$ rpki-client -vvf rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft File: fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft (raw, json) Hash identifier: 1TbVJotEmGslEar0OVJegOG/nPub2ljEVfCJLqOjh6A= Subject key identifier: 49:34:3E:B6:43:D6:33:7D:07:5D:8C:82:E7:7D:89:98:CF:92:D1:54 Authority key identifier: 7D:73:EF:11:5B:02:C5:E0:10:23:84:7A:91:B0:B0:F0:78:B5:F0:2B Certificate issuer: /CN=A9152A4E/serialNumber=7D73EF115B02C5E01023847A91B0B0F078B5F02B Certificate serial: 0687 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft Manifest number: 0680 Signing time: Sun 19 Oct 2025 00:00:26 +0000 Manifest this update: Sun 19 Oct 2025 00:00:25 +0000 Manifest next update: Sun 26 Oct 2025 00:00:25 +0000 Files and hashes: 1: fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl (hash: XKFNNTc91Qiik+/umcfAYWwKQMY3L6zidyx7yI1pXlg=) 2: AB791BEE7BC711F0B0A56A74C4F9AE02.roa (hash: lK7bGVCygyPQRcWZjT3XlPriu2CyfUJlUxTwi2dzB50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1671 (0x687) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152A4E, serialNumber=7D73EF115B02C5E01023847A91B0B0F078B5F02B Validity Not Before: Oct 19 00:00:25 2025 GMT Not After : Oct 26 00:00:25 2025 GMT Subject: CN=68f42a19-3a4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:28:71:7a:21:0b:c0:c1:dd:0b:c3:7d:b8:30: a1:f9:0b:67:91:1d:12:a4:eb:a1:95:a5:df:9f:ce: 81:5e:b9:57:84:99:ed:4d:c9:3c:31:fc:2e:da:f8: 41:3b:d9:bb:1e:ed:44:3f:d5:74:bf:d6:26:59:d2: 96:02:89:94:8d:78:52:51:23:18:41:23:69:15:e9: c0:98:ee:92:0a:a4:02:ce:28:29:bf:ba:d0:36:d6: 35:8a:cb:f9:aa:f3:42:34:04:8e:86:8e:8b:0d:36: b0:ce:8b:ef:40:39:1f:f0:f8:72:ca:ca:e3:be:7b: d7:19:8d:e9:8f:9b:d4:33:f4:e7:24:5b:d9:34:a9: f5:dc:f3:0d:12:53:0e:98:9f:1d:25:c2:e6:6a:36: cb:d1:fe:73:9b:13:43:b3:92:54:aa:ae:11:0f:83: b4:6f:77:05:ae:47:c8:14:a9:c7:c0:2a:6a:f4:f4: a4:52:a5:2a:56:63:d4:dd:30:e2:f7:ab:cf:10:ae: 11:cd:2a:6b:09:39:ce:58:58:59:d5:92:dc:89:32: c7:2c:fb:0d:73:c7:c1:ab:a7:37:05:86:54:43:33: 83:57:7e:0b:bb:4f:2e:15:90:81:91:d1:23:17:28: 83:d3:88:4a:51:5e:6d:9c:67:9f:48:d0:f4:82:98: 3b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:34:3E:B6:43:D6:33:7D:07:5D:8C:82:E7:7D:89:98:CF:92:D1:54 X509v3 Authority Key Identifier: keyid:7D:73:EF:11:5B:02:C5:E0:10:23:84:7A:91:B0:B0:F0:78:B5:F0:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:a1:d1:7f:16:54:ee:ee:f9:54:4e:87:86:97:30:94:eb:f7: 