$ rpki-client -vvf rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.mft File: aNpOhaeYSz_RCu80x9HQDxtGRTE.mft (raw, json) Hash identifier: WYz6duEMp5o2cidmU9ujfkBtczm7GGpqmy0H2AdkQNw= Subject key identifier: CB:65:BD:CD:47:20:F7:32:77:76:CA:AD:48:14:66:CE:B1:65:8F:42 Authority key identifier: 68:DA:4E:85:A7:98:4B:3F:D1:0A:EF:34:C7:D1:D0:0F:1B:46:45:31 Certificate issuer: /CN=A918D931/serialNumber=68DA4E85A7984B3FD10AEF34C7D1D00F1B464531 Certificate serial: 07E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNpOhaeYSz_RCu80x9HQDxtGRTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.mft Manifest number: 07E2 Signing time: Sat 18 Oct 2025 22:22:49 +0000 Manifest this update: Sat 18 Oct 2025 22:22:49 +0000 Manifest next update: Sat 25 Oct 2025 22:22:49 +0000 Files and hashes: 1: aNpOhaeYSz_RCu80x9HQDxtGRTE.crl (hash: ZhNTohrZqsb1gTnh+v75erIXaa7kNA+hBPdyPcI9+TU=) 2: F575D65A085A11EBA6864D71C4F9AE02.roa (hash: OzhrEAQM423OnNsjFX/pRulyswUafC9dzCD/mgitV0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.crl rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNpOhaeYSz_RCu80x9HQDxtGRTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:22:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2025 (0x7e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D931, serialNumber=68DA4E85A7984B3FD10AEF34C7D1D00F1B464531 Validity Not Before: Oct 18 22:22:49 2025 GMT Not After : Oct 25 22:22:49 2025 GMT Subject: CN=68f41339-e81f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f4:98:ea:6e:c9:c2:3a:ba:f3:2e:88:e0:d9: 7a:55:9f:78:7f:22:3a:86:20:0c:dd:8d:c3:95:4b: 3c:40:e2:37:5d:ed:81:bf:5c:af:df:f9:b1:57:54: d6:ff:0a:56:8f:79:49:5d:01:3e:dc:f1:e1:e9:11: 50:65:6a:da:3c:40:2b:1e:d3:ff:9e:af:2a:c5:1e: 38:da:fa:6b:74:c1:1c:64:d3:60:c8:1d:6c:a2:89: 34:76:cd:a5:07:70:c1:da:06:77:a9:d9:9d:ab:c6: 0d:0e:82:41:ea:47:4b:ec:da:96:56:51:d3:58:0c: d7:a6:99:72:56:21:78:71:ae:b8:78:f0:49:5c:17: 86:4b:73:40:1c:b5:9d:2e:42:44:23:60:05:54:87: 36:6b:85:14:17:ec:09:03:2d:15:c0:d9:76:d9:47: 89:0d:14:8a:6a:77:15:20:c4:09:ba:9d:27:2c:a9: 45:52:ae:4f:29:f9:69:aa:d5:33:a0:f7:c3:56:e8: f1:2f:77:b2:2a:a1:f9:b3:7d:24:3d:b5:a6:de:e3: ba:21:54:a9:95:d3:ec:62:1f:ff:38:3a:89:a3:78: e4:18:c6:e0:72:d2:5a:d5:bb:4b:e9:dc:70:82:3f: be:5f:4d:e7:0e:cb:9e:5b:26:63:54:a0:f9:2e:eb: 3d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:65:BD:CD:47:20:F7:32:77:76:CA:AD:48:14:66:CE:B1:65:8F:42 X509v3 Authority Key Identifier: