$ rpki-client -vvf rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft File: fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft (raw, json) Hash identifier: KK7c+kqhmJiIopAZk67NlpMWAq4vLhaAAvjsk5ev27s= Subject key identifier: A8:20:29:A2:DE:66:24:0D:65:E6:5A:61:CE:E3:B5:A5:8F:24:69:91 Authority key identifier: 7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D Certificate issuer: /CN=A918753F/serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Certificate serial: 08EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft Manifest number: 08E4 Signing time: Sat 18 Oct 2025 21:29:59 +0000 Manifest this update: Sat 18 Oct 2025 21:29:58 +0000 Manifest next update: Sat 25 Oct 2025 21:29:58 +0000 Files and hashes: 1: fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl (hash: wfe1c8r+WdF4K9kYUr1Bj2TZMGFSWM114wfuLJG1stg=) 2: 10A6E062B70A11EDB851464EC4F9AE02.roa (hash: FH1SU9GKJvbucv0gXmHk6Vc7dPieI2aucBrxBlxHAdE=) 3: 38B92F54E17D11EDBCAFC081C4F9AE02.roa (hash: KcabN84FuC1RCZKB2biZEnUyMb0N5RBlFWlu2grfP8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2287 (0x8ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918753F, serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Validity Not Before: Oct 18 21:29:58 2025 GMT Not After : Oct 25 21:29:58 2025 GMT Subject: CN=68f406d6-3817 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:65:f3:b9:1d:18:2d:54:a5:71:ef:fd:c8:51: 69:7e:66:f6:de:3d:95:4b:59:17:8e:69:96:a5:79: 8e:5b:87:04:22:62:ce:63:d6:ff:03:c7:48:7a:cb: b5:85:fc:51:5a:13:fb:6d:8b:05:3e:b4:cc:2f:19: d0:e5:89:38:10:99:6b:60:5b:78:8a:ec:43:85:73: be:62:95:d1:90:14:57:ee:e2:cf:4f:8d:1a:bc:f2: 8b:4c:d9:4f:ee:34:3d:6b:20:22:98:41:86:70:ab: d1:a8:58:78:49:73:1b:89:80:3f:fc:ad:87:14:ce: 1f:f5:59:54:b4:9f:66:f1:4c:87:2c:03:16:73:d3: 41:a0:89:0f:5c:89:a3:26:ed:99:7b:dd:a9:9d:43: 34:a3:d9:a8:5a:84:16:60:81:34:7a:b6:fc:15:24: c6:d9:1a:bb:4f:6f:4c:bc:da:11:49:47:18:41:a2: 9d:93:5f:da:99:d4:cc:a3:42:ff:a1:68:a2:09:ea: 07:01:18:76:50:87:8c:01:31:55:a1:89:10:d9:94: a3:8b:4c:9e:e0:e3:bd:64:4e:dd:3d:d3:e8:cb:e0: 40:be:8b:cf:64:95:84:80:ae:58:26:b4:8f:76:90: 28:1f:3e:05:a9:7f:26:84:68:c8:65:c6:e1:57:11: 21:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:20:29:A2:DE:66:24:0D:65:E6:5A:61:CE:E3:B5:A5:8F:24:69:91 X509v3 Authority Key Identifier: keyid:7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:0d:8c:d6:59:a8:33:66:18:81:52:37:74:a4:01:c2:da:83: 5c:f2:5a:b5:4b:00:f0:0d:16:71:5d:bd:91:47:37:65:9f:8b: 7e:d4:c8:ad:0f:4b:85:ba:5c:a3:17:e5:3b:2d:2b:d0:fe:59: de:74:2d:6d:f9:8d:ec:45:6e:70:01:07:fa:2c:50:db:2a:8f: 7b:3d:b1:f0:88:57:b8:63:66:78:3d:2f:a3:c7:d1:6c:ea:5c: 8e:21:aa:33:71:40:ec:a9:78:1c:7c:a2:73:1b:99:b4:56:a9: 40:88:f0:53:46:05:c2:5f:71:7e:c6:dd:ba:f6:fb:9b:2f:a5: 2d:65:57:42:98:57:ee:dd:3e:9b:41:0c:04:c3:00:db:c9:27: 92:dd:65:c1:05:48:fe:7c:81:90:26:8e:dc:2e:40:ef:eb:9a: d2:dc:8d:e2:d4:a8:6b:52:41:57:41:a3:9e:d1:15:48:23:e0: da:41:1f:22:91:16:10:8e:43:52:9e:b1:a6:ad:6f:91:95:df: c5:f0:e0:a0:92:e6:f7:47:43:ba:93:a5:db:55:cc:3f:a3:d8: 20:37:82:99:7d:c2:df:ab:0b:55:b7:bd:75:a8:bb:8e:4d:6a: 2b:86:21:27:e5:88:3c:d6:bc:7f:71:7b:0e:1f:d4:45:63:5f: e1:57:92:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc1M0YxMTAvBgNVBAUTKDdFNzJEODAxQjM4QTcyQUI0QjAzNzZFMTJDOTU0MTI0 QUFFNDNDNkQwHhcNMjUxMDE4MjEyOTU4WhcNMjUxMDI1MjEyOTU4WjAYMRYwFAYD VQQDEw02OGY0MDZkNi0zODE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqGXzuR0YLVSlce/9yFFpfmb23j2VS1kXjmmWpXmOW4cEImLOY9b/A8dIesu1 hfxRWhP7bYsFPrTMLxnQ5Yk4EJlrYFt4iuxDhXO+YpXRkBRX7uLPT40avPKLTNlP 7jQ9ayAimEGGcKvRqFh4SXMbiYA//K2HFM4f9VlUtJ9m8UyHLAMWc9NBoIkPXImj Ju2Ze92pnUM0o9moWoQWYIE0erb8FSTG2Rq7T29MvNoRSUcYQaKdk1/amdTMo0L/ oWiiCeoHARh2UIeMATFVoYkQ2ZSji0ye4OO9ZE7dPdPoy+BAvovPZJWEgK5YJrSP dpAoHz4FqX8mhGjIZcbhVxEhlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKggKaLe ZiQNZeZaYc7jtaWPJGmRMB8GA1UdIwQYMBaAFH5y2AGzinKrSwN24SyVQSSq5Dxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzUzRi9CREE1N0ZGRUJD MTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2NxdExBM2JoTEpWQkpLcmtQ RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuTFlBYk9LY3F0TEEzYmhMSlZCSktya1BHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzUzRi9CREE1N0ZGRUJDMTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2Nx dExBM2JoTEpWQkpLcmtQRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUDYzWWagzZhiBUjd0pAHC2oNc8lq1SwDwDRZxXb2RRzdln4t+1Mit D0uFulyjF+U7LSvQ/lnedC1t+Y3sRW5wAQf6LFDbKo97PbHwiFe4Y2Z4PS+jx9Fs 6lyOIaozcUDsqXgcfKJzG5m0VqlAiPBTRgXCX3F+xt269vubL6UtZVdCmFfu3T6b QQwEwwDbySeS3WXBBUj+fIGQJo7cLkDv65rS3I3i1KhrUkFXQaOe0RVII+DaQR8i kRYQjkNSnrGmrW+Rld/F8OCgkub3R0O6k6XbVcw/o9ggN4KZfcLfqwtVt711qLuO TWorhiEn5Yg81rx/cXsOH9RFY1/hV5JT -----END CERTIFICATE-----Generated at Mon Oct 20 19:12:54 2025 by rpki-client