$ rpki-client -vvf rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft File: FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft (raw, json) Hash identifier: ST4vJMj7MAiKbIvelTo43FW5Eligyqc8ge+k77PgpYk= Subject key identifier: C6:2B:01:54:B8:EB:75:F4:5D:A8:3A:83:E4:28:FD:D2:EE:9E:F3:6B Authority key identifier: 14:E5:5E:C3:42:8E:3D:2B:A4:DC:71:C1:59:E5:F6:06:1F:16:3C:6D Certificate issuer: /CN=A916E343/serialNumber=14E55EC3428E3D2BA4DC71C159E5F6061F163C6D Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft Manifest number: 0146 Signing time: Sun 19 Oct 2025 06:04:37 +0000 Manifest this update: Sun 19 Oct 2025 06:04:37 +0000 Manifest next update: Sun 26 Oct 2025 06:04:37 +0000 Files and hashes: 1: FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl (hash: GON8vF/eFbnjplqcY1UoyQfRSoqTUlreCsewJ9H8UMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:04:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E343, serialNumber=14E55EC3428E3D2BA4DC71C159E5F6061F163C6D Validity Not Before: Oct 19 06:04:37 2025 GMT Not After : Oct 26 06:04:37 2025 GMT Subject: CN=68f47f75-8fa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:4b:36:4a:b0:fb:fb:6d:05:0a:ed:ac:15:44: bd:8e:0b:4a:cc:10:7d:83:45:a6:89:a3:c8:bc:da: 26:ed:d5:18:90:2c:ef:95:b7:7d:cc:34:29:13:b9: 9a:1e:4b:f2:01:2e:98:8a:b9:bd:9f:47:01:e9:85: d7:9f:ff:11:6e:60:b8:2a:fb:d1:b4:64:a0:10:67: 78:8e:a2:35:66:fc:55:e3:0c:fe:c7:60:3d:ea:ea: 07:91:6e:f2:f6:fe:4d:fb:2c:04:88:25:c6:18:52: a9:1c:01:ad:a9:77:f3:87:df:42:83:ca:21:cc:57: 1a:82:65:c5:1d:5c:69:cc:35:30:34:bd:11:03:43: 29:ee:e2:b4:af:da:17:da:d3:1a:6b:70:22:97:2f: 71:f7:6d:a3:fd:58:4e:28:05:60:a0:e3:20:56:6b: ee:86:7b:b3:12:9d:30:fc:cd:0a:f0:0a:b2:ef:73: 03:af:04:e8:73:40:c7:15:76:36:d2:85:aa:46:42: 2c:38:8d:dd:40:dd:49:b6:1e:d5:00:84:07:85:ae: dc:a1:4b:0c:68:c1:1e:23:ef:9b:33:cd:62:b3:6d: 51:d3:78:24:94:bd:75:d4:b7:eb:41:af:7b:41:c2: 1b:05:84:f2:19:f2:70:01:c0:74:0d:73:21:cb:e1: 86:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:2B:01:54:B8:EB:75:F4:5D:A8:3A:83:E4:28:FD:D2:EE:9E:F3:6B X509v3 Authority Key Identifier: keyid:14:E5:5E:C3:42:8E:3D:2B:A4:DC:71:C1:59:E5:F6:06:1F:16:3C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:e6:18:5a:cc:02:c2:c9:51:b2:8b:0d:9a:5f:3a:d5:08:1b: