$ rpki-client -vvf rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft File: aFEZgfy52vrY49MDBLtBqW-5p28.mft (raw, json) Hash identifier: xVx+6/cpNEPgBUAz05ZmxoVVkQ3hrt9y1QQdMgYN7jg= Subject key identifier: B2:03:4A:80:D8:6E:AC:37:D0:96:F2:4D:AC:33:7C:D6:C9:78:74:38 Authority key identifier: 68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F Certificate issuer: /CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Certificate serial: 04E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft Manifest number: 04D3 Signing time: Sun 19 Oct 2025 01:37:54 +0000 Manifest this update: Sun 19 Oct 2025 01:37:54 +0000 Manifest next update: Sun 26 Oct 2025 01:37:54 +0000 Files and hashes: 1: aFEZgfy52vrY49MDBLtBqW-5p28.crl (hash: cZcIAr5czyUIc8Q1yE2n0BTLrPK+EaseJF1gWvkam4g=) 2: 5C2186C444B011F0B9799F48C4F9AE02.roa (hash: JJ/1SR0EZ5l7PECR67PAK+euRry+RLFa/pJug2YY29I=) 3: 3E60217E42D211EC956C7F65C4F9AE02.roa (hash: uugn7/J2yz2AlJqn3GxqBNZUwmGZ4weF3jg7XtTcTNs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:37:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1250 (0x4e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918196D, serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Validity Not Before: Oct 19 01:37:54 2025 GMT Not After : Oct 26 01:37:54 2025 GMT Subject: CN=68f440f2-e259 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:3c:75:7d:3c:90:52:2e:0e:15:7d:96:27:5d: 40:1c:8c:7a:c3:4e:3a:c8:5e:24:8c:c4:0d:38:d1: d4:c7:e7:61:4b:44:7d:59:34:70:df:85:77:67:91: ec:9d:17:79:27:29:13:03:b5:29:cd:75:a7:5f:42: be:c9:2c:39:e5:f7:8b:2f:f1:b7:b3:1a:5a:5e:7d: b4:10:08:75:65:e5:09:73:b4:1e:01:dc:dd:bb:10: a1:33:24:81:47:2d:25:05:df:1f:82:7d:78:61:9f: b6:20:76:3e:68:29:4f:24:51:d2:f7:aa:63:34:9d: a4:44:eb:90:26:0f:24:24:f0:86:ce:51:4d:eb:b5: 93:08:ad:4f:d6:6f:ef:91:d2:08:ec:b1:c1:3d:ed: a6:81:94:55:27:9e:6c:4c:02:1b:a0:8d:38:90:df: 10:35:3c:e6:2c:e0:7d:b5:7a:cb:ac:21:e7:09:da: b7:c3:cb:e1:37:98:93:bf:f8:2b:1f:b0:48:21:12: 0f:be:ce:b4:71:b2:b7:06:33:8c:c2:19:bc:2a:0b: a2:8d:e3:1f:60:17:a2:a5:bd:12:b3:13:3a:9d:d9: ee:4f:72:78:a1:75:da:03:50:c6:b5:0b:c7:df:98: d5:13:74:f3:fa:39:e9:4a:5e:68:32:59:8f:3d:3c: 1d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:03:4A:80:D8:6E:AC:37:D0:96:F2:4D:AC:33:7C:D6:C9:78:74:38 X509v3 Authority Key Identifier: keyid:68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:5f:ac:b2:a3:22:ae:5a:73:7d:85:a3:8d:4b:bd:d8:9e:2d: 04:32:1f:be:6b:0d:f0:5b:42:11:7f:f4:6f:e8:cc:a8:63:d0: e6:70:dc:b7:21:a7:be:a0:ab:db:c9:ab:1b:36:f6:6c:db:be: 60:44:d5:17:f4:d2:3b:1b:65:2a:0c:a3:68:29:af:57:11:80: c9:2f:54:c9:f9:2c:6c:75:32:8f:4f:ac:67:94:97:bf:44:dd: 06:40:3e:b0:e2:7c:c9:37:89:a4:60:32:cb:35:04:ad:07:91: ab:fc:6c:75:f9:b1:08:ba:70:54:47:13:46:69:10:38:42:40: df:07:0b:23:86:03:48:3c:50:89:46:f4:15:d3:30:15:ae:81: a4:da:16:10:23:2f:f0:2c:90:0c:f5:0b:18:92:d4:f2:2c:55: a0:30:32:a1:d8:cc:ef:b5:f3:d5:21:f6:4f:d7:f9:bb:3f:42: 66:a4:52:10:52:a1:1d:e1:39:85:60:a9:1c:da:c4:30:e2:18: 84:0a:15:9f:6f:e4:19:e1:8c:3d:5f:a6:4a:aa:98:78:5b:a4: e0:68:68:5a:4c:77:1b:5d:f9:82:0c:74:24:eb:ca:92:da:84: f1:c5:c1:a9:26:22:07:16:8b:90:7a:6a:79:c2:ba:e3:44:bf: 34:77:e2:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE5NkQxMTAvBgNVBAUTKDY4NTExOTgxRkNCOURBRkFEOEUzRDMwMzA0QkI0MUE5 NkZCOUE3NkYwHhcNMjUxMDE5MDEzNzU0WhcNMjUxMDI2MDEzNzU0WjAYMRYwFAYD VQQDEw02OGY0NDBmMi1lMjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Dx1fTyQUi4OFX2WJ11AHIx6w046yF4kjMQNONHUx+dhS0R9WTRw34V3Z5Hs nRd5JykTA7UpzXWnX0K+ySw55feLL/G3sxpaXn20EAh1ZeUJc7QeAdzduxChMySB Ry0lBd8fgn14YZ+2IHY+aClPJFHS96pjNJ2kROuQJg8kJPCGzlFN67WTCK1P1m/v kdII7LHBPe2mgZRVJ55sTAIboI04kN8QNTzmLOB9tXrLrCHnCdq3w8vhN5iTv/gr H7BIIRIPvs60cbK3BjOMwhm8KguijeMfYBeipb0SsxM6ndnuT3J4oXXaA1DGtQvH 35jVE3Tz+jnpSl5oMlmPPTwdywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIDSoDY bqw30JbyTawzfNbJeHQ4MB8GA1UdIwQYMBaAFGhRGYH8udr62OPTAwS7Qalvuadv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTk2RC82MjAyQUEzRTQx MTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2clk0OU1EQkx0QnFXLTVw MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGRVpnZnk1MnZyWTQ5TURCTHRCcVctNXAyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTk2RC82MjAyQUEzRTQxMTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2 clk0OU1EQkx0QnFXLTVwMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzX6yyoyKuWnN9haONS73Yni0EMh++aw3wW0IRf/Rv6MyoY9DmcNy3 Iae+oKvbyasbNvZs275gRNUX9NI7G2UqDKNoKa9XEYDJL1TJ+SxsdTKPT6xnlJe/ RN0GQD6w4nzJN4mkYDLLNQStB5Gr/Gx1+bEIunBURxNGaRA4QkDfBwsjhgNIPFCJ RvQV0zAVroGk2hYQIy/wLJAM9QsYktTyLFWgMDKh2MzvtfPVIfZP1/m7P0JmpFIQ UqEd4TmFYKkc2sQw4hiEChWfb+QZ4Yw9X6ZKqph4W6TgaGhaTHcbXfmCDHQk68qS 2oTxxcGpJiIHFouQemp5wrrjRL80d+Ig -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:49 2025 by rpki-client