$ rpki-client -vvf rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft File: AIsjUb6f1m04sRBQZ5c09E-l2X0.mft (raw, json) Hash identifier: BpYdZ5E6EfFnHTWnju8EYIt4GBnflAwPEP3d4hvPe9E= Subject key identifier: 41:88:5A:20:D4:64:F5:B0:F3:38:5F:94:8A:F5:8D:F2:F4:D3:D3:7C Authority key identifier: 00:8B:23:51:BE:9F:D6:6D:38:B1:10:50:67:97:34:F4:4F:A5:D9:7D Certificate issuer: /CN=A914B0D8/serialNumber=008B2351BE9FD66D38B11050679734F44FA5D97D Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft Manifest number: 011B Signing time: Sun 19 Oct 2025 07:38:58 +0000 Manifest this update: Sun 19 Oct 2025 07:38:57 +0000 Manifest next update: Sun 26 Oct 2025 07:38:57 +0000 Files and hashes: 1: AIsjUb6f1m04sRBQZ5c09E-l2X0.crl (hash: TQDKU71oN5eAc7l9Fe6Rx1yXAC0F2tRMgYgUIAaQOzk=) 2: 66E93DA2FB1111EE81D7643BC4F9AE02.roa (hash: 8wMwW5uNjWkG/EYhzvD28CGT7P5U8FJODoDJkkfTgvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.crl rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B0D8, serialNumber=008B2351BE9FD66D38B11050679734F44FA5D97D Validity Not Before: Oct 19 07:38:57 2025 GMT Not After : Oct 26 07:38:57 2025 GMT Subject: CN=68f49592-5274 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:41:83:f3:32:0d:67:0b:77:e5:9e:76:48:1c: 63:c8:80:08:e4:fb:a3:ea:25:96:37:0b:6d:06:50: e6:aa:c3:31:09:ee:b7:1b:c7:6c:d6:c8:0b:c5:c1: 26:06:0e:25:8a:52:88:51:95:d5:c6:66:b3:4b:17: 75:4d:13:45:8f:ae:c5:3d:69:a9:8d:fc:8b:67:80: 04:e7:fb:7b:da:0b:ff:b0:5e:39:6e:69:c9:ac:b2: ec:fe:4f:88:08:5e:b1:27:7d:32:1f:d8:1c:9e:98: 37:ab:c1:4e:ee:02:a3:76:ab:94:0e:cc:58:cd:5b: cc:37:5a:fa:b6:5b:1a:54:34:13:7a:b3:ef:5b:62: fa:fb:6f:72:77:54:9c:99:41:53:46:56:87:9c:18: 3f:39:bb:b7:82:92:4d:b0:75:8c:69:7c:87:ac:94: 9d:31:b5:b7:14:81:d6:79:d5:0a:e6:1a:12:7d:67: d1:38:8c:a6:e5:6e:58:4c:27:2d:3f:eb:3e:aa:f6: 5d:85:35:14:70:1b:3a:10:c8:f0:34:1e:bb:98:0c: d3:49:d8:9e:22:ba:d0:43:65:d8:5d:d7:ea:fe:ac: b8:36:5f:d5:c3:b6:12:42:8f:ea:4e:96:68:13:50: 28:a3:86:44:da:33:84:06:72:59:7e:ef:2f:63:06: 28:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:88:5A:20:D4:64:F5:B0:F3:38:5F:94:8A:F5:8D:F2:F4:D3:D3:7C X509v3 Authority Key Identifier: keyid:00:8B:23:51:BE:9F:D6:6D:38:B1:10:50:67:97:34:F4:4F:A5:D9:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:43:7f:01:6d:66:11:5a:0d:d3:1b:8f:12:42:3e:9c:3b:e1: