$ rpki-client -vvf rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft File: aFCqv5vavya_oJKDAh_pE9aVbjI.mft (raw, json) Hash identifier: qHO88j1KWAIUmwrX+DTmF+J9YVsDqQh9iucJ8UrcAWs= Subject key identifier: DE:4E:47:BF:BA:14:12:4B:1F:F6:3A:A6:E6:B0:1B:EB:0A:3B:0C:B6 Authority key identifier: 68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 Certificate issuer: /CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Certificate serial: 1353 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft Manifest number: 1342 Signing time: Sat 18 Oct 2025 17:31:07 +0000 Manifest this update: Sat 18 Oct 2025 17:31:07 +0000 Manifest next update: Sat 25 Oct 2025 17:31:07 +0000 Files and hashes: 1: aFCqv5vavya_oJKDAh_pE9aVbjI.crl (hash: ZCLsVcMuIJT1jyPdRN+gtvf3KJIr5CpYwFkOdBAR4x8=) 2: 583F2920A6E611EF9BD0C728C4F9AE02.roa (hash: 2Gji4G+Q8to0sVMvyUq5wjYv71c4JLksDjj2P3IW/B4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4947 (0x1353) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F978, serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Validity Not Before: Oct 18 17:31:07 2025 GMT Not After : Oct 25 17:31:07 2025 GMT Subject: CN=68f3cedb-0145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:97:f3:d8:8e:13:76:6e:75:99:f9:34:0d:34: 4c:32:d8:50:f0:30:7c:08:76:a9:99:a5:57:33:bf: 6f:06:5e:28:bc:11:04:e6:18:c6:51:ba:62:59:1f: e9:b4:c7:7d:66:49:54:3c:fd:73:58:2d:c9:28:74: 9d:0c:b9:23:25:bd:0c:4c:39:55:fc:84:02:f3:41: f4:5f:e6:98:d5:8c:eb:c4:60:16:ef:f4:d7:23:f5: 1c:e5:73:5e:64:52:59:7e:42:77:34:00:f7:6b:5b: df:f4:e2:5d:71:4d:7a:65:38:4e:6f:f1:01:86:45: 13:a7:9f:e2:97:b8:74:a9:e5:eb:62:cd:38:c7:bd: 8c:5d:17:28:a8:af:eb:95:79:eb:e0:1a:a1:b0:2e: f2:a7:76:ea:8b:a1:0a:fe:c3:23:2e:a1:f4:52:2a: f4:dd:52:f8:6b:ba:58:74:c3:63:ba:76:ea:41:09: b4:3c:31:4a:5a:75:44:8e:8a:0d:17:47:6f:ac:75: 10:30:fe:98:22:81:73:88:7d:73:8f:79:ff:ed:0d: 94:5b:70:77:04:32:56:4e:d6:93:ce:5f:de:4f:4d: 95:c0:d3:bc:61:6b:7d:3e:63:ed:40:78:a0:da:ea: d0:17:cf:15:e9:4f:6b:47:e3:21:42:a3:fd:51:29: d6:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:4E:47:BF:BA:14:12:4B:1F:F6:3A:A6:E6:B0:1B:EB:0A:3B:0C:B6 X509v3 Authority Key Identifier: keyid:68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:5f:47:3b:25:77:32:a4:69:01:6e:e8:b4:7f:f7:cc:57:8d: 67:01:0a:3f:0a:c9:be:48:ee:73:c5:83:8e:fb:cc:a6:2c:36: 3d:2c:02:d3:b6:02:4b:9f:04:3f:c9:90:63:1b:b5:64:7d:b5: e3:ae:2c:0c:7a:30:27:29:d9:db:86:d4:8c:e5:ac:12:61:7b: ff:a2:4c:bc:ee:8c:6a:29:74:b1:6f:e0:92:97:2d:e4:c9:9f: 1d:1c:ff:be:32:b2:7a:37:67:cd:33:ad:62:f0:12:ca:f4:97: 90:ec:2f:b6:fc:85:3b:ef:73:37:e9:77:52:bf:24:47:eb:33: ed:6f:2c:41:d1:53:3d:57:75:16:a2:27:3c:24:ff:6a:2c:21: 1e:67:1a:bb:17:5d:57:06:51:76:94:8c:f3:02:7f:9e:54:5b: 59:f0:ff:5a:5d:c3:b2:ea:95:d7:56:72:a8:19:0d:d3:f2:14: 3c:ad:4e:9d:a9:69:7f:a1:d5:c1:bf:26:ed:09:74:69:48:93: 33:c3:b5:c5:02:d5:b0:11:d5:bc:6e:7f:83:cf:37:c3:65:3b: 3f:0b:64:d9:52:f5:b7:6f:9f:0e:83:1d:a5:b9:03:4c:78:b3: a2:10:a6:4b:5d:26:eb:75:58:98:90:a8:72:bf:87:be:a2:a1: b2:88:6b:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY5NzgxMTAvBgNVBAUTKDY4NTBBQUJGOUJEQUJGMjZCRkEwOTI4MzAyMUZFOTEz RDY5NTZFMzIwHhcNMjUxMDE4MTczMTA3WhcNMjUxMDI1MTczMTA3WjAYMRYwFAYD VQQDEw02OGYzY2VkYi0wMTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzpfz2I4Tdm51mfk0DTRMMthQ8DB8CHapmaVXM79vBl4ovBEE5hjGUbpiWR/p tMd9ZklUPP1zWC3JKHSdDLkjJb0MTDlV/IQC80H0X+aY1YzrxGAW7/TXI/Uc5XNe ZFJZfkJ3NAD3a1vf9OJdcU16ZThOb/EBhkUTp5/il7h0qeXrYs04x72MXRcoqK/r lXnr4BqhsC7yp3bqi6EK/sMjLqH0Uir03VL4a7pYdMNjunbqQQm0PDFKWnVEjooN F0dvrHUQMP6YIoFziH1zj3n/7Q2UW3B3BDJWTtaTzl/eT02VwNO8YWt9PmPtQHig 2urQF88V6U9rR+MhQqP9USnWbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5OR7+6 FBJLH/Y6puawG+sKOwy2MB8GA1UdIwQYMBaAFGhQqr+b2r8mv6CSgwIf6RPWlW4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjk3OC83RTIyQjM3NEI2 OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5YV9vSktEQWhfcEU5YVZi akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGQ3F2NXZhdnlhX29KS0RBaF9wRTlhVmJqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjk3OC83RTIyQjM3NEI2OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5 YV9vSktEQWhfcEU5YVZiakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALX0c7JXcypGkBbui0f/fMV41nAQo/Csm+SO5zxYOO+8ymLDY9LALT tgJLnwQ/yZBjG7VkfbXjriwMejAnKdnbhtSM5awSYXv/oky87oxqKXSxb+CSly3k yZ8dHP++MrJ6N2fNM61i8BLK9JeQ7C+2/IU773M36XdSvyRH6zPtbyxB0VM9V3UW oic8JP9qLCEeZxq7F11XBlF2lIzzAn+eVFtZ8P9aXcOy6pXXVnKoGQ3T8hQ8rU6d qWl/odXBvybtCXRpSJMzw7XFAtWwEdW8bn+DzzfDZTs/C2TZUvW3b58Ogx2luQNM eLOiEKZLXSbrdViYkKhyv4e+oqGyiGsH -----END CERTIFICATE-----Generated at Sun Oct 19 23:28:13 2025 by rpki-client