$ rpki-client -vvf rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft File: _Ern2eP0GafSBKVMedHz76mn1sg.mft (raw, json) Hash identifier: BauNLj6q+u1kSUkmfX4otv62G0eLvmtLqZTvZdtdRCM= Subject key identifier: 62:7F:FC:96:C7:80:17:67:16:57:B2:2E:80:BF:85:2F:90:4B:F3:E3 Authority key identifier: FC:4A:E7:D9:E3:F4:19:A7:D2:04:A5:4C:79:D1:F3:EF:A9:A7:D6:C8 Certificate issuer: /CN=A91262F0/serialNumber=FC4AE7D9E3F419A7D204A54C79D1F3EFA9A7D6C8 Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft Manifest number: 01FA Signing time: Sun 19 Oct 2025 04:47:09 +0000 Manifest this update: Sun 19 Oct 2025 04:47:09 +0000 Manifest next update: Sun 26 Oct 2025 04:47:09 +0000 Files and hashes: 1: _Ern2eP0GafSBKVMedHz76mn1sg.crl (hash: kB3H9NeIsCL93iDJmrfCYkTgsDB4+upr9dun0vttr8Q=) 2: 8E412748A33311EDA2CB2420C4F9AE02.roa (hash: VYee2tDfZOJDgRSyvh9847Isyru0Slu6wYlhlW9JZCM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.crl rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262F0, serialNumber=FC4AE7D9E3F419A7D204A54C79D1F3EFA9A7D6C8 Validity Not Before: Oct 19 04:47:09 2025 GMT Not After : Oct 26 04:47:09 2025 GMT Subject: CN=68f46d4d-b614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:36:f3:7a:cf:33:54:97:3e:75:17:e7:6d:b8: 62:50:66:8f:ef:20:8f:88:89:b2:e6:89:42:5e:b4: c8:a8:e0:08:d9:51:e6:33:a3:6c:04:68:bd:7e:02: 88:96:e5:8b:69:60:9c:c7:bb:c6:c2:29:0d:fb:36: 4f:88:74:7b:f3:b5:a8:59:3c:67:d9:bf:72:a6:29: ce:02:86:bf:62:d6:3d:99:72:a5:d7:a5:b9:e0:81: 87:53:23:49:15:c0:8d:b9:43:41:cd:96:bb:74:b7: 70:41:0f:71:4e:3d:cb:44:05:12:99:8e:5e:40:b4: 14:c1:bb:aa:75:c3:43:91:9b:7c:df:cf:e6:e9:a4: 8b:69:a2:8c:05:12:8d:e3:bb:b2:fb:a7:26:6c:8d: ea:5d:45:32:50:49:3b:85:2c:7f:5c:25:a2:d5:6e: 9c:ac:23:c6:2e:03:d0:42:37:bb:c6:d7:87:73:d8: 9d:d0:68:31:2d:eb:03:36:ea:0c:a9:c7:45:36:1b: a2:3d:76:a8:21:3c:a4:c6:9a:7e:01:f4:a1:02:39: 1b:1a:9b:82:5e:d8:5e:59:84:0f:31:3a:a1:e1:b1: 48:d2:0a:56:31:2c:6f:63:a9:13:f4:f7:5c:f6:30: 70:17:55:7c:9e:05:cf:09:93:ee:a5:39:50:60:b9: 83:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:7F:FC:96:C7:80:17:67:16:57:B2:2E:80:BF:85:2F:90:4B:F3:E3 X509v3 Authority Key Identifier: keyid:FC:4A:E7:D9:E3:F4:19:A7:D2:04:A5:4C:79:D1:F3:EF:A9:A7:D6:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:c0:82:00:cf:89:8f:a1:90:25:da:78:08:10:32:9e:ec:cc: 