$ rpki-client -vvf rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.mft File: dGYHPI0g_1sMqI5KOj_IHTyfZ5s.mft (raw, json) Hash identifier: UBs2teVdTtXeD913w9RGSMQDT0Ww62pjHcQUn+SgUkE= Subject key identifier: 44:EA:F7:25:EC:C2:E2:F5:7A:A3:CC:78:3C:96:D5:3F:6B:35:F2:62 Authority key identifier: 74:66:07:3C:8D:20:FF:5B:0C:A8:8E:4A:3A:3F:C8:1D:3C:9F:67:9B Certificate issuer: /CN=A918CE56/serialNumber=7466073C8D20FF5B0CA88E4A3A3FC81D3C9F679B Certificate serial: 0254 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.mft Manifest number: 0250 Signing time: Sun 19 Oct 2025 03:59:16 +0000 Manifest this update: Sun 19 Oct 2025 03:59:16 +0000 Manifest next update: Sun 26 Oct 2025 03:59:16 +0000 Files and hashes: 1: dGYHPI0g_1sMqI5KOj_IHTyfZ5s.crl (hash: PIwemxRtsigdztYaVxPkzHbvthDWkYa9yDatXLmXAGY=) 2: BEB5E328397011EDA97F630EC4F9AE02.roa (hash: v97jCiTV50KdY3FvNaVSkVv1DQJU25JqaDnJuHXX4c0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.crl rsync://rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:59:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 596 (0x254) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CE56, serialNumber=7466073C8D20FF5B0CA88E4A3A3FC81D3C9F679B Validity Not Before: Oct 19 03:59:16 2025 GMT Not After : Oct 26 03:59:16 2025 GMT Subject: CN=68f46214-86d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d9:9a:e3:cb:89:b2:3c:e3:24:e3:84:16:56: 14:82:fc:c2:f8:37:42:1c:57:46:f7:2a:03:8b:e8: d1:2f:b1:aa:69:d4:54:17:88:09:b2:4f:f9:da:2c: 5b:b9:09:7f:4a:be:80:19:a1:32:99:93:25:f9:29: 02:38:26:28:8b:d5:54:84:30:83:41:7f:94:92:a1: ca:78:da:dd:b7:76:4a:80:db:88:1e:53:57:ab:76: a5:52:85:ef:21:aa:86:44:9b:40:21:9f:12:07:fd: 98:99:3b:f7:fe:0f:87:60:1c:3a:1b:d6:5a:fd:9d: 0c:d8:ad:61:1a:66:10:2b:a8:51:cc:19:d9:85:58: fd:f8:62:77:a2:07:f8:45:e3:e1:c5:26:f1:20:af: dd:2d:d1:40:6f:25:e5:4c:9d:6b:8b:84:ed:05:5c: e4:aa:7a:1b:b5:2e:bf:1f:3e:1a:08:92:ef:87:91: df:b8:54:96:9c:e5:49:31:10:98:36:e1:ba:5a:54: c2:a7:19:7a:a3:03:47:89:44:a8:f8:67:06:14:92: cf:f5:b8:22:c2:76:5b:7e:b6:f4:23:4f:40:21:d8: 75:70:ed:71:73:75:86:cd:34:e7:a1:e3:5d:2e:e5: ba:b8:1a:38:9d:d8:2e:09:49:46:1c:01:11:13:6c: d6:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:EA:F7:25:EC:C2:E2:F5:7A:A3:CC:78:3C:96:D5:3F:6B:35:F2:62 X509v3 Authority Key Identifier: keyid:74:66:07:3C:8D:20:FF:5B:0C:A8:8E:4A:3A:3F:C8:1D:3C:9F:67:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:23:45:a7:a3:3e:45:91:2a:02:b4:1a:f0:72:bb:0a:d6:40: 