keyid:68:DA:4E:85:A7:98:4B:3F:D1:0A:EF:34:C7:D1:D0:0F:1B:46:45:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aNpOhaeYSz_RCu80x9HQDxtGRTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D931/FB5A5084085811EB93B7A66BC4F9AE02/aNpOhaeYSz_RCu80x9HQDxtGRTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:a4:01:02:3f:54:c8:23:9e:1c:36:25:19:2b:c9:7b:49:64: 64:8d:0f:48:3c:c7:56:c3:05:53:1b:0c:0f:b1:b3:fb:bf:bf: 9c:75:37:48:f9:21:fa:cc:3d:fc:a2:1b:a5:95:cb:16:f7:8a: 9c:8a:5a:cb:80:4b:4d:e0:81:bb:6f:83:86:6e:19:4d:0c:cb: 33:d5:23:20:61:a6:4d:3a:a8:4d:fa:ed:05:33:9e:8a:01:18: b9:8c:fe:61:f2:4d:87:ea:89:19:12:26:01:fa:09:f4:4e:66: 77:2d:54:8c:ab:9a:23:90:e0:ec:c0:1e:2a:21:63:3b:0b:b8: c7:fc:5a:fb:46:22:ea:ac:22:93:75:a9:68:90:82:e1:4a:60: d2:55:f7:0e:21:88:38:43:15:ce:f1:30:23:e4:67:c9:79:70: 68:30:c1:fe:4b:b7:23:26:5e:10:88:44:22:4f:81:c3:3a:7d: 89:dd:2c:5d:e2:6b:65:de:be:9b:51:7b:38:72:e7:fe:b9:e9: c7:88:05:89:76:a9:82:83:a6:9b:8a:58:f5:5c:b5:56:3c:14: 52:41:49:1d:f8:36:87:cc:fe:ba:c8:12:7d:4b:49:bd:c7:30: 5f:da:fa:d1:52:fe:39:67:9f:f7:bb:1c:76:93:fb:00:51:f8: 4c:b5:a2:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ5MzExMTAvBgNVBAUTKDY4REE0RTg1QTc5ODRCM0ZEMTBBRUYzNEM3RDFEMDBG MUI0NjQ1MzEwHhcNMjUxMDE4MjIyMjQ5WhcNMjUxMDI1MjIyMjQ5WjAYMRYwFAYD VQQDEw02OGY0MTMzOS1lODFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0/SY6m7Jwjq68y6I4Nl6VZ94fyI6hiAM3Y3DlUs8QOI3Xe2Bv1yv3/mxV1TW /wpWj3lJXQE+3PHh6RFQZWraPEArHtP/nq8qxR442vprdMEcZNNgyB1sook0ds2l B3DB2gZ3qdmdq8YNDoJB6kdL7NqWVlHTWAzXpplyViF4ca64ePBJXBeGS3NAHLWd LkJEI2AFVIc2a4UUF+wJAy0VwNl22UeJDRSKancVIMQJup0nLKlFUq5PKflpqtUz oPfDVujxL3eyKqH5s30kPbWm3uO6IVSpldPsYh//ODqJo3jkGMbgctJa1btL6dxw gj++X03nDsueWyZjVKD5Lus97wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtlvc1H IPcyd3bKrUgUZs6xZY9CMB8GA1UdIwQYMBaAFGjaToWnmEs/0QrvNMfR0A8bRkUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDkzMS9GQjVBNTA4NDA4 NTgxMUVCOTNCN0E2NkJDNEY5QUUwMi9hTnBPaGFlWVN6X1JDdTgweDlIUUR4dEdS VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FOcE9oYWVZU3pfUkN1ODB4OUhRRHh0R1JURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDkzMS9GQjVBNTA4NDA4NTgxMUVCOTNCN0E2NkJDNEY5QUUwMi9hTnBPaGFlWVN6 X1JDdTgweDlIUUR4dEdSVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnpAECP1TII54cNiUZK8l7SWRkjQ9IPMdWwwVTGwwPsbP7v7+cdTdI +SH6zD38ohullcsW94qcilrLgEtN4IG7b4OGbhlNDMsz1SMgYaZNOqhN+u0FM56K ARi5jP5h8k2H6okZEiYB+gn0TmZ3LVSMq5ojkODswB4qIWM7C7jH/Fr7RiLqrCKT dalokILhSmDSVfcOIYg4QxXO8TAj5GfJeXBoMMH+S7cjJl4QiEQiT4HDOn2J3Sxd 4mtl3r6bUXs4cuf+uenHiAWJdqmCg6abilj1XLVWPBRSQUkd+DaHzP66yBJ9S0m9 xzBf2vrRUv45Z5/3uxx2k/sAUfhMtaI8 -----END CERTIFICATE-----Generated at Mon Oct 20 17:56:09 2025 by rpki-client