78:b7:f4:5d:b2:0b:2e:bc:db:f6:78:8e:ae:f4:37:91:a6:49: 04:cd:75:22:e7:1f:97:8f:e5:ff:08:5a:e4:29:79:7b:eb:6e: 13:7f:27:5c:1c:46:b6:26:12:db:89:f9:54:50:a0:ac:57:a6: b4:b4:c8:ed:75:45:91:18:c5:a1:85:2d:e3:34:78:67:2a:2f: 09:3e:0c:8a:c0:a7:da:ee:7d:63:73:cf:55:c9:31:e3:3b:60: 53:ec:cc:59:e7:47:59:b0:81:eb:50:0a:20:c3:db:63:c1:a9: 3d:88:a9:7e:82:0e:4e:0f:ee:62:36:57:31:3b:8b:cb:2c:10: cb:68:f9:06:20:e7:2d:13:62:c0:35:8f:1e:6e:4c:17:03:9b: 66:00:05:98:c8:a3:a6:60:37:b9:3b:b2:07:e9:14:05:8e:8d: 8b:23:36:09:0f:bd:42:9d:a5:4f:e4:d5:94:73:59:26:4b:28: 20:cb:ed:04:5f:d7:ac:b2:1e:7e:d4:b5:5c:a1:83:fb:0c:2d: 74:98:7d:8b:4e:a8:1a:da:dd:17:7a:15:fa:8a:40:98:ac:ae: c6:ea:06:ce:27:72:04:08:ee:ba:90:f5:35:06:a7:a6:12:54: 53:bb:44:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyRjAxMTAvBgNVBAUTKEZDNEFFN0Q5RTNGNDE5QTdEMjA0QTU0Qzc5RDFGM0VG QTlBN0Q2QzgwHhcNMjUxMDE5MDQ0NzA5WhcNMjUxMDI2MDQ0NzA5WjAYMRYwFAYD VQQDEw02OGY0NmQ0ZC1iNjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Tbzes8zVJc+dRfnbbhiUGaP7yCPiImy5olCXrTIqOAI2VHmM6NsBGi9fgKI luWLaWCcx7vGwikN+zZPiHR787WoWTxn2b9ypinOAoa/YtY9mXKl16W54IGHUyNJ FcCNuUNBzZa7dLdwQQ9xTj3LRAUSmY5eQLQUwbuqdcNDkZt838/m6aSLaaKMBRKN 47uy+6cmbI3qXUUyUEk7hSx/XCWi1W6crCPGLgPQQje7xteHc9id0GgxLesDNuoM qcdFNhuiPXaoITykxpp+AfShAjkbGpuCXtheWYQPMTqh4bFI0gpWMSxvY6kT9Pdc 9jBwF1V8ngXPCZPupTlQYLmDWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGJ//JbH gBdnFleyLoC/hS+QS/PjMB8GA1UdIwQYMBaAFPxK59nj9Bmn0gSlTHnR8++pp9bI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJGMC8zM0FEMEE2MkEz MEMxMUVEQjMzODhDMENDNEY5QUUwMi9fRXJuMmVQMEdhZlNCS1ZNZWRIejc2bW4x c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Fcm4yZVAwR2FmU0JLVk1lZEh6NzZtbjFzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NjJGMC8zM0FEMEE2MkEzMEMxMUVEQjMzODhDMENDNEY5QUUwMi9fRXJuMmVQMEdh ZlNCS1ZNZWRIejc2bW4xc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzwIIAz4mPoZAl2ngIEDKe7Mx4t/RdsgsuvNv2eI6u9DeRpkkEzXUi 5x+Xj+X/CFrkKXl7624TfydcHEa2JhLbiflUUKCsV6a0tMjtdUWRGMWhhS3jNHhn Ki8JPgyKwKfa7n1jc89VyTHjO2BT7MxZ50dZsIHrUAogw9tjwak9iKl+gg5OD+5i NlcxO4vLLBDLaPkGIOctE2LANY8ebkwXA5tmAAWYyKOmYDe5O7IH6RQFjo2LIzYJ D71CnaVP5NWUc1kmSyggy+0EX9essh5+1LVcoYP7DC10mH2LTqga2t0XehX6ikCY rK7G6gbOJ3IECO66kPU1BqemElRTu0QH -----END CERTIFICATE-----Generated at Mon Oct 20 01:42:35 2025 by rpki-client