04:d3:e3:1a:5b:4a:3c:52:9f:01:d4:7d:fa:70:0c:fe:4c:76: 0e:b3:38:e4:22:e6:81:e7:59:37:f4:a8:9b:84:88:f6:0a:ae: 26:5f:b6:81:36:79:cd:e4:23:5c:df:a4:fc:43:ef:8f:22:88: d4:82:f7:18:b7:39:e4:85:63:13:a1:ca:ca:a0:cc:7c:1e:53: 41:0c:75:b3:8e:38:32:42:76:89:d1:62:6a:fd:3a:90:e7:32: 78:d9:58:b2:63:0a:e3:fe:69:26:33:91:5a:1f:5b:30:04:1e: d3:3d:98:12:b3:d4:8e:b2:5b:a4:27:cb:b7:de:59:fc:8e:b0: 99:33:2d:46:8b:ad:8c:e3:d2:2b:c3:3f:15:da:ad:93:ea:7b: fb:11:6c:cf:d5:45:94:6c:f3:b3:22:ae:b3:5d:9f:ee:7e:57: 57:af:38:58:14:33:a3:ee:6d:b2:32:ca:ad:d8:c5:90:5d:98: 34:3a:e9:77:57:49:77:71:94:0e:b0:aa:00:16:57:4f:0f:f9: 74:5d:d3:76:e1:51:b7:f1:82:6d:e3:59:28:23:d6:5c:a7:6e: f1:37:dd:0e:7a:7c:06:40:b4:26:d5:96:09:1a:a4:2d:7a:57: 09:c4:6a:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENFNTYxMTAvBgNVBAUTKDc0NjYwNzNDOEQyMEZGNUIwQ0E4OEU0QTNBM0ZDODFE M0M5RjY3OUIwHhcNMjUxMDE5MDM1OTE2WhcNMjUxMDI2MDM1OTE2WjAYMRYwFAYD VQQDEw02OGY0NjIxNC04NmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA39ma48uJsjzjJOOEFlYUgvzC+DdCHFdG9yoDi+jRL7GqadRUF4gJsk/52ixb uQl/Sr6AGaEymZMl+SkCOCYoi9VUhDCDQX+UkqHKeNrdt3ZKgNuIHlNXq3alUoXv IaqGRJtAIZ8SB/2YmTv3/g+HYBw6G9Za/Z0M2K1hGmYQK6hRzBnZhVj9+GJ3ogf4 RePhxSbxIK/dLdFAbyXlTJ1ri4TtBVzkqnobtS6/Hz4aCJLvh5HfuFSWnOVJMRCY NuG6WlTCpxl6owNHiUSo+GcGFJLP9bgiwnZbfrb0I09AIdh1cO1xc3WGzTTnoeNd LuW6uBo4ndguCUlGHAERE2zWRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFETq9yXs wuL1eqPMeDyW1T9rNfJiMB8GA1UdIwQYMBaAFHRmBzyNIP9bDKiOSjo/yB08n2eb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0U1Ni8yNjI2NEFGMDM5 NkUxMUVEQkZDMzEyMERDNEY5QUUwMi9kR1lIUEkwZ18xc01xSTVLT2pfSUhUeWZa NXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RHWUhQSTBnXzFzTXFJNUtPal9JSFR5Zlo1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0U1Ni8yNjI2NEFGMDM5NkUxMUVEQkZDMzEyMERDNEY5QUUwMi9kR1lIUEkwZ18x c01xSTVLT2pfSUhUeWZaNXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuI0Wnoz5FkSoCtBrwcrsK1kAE0+MaW0o8Up8B1H36cAz+THYOszjk IuaB51k39KibhIj2Cq4mX7aBNnnN5CNc36T8Q++PIojUgvcYtznkhWMTocrKoMx8 HlNBDHWzjjgyQnaJ0WJq/TqQ5zJ42ViyYwrj/mkmM5FaH1swBB7TPZgSs9SOsluk J8u33ln8jrCZMy1Gi62M49Irwz8V2q2T6nv7EWzP1UWUbPOzIq6zXZ/ufldXrzhY FDOj7m2yMsqt2MWQXZg0Oul3V0l3cZQOsKoAFldPD/l0XdN24VG38YJt41koI9Zc p27xN90OenwGQLQm1ZYJGqQtelcJxGod -----END CERTIFICATE-----Generated at Mon Oct 20 07:57:47 2025 by rpki-client