$ rpki-client -vvf rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft File: 1FLGfvaHRDivqZOoStCrwYUWkhs.mft (raw, json) Hash identifier: VTms8GwxveoUht6cblrKglyOP4vIR5zne1Axr2jFb6w= Subject key identifier: 7A:E8:54:A4:31:7B:76:A1:7F:82:DB:96:C8:10:EB:0E:38:CC:C1:9F Authority key identifier: D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B Certificate issuer: /CN=A915FD27/serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Certificate serial: 026A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft Manifest number: 0263 Signing time: Sun 19 Oct 2025 03:58:06 +0000 Manifest this update: Sun 19 Oct 2025 03:58:06 +0000 Manifest next update: Sun 26 Oct 2025 03:58:06 +0000 Files and hashes: 1: 1FLGfvaHRDivqZOoStCrwYUWkhs.crl (hash: wadTpdvdh4XU3RKiAQgiS5LfeqUFBTVKKrtKGUOu/8g=) 2: 9BDA59F69C8C11F0A27C535EC4F9AE02.roa (hash: tcpEfQimbgGgCKxs43ap0j00HaFFUo0cjpbDGWWFteI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:58:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 618 (0x26a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FD27, serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Validity Not Before: Oct 19 03:58:06 2025 GMT Not After : Oct 26 03:58:06 2025 GMT Subject: CN=68f461ce-b248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:84:be:79:6e:72:03:a2:06:b0:fd:f3:fa:56: 10:bf:24:91:d0:ed:76:f8:3b:9b:f9:58:8f:52:d2: cc:bc:5f:97:18:84:42:2f:93:16:a2:8a:9b:b8:78: 7c:08:13:7c:7f:e7:8f:18:59:ca:72:3e:2e:f1:b5: 74:69:77:2c:69:c8:4c:32:fa:13:d6:50:95:57:4e: e3:ef:b3:cc:95:e6:3b:e7:a2:83:2c:41:a4:2a:00: ab:64:93:f8:ba:3e:ac:8d:64:32:37:54:21:2f:c0: 11:79:30:59:1d:a6:da:3d:ac:23:30:ba:3b:65:99: 59:73:43:bb:aa:b2:dd:b2:a7:b8:0e:ab:bc:7f:aa: 4b:44:7f:f0:b1:de:39:1a:e5:d0:ac:cb:76:4c:a5: b8:b7:97:97:51:5a:09:99:1b:42:f9:0a:bc:87:5f: 2a:58:6f:30:ef:ce:05:17:9e:8f:17:1d:50:b1:df: c5:0c:c4:9a:7c:52:27:00:8f:09:c7:22:df:bf:71: b9:28:8f:cb:65:95:f8:79:e0:36:91:85:76:56:bf: d0:b9:52:3c:8f:a4:e1:d7:19:90:b1:8b:5d:35:d0: 75:86:14:66:f2:a6:69:83:84:32:64:04:e2:25:ca: 04:0d:7e:3c:65:3e:62:32:87:53:06:c4:48:c1:ac: 5a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:E8:54:A4:31:7B:76:A1:7F:82:DB:96:C8:10:EB:0E:38:CC:C1:9F X509v3 Authority Key Identifier: keyid:D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:fd:f4:26:d6:38:32:6f:45:b0:55:9e:fd:dd:ad:e0:13:08: d2:3f:88:20:f7:7c:c7:73:48:41:05:8b:64:f2:e5:aa:75:5d: 4c:a6:14:3e:23:24:f0:8d:3c:f9:2f:b6:25:e0:65:a4:36:7f: 74:8a:e3:4f:12:2b:31:0d:34:1e:09:c5:4e:33:d7:8a:b2:22: 1d:b3:4c:1b:15:e1:44:42:bc:5a:a3:32:b4:27:d3:ba:b4:a4: 18:b0:f2:ed:86:24:3a:84:e0:5e:82:63:81:ef:9a:66:c0:45: 25:e0:20:6f:91:9b:65:5b:e9:5f:31:ad:42:72:38:8e:dd:fc: 93:b1:de:45:8e:8a:52:e3:17:13:b2:a2:76:b9:1a:c1:84:0c: 78:26:f6:9e:08:49:97:44:e0:42:96:2d:b8:9c:10:b8:9f:97: d4:0f:83:06:45:2a:45:7c:d1:19:2e:ac:6c:86:37:82:a9:8f: 3e:d1:a1:d4:fa:61:bb:8c:08:47:40:f9:1d:2e:a4:6b:01:18: 21:2b:00:34:b9:41:4f:c7:cb:2f:71:c7:62:2e:09:5a:d3:81: 11:c0:7a:9e:3b:20:43:38:51:58:b0:3b:cf:32:9b:f3:8a:84: 2e:7e:3b:a6:35:98:ce:02:f0:49:33:72:92:79:23:ec:94:18: 28:45:4d:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZEMjcxMTAvBgNVBAUTKEQ0NTJDNjdFRjY4NzQ0MzhBRkE5OTNBODRBRDBBQkMx ODUxNjkyMUIwHhcNMjUxMDE5MDM1ODA2WhcNMjUxMDI2MDM1ODA2WjAYMRYwFAYD VQQDEw02OGY0NjFjZS1iMjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxoS+eW5yA6IGsP3z+lYQvySR0O12+Dub+ViPUtLMvF+XGIRCL5MWooqbuHh8 CBN8f+ePGFnKcj4u8bV0aXcsachMMvoT1lCVV07j77PMleY756KDLEGkKgCrZJP4 uj6sjWQyN1QhL8AReTBZHabaPawjMLo7ZZlZc0O7qrLdsqe4Dqu8f6pLRH/wsd45 GuXQrMt2TKW4t5eXUVoJmRtC+Qq8h18qWG8w784FF56PFx1Qsd/FDMSafFInAI8J xyLfv3G5KI/LZZX4eeA2kYV2Vr/QuVI8j6Th1xmQsYtdNdB1hhRm8qZpg4QyZATi JcoEDX48ZT5iModTBsRIwaxaBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHroVKQx e3ahf4LblsgQ6w44zMGfMB8GA1UdIwQYMBaAFNRSxn72h0Q4r6mTqErQq8GFFpIb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkQyNy9BODBEQjM4MjM1 RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJEaXZxWk9vU3RDcndZVVdr aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGTEdmdmFIUkRpdnFaT29TdENyd1lVV2tocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkQyNy9BODBEQjM4MjM1RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJE aXZxWk9vU3RDcndZVVdraHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn/fQm1jgyb0WwVZ793a3gEwjSP4gg93zHc0hBBYtk8uWqdV1MphQ+ IyTwjTz5L7Yl4GWkNn90iuNPEisxDTQeCcVOM9eKsiIds0wbFeFEQrxaozK0J9O6 tKQYsPLthiQ6hOBegmOB75pmwEUl4CBvkZtlW+lfMa1CcjiO3fyTsd5FjopS4xcT sqJ2uRrBhAx4JvaeCEmXROBCli24nBC4n5fUD4MGRSpFfNEZLqxshjeCqY8+0aHU +mG7jAhHQPkdLqRrARghKwA0uUFPx8svccdiLgla04ERwHqeOyBDOFFYsDvPMpvz ioQufjumNZjOAvBJM3KSeSPslBgoRU1i -----END CERTIFICATE-----Generated at Tue Oct 21 01:01:24 2025 by rpki-client