$ rpki-client -vvf rpki.apnic.net/member_repository/A918379F/75CE2728421311EDBE014321C4F9AE02/r1E53KFl4oTVSmzvYft6CRaJGw8.mft File: r1E53KFl4oTVSmzvYft6CRaJGw8.mft (raw, json) Hash identifier: 0eDOrlxGZiADxMEO2bP/Yin5H7PrB8KOq3rjJSVJL8w= Subject key identifier: 12:98:42:2C:4A:62:F4:5E:67:F3:1D:FB:90:F7:05:E6:0B:C5:D6:BF Authority key identifier: AF:51:39:DC:A1:65:E2:84:D5:4A:6C:EF:61:FB:7A:09:16:89:1B:0F Certificate issuer: /CN=A918379F/serialNumber=AF5139DCA165E284D54A6CEF61FB7A0916891B0F Certificate serial: 0242 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r1E53KFl4oTVSmzvYft6CRaJGw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918379F/75CE2728421311EDBE014321C4F9AE02/r1E53KFl4oTVSmzvYft6CRaJGw8.mft Manifest number: 023E Signing time: Sun 19 Oct 2025 04:02:18 +0000 Manifest this update: Sun 19 Oct 2025 04:02:17 +0000 Manifest next update: Sun 26 Oct 2025 04:02:17 +0000 Files and hashes: 1: r1E53KFl4oTVSmzvYft6CRaJGw8.crl (hash: ewmPkX8HE5umBL3uqRc1qMuaaWirxOk5Ucfi4wx4d+Y=) 2: 0B237586453311ED9A3F7844C4F9AE02.roa (hash: ozd7QEWzqSc/ZjTprGcRjOYRAvGoQk7Mxlkn94aKvpQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918379F/75CE2728421311EDBE014321C4F9AE02/r1E53KFl4oTVSmzvYft6CRaJGw8.crl rsync://rpki.apnic.net/member_repository/A918379F/75CE2728421311EDBE014321C4F9AE02/r1E53KFl4oTVSmzvYft6CRaJGw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r1E53KFl4oTVSmzvYft6CRaJGw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:02:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 578 (0x242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918379F, serialNumber=AF5139DCA165E284D54A6CEF61FB7A0916891B0F Validity Not Before: Oct 19 04:02:17 2025 GMT Not After : Oct 26 04:02:17 2025 GMT Subject: CN=68f462c9-465c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:cf:63:0e:2b:2e:f9:87:35:bd:7e:be:a3:61: cc:de:9b:ba:54:7b:11:b2:6c:08:3b:98:25:c2:0d: 4b:2e:c0:54:3f:86:24:82:02:82:f2:12:4b:e0:f6: 26:a1:33:6e:93:ea:94:f3:7a:e7:56:8e:6e:18:f2: 9c:ca:01:50:41:36:64:f2:36:3e:12:1f:ed:99:11: dd:cc:0a:ad:57:a4:5a:60:de:9f:0a:30:b7:11:8b: 90:32:dc:11:c0:3f:44:5f:6b:ef:13:fa:58:a4:2b: 35:3e:ba:f0:c7:39:e8:b1:3f:82:7a:a8:4f:c9:ff: 47:4d:56:83:71:52:52:b7:a0:0b:e6:5f:29:89:9b: 1b:ed:70:e4:76:b4:6d:68:99:3b:3a:8f:33:48:a0: 90:a4:4b:63:bd:94:0c:2c:4d:7f:30:29:44:23:1d: e5:41:f5:50:41:a0:d5:92:89:16:f8:16:d4:8f:9d: af:e8:73:1c:c3:84:8b:21:1d:25:02:62:ab:4f:02: ea:82:f7:63:75:0d:4e:16:06:48:c8:85:ef:6d:3c: dd:68:d7:d4:3b:8b:e0:b1:14:d2:31:3e:f4:b0:fb: 12:9b:86:7e:78:59:4a:c8:a9:aa:17:d3:01:d8:0c: 61:61:db:29:c7:a5:c3:71:da:f1:cd:5b:02:22:73: 43:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:98:42:2C:4A:62:F4:5E:67:F3:1D:FB:90:F7:05:E6:0B:C5:D6:BF X509v3 Authority Key Identifier: