$ rpki-client -vvf rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft File: aEWjVwdX5r8sBIWsIXib_1AFHpo.mft (raw, json) Hash identifier: fF5P+2AFLW8faittyfA9v1uoJEd2pfw9Vke8BiE6+mg= Subject key identifier: EF:75:44:B7:55:5B:C7:13:56:9E:3D:B8:3F:94:27:8D:08:91:F6:EF Authority key identifier: 68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A Certificate issuer: /CN=A913500A/serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Certificate serial: 0193 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft Manifest number: 0190 Signing time: Sun 19 Oct 2025 06:02:40 +0000 Manifest this update: Sun 19 Oct 2025 06:02:40 +0000 Manifest next update: Sun 26 Oct 2025 06:02:40 +0000 Files and hashes: 1: aEWjVwdX5r8sBIWsIXib_1AFHpo.crl (hash: 5erN8b0VzqGfdjxbBCsvSWpKaDcd+ewdN+kyCG9WZus=) 2: 0CE4B8C6474911EEA995D74FC4F9AE02.roa (hash: o8XeNpRnuUBlVWA6mPKxdSovFEQUWjBzrI7Rs+4BJAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:02:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913500A, serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Validity Not Before: Oct 19 06:02:40 2025 GMT Not After : Oct 26 06:02:40 2025 GMT Subject: CN=68f47f00-4641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c5:7a:6c:5a:f8:97:b3:42:2b:fa:26:25:7f: 90:d5:03:ab:c6:f8:a2:20:80:ae:d1:4c:28:a5:ff: db:1f:3f:d5:62:b1:09:90:25:ea:86:bd:e0:01:29: 8a:05:eb:cf:c6:80:b5:de:a8:f3:c3:39:98:13:87: f5:f5:ac:b1:2e:8e:63:80:c9:d9:98:64:a8:d0:cb: ee:4d:b0:9c:15:70:28:82:73:c5:b2:72:a2:0e:9e: 5f:9f:4b:4f:5a:20:5d:ae:39:10:d9:42:94:e5:5e: 1f:5f:0d:ec:ae:ce:4c:2e:a2:2a:15:07:da:2c:8f: e8:f3:c6:cb:47:29:cf:99:d1:22:c9:14:25:48:bb: c2:5b:ed:39:92:79:ee:90:fb:bf:5b:d0:04:29:73: 23:95:71:79:4d:d7:f6:4d:f6:86:89:38:29:cd:c9: d4:56:74:a1:17:14:1c:10:4b:e5:01:0a:c4:08:28: 91:2f:26:af:2a:db:1a:27:3b:66:18:83:4b:c7:25: 1a:a4:d3:b6:3c:15:6a:1e:6d:bb:65:ed:82:2b:8e: 74:8c:2b:f1:1b:41:1c:06:35:e4:55:0f:85:74:c8: c1:17:ee:46:5b:6d:0b:00:38:00:cb:4f:94:4e:fe: 74:0a:81:24:21:d4:43:b5:28:ba:e4:66:a3:e0:81: b4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:75:44:B7:55:5B:C7:13:56:9E:3D:B8:3F:94:27:8D:08:91:F6:EF X509v3 Authority Key Identifier: keyid:68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:57:a8:c7:76:ea:c9:49:55:0c:72:93:a9:d4:9c:ae:f4:36: cd:f3:27:47:9c:c5:62:5f:ee:c4:aa:53:9e:31:fb:55:ef:3f: 2b:a6:07:44:36:8b:17:3f:f3:53:ab:70:c2:73:05:83:8d:32: ca:0a:8f:31:b0:de:0d:ee:91:d1:3b:60:ac:5f:d8:18:8e:e8: d9:f5:3a:d7:0e:50:73:bd:fb:ab:39:05:ad:43:37:1a:62:1b: 52:b5:5d:c6:0b:ec:cc:80:fc:3e:27:5d:d9:19:a0:8b:9d:bf: dd:de:4e:22:51:b0:ce:62:38:c1:66:97:1b:f7:96:94:05:16: 9b:12:7e:b0:81:c7:d4:ce:36:d0:69:0d:c6:0f:c4:d7:f3:d9: 85:48:84:6a:02:5d:a4:64:87:6c:54:5b:48:31:0d:5e:c8:99: eb:6e:76:e0:bf:da:7c:b8:9c:d4:58:13:40:2a:40:a5:73:8a: 45:b8:97:60:7b:31:2d:62:62:e7:3a:2a:e6:62:df:f0:2c:1f: 7f:86:1a:12:b5:1a:88:79:a2:fd:d9:d8:09:ad:35:a0:ac:40: de:e2:17:d1:e3:c1:ed:ef:20:08:5f:1f:40:08:15:60:b5:84: d5:b1:2e:ab:54:55:3a:b5:0a:a9:58:49:58:f6:cd:0d:a3:29: 38:cb:8e:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMEExMTAvBgNVBAUTKDY4NDVBMzU3MDc1N0U2QkYyQzA0ODVBQzIxNzg5QkZG NTAwNTFFOUEwHhcNMjUxMDE5MDYwMjQwWhcNMjUxMDI2MDYwMjQwWjAYMRYwFAYD VQQDEw02OGY0N2YwMC00NjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwsV6bFr4l7NCK/omJX+Q1QOrxviiIICu0Uwopf/bHz/VYrEJkCXqhr3gASmK BevPxoC13qjzwzmYE4f19ayxLo5jgMnZmGSo0MvuTbCcFXAognPFsnKiDp5fn0tP WiBdrjkQ2UKU5V4fXw3srs5MLqIqFQfaLI/o88bLRynPmdEiyRQlSLvCW+05knnu kPu/W9AEKXMjlXF5Tdf2TfaGiTgpzcnUVnShFxQcEEvlAQrECCiRLyavKtsaJztm GINLxyUapNO2PBVqHm27Ze2CK450jCvxG0EcBjXkVQ+FdMjBF+5GW20LADgAy0+U Tv50CoEkIdRDtSi65Gaj4IG0XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO91RLdV W8cTVp49uD+UJ40IkfbvMB8GA1UdIwQYMBaAFGhFo1cHV+a/LASFrCF4m/9QBR6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAwQS9DQ0EzRUE5MjQ3 M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVyOHNCSVdzSVhpYl8xQUZI cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FFV2pWd2RYNXI4c0JJV3NJWGliXzFBRkhwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTAwQS9DQ0EzRUE5MjQ3M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVy OHNCSVdzSVhpYl8xQUZIcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6V6jHdurJSVUMcpOp1Jyu9DbN8ydHnMViX+7EqlOeMftV7z8rpgdE NosXP/NTq3DCcwWDjTLKCo8xsN4N7pHRO2CsX9gYjujZ9TrXDlBzvfurOQWtQzca YhtStV3GC+zMgPw+J13ZGaCLnb/d3k4iUbDOYjjBZpcb95aUBRabEn6wgcfUzjbQ aQ3GD8TX89mFSIRqAl2kZIdsVFtIMQ1eyJnrbnbgv9p8uJzUWBNAKkClc4pFuJdg ezEtYmLnOirmYt/wLB9/hhoStRqIeaL92dgJrTWgrEDe4hfR48Ht7yAIXx9ACBVg tYTVsS6rVFU6tQqpWElY9s0Noyk4y44c -----END CERTIFICATE-----Generated at Mon Oct 20 04:42:01 2025 by rpki-client