$ rpki-client -vvf rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft File: -AoX4Y4_OhL3UjNnLorGf4DlL98.mft (raw, json) Hash identifier: TLdaUdiueFNx84ZWyrwNRq0TpoKt4bRLHwo9hQOrTXA= Subject key identifier: A1:3C:43:36:5C:29:20:4C:B5:8E:40:5B:CF:5F:7E:2F:DA:78:C6:D5 Authority key identifier: F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF Certificate issuer: /CN=A916423B/serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Certificate serial: 01BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft Manifest number: 01B7 Signing time: Sun 19 Oct 2025 05:34:21 +0000 Manifest this update: Sun 19 Oct 2025 05:34:21 +0000 Manifest next update: Sun 26 Oct 2025 05:34:21 +0000 Files and hashes: 1: -AoX4Y4_OhL3UjNnLorGf4DlL98.crl (hash: +c0nvohbcyA064IZIQoLSBDZZicIU5CSy/HYqhHM3R8=) 2: 593888C40AB811EE97CC7A32C4F9AE02.roa (hash: Hgvy/rbsLEaWAnrB/PMoMX/RB2XdkdZAeykYpDBMbDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916423B, serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Validity Not Before: Oct 19 05:34:21 2025 GMT Not After : Oct 26 05:34:21 2025 GMT Subject: CN=68f4785d-c160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e2:59:5a:79:d3:99:6e:6d:33:ef:0b:0e:a8: 1d:6e:31:4e:a0:fd:ec:c3:ea:ce:2f:13:66:7d:22: 5f:e7:55:b0:b0:98:93:9d:31:75:23:dc:ca:71:6f: 0c:9d:b2:94:33:3f:2d:d5:5f:bd:11:2d:31:26:76: 81:92:41:7c:68:9e:bf:35:89:f4:3e:63:22:5d:f9: 9b:b0:bd:2f:b0:1a:e0:1d:99:47:a4:ff:65:41:e9: c3:bc:7d:4f:38:af:c5:41:93:80:b0:64:b6:8b:62: 75:e0:55:fc:41:1f:c0:b0:8a:78:1c:60:70:49:f9: 42:6f:b3:f0:cf:30:6a:44:ba:27:02:7e:f4:9c:18: ef:2f:2e:76:c5:5d:2f:0a:62:cb:9b:98:b0:bb:ba: 84:e3:b2:ab:03:1d:d0:cc:e0:56:6e:87:a5:dd:8a: 42:e4:79:75:4a:7e:23:00:58:d7:8e:39:47:0f:d7: a5:c8:b4:5b:57:d4:14:f0:d1:55:b0:d5:d1:07:51: 84:f5:ce:cf:f9:02:1b:ae:8f:e1:0a:bd:d7:58:de: aa:57:be:1f:3b:09:88:ed:88:99:df:47:32:ba:2f: 9b:55:7e:7a:bb:d2:09:4d:db:8f:d0:8c:a4:63:5e: c3:22:12:5a:77:41:05:f1:fb:c8:9d:67:fc:86:70: 22:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:3C:43:36:5C:29:20:4C:B5:8E:40:5B:CF:5F:7E:2F:DA:78:C6:D5 X509v3 Authority Key Identifier: keyid:F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:0b:0f:20:73:ed:5f:ce:31:92:cc:bd:c1:66:3d:45:f9:6d: 08:b0:ed:6f:ab:b1:74:ff:fc:39:9a:e6:e6:11:05:a4:c6:9b: ff:cb:83:d1:1d:0b:62:31:d9:41:89:41:1c:08:80:fd:5e:ab: 1c:f1:3b:6b:c6:96:17:78:c2:c2:e6:e0:d2:57:a5:82:b0:e3: 9b:de:3d:30:c7:f1:2d:26:64:25:be:c9:f2:c8:ce:d6:30:75: 85:8f:f8:cd:04:83:7c:ef:2b:c0:b1:44:55:b9:b7:d1:d3:82: aa:6b:45:31:0c:94:ef:22:34:b5:75:86:0e:75:fc:25:57:65: 3e:88:0e:70:f6:13:d7:73:38:e1:64:02:af:6b:46:ea:cb:b2: 63:aa:69:2a:e7:f3:d2:8a:56:d0:0e:d9:e3:2a:55:66:71:c5: 72:2b:6c:17:34:20:68:a7:a1:1e:ec:41:c7:c9:ae:6c:75:1c: 03:da:cf:08:4f:61:65:71:19:b4:80:0a:e0:84:33:c5:4b:27: 38:62:07:f6:76:5e:78:d9:a1:70:91:38:c4:58:a9:e5:3b:b8: f0:bc:08:ea:28:ba:ba:53:71:44:3b:2b:55:d2:db:8b:22:ec: 75:03:19:86:0e:fd:0c:fc:00:c2:62:26:16:04:72:bc:2a:3a: dd:9f:1f:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQyM0IxMTAvBgNVBAUTKEY4MEExN0UxOEUzRjNBMTJGNzUyMzM2NzJFOEFDNjdG ODBFNTJGREYwHhcNMjUxMDE5MDUzNDIxWhcNMjUxMDI2MDUzNDIxWjAYMRYwFAYD VQQDEw02OGY0Nzg1ZC1jMTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2OJZWnnTmW5tM+8LDqgdbjFOoP3sw+rOLxNmfSJf51WwsJiTnTF1I9zKcW8M nbKUMz8t1V+9ES0xJnaBkkF8aJ6/NYn0PmMiXfmbsL0vsBrgHZlHpP9lQenDvH1P OK/FQZOAsGS2i2J14FX8QR/AsIp4HGBwSflCb7PwzzBqRLonAn70nBjvLy52xV0v CmLLm5iwu7qE47KrAx3QzOBWboel3YpC5Hl1Sn4jAFjXjjlHD9elyLRbV9QU8NFV sNXRB1GE9c7P+QIbro/hCr3XWN6qV74fOwmI7YiZ30cyui+bVX56u9IJTduP0Iyk Y17DIhJad0EF8fvInWf8hnAimQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKE8QzZc KSBMtY5AW89ffi/aeMbVMB8GA1UdIwQYMBaAFPgKF+GOPzoS91IzZy6Kxn+A5S/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDIzQi9EQzQ5QTVGQTBB QjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09oTDNVak5uTG9yR2Y0RGxM OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1Bb1g0WTRfT2hMM1VqTm5Mb3JHZjREbEw5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDIzQi9EQzQ5QTVGQTBBQjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09o TDNVak5uTG9yR2Y0RGxMOTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2Cw8gc+1fzjGSzL3BZj1F+W0IsO1vq7F0//w5mubmEQWkxpv/y4PR HQtiMdlBiUEcCID9Xqsc8TtrxpYXeMLC5uDSV6WCsOOb3j0wx/EtJmQlvsnyyM7W MHWFj/jNBIN87yvAsURVubfR04Kqa0UxDJTvIjS1dYYOdfwlV2U+iA5w9hPXczjh ZAKva0bqy7Jjqmkq5/PSilbQDtnjKlVmccVyK2wXNCBop6Ee7EHHya5sdRwD2s8I T2FlcRm0gArghDPFSyc4Ygf2dl542aFwkTjEWKnlO7jwvAjqKLq6U3FEOytV0tuL Iux1AxmGDv0M/ADCYiYWBHK8Kjrdnx9q -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:49 2025 by rpki-client