$ rpki-client -vvf rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft File: 4bzIEhAO1GAiFweJMk8cw6-_aq0.mft (raw, json) Hash identifier: yKQnmfg5eGGmlnbjueKxyhc0uOg0+TFy2hH8Kc76OYs= Subject key identifier: A8:55:6E:D8:80:E5:65:71:E1:14:E1:D0:88:97:F6:D7:66:52:5B:C0 Authority key identifier: E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD Certificate issuer: /CN=A916AAFF/serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Certificate serial: 0158 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft Manifest number: 0150 Signing time: Sun 19 Oct 2025 07:05:38 +0000 Manifest this update: Sun 19 Oct 2025 07:05:37 +0000 Manifest next update: Sun 26 Oct 2025 07:05:37 +0000 Files and hashes: 1: 4bzIEhAO1GAiFweJMk8cw6-_aq0.crl (hash: X9YR4y2uV+xvbaILXaE1JQhwS17YOLq8Flfkl7Ov7gQ=) 2: 69E8AC12555811EFA88AEA24C4F9AE02.roa (hash: phqylkhfGei3IojXYcRRdYxObeB6TnyHw6jd5mx17zE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:05:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AAFF, serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Validity Not Before: Oct 19 07:05:37 2025 GMT Not After : Oct 26 07:05:37 2025 GMT Subject: CN=68f48dc1-37ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f8:21:63:9b:55:f1:ce:66:e6:2a:ec:c0:aa: 3a:7a:c7:52:21:65:2d:ce:cf:a1:55:c3:8a:3d:90: 4f:49:3e:96:20:e5:b8:34:d7:1c:69:52:32:f3:db: 31:df:b5:bb:e2:1d:ab:48:75:6b:12:ca:02:58:64: 2b:52:c8:92:77:fb:86:22:41:e8:4d:41:01:bc:f2: d5:aa:c7:00:a7:d2:b4:d0:7c:23:a2:b6:69:05:ec: 6e:6a:09:84:01:f1:f6:a6:6c:7c:de:43:0a:68:ac: c7:86:b1:56:db:ad:7c:31:97:a1:0c:92:97:9f:bf: b6:e9:cd:b3:d2:7d:81:f4:30:cd:c8:ec:c3:2b:7c: 26:c4:f7:bb:d3:8f:8c:8a:2a:0b:ee:13:79:5b:db: a2:17:5d:17:92:39:80:4a:a8:02:4c:4f:da:4f:71: 47:b5:72:ca:f6:e7:e0:f5:13:64:80:dd:5e:b5:ef: c3:78:b7:ec:9d:f1:1f:e6:1c:d7:74:ad:1d:20:0d: 33:16:7b:78:1d:d0:06:c4:e1:07:85:1c:0c:60:c3: 46:76:37:ab:04:2a:c3:02:9e:40:9a:a7:45:85:fb: 65:5d:fb:60:59:cd:40:a5:6e:1f:ca:22:e3:85:b0: e2:63:df:1d:c3:0b:13:a2:d4:12:d1:c8:ab:41:f2: 74:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:55:6E:D8:80:E5:65:71:E1:14:E1:D0:88:97:F6:D7:66:52:5B:C0 X509v3 Authority Key Identifier: keyid:E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:2d:29:9e:b2:61:12:24:94:c3:f9:ef:ec:b0:12:8d:75:ca: e1:b6:71:3e:44:40:9a:8f:65:49:1a:b8:e8:da:e3:f0:b3:1e: 95:f5:c6:d1:f1:81:55:85:82:95:90:68:ed:b6:6e:b7:80:a3: d9:b1:c8:27:b4:e6:ed:64:ad:f7:ac:87:c2:f5:f5:e7:da:b6: 81:47:17:a0:fc:44:4b:54:6b:f5:83:3f:b2:49:ac:26:ef:c6: a6:f7:39:92:85:fe:9b:90:bd:ba:61:6e:dc:c5:35:6b:68:96: dc:47:14:39:b7:40:97:02:ab:85:4a:eb:ad:e1:1a:e7:c1:35: 10:0d:48:a5:0c:8b:1d:81:e0:72:31:d2:c9:19:9d:74:ad:e6: ff:59:5c:8b:8f:c1:90:f8:6e:e3:92:01:62:6d:0e:1a:06:8e: 4c:5b:a7:28:a1:04:71:cd:3d:22:ef:86:f5:72:95:df:9e:b6: 84:a0:88:e3:33:32:46:a3:8d:05:09:8d:88:72:e0:2f:0c:cc: 4c:4e:cc:04:35:43:d2:1f:9b:27:74:fa:ad:65:2a:02:e8:2a: d1:f0:08:c1:e0:ce:e3:c4:ea:98:02:3a:99:66:93:e7:cb:aa: cd:cf:6c:d1:ee:cc:32:dd:e3:c7:80:2c:2f:94:c5:53:98:66: 5f:4d:aa:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFBRkYxMTAvBgNVBAUTKEUxQkNDODEyMTAwRUQ0NjAyMjE3MDc4OTMyNEYxQ0Mz QUZCRjZBQUQwHhcNMjUxMDE5MDcwNTM3WhcNMjUxMDI2MDcwNTM3WjAYMRYwFAYD VQQDEw02OGY0OGRjMS0zN2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvghY5tV8c5m5irswKo6esdSIWUtzs+hVcOKPZBPST6WIOW4NNccaVIy89sx 37W74h2rSHVrEsoCWGQrUsiSd/uGIkHoTUEBvPLVqscAp9K00HwjorZpBexuagmE AfH2pmx83kMKaKzHhrFW2618MZehDJKXn7+26c2z0n2B9DDNyOzDK3wmxPe704+M iioL7hN5W9uiF10XkjmASqgCTE/aT3FHtXLK9ufg9RNkgN1ete/DeLfsnfEf5hzX dK0dIA0zFnt4HdAGxOEHhRwMYMNGdjerBCrDAp5AmqdFhftlXftgWc1ApW4fyiLj hbDiY98dwwsTotQS0cirQfJ0MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKhVbtiA 5WVx4RTh0IiX9tdmUlvAMB8GA1UdIwQYMBaAFOG8yBIQDtRgIhcHiTJPHMOvv2qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUFGRi83QkI4QkE2Q0JC M0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFHQWlGd2VKTWs4Y3c2LV9h cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRieklFaEFPMUdBaUZ3ZUpNazhjdzYtX2FxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUFGRi83QkI4QkE2Q0JCM0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFH QWlGd2VKTWs4Y3c2LV9hcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBELSmesmESJJTD+e/ssBKNdcrhtnE+RECaj2VJGrjo2uPwsx6V9cbR 8YFVhYKVkGjttm63gKPZscgntObtZK33rIfC9fXn2raBRxeg/ERLVGv1gz+ySawm 78am9zmShf6bkL26YW7cxTVraJbcRxQ5t0CXAquFSuut4RrnwTUQDUilDIsdgeBy MdLJGZ10reb/WVyLj8GQ+G7jkgFibQ4aBo5MW6cooQRxzT0i74b1cpXfnraEoIjj MzJGo40FCY2IcuAvDMxMTswENUPSH5sndPqtZSoC6CrR8AjB4M7jxOqYAjqZZpPn y6rNz2zR7swy3ePHgCwvlMVTmGZfTaob -----END CERTIFICATE-----Generated at Mon Oct 20 04:23:15 2025 by rpki-client