$ rpki-client -vvf rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft File: aFCqv5vavya_oJKDAh_pE9aVbjI.mft (raw, json) Hash identifier: 3KORyFQbwoyc+m1AQLvTUD63PDIZ/TuWGQKIydS4/H8= Subject key identifier: 06:6A:B2:55:9C:27:20:F2:2B:2A:80:0B:4F:B5:E0:3F:B1:A2:75:4F Authority key identifier: 68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 Certificate issuer: /CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Certificate serial: 1333 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft Manifest number: 1323 Signing time: Fri 22 Aug 2025 17:10:00 +0000 Manifest this update: Fri 22 Aug 2025 17:10:00 +0000 Manifest next update: Fri 29 Aug 2025 17:10:00 +0000 Files and hashes: 1: aFCqv5vavya_oJKDAh_pE9aVbjI.crl (hash: nT21epo9nl+WR3CjGdMOh66ytJGxgbuxjzVJmsDiGYM=) 2: 583F2920A6E611EF9BD0C728C4F9AE02.roa (hash: QCjfIjSatqEkani4vFyMBR81W4WM4U5LTw8JrcC/R5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:09:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4915 (0x1333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F978, serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Validity Not Before: Aug 22 17:10:00 2025 GMT Not After : Aug 29 17:10:00 2025 GMT Subject: CN=68a8a468-fd2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:73:4e:55:21:80:e6:f7:45:c3:9d:22:d3:04: a0:68:fa:f5:11:a8:da:f1:c4:73:55:25:35:46:3f: 36:17:0b:1e:60:07:cf:62:7f:9e:6e:9a:48:97:cf: c5:11:f7:7a:27:77:b7:48:89:01:cd:8b:31:95:17: 0e:3e:5f:46:45:df:9b:34:19:3f:9a:7a:f3:5c:e4: 89:b9:f6:c4:32:a2:a4:f3:f2:21:09:d1:77:0a:74: a4:ee:5d:38:dd:f8:96:53:de:78:84:66:aa:ae:6e: a4:3a:5d:eb:5b:a2:ee:30:21:60:77:6c:55:4c:01: 61:14:0b:f1:80:d4:ab:ba:b9:93:19:3b:3e:6a:53: 6c:9a:d6:3e:9b:a4:e7:ed:9f:16:02:4d:c8:9a:da: 4e:1e:0f:03:66:c6:b9:59:25:5d:c0:9c:ca:a3:67: a8:e0:97:1a:11:2a:6b:85:c7:da:66:44:bc:c9:46: d0:95:a1:28:8a:44:86:e6:a7:0d:ab:d2:45:c4:1c: 06:e3:06:4b:8f:56:19:7b:d2:e5:df:d9:07:09:5a: d8:6c:7f:29:f8:45:28:a1:2f:cc:1a:c7:7a:e1:90: 04:e7:15:f1:7f:9c:87:f0:23:39:95:b5:fe:be:2b: ed:20:c1:4e:7e:2d:5b:53:96:29:a7:dd:86:a5:a0: fc:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:6A:B2:55:9C:27:20:F2:2B:2A:80:0B:4F:B5:E0:3F:B1:A2:75:4F X509v3 Authority Key Identifier: keyid:68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:0b:2e:30:44:7c:f5:57:e4:0e:56:3f:01:ab:ec:4a:0a:f4: 21:0e:56:23:68:ac:3b:da:74:61:87:27:f9:75:f1:b6:eb:49: 73:aa:8d:48:25:62:0a:22:c2:1f:93:d4:70:85:d8:85:e9:c9: 63:f1:47:06:2c:27:29:f9:3c:41:c1:13:cf:78:29:b3:1c:4a: f4:cf:7e:f7:2b:5e:67:bb:80:1b:13:13:68:c8:35:29:6d:d6: 4c:ed:1c:c1:17:4d:b2:28:3a:a0:24:51:89:07:e4:b5:7c:ee: d0:88:29:61:2e:94:ba:d4:56:84:ff:6f:52:fd:55:f0:53:38: f2:da:b7:83:4c:9d:cc:b8:6d:10:f7:6d:d8:7f:f5:ca:d2:38: 49:80:32:20:b3:c8:69:1f:66:2c:ec:01:01:be:36:18:cd:8b: e2:0e:47:2a:6b:82:36:1d:60:e9:c3:62:19:5e:6d:f3:49:9b: 56:67:5b:76:83:80:da:d8:5a:15:57:99:1e:91:f8:99:55:73: 58:40:3c:f0:c1:49:97:9c:af:b0:7c:fc:5a:37:7a:4f:c7:ee: 99:96:8d:66:20:5b:5a:79:5c:c7:2e:af:f3:90:ad:e8:36:0b: 52:85:f8:77:d8:57:1c:8e:e4:8e:06:63:73:23:b4:b1:db:52: 9b:ad:c4:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY5NzgxMTAvBgNVBAUTKDY4NTBBQUJGOUJEQUJGMjZCRkEwOTI4MzAyMUZFOTEz RDY5NTZFMzIwHhcNMjUwODIyMTcxMDAwWhcNMjUwODI5MTcxMDAwWjAYMRYwFAYD VQQDEw02OGE4YTQ2OC1mZDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3NOVSGA5vdFw50i0wSgaPr1Eaja8cRzVSU1Rj82FwseYAfPYn+ebppIl8/F Efd6J3e3SIkBzYsxlRcOPl9GRd+bNBk/mnrzXOSJufbEMqKk8/IhCdF3CnSk7l04 3fiWU954hGaqrm6kOl3rW6LuMCFgd2xVTAFhFAvxgNSrurmTGTs+alNsmtY+m6Tn 7Z8WAk3ImtpOHg8DZsa5WSVdwJzKo2eo4JcaESprhcfaZkS8yUbQlaEoikSG5qcN q9JFxBwG4wZLj1YZe9Ll39kHCVrYbH8p+EUooS/MGsd64ZAE5xXxf5yH8CM5lbX+ vivtIMFOfi1bU5Ypp92GpaD8QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZqslWc JyDyKyqAC0+14D+xonVPMB8GA1UdIwQYMBaAFGhQqr+b2r8mv6CSgwIf6RPWlW4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjk3OC83RTIyQjM3NEI2 OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5YV9vSktEQWhfcEU5YVZi akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGQ3F2NXZhdnlhX29KS0RBaF9wRTlhVmJqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjk3OC83RTIyQjM3NEI2OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5 YV9vSktEQWhfcEU5YVZiakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUCy4wRHz1V+QOVj8Bq+xKCvQhDlYjaKw72nRhhyf5dfG260lzqo1I JWIKIsIfk9RwhdiF6clj8UcGLCcp+TxBwRPPeCmzHEr0z373K15nu4AbExNoyDUp bdZM7RzBF02yKDqgJFGJB+S1fO7QiClhLpS61FaE/29S/VXwUzjy2reDTJ3MuG0Q 923Yf/XK0jhJgDIgs8hpH2Ys7AEBvjYYzYviDkcqa4I2HWDpw2IZXm3zSZtWZ1t2 g4Da2FoVV5kekfiZVXNYQDzwwUmXnK+wfPxaN3pPx+6Zlo1mIFtaeVzHLq/zkK3o NgtShfh32FccjuSOBmNzI7Sx21KbrcQH -----END CERTIFICATE-----Generated at Sat Aug 23 21:23:14 2025 by rpki-client