$ rpki-client -vvf rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft File: 1fozYzT5muNj6lhn0o6KUCMeQiA.mft (raw, json) Hash identifier: rH00I+JLUPVJMCqn1O+yqiFnWpNsc3FfwHjuEJL0rdQ= Subject key identifier: ED:26:F5:A2:17:56:0E:D4:7C:47:0D:3A:EF:72:69:04:6F:3B:5C:0F Authority key identifier: D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 Certificate issuer: /CN=A915F2B8/serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Certificate serial: 01E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft Manifest number: 01E1 Signing time: Sun 19 Oct 2025 05:05:39 +0000 Manifest this update: Sun 19 Oct 2025 05:05:39 +0000 Manifest next update: Sun 26 Oct 2025 05:05:39 +0000 Files and hashes: 1: 1fozYzT5muNj6lhn0o6KUCMeQiA.crl (hash: Dm67avouKA35ubj/d9+eO+150zoe/OdsR+yfQFvXip8=) 2: 207C45B0CC2F11EDABE25F72C4F9AE02.roa (hash: 445y7dnFbGIJcED/nA18M8HZ1X9DaCKTToZbs8yrxpI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:05:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F2B8, serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Validity Not Before: Oct 19 05:05:39 2025 GMT Not After : Oct 26 05:05:39 2025 GMT Subject: CN=68f471a3-f5e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:e0:bc:a5:12:4f:82:2e:3a:cc:4f:0f:f4:fa: f4:85:26:ce:4a:6c:60:51:f2:e5:f2:ae:da:cb:e2: 28:77:e5:a6:69:2f:20:83:f8:00:53:8a:bb:ce:08: 25:dc:f4:a9:dd:a2:fb:ce:d6:27:0c:23:70:4c:5c: 5e:b6:d5:d5:54:a4:8b:45:4d:f6:a2:c2:eb:87:34: a3:1a:e4:36:03:06:32:95:cc:d4:21:d8:6e:65:57: 8c:7f:48:1b:df:35:07:08:4a:49:1b:12:61:3c:78: 9f:42:e9:07:bc:b7:85:dc:2e:2b:69:b6:e4:c4:e2: ef:0c:89:22:5d:2a:64:03:b1:3b:a5:3b:af:3f:f1: b3:ad:c4:0e:88:8e:4e:18:0f:e1:01:7f:cf:e3:a0: 3b:e8:90:a5:a5:25:17:69:f8:e4:7d:05:29:7e:a8: 8a:4a:0d:b9:a2:76:79:5b:e5:c7:7c:68:79:d6:11: b3:fa:d1:a5:3e:93:8f:f1:e4:80:3a:11:65:a0:25: 0f:ed:aa:32:4a:e3:41:f7:c2:56:8e:c8:0f:f7:62: af:b7:3f:87:d2:36:b5:e7:df:10:4e:ac:8d:2d:76: 83:98:33:6a:cb:cf:06:de:49:64:4e:00:ef:bd:d9: ba:12:e9:92:de:c6:ee:b2:e3:2f:08:d5:57:0d:d2: fa:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:26:F5:A2:17:56:0E:D4:7C:47:0D:3A:EF:72:69:04:6F:3B:5C:0F X509v3 Authority Key Identifier: keyid:D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:51:25:74:38:15:a8:0f:f6:0a:69:64:e7:3c:45:8b:c8:fc: 1a:47:e1:d4:37:3c:a3:17:26:28:99:22:a7:15:07:0c:7f:a5: a7:cc:d8:27:c6:d1:32:4c:c2:e9:ce:fe:9d:8a:14:53:72:33: 0b:86:e8:04:b4:bf:82:81:ad:5d:fc:39:a6:44:49:37:e2:e0: cf:92:d3:23:c1:f2:f5:54:6a:30:0f:be:64:49:a8:ea:59:61: aa:8e:04:3b:52:27:7c:34:15:5a:61:f4:fe:7c:32:98:fc:39: 74:c2:da:85:e3:7e:c9:6d:7e:da:9d:18:b7:f6:39:ad:19:a3: a4:d2:bf:95:ea:e8:75:d6:b2:20:d0:14:8f:8d:02:65:3d:0f: de:61:62:d3:a0:dc:67:34:f7:c3:87:5a:c2:a9:d8:c7:ba:72: 4e:df:cf:01:19:83:82:dc:6e:ac:9c:d4:84:03:ed:af:e8:77: aa:36:bf:3c:78:8d:05:96:7b:f7:43:e7:59:06:17:43:90:26: c7:47:a7:89:78:10:03:86:8c:92:d5:ab:73:ac:55:35:37:48: d0:7f:e0:8f:db:24:6a:ba:72:8a:d4:01:3b:91:b0:7e:de:26: 1a:14:79:32:cf:f1:ae:5e:2c:1d:ee:a6:8f:2f:7f:dc:2d:35: c9:ea:b9:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUYyQjgxMTAvBgNVBAUTKEQ1RkEzMzYzMzRGOTlBRTM2M0VBNTg2N0QyOEU4QTUw MjMxRTQyMjAwHhcNMjUxMDE5MDUwNTM5WhcNMjUxMDI2MDUwNTM5WjAYMRYwFAYD VQQDEw02OGY0NzFhMy1mNWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8eC8pRJPgi46zE8P9Pr0hSbOSmxgUfLl8q7ay+Iod+WmaS8gg/gAU4q7zggl 3PSp3aL7ztYnDCNwTFxettXVVKSLRU32osLrhzSjGuQ2AwYylczUIdhuZVeMf0gb 3zUHCEpJGxJhPHifQukHvLeF3C4rabbkxOLvDIkiXSpkA7E7pTuvP/GzrcQOiI5O GA/hAX/P46A76JClpSUXafjkfQUpfqiKSg25onZ5W+XHfGh51hGz+tGlPpOP8eSA OhFloCUP7aoySuNB98JWjsgP92Kvtz+H0ja1598QTqyNLXaDmDNqy88G3klkTgDv vdm6EumS3sbusuMvCNVXDdL6nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO0m9aIX Vg7UfEcNOu9yaQRvO1wPMB8GA1UdIwQYMBaAFNX6M2M0+ZrjY+pYZ9KOilAjHkIg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjJCOC8yRjE3NjA4QUND MkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11Tmo2bGhuMG82S1VDTWVR aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmb3pZelQ1bXVOajZsaG4wbzZLVUNNZVFpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjJCOC8yRjE3NjA4QUNDMkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11 Tmo2bGhuMG82S1VDTWVRaUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpUSV0OBWoD/YKaWTnPEWLyPwaR+HUNzyjFyYomSKnFQcMf6WnzNgn xtEyTMLpzv6dihRTcjMLhugEtL+Cga1d/DmmREk34uDPktMjwfL1VGowD75kSajq WWGqjgQ7Uid8NBVaYfT+fDKY/Dl0wtqF437JbX7anRi39jmtGaOk0r+V6uh11rIg 0BSPjQJlPQ/eYWLToNxnNPfDh1rCqdjHunJO388BGYOC3G6snNSEA+2v6HeqNr88 eI0Flnv3Q+dZBhdDkCbHR6eJeBADhoyS1atzrFU1N0jQf+CP2yRqunKK1AE7kbB+ 3iYaFHkyz/GuXiwd7qaPL3/cLTXJ6rlt -----END CERTIFICATE-----Generated at Mon Oct 20 21:42:22 2025 by rpki-client