f1:c7:d3:04:00:42:59:5a:0d:1b:c8:00:5f:b8:26:ac:16:c2: 50:27:54:5e:3d:48:55:e6:64:72:ab:3f:d9:d5:19:90:05:a7: 3a:ad:c5:9f:78:1f:b4:20:92:49:fd:c0:ef:6a:d1:2e:3a:c5: 80:9c:7b:6f:37:3f:a7:db:d0:93:40:60:6f:f5:cb:3a:10:46: 1e:c5:c6:5a:09:67:12:ba:66:e4:c7:75:48:3e:e9:0d:40:16: a9:af:79:e8:7b:34:2d:49:fe:5f:0c:d7:d3:38:76:4a:b9:70: 45:f7:3f:82:75:e0:c9:6a:75:af:da:89:bf:89:41:22:90:21: b3:90:30:76:d6:1b:25:aa:64:58:97:64:0a:ea:89:d6:df:c5: 13:c5:20:3b:f4:4a:f9:c4:c9:b4:19:a5:0c:9e:7e:24:57:eb: 5f:b5:82:92:bc:25:a0:4e:b3:43:f1:20:6a:25:6d:eb:e4:bb: 34:a7:11:bc:b1:f4:b4:68:2b:1c:4c:62:f8:ea:75:1f:0b:b7: 69:3e:43:0d:d6:13:29:8f:41:d6:50:63:7f:33:ae:bc:a9:50: 63:d0:e8:7a:02:16:aa:09:59:d3:0d:bd:6e:0b:e7:d3:cf:8c: 4a:3a:ba:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIwRDgxMTAvBgNVBAUTKDAwOEIyMzUxQkU5RkQ2NkQzOEIxMTA1MDY3OTczNEY0 NEZBNUQ5N0QwHhcNMjUxMDE5MDczODU3WhcNMjUxMDI2MDczODU3WjAYMRYwFAYD VQQDEw02OGY0OTU5Mi01Mjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+EGD8zINZwt35Z52SBxjyIAI5Puj6iWWNwttBlDmqsMxCe63G8ds1sgLxcEm Bg4lilKIUZXVxmazSxd1TRNFj67FPWmpjfyLZ4AE5/t72gv/sF45bmnJrLLs/k+I CF6xJ30yH9gcnpg3q8FO7gKjdquUDsxYzVvMN1r6tlsaVDQTerPvW2L6+29yd1Sc mUFTRlaHnBg/Obu3gpJNsHWMaXyHrJSdMbW3FIHWedUK5hoSfWfROIym5W5YTCct P+s+qvZdhTUUcBs6EMjwNB67mAzTSdieIrrQQ2XYXdfq/qy4Nl/Vw7YSQo/qTpZo E1Aoo4ZE2jOEBnJZfu8vYwYo/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEGIWiDU ZPWw8zhflIr1jfL009N8MB8GA1UdIwQYMBaAFACLI1G+n9ZtOLEQUGeXNPRPpdl9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjBEOC8wN0FBQkNEQUZC MTExMUVFOTEyMzM5MUJDNEY5QUUwMi9BSXNqVWI2ZjFtMDRzUkJRWjVjMDlFLWwy WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FJc2pVYjZmMW0wNHNSQlFaNWMwOUUtbDJYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjBEOC8wN0FBQkNEQUZCMTExMUVFOTEyMzM5MUJDNEY5QUUwMi9BSXNqVWI2ZjFt MDRzUkJRWjVjMDlFLWwyWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxQ38BbWYRWg3TG48SQj6cO+Hxx9MEAEJZWg0byABfuCasFsJQJ1Re PUhV5mRyqz/Z1RmQBac6rcWfeB+0IJJJ/cDvatEuOsWAnHtvNz+n29CTQGBv9cs6 EEYexcZaCWcSumbkx3VIPukNQBapr3noezQtSf5fDNfTOHZKuXBF9z+CdeDJanWv 2om/iUEikCGzkDB21hslqmRYl2QK6onW38UTxSA79Er5xMm0GaUMnn4kV+tftYKS vCWgTrND8SBqJW3r5Ls0pxG8sfS0aCscTGL46nUfC7dpPkMN1hMpj0HWUGN/M668 qVBj0Oh6AhaqCVnTDb1uC+fTz4xKOroL -----END CERTIFICATE-----Generated at Mon Oct 20 10:47:55 2025 by rpki-client