$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft File: lDrZvGF3q4wvjoExwUpUZexClU8.mft (raw, json) Hash identifier: 1X6Qy/BTVB/IjQjQA9MFBNtVfvBxXMSgN3271SHOoaw= Subject key identifier: EA:FD:D5:F2:12:96:8F:A7:5B:8F:9E:10:C1:F7:23:BD:7B:71:4E:E4 Authority key identifier: 94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F Certificate issuer: /CN=A9158568/serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Certificate serial: 017C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft Manifest number: 0178 Signing time: Sat 18 Oct 2025 19:29:28 +0000 Manifest this update: Sat 18 Oct 2025 19:29:27 +0000 Manifest next update: Sat 25 Oct 2025 19:29:27 +0000 Files and hashes: 1: lDrZvGF3q4wvjoExwUpUZexClU8.crl (hash: zMVYdDgceLAloKEJiCjoIHdjH+pDxsPotYwxE8Mpaho=) 2: 203DB338782111EEAFDDBD86C4F9AE02.roa (hash: wX9s/s7jxKKJJyFHtP8kJqChB04GKqVy3xgEjOBVe9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Validity Not Before: Oct 18 19:29:27 2025 GMT Not After : Oct 25 19:29:27 2025 GMT Subject: CN=68f3ea98-96fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:66:d2:1a:e8:6c:d2:18:1c:b4:fb:7d:15:77: d3:41:43:43:67:95:0a:e6:6a:fa:9d:cb:3e:34:04: 1b:e2:dc:79:84:72:3b:05:a4:62:e3:83:4c:ce:72: 39:0e:dd:48:7c:ac:2e:29:7a:61:e6:be:e7:90:7c: e3:61:40:63:23:a1:7c:cd:34:46:24:15:e4:4c:0d: ce:18:c6:86:ad:c8:8e:94:8f:89:4d:ee:1d:b5:51: af:f7:02:12:57:6a:1b:9a:3f:57:ca:76:71:64:7d: 2f:97:51:93:89:8d:7d:0b:e2:25:4d:55:87:78:f8: 53:7b:5b:bc:8b:28:f3:b2:a3:6e:e8:0a:7d:4a:88: ff:2e:b4:37:1c:6d:52:d9:ef:3b:d5:39:46:b6:21: f5:c9:5e:16:6a:e8:f8:9e:a6:d6:38:9d:4b:d5:1a: f8:97:e1:7a:e1:3e:e0:4b:13:0e:ab:24:05:2e:ce: f3:c6:23:69:4d:69:83:e3:45:08:7f:1a:6c:d6:01: 29:f7:3f:23:33:4b:da:51:5b:5e:0d:8c:b2:40:1b: a4:1d:10:c1:bf:ea:81:ca:1b:d7:2d:17:a9:89:1e: 66:1e:1b:6f:f2:df:6a:ae:99:8b:02:e0:9b:65:5c: 51:59:a4:c3:a4:09:bc:f6:38:25:d0:f3:d1:33:ff: 48:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:FD:D5:F2:12:96:8F:A7:5B:8F:9E:10:C1:F7:23:BD:7B:71:4E:E4 X509v3 Authority Key Identifier: keyid:94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:4d:74:0a:c3:1d:a3:7b:bf:36:ee:1e:8c:ed:18:ad:a0:fc: 58:e9:50:ac:44:9d:d6:f9:47:6d:2d:fc:b7:c0:f7:fa:33:bf: b3:3d:05:8c:81:09:71:0f:8d:36:72:5e:ff:70:8a:3a:fa:8f: 4c:fb:60:f0:43:27:ce:d8:57:5b:c1:6d:59:8b:dd:3c:33:f5: 05:74:71:e7:4f:c7:d2:96:9c:3a:25:4c:c3:91:80:f6:cc:43: 8b:8d:9d:06:95:75:54:a8:14:25:85:98:91:aa:9e:64:3a:0b: 8c:82:bc:34:97:fb:82:79:b6:95:5c:f5:22:f6:cf:46:82:c4: 24:76:a7:d5:8c:a5:66:40:02:9f:81:98:7f:dd:12:80:0e:75: 2a:f7:d7:2d:14:5d:cd:d6:ac:ca:9f:e7:83:34:f3:6c:4d:de: a5:9b:f3:38:20:c9:91:8b:83:30:da:11:20:f6:36:f0:a9:c4: 01:7f:95:cb:47:77:d8:a0:67:4d:4e:13:bc:88:2e:ad:13:21: 8c:8a:a8:94:6a:a8:da:cf:88:53:8e:92:cd:49:59:53:0c:96: 64:e6:2e:cd:8a:a1:bf:71:41:a0:39:22:85:cf:e5:1b:c2:a7: 28:9e:02:ba:dc:e3:e9:34:c8:ac:06:63:ad:f9:23:cc:7f:ed: 7d:c0:d0:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKDk0M0FEOUJDNjE3N0FCOEMyRjhFODEzMUMxNEE1NDY1 RUM0Mjk1NEYwHhcNMjUxMDE4MTkyOTI3WhcNMjUxMDI1MTkyOTI3WjAYMRYwFAYD VQQDEw02OGYzZWE5OC05NmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2bSGuhs0hgctPt9FXfTQUNDZ5UK5mr6ncs+NAQb4tx5hHI7BaRi44NMznI5 Dt1IfKwuKXph5r7nkHzjYUBjI6F8zTRGJBXkTA3OGMaGrciOlI+JTe4dtVGv9wIS V2obmj9XynZxZH0vl1GTiY19C+IlTVWHePhTe1u8iyjzsqNu6Ap9Soj/LrQ3HG1S 2e871TlGtiH1yV4Wauj4nqbWOJ1L1Rr4l+F64T7gSxMOqyQFLs7zxiNpTWmD40UI fxps1gEp9z8jM0vaUVteDYyyQBukHRDBv+qByhvXLRepiR5mHhtv8t9qrpmLAuCb ZVxRWaTDpAm89jgl0PPRM/9IswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOr91fIS lo+nW4+eEMH3I717cU7kMB8GA1UdIwQYMBaAFJQ62bxhd6uML46BMcFKVGXsQpVP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC8zNjE4QUI2RTcy QTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0d3Zqb0V4d1VwVVpleENs VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xEclp2R0YzcTR3dmpvRXh3VXBVWmV4Q2xVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC8zNjE4QUI2RTcyQTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0 d3Zqb0V4d1VwVVpleENsVTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcTXQKwx2je7827h6M7RitoPxY6VCsRJ3W+UdtLfy3wPf6M7+zPQWM gQlxD402cl7/cIo6+o9M+2DwQyfO2FdbwW1Zi908M/UFdHHnT8fSlpw6JUzDkYD2 zEOLjZ0GlXVUqBQlhZiRqp5kOguMgrw0l/uCebaVXPUi9s9GgsQkdqfVjKVmQAKf gZh/3RKADnUq99ctFF3N1qzKn+eDNPNsTd6lm/M4IMmRi4Mw2hEg9jbwqcQBf5XL R3fYoGdNThO8iC6tEyGMiqiUaqjaz4hTjpLNSVlTDJZk5i7NiqG/cUGgOSKFz+Ub wqcongK63OPpNMisBmOt+SPMf+19wNBQ -----END CERTIFICATE-----Generated at Mon Oct 20 13:41:26 2025 by rpki-client