e1:46:03:52:0a:bf:e9:1a:fe:d3:ba:4d:9a:bd:c5:cc:d3:49: 9f:5b:40:b1:4b:7c:7e:bc:9e:11:ee:ce:a4:43:e9:76:25:e6: 71:0c:1e:c0:60:47:d1:da:79:11:9f:8b:f0:fd:aa:7a:3d:26: 71:46:25:36:41:0f:c8:14:1f:63:94:7a:a7:59:b5:61:7c:18: 8b:88:64:5e:59:61:fd:3e:f2:0c:6c:18:9e:0f:12:44:23:cc: 66:8a:1f:30:96:c7:4a:ea:27:94:d0:51:f9:d9:cc:da:ba:fa: 9e:f0:93:8d:d1:23:69:2a:8d:37:15:ca:16:3b:4b:c4:ce:4a: 7d:23:75:d4:25:8a:8c:a6:6b:39:7e:50:7c:ca:d9:09:91:5a: dc:8a:1f:e8:fc:fe:2c:c0:72:25:9f:94:0f:c2:9e:52:d5:56: c6:32:78:5d:8c:0f:9b:57:2c:53:c0:a6:e7:6f:17:63:9f:e9: 6f:0d:a6:f5:ca:c7:26:fa:08:a6:9a:5f:ee:20:54:ac:4f:c5: 81:17:3c:eb:a0:ad:25:d5:6e:25:50:c7:e4:43:0a:56:e5:15: 3c:d6:f2:64:96:a7:83:f0:9c:06:e6:63:64:57:8f:cb:67:85: a1:19:93:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkUzNDMxMTAvBgNVBAUTKDE0RTU1RUMzNDI4RTNEMkJBNERDNzFDMTU5RTVGNjA2 MUYxNjNDNkQwHhcNMjUxMDE5MDYwNDM3WhcNMjUxMDI2MDYwNDM3WjAYMRYwFAYD VQQDEw02OGY0N2Y3NS04ZmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUs2SrD7+20FCu2sFUS9jgtKzBB9g0WmiaPIvNom7dUYkCzvlbd9zDQpE7ma HkvyAS6Yirm9n0cB6YXXn/8RbmC4KvvRtGSgEGd4jqI1ZvxV4wz+x2A96uoHkW7y 9v5N+ywEiCXGGFKpHAGtqXfzh99Cg8ohzFcagmXFHVxpzDUwNL0RA0Mp7uK0r9oX 2tMaa3Aily9x922j/VhOKAVgoOMgVmvuhnuzEp0w/M0K8Aqy73MDrwToc0DHFXY2 0oWqRkIsOI3dQN1Jth7VAIQHha7coUsMaMEeI++bM81is21R03gklL111LfrQa97 QcIbBYTyGfJwAcB0DXMhy+GGpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMYrAVS4 63X0Xag6g+Qo/dLunvNrMB8GA1UdIwQYMBaAFBTlXsNCjj0rpNxxwVnl9gYfFjxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTM0My8zQUU3MzlBRUI5 N0UxMUVFQjNDMjI5NTVDNEY5QUUwMi9GT1ZldzBLT1BTdWszSEhCV2VYMkJoOFdQ RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0ZPVmV3MEtPUFN1azNISEJXZVgyQmg4V1BHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTM0My8zQUU3MzlBRUI5N0UxMUVFQjNDMjI5NTVDNEY5QUUwMi9GT1ZldzBLT1BT dWszSEhCV2VYMkJoOFdQRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAq5hhazALCyVGyiw2aXzrVCBvhRgNSCr/pGv7Tuk2avcXM00mfW0Cx S3x+vJ4R7s6kQ+l2JeZxDB7AYEfR2nkRn4vw/ap6PSZxRiU2QQ/IFB9jlHqnWbVh fBiLiGReWWH9PvIMbBieDxJEI8xmih8wlsdK6ieU0FH52czauvqe8JON0SNpKo03 FcoWO0vEzkp9I3XUJYqMpms5flB8ytkJkVrcih/o/P4swHIln5QPwp5S1VbGMnhd jA+bVyxTwKbnbxdjn+lvDab1yscm+gimml/uIFSsT8WBFzzroK0l1W4lUMfkQwpW 5RU81vJklqeD8JwG5mNkV4/LZ4WhGZNL -----END CERTIFICATE-----Generated at Tue Oct 21 12:46:00 2025 by rpki-client