5a:c8:12:57:b6:37:78:25:dc:62:18:0e:75:21:d9:23:33:e3: 32:9f:79:4a:1a:1c:20:02:a5:45:17:f9:e3:18:5d:c4:30:0a: 81:76:dc:a1:d8:9a:c9:33:80:99:48:06:11:80:66:02:1c:65: 33:7b:12:12:f8:e9:6c:ba:72:2b:6f:af:61:b8:24:05:9e:d3: 1d:92:ea:90:9a:d3:c9:63:5d:2c:57:86:7c:ed:ee:04:7c:30: d1:30:6a:46:70:0e:4a:14:20:52:3b:98:ec:e6:4b:70:f2:ae: b3:e5:74:f3:90:bc:78:fa:23:50:09:c0:a8:65:46:37:80:8b: a9:92:59:42:0f:09:e8:bb:ab:7b:71:66:8e:79:9f:34:24:41: 40:27:0f:87:59:97:c0:35:c3:ce:b0:37:c1:ea:3f:52:be:cf: cd:1a:08:08:2a:e9:36:34:55:fc:56:63:79:fa:77:a6:c6:7f: 04:30:f8:af:93:de:17:90:f7:5b:af:65:74:2a:53:5e:a6:1e: 6c:76:31:fc:bc:58:81:2b:c3:cf:0f:ee:c7:7f:65:66:14:58: b9:36:7d:ea:38:54:d2:84:22:df:f6:1e:9b:0e:77:e6:a4:8b: c6:5e:08:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJBNEUxMTAvBgNVBAUTKDdENzNFRjExNUIwMkM1RTAxMDIzODQ3QTkxQjBCMEYw NzhCNUYwMkIwHhcNMjUxMDE5MDAwMDI1WhcNMjUxMDI2MDAwMDI1WjAYMRYwFAYD VQQDEw02OGY0MmExOS0zYTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxChxeiELwMHdC8N9uDCh+QtnkR0SpOuhlaXfn86BXrlXhJntTck8Mfwu2vhB O9m7Hu1EP9V0v9YmWdKWAomUjXhSUSMYQSNpFenAmO6SCqQCzigpv7rQNtY1isv5 qvNCNASOho6LDTawzovvQDkf8PhyysrjvnvXGY3pj5vUM/TnJFvZNKn13PMNElMO mJ8dJcLmajbL0f5zmxNDs5JUqq4RD4O0b3cFrkfIFKnHwCpq9PSkUqUqVmPU3TDi 96vPEK4RzSprCTnOWFhZ1ZLciTLHLPsNc8fBq6c3BYZUQzODV34Lu08uFZCBkdEj FyiD04hKUV5tnGefSND0gpg7EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEk0PrZD 1jN9B12Mgud9iZjPktFUMB8GA1UdIwQYMBaAFH1z7xFbAsXgECOEepGwsPB4tfAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkE0RS9FM0UwODQ2NDk1 QkIxMUVCOTQ5RkU1MzVDNEY5QUUwMi9mWFB2RVZzQ3hlQVFJNFI2a2JDdzhIaTE4 Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZYUHZFVnNDeGVBUUk0UjZrYkN3OEhpMThDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkE0RS9FM0UwODQ2NDk1QkIxMUVCOTQ5RkU1MzVDNEY5QUUwMi9mWFB2RVZzQ3hl QVFJNFI2a2JDdzhIaTE4Q3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVodF/FlTu7vlUToeGlzCU6/dayBJXtjd4JdxiGA51IdkjM+Myn3lK GhwgAqVFF/njGF3EMAqBdtyh2JrJM4CZSAYRgGYCHGUzexIS+OlsunIrb69huCQF ntMdkuqQmtPJY10sV4Z87e4EfDDRMGpGcA5KFCBSO5js5ktw8q6z5XTzkLx4+iNQ CcCoZUY3gIupkllCDwnou6t7cWaOeZ80JEFAJw+HWZfANcPOsDfB6j9Svs/NGggI Kuk2NFX8VmN5+nemxn8EMPivk94XkPdbr2V0KlNeph5sdjH8vFiBK8PPD+7Hf2Vm FFi5Nn3qOFTShCLf9h6bDnfmpIvGXgjt -----END CERTIFICATE-----Generated at Mon Oct 20 23:35:21 2025 by rpki-client