keyid:AF:51:39:DC:A1:65:E2:84:D5:4A:6C:EF:61:FB:7A:09:16:89:1B:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918379F/75CE2728421311EDBE014321C4F9AE02/r1E53KFl4oTVSmzvYft6CRaJGw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r1E53KFl4oTVSmzvYft6CRaJGw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918379F/75CE2728421311EDBE014321C4F9AE02/r1E53KFl4oTVSmzvYft6CRaJGw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:0c:12:10:99:c4:1f:72:81:4f:a2:97:b1:e8:cd:55:7d:c7: 90:fa:07:7e:28:bf:ad:c7:6f:95:af:20:7b:5d:3e:62:73:fc: 23:68:dc:69:de:dc:17:f5:f8:0d:49:62:db:cf:20:06:ab:80: 2e:3a:79:70:8d:e9:93:ab:a5:ca:3e:d3:5e:37:f6:38:9d:69: 56:0f:3e:e7:39:63:20:67:95:52:85:41:3b:65:de:f8:7e:e0: d0:52:c9:68:0c:f2:43:ae:31:f0:63:0b:76:6c:ec:8d:79:76: 81:82:e9:55:1b:d2:ae:5d:5c:1a:09:32:c7:8b:4d:19:9a:01: a0:b5:29:8c:a7:e1:b8:4a:4f:5a:3d:3a:60:b7:1f:c2:f9:b3: 85:61:c4:70:85:42:2e:76:5e:cd:c6:cc:5b:eb:f4:a7:de:73: 50:44:9a:d1:1a:4b:f1:3c:54:00:15:60:28:0e:83:62:4e:0e: 21:85:6f:14:2a:af:f7:ee:29:60:ef:4e:63:3c:13:25:e8:2b: 0e:e9:32:c3:79:1e:cc:53:d6:ba:88:c3:3b:54:f0:1e:b6:a2: 0b:93:e9:58:e0:f5:9e:07:bb:56:34:43:e2:46:83:fa:3b:90: f4:45:ce:3e:67:e3:b9:8e:a1:9a:62:6b:fd:80:54:fb:42:a5: d4:54:3a:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM3OUYxMTAvBgNVBAUTKEFGNTEzOURDQTE2NUUyODRENTRBNkNFRjYxRkI3QTA5 MTY4OTFCMEYwHhcNMjUxMDE5MDQwMjE3WhcNMjUxMDI2MDQwMjE3WjAYMRYwFAYD VQQDEw02OGY0NjJjOS00NjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8c9jDisu+Yc1vX6+o2HM3pu6VHsRsmwIO5glwg1LLsBUP4YkggKC8hJL4PYm oTNuk+qU83rnVo5uGPKcygFQQTZk8jY+Eh/tmRHdzAqtV6RaYN6fCjC3EYuQMtwR wD9EX2vvE/pYpCs1PrrwxznosT+CeqhPyf9HTVaDcVJSt6AL5l8piZsb7XDkdrRt aJk7Oo8zSKCQpEtjvZQMLE1/MClEIx3lQfVQQaDVkokW+BbUj52v6HMcw4SLIR0l AmKrTwLqgvdjdQ1OFgZIyIXvbTzdaNfUO4vgsRTSMT70sPsSm4Z+eFlKyKmqF9MB 2AxhYdspx6XDcdrxzVsCInNDiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBKYQixK YvReZ/Md+5D3BeYLxda/MB8GA1UdIwQYMBaAFK9ROdyhZeKE1Ups72H7egkWiRsP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mzc5Ri83NUNFMjcyODQy MTMxMUVEQkUwMTQzMjFDNEY5QUUwMi9yMUU1M0tGbDRvVFZTbXp2WWZ0NkNSYUpH dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IxRTUzS0ZsNG9UVlNtenZZZnQ2Q1JhSkd3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Mzc5Ri83NUNFMjcyODQyMTMxMUVEQkUwMTQzMjFDNEY5QUUwMi9yMUU1M0tGbDRv VFZTbXp2WWZ0NkNSYUpHdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9DBIQmcQfcoFPopex6M1VfceQ+gd+KL+tx2+VryB7XT5ic/wjaNxp 3twX9fgNSWLbzyAGq4AuOnlwjemTq6XKPtNeN/Y4nWlWDz7nOWMgZ5VShUE7Zd74 fuDQUsloDPJDrjHwYwt2bOyNeXaBgulVG9KuXVwaCTLHi00ZmgGgtSmMp+G4Sk9a PTpgtx/C+bOFYcRwhUIudl7Nxsxb6/Sn3nNQRJrRGkvxPFQAFWAoDoNiTg4hhW8U Kq/37ilg705jPBMl6CsO6TLDeR7MU9a6iMM7VPAetqILk+lY4PWeB7tWNEPiRoP6 O5D0Rc4+Z+O5jqGaYmv9gFT7QqXUVDqg -----END CERTIFICATE-----Generated at Tue Oct 21 00:09:59 2025 by rpki-client