$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft File: 40tPgNnj9wC8rExSxasj61t-37s.mft (raw, json) Hash identifier: Z4d/xb72vUeN65bd6QG3Xbvp0ITc/b8SsJA9J8/HPyI= Subject key identifier: A8:E9:36:9D:B6:A3:0B:9C:60:CD:3C:32:75:DF:CE:54:F7:BC:B9:50 Authority key identifier: E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB Certificate issuer: /CN=A918E4B7/serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Certificate serial: 0183 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft Manifest number: 017D Signing time: Sun 19 Oct 2025 01:18:26 +0000 Manifest this update: Sun 19 Oct 2025 01:18:25 +0000 Manifest next update: Sun 26 Oct 2025 01:18:25 +0000 Files and hashes: 1: 40tPgNnj9wC8rExSxasj61t-37s.crl (hash: eyxT2GGFb84uMokvqABn5bCl/dS6XXa7vU8jmmwBJ2I=) 2: 1E4ABC8C50C111EFA64C2437C4F9AE02.roa (hash: DiLiUTq4svYLUGh7Zlk/IkFGkuorqIquvoUuPTfglVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:18:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Validity Not Before: Oct 19 01:18:25 2025 GMT Not After : Oct 26 01:18:25 2025 GMT Subject: CN=68f43c62-277f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:22:89:a5:b6:a5:4f:53:48:0c:3c:9b:16:47: f1:43:ba:76:41:dd:92:86:2d:78:e1:48:f9:e4:4c: 01:c6:fa:85:da:7c:2b:a5:04:10:b7:29:ff:21:3f: 04:d3:f7:9c:4c:6e:87:21:62:06:4a:86:78:c3:79: 3b:67:dd:a6:ef:3e:75:74:6e:33:7d:d5:22:0e:29: 19:db:0e:9b:dd:ae:b0:bc:e0:8c:a0:d5:cb:e4:f2: 52:f4:bd:35:49:88:0b:d0:eb:b3:ad:03:9f:38:d6: 60:67:75:d7:3f:72:b9:c7:51:15:7f:61:e2:ad:ec: fc:6f:c6:9a:9e:26:1e:df:f7:f2:33:e3:57:e4:03: 7f:49:b8:a8:04:91:e8:b6:60:26:cc:7c:b5:5b:f0: bd:e7:aa:34:b1:43:18:65:4c:61:db:86:9f:ea:de: 42:ae:f1:69:45:92:53:85:51:c2:86:a8:45:c8:e7: a1:0a:a9:d2:93:4e:55:98:60:ef:bc:21:1b:e1:71: e4:e7:bf:66:64:ea:75:02:76:4b:f4:54:d0:1b:9a: 8f:4e:6b:bb:3c:eb:84:3a:c6:e9:67:de:88:06:ae: 7f:e1:f6:a6:db:02:8b:bb:d9:d1:bb:86:c1:59:8a: 56:f7:a3:79:63:0b:94:0e:54:9f:78:c4:25:da:d8: ba:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:E9:36:9D:B6:A3:0B:9C:60:CD:3C:32:75:DF:CE:54:F7:BC:B9:50 X509v3 Authority Key Identifier: keyid:E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:5f:bd:4f:6f:b7:c5:bb:f1:53:a5:a1:a2:0b:cd:50:b4:e0: a0:63:14:90:13:ed:19:5c:cc:dc:42:84:d0:63:df:e6:a1:75: 2c:9b:79:0f:6a:df:f8:9a:88:5e:64:8d:c7:9e:73:01:6e:18: 84:be:9f:f1:9e:17:89:d3:e7:9f:d8:5c:b4:b1:24:9d:bb:1f: fb:d4:31:42:e7:1c:4f:33:2a:b8:b9:f7:c0:65:d1:29:c2:23: f4:fe:8b:c8:d6:f4:b9:4c:8f:77:9a:29:bb:97:38:cd:04:b2: 84:e2:2b:1c:05:f7:50:2e:94:c5:ce:c7:eb:ae:e6:57:58:10: 88:f8:8f:9f:a9:cd:5a:43:27:40:e3:4b:be:c8:b8:bd:95:b9: af:32:dd:22:36:4c:b3:61:9d:d5:f9:64:6d:50:3b:c1:32:1f: 6c:ae:6b:9c:59:cd:ba:7f:b9:e5:5b:a9:25:59:a2:36:65:56: a5:60:0a:b1:66:31:43:b3:10:57:53:fd:7c:1a:64:e5:ef:dd: 06:89:25:ac:05:b8:89:c2:00:02:83:46:42:e1:b8:f1:86:af: ef:d5:a6:39:39:f5:79:82:82:49:0b:ac:14:1b:c6:76:81:18: f4:dd:42:47:43:9e:70:fb:ca:fd:9b:0a:3e:1c:22:6f:92:a0: 14:b6:fa:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKEUzNEI0RjgwRDlFM0Y3MDBCQ0FDNEM1MkM1QUIyM0VC NUI3RURGQkIwHhcNMjUxMDE5MDExODI1WhcNMjUxMDI2MDExODI1WjAYMRYwFAYD VQQDEw02OGY0M2M2Mi0yNzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyKJpbalT1NIDDybFkfxQ7p2Qd2Shi144Uj55EwBxvqF2nwrpQQQtyn/IT8E 0/ecTG6HIWIGSoZ4w3k7Z92m7z51dG4zfdUiDikZ2w6b3a6wvOCMoNXL5PJS9L01 SYgL0OuzrQOfONZgZ3XXP3K5x1EVf2Hirez8b8aaniYe3/fyM+NX5AN/SbioBJHo tmAmzHy1W/C956o0sUMYZUxh24af6t5CrvFpRZJThVHChqhFyOehCqnSk05VmGDv vCEb4XHk579mZOp1AnZL9FTQG5qPTmu7POuEOsbpZ96IBq5/4fam2wKLu9nRu4bB WYpW96N5YwuUDlSfeMQl2ti6eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjpNp22 owucYM08MnXfzlT3vLlQMB8GA1UdIwQYMBaAFONLT4DZ4/cAvKxMUsWrI+tbft+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy85NkU2Njc1QTc4 NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3QzhyRXhTeGFzajYxdC0z N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQwdFBnTm5qOXdDOHJFeFN4YXNqNjF0LTM3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTRCNy85NkU2Njc1QTc4NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3 QzhyRXhTeGFzajYxdC0zN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwX71Pb7fFu/FTpaGiC81QtOCgYxSQE+0ZXMzcQoTQY9/moXUsm3kP at/4moheZI3HnnMBbhiEvp/xnheJ0+ef2Fy0sSSdux/71DFC5xxPMyq4uffAZdEp wiP0/ovI1vS5TI93mim7lzjNBLKE4iscBfdQLpTFzsfrruZXWBCI+I+fqc1aQydA 40u+yLi9lbmvMt0iNkyzYZ3V+WRtUDvBMh9srmucWc26f7nlW6klWaI2ZValYAqx ZjFDsxBXU/18GmTl790GiSWsBbiJwgACg0ZC4bjxhq/v1aY5OfV5goJJC6wUG8Z2 gRj03UJHQ55w+8r9mwo+HCJvkqAUtvqs -----END CERTIFICATE-----Generated at Tue Oct 21 05:01:27 2025 by rpki-client