$ rpki-client -vvf rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft File: 40IvTt5eaM7JqqfjxuMnjHMOHnw.mft (raw, json) Hash identifier: f467MpUfL2j+Z+DkcRuVDMSs2vj6+ww4YSnr763BXTQ= Subject key identifier: 02:20:C7:5D:10:FD:1B:45:23:93:B7:C1:D4:EC:32:26:0C:A4:9A:67 Authority key identifier: E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C Certificate issuer: /CN=A9180DA4/serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Certificate serial: 34CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft Manifest number: 34CB Signing time: Sat 18 Oct 2025 14:44:17 +0000 Manifest this update: Sat 18 Oct 2025 14:44:17 +0000 Manifest next update: Sat 25 Oct 2025 14:44:17 +0000 Files and hashes: 1: 40IvTt5eaM7JqqfjxuMnjHMOHnw.crl (hash: xdYVh0YcPrPl7g3ypWe1Xetfa2hzcBMjflnSTR1QUf8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:44:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13515 (0x34cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180DA4, serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Validity Not Before: Oct 18 14:44:17 2025 GMT Not After : Oct 25 14:44:17 2025 GMT Subject: CN=68f3a7c1-2eb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:af:54:e8:ac:e0:f4:b5:e3:c6:5a:07:28:d3: 57:ac:cf:ea:c1:d0:26:f2:7b:01:c2:2a:83:a5:28: b5:75:37:3d:32:80:9c:45:b5:da:54:c5:1c:ac:b8: 56:c1:08:48:e1:44:a9:ab:0f:44:88:fe:72:94:1a: a9:4c:61:f1:30:c0:d2:c5:a9:61:ad:7a:68:97:f2: bd:3f:58:de:fe:82:98:8c:ae:3e:ca:45:8a:f9:07: ca:39:cd:02:cc:7e:7f:b0:70:11:3a:ef:01:d0:dd: e1:dc:47:8f:52:a0:1c:28:2f:57:27:61:cc:6f:27: 20:32:75:c1:86:69:81:0b:a3:87:9f:54:cf:f2:fe: 36:92:2d:d0:1c:08:76:ce:74:aa:eb:e2:8d:da:ea: a5:15:69:80:f6:9c:e6:5a:0d:52:ca:cf:d7:e7:d3: 25:d1:5e:ee:88:d6:23:27:e8:fd:0f:50:96:5c:ff: 82:b3:03:ef:25:81:e8:0e:16:e2:59:fc:16:23:06: 72:b2:4f:a4:16:e9:f0:9c:36:69:2d:8f:14:e0:2c: 46:ee:b8:4c:8f:2f:38:9a:e2:2d:85:56:b9:c6:e5: a5:3a:34:ef:13:2e:7d:d5:ce:25:c7:55:79:8e:0f: 6b:15:68:2f:33:7b:2c:09:5e:9b:27:e9:3a:a2:21: a7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:20:C7:5D:10:FD:1B:45:23:93:B7:C1:D4:EC:32:26:0C:A4:9A:67 X509v3 Authority Key Identifier: keyid:E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:30:03:e8:1a:af:8f:66:ef:35:67:3a:64:1b:7c:bf:11:84: 33:15:0c:17:a2:ea:2c:90:84:26:c1:47:1b:0f:5c:41:60:aa: 04:c8:04:bc:5c:31:57:d4:9f:9f:84:68:12:f2:b1:4c:71:00: c1:5e:56:78:d1:40:85:db:8c:bb:69:02:61:72:83:37:86:b8: 5c:b6:7f:19:2d:73:ea:5f:fe:c9:64:fa:ae:f3:f7:16:69:4a: d1:b7:93:1b:1d:87:6d:ad:fa:61:7c:72:8d:b3:e0:5c:b4:18: 07:fa:65:52:e7:38:8e:db:4e:49:ff:34:73:5d:fc:66:aa:b0: fd:d5:05:a1:13:be:88:4e:95:2d:79:4c:45:22:c0:18:72:da: d4:b0:fe:9e:b6:91:44:6c:60:f6:e2:08:94:64:9b:4d:29:d0: ae:3b:4e:9f:a6:b8:8f:db:28:5f:fa:62:ea:50:e2:33:53:cb: c8:6f:8d:da:9b:9e:ab:39:f0:1f:dd:78:7b:93:d8:1c:9e:ab: a9:51:70:e8:d8:bd:35:da:91:f3:3a:3e:12:73:e6:2b:bd:3c: e9:7b:e9:a6:48:bb:2b:fa:93:89:8e:11:13:d8:31:d1:c6:51: c5:5c:c6:2a:fd:06:56:95:07:22:c6:d5:84:63:a8:e7:17:bd: 8b:bf:68:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODBEQTQxMTAvBgNVBAUTKEUzNDIyRjRFREU1RTY4Q0VDOUFBQTdFM0M2RTMyNzhD NzMwRTFFN0MwHhcNMjUxMDE4MTQ0NDE3WhcNMjUxMDI1MTQ0NDE3WjAYMRYwFAYD VQQDEw02OGYzYTdjMS0yZWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA169U6Kzg9LXjxloHKNNXrM/qwdAm8nsBwiqDpSi1dTc9MoCcRbXaVMUcrLhW wQhI4USpqw9EiP5ylBqpTGHxMMDSxalhrXpol/K9P1je/oKYjK4+ykWK+QfKOc0C zH5/sHAROu8B0N3h3EePUqAcKC9XJ2HMbycgMnXBhmmBC6OHn1TP8v42ki3QHAh2 znSq6+KN2uqlFWmA9pzmWg1Sys/X59Ml0V7uiNYjJ+j9D1CWXP+CswPvJYHoDhbi WfwWIwZysk+kFunwnDZpLY8U4CxG7rhMjy84muIthVa5xuWlOjTvEy591c4lx1V5 jg9rFWgvM3ssCV6bJ+k6oiGnuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAIgx10Q /RtFI5O3wdTsMiYMpJpnMB8GA1UdIwQYMBaAFONCL07eXmjOyaqn48bjJ4xzDh58 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MERBNC80NzNDNjQ1MDFE OEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFNN0pxcWZqeHVNbmpITU9I bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwSXZUdDVlYU03SnFxZmp4dU1uakhNT0hudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MERBNC80NzNDNjQ1MDFEOEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFN N0pxcWZqeHVNbmpITU9IbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiMAPoGq+PZu81ZzpkG3y/EYQzFQwXouoskIQmwUcbD1xBYKoEyAS8 XDFX1J+fhGgS8rFMcQDBXlZ40UCF24y7aQJhcoM3hrhctn8ZLXPqX/7JZPqu8/cW aUrRt5MbHYdtrfphfHKNs+BctBgH+mVS5ziO205J/zRzXfxmqrD91QWhE76ITpUt eUxFIsAYctrUsP6etpFEbGD24giUZJtNKdCuO06fpriP2yhf+mLqUOIzU8vIb43a m56rOfAf3Xh7k9gcnqupUXDo2L012pHzOj4Sc+YrvTzpe+mmSLsr+pOJjhET2DHR xlHFXMYq/QZWlQcixtWEY6jnF72Lv2gi -----END CERTIFICATE-----Generated at Mon Oct 20 04:06:27 2025 by rpki-client