:db:3c:83:3a:4f:56:28:e5:d3:92:5d:0a:ae: 7a:5b:bc:7b:78:4f:f4:03:2b:5b:03:16:86:5e:21: 8e:e9:48:23:17:12:84:b4:ba:2d:0d:f0:97:69:22: d3:14:e4:3b:62:15:1f:3e:e8:f7:62:52:8c:e5:02: 79:f6:9f:47:44:d7:16:ed:a1:a3:20:6a:8a:0c:6a: 6c:57:e1:e2:d0:4a:7d:89:51:4c:ef:ff:3e:42:31: c9:39:2e:4d:3d:be:bd:db:a9:c1:aa:14:14:cc:ab: bf:18:99:7a:c1:90:08:b9:61:80:95:eb:79:a9:d6: d2:7a:59:ac:1d:c4:38:18:58:90:f4:fa:4d:0f:95: d0:02:ce:8e:84:e0:ca:72:0d:e6:83:3d:5a:04:fe: c1:af:e2:51:76:c0:a5:8a:d4:57:05:94:e2:0a:df: f3:98:f0:37:60:e0:a2:c2:76:44:a5:a6:9b:62:33: 50:b4:39:4c:04:5a:03:c1:a0:6a:08:b5:29:33:30: 5d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:25:D3:82:A0:32:32:33:B7:61:E0:ED:4B:19:91:C8:C3:71:FD:64 X509v3 Authority Key Identifier: keyid:82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:8d:3f:32:4e:84:da:5c:a3:8a:85:2f:d0:97:a9:6b:39:79: d5:0c:2d:a5:e4:bf:44:b9:ab:83:5d:29:ae:24:35:53:5b:fa: ac:e0:64:4b:52:af:3a:cb:b7:1c:88:ed:b0:2b:ea:28:aa:cc: 6f:5c:86:85:a0:57:f5:06:47:99:80:7d:16:74:f9:86:f2:30: 19:8d:16:82:d3:b1:2a:8f:02:a0:57:0d:ff:6f:c8:df:d3:d4: a7:75:ba:9a:89:6a:cd:75:81:00:20:32:17:5e:a9:b0:54:2a: 63:89:fe:85:ac:26:43:f3:e4:5a:99:1d:48:14:22:f8:a1:0f: 72:56:3a:4f:91:1d:08:28:48:85:a8:01:7e:20:43:dc:9b:b8: 43:4e:c2:2a:47:b2:b0:f6:05:16:00:45:2c:b6:f5:75:bb:10: 40:06:01:05:9e:f6:ae:01:71:00:ff:14:17:c1:37:13:4a:46: 0a:ca:ad:e9:6d:bd:f8:6c:3c:06:64:6e:95:d6:da:a4:21:f8: de:20:e2:f2:e3:62:11:04:1c:36:19:20:9d:07:8d:48:37:64: 26:ca:3e:8e:19:81:1c:3f:de:a2:20:33:a0:f5:c2:9a:7d:aa: d3:b9:ee:00:9f:36:40:37:40:af:86:31:32:b5:3d:2c:de:11: 01:c2:f2:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlFRTIxMTAvBgNVBAUTKDgyMTg1MjRGN0ExNkI1OEMwRDlCNzM5NDAzMTkzOTdF RTRGQ0E2RkQwHhcNMjUxMTAyMjA1MTE4WhcNMjUxMTA5MjA1MTE4WjAYMRYwFAYD VQQDEw02OTA3YzQ0Ny04YTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlhwwNIPYvfBkIOk1mRJnokzeDPezFsfYsRfjPqOCkOSXnx/pFj3D6su82/5s /cBM5tIUn51uCuiWRbPaXts8gzpPVijl05JdCq56W7x7eE/0AytbAxaGXiGO6Ugj FxKEtLotDfCXaSLTFOQ7YhUfPuj3YlKM5QJ59p9HRNcW7aGjIGqKDGpsV+Hi0Ep9 iVFM7/8+QjHJOS5NPb6926nBqhQUzKu/GJl6wZAIuWGAlet5qdbSelmsHcQ4GFiQ 9PpND5XQAs6OhODKcg3mgz1aBP7Br+JRdsClitRXBZTiCt/zmPA3YOCiwnZEpaab YjNQtDlMBFoDwaBqCLUpMzBdVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFYl04Kg MjIzt2Hg7UsZkcjDcf1kMB8GA1UdIwQYMBaAFIIYUk96FrWMDZtzlAMZOX7k/Kb9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUVFMi8wMkIyNzM4OEY1 NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZd05tM09VQXhrNWZ1VDhw djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doaFNUM29XdFl3Tm0zT1VBeGs1ZnVUOHB2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUVFMi8wMkIyNzM4OEY1NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZ d05tM09VQXhrNWZ1VDhwdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcjT8yToTaXKOKhS/Ql6lrOXnVDC2l5L9EuauDXSmuJDVTW/qs4GRL Uq86y7cciO2wK+ooqsxvXIaFoFf1BkeZgH0WdPmG8jAZjRaC07EqjwKgVw3/b8jf 09SndbqaiWrNdYEAIDIXXqmwVCpjif6FrCZD8+RamR1IFCL4oQ9yVjpPkR0IKEiF qAF+IEPcm7hDTsIqR7Kw9gUWAEUstvV1uxBABgEFnvauAXEA/xQXwTcTSkYKyq3p bb34bDwGZG6V1tqkIfjeIOLy42IRBBw2GSCdB41IN2Qmyj6OGYEcP96iIDOg9cKa farTue4AnzZAN0CvhjEytT0s3hEBwvI0 -----END CERTIFICATE-----Generated at Tue Nov 4 16:41:26 2025 by rpki-client