$ rpki-client -vvf rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft File: xw3ieKt3JtKco6jAJAeqW64S7Ao.mft (raw, json) Hash identifier: lhiOxLlGMKZiXN/LH2fWJk3n2wkRXujElorXtUQpURc= Subject key identifier: 2D:64:9C:6D:85:34:1C:90:15:E5:CC:A4:E8:AB:F8:06:FE:CD:31:B6 Authority key identifier: C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A Certificate issuer: /CN=A918D323/serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft Manifest number: 0119 Signing time: Sun 19 Oct 2025 07:46:42 +0000 Manifest this update: Sun 19 Oct 2025 07:46:41 +0000 Manifest next update: Sun 26 Oct 2025 07:46:41 +0000 Files and hashes: 1: xw3ieKt3JtKco6jAJAeqW64S7Ao.crl (hash: wZWr2aqttcUQrYFY2ipbDG8m0ulkPzH6QzqhbfDaymE=) 2: CC166DAC0A0811EFBE7E465EC4F9AE02.roa (hash: LIBTOUx4sDoJqevaYZ7QQd1IJGw6R0nOR1Do32NIl0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D323, serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Validity Not Before: Oct 19 07:46:41 2025 GMT Not After : Oct 26 07:46:41 2025 GMT Subject: CN=68f49762-b1aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8b:93:c8:55:26:f7:d1:03:fc:23:9c:62:da: 1d:03:33:d4:b5:d1:c8:eb:47:cc:c6:eb:6f:27:e8: f6:a4:7c:bb:98:69:31:74:5a:2c:3a:d8:4f:19:3f: 0e:35:db:54:62:da:00:a0:61:a9:c4:5a:79:74:a1: 7b:fe:94:9c:cd:bb:18:1f:62:f3:1f:60:99:c2:83: df:2a:cc:63:8a:f1:88:95:eb:bf:25:8f:8f:48:a8: c0:df:52:a6:98:88:51:c2:62:4b:8c:ce:15:c9:d6: 63:b5:d0:4b:48:8c:c2:32:52:fd:76:28:68:69:05: 28:69:da:e5:1a:47:a4:f8:a7:f2:93:b0:59:bf:85: 8c:93:c6:7f:74:ec:12:d1:9a:6f:57:a8:d6:6b:bf: 13:1a:04:ac:b9:86:6f:22:98:4c:d3:4a:be:5c:0e: 86:2e:46:38:12:8b:20:4e:52:63:06:3d:95:68:d4: 1d:45:1a:76:10:86:dd:df:f3:81:c2:53:72:35:7a: 43:1e:c8:ff:ac:a4:5c:27:fb:64:97:9a:af:3a:72: 47:a0:cf:fe:b8:26:61:9a:f1:2e:b7:a2:b3:4b:28: e1:11:7c:d1:5f:be:9f:77:62:61:9a:42:a8:f6:81: eb:74:46:3a:e0:5f:86:b9:ef:de:97:78:56:35:32: 55:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:64:9C:6D:85:34:1C:90:15:E5:CC:A4:E8:AB:F8:06:FE:CD:31:B6 X509v3 Authority Key Identifier: keyid:C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:3e:0c:0e:73:30:56:fa:31:35:50:fe:91:74:49:f0:13:40: e2:1d:f4:1c:fe:91:b4:c6:e2:84:35:49:b6:37:02:6f:82:7b: a7:96:e0:55:33:5d:86:67:4d:06:e5:25:7d:91:b5:cd:ea:b3: 19:0a:bf:fe:6b:0e:be:a4:de:e2:00:09:a7:44:ef:90:5c:4e: b1:f2:cb:2a:cc:8a:fb:58:38:f2:ad:05:f1:97:ee:09:ca:5a: 79:16:3e:fa:0c:f1:94:d8:b7:28:0c:aa:bb:93:93:7c:3b:e6: 63:dc:9f:c2:4b:6e:92:19:d1:72:e7:62:d9:77:16:62:2c:0d: 7f:b4:9b:ac:ea:cf:f5:25:59:58:55:c1:4e:23:e0:f9:20:ac: a7:72:79:d6:eb:73:f6:c2:23:de:c0:86:32:c4:c3:0f:37:a3: d7:a1:65:2c:20:d9:ac:47:7e:c8:78:2e:ca:01:40:0c:04:0c: cd:18:36:eb:d4:7e:77:ca:5c:f9:9f:c5:58:f7:90:8d:29:a6: 2b:aa:66:79:fc:d3:58:19:e4:31:b2:f1:16:de:1c:00:e6:e8: 40:87:e2:47:81:f9:c7:ab:1c:a7:dc:53:ec:e3:d2:4c:1b:54: 3f:d8:23:5a:3e:80:3b:a1:c2:62:62:9b:6d:08:d6:e4:07:4f: 13:26:63:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQzMjMxMTAvBgNVBAUTKEM3MERFMjc4QUI3NzI2RDI5Q0EzQThDMDI0MDdBQTVC QUUxMkVDMEEwHhcNMjUxMDE5MDc0NjQxWhcNMjUxMDI2MDc0NjQxWjAYMRYwFAYD VQQDEw02OGY0OTc2Mi1iMWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4uTyFUm99ED/COcYtodAzPUtdHI60fMxutvJ+j2pHy7mGkxdFosOthPGT8O NdtUYtoAoGGpxFp5dKF7/pSczbsYH2LzH2CZwoPfKsxjivGIleu/JY+PSKjA31Km mIhRwmJLjM4VydZjtdBLSIzCMlL9dihoaQUoadrlGkek+Kfyk7BZv4WMk8Z/dOwS 0ZpvV6jWa78TGgSsuYZvIphM00q+XA6GLkY4EosgTlJjBj2VaNQdRRp2EIbd3/OB wlNyNXpDHsj/rKRcJ/tkl5qvOnJHoM/+uCZhmvEut6KzSyjhEXzRX76fd2JhmkKo 9oHrdEY64F+Gue/el3hWNTJVRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC1knG2F NByQFeXMpOir+Ab+zTG2MB8GA1UdIwQYMBaAFMcN4nirdybSnKOowCQHqluuEuwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDMyMy8yMjBBMUZEODA5 RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0S2NvNmpBSkFlcVc2NFM3 QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3M2llS3QzSnRLY282akFKQWVxVzY0UzdBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDMyMy8yMjBBMUZEODA5RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0 S2NvNmpBSkFlcVc2NFM3QW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9PgwOczBW+jE1UP6RdEnwE0DiHfQc/pG0xuKENUm2NwJvgnunluBV M12GZ00G5SV9kbXN6rMZCr/+aw6+pN7iAAmnRO+QXE6x8ssqzIr7WDjyrQXxl+4J ylp5Fj76DPGU2LcoDKq7k5N8O+Zj3J/CS26SGdFy52LZdxZiLA1/tJus6s/1JVlY VcFOI+D5IKyncnnW63P2wiPewIYyxMMPN6PXoWUsINmsR37IeC7KAUAMBAzNGDbr 1H53ylz5n8VY95CNKaYrqmZ5/NNYGeQxsvEW3hwA5uhAh+JHgfnHqxyn3FPs49JM G1Q/2CNaPoA7ocJiYpttCNbkB08TJmOi -----END CERTIFICATE-----Generated at Mon Oct 20 04:06:18 2025 by rpki-client