$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft File: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft (raw, json) Hash identifier: +ykVZVqSQCXRIzsBLm9MNmj7LHczf0vsaCZl9Dg9wOA= Subject key identifier: 57:B7:E8:CC:16:EA:98:52:FA:D8:52:60:CC:E0:58:D3:13:5A:94:16 Authority key identifier: 16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 Certificate issuer: /CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Certificate serial: 0B71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft Manifest number: 0B5A Signing time: Sat 18 Oct 2025 19:59:59 +0000 Manifest this update: Sat 18 Oct 2025 19:59:58 +0000 Manifest next update: Sat 25 Oct 2025 19:59:58 +0000 Files and hashes: 1: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl (hash: Su06tFCfUS9bbu1UWr3jHV1qrwasZnotXYn3IPiPET0=) 2: 9D999E187CA811F0AE15ED6EC4F9AE02.roa (hash: J/Y6p2/yKRXDBc4lXrVgkXTkn/NmrMfJzbfX/5O/hQo=) 3: B285AC807CA911F09D442F15C4F9AE02.roa (hash: UX2zMGfv+WxZ0voK+QDzKZn1ZKk782a4iAXgqqE0IQo=) 4: DC06CBC0419A11EAA5E2BA6EC4F9AE02.roa (hash: jb+NbLPJbNRFrpXKly3k3uaY8m7AD5q86vW7O0jvGcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:59:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2929 (0xb71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC40, serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Validity Not Before: Oct 18 19:59:58 2025 GMT Not After : Oct 25 19:59:58 2025 GMT Subject: CN=68f3f1bf-5f4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1b:7c:e5:c5:1c:db:b8:1d:cf:a0:66:b5:62: 61:bc:f5:5e:67:7a:07:66:4a:ef:7f:4f:e4:29:6e: 16:2a:7c:c9:c5:61:55:db:e4:0b:30:a9:9f:82:d4: 78:b2:da:63:7e:55:33:87:ab:5a:66:d2:9c:57:bf: 9c:85:c7:3b:37:5f:cf:6c:78:6b:36:01:99:d2:6c: 14:6a:09:dd:5e:a4:64:c0:ff:f7:65:b1:fc:39:b0: ed:55:6b:56:0f:86:6a:ad:6f:8b:f2:b8:8b:6d:a9: 45:10:5a:27:e0:1a:35:8a:50:ff:28:28:c0:2e:2c: ea:5a:dc:a4:bd:5e:53:41:11:fb:44:ab:42:a1:fa: 14:86:c0:3a:a0:f0:93:b8:90:88:d2:5c:13:51:7a: 99:2c:4e:d7:da:2f:ea:de:54:4f:e6:ee:e2:2e:6d: 98:cd:b5:ec:9b:5e:a9:4b:8d:66:d2:10:7d:90:23: c5:8e:fd:92:ce:b9:fe:69:4f:f5:d0:9b:49:29:07: e3:72:89:a1:36:c0:ee:af:ad:59:84:da:76:d2:69: 85:49:cc:b5:e5:8f:9a:7e:9e:44:f9:1c:39:ee:16: f9:15:cc:e2:e8:b7:bc:cf:2d:b8:75:88:29:ed:43: 9c:52:b0:7c:93:a2:7e:24:11:38:6e:96:7e:66:78: 1d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:B7:E8:CC:16:EA:98:52:FA:D8:52:60:CC:E0:58:D3:13:5A:94:16 X509v3 Authority Key Identifier: keyid:16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:05:8b:c3:ce:c6:2d:bc:87:6a:8c:75:5a:95:72:17:6f:ed: 3e:a8:41:88:70:3c:c7:76:14:e0:29:26:ed:fa:ab:be:78:17: de:15:74:02:93:13:bc:d4:62:66:45:44:3c:f8:c5:81:b8:4c: 1e:08:9d:db:d2:cb:38:e9:e7:70:35:1c:2e:ca:d5:a8:34:d5: 0b:17:9c:f5:8b:8d:58:4d:ca:c0:a8:b2:2d:21:10:3f:d7:a8: 52:3d:e1:10:1e:34:13:73:12:b0:ec:9b:d9:32:0d:8b:85:ec: a6:e8:33:39:f7:0b:bc:55:e9:71:90:33:ec:ea:23:5c:94:09: 36:0f:c0:1d:a1:b6:f6:cb:c1:ba:83:26:29:fa:18:b5:2a:7b: ba:f9:71:d7:fb:4d:f3:e1:39:dd:a7:66:d2:bc:a7:0b:aa:43: 72:29:68:16:20:13:1a:fd:3b:64:6e:0c:b3:71:fd:40:30:a8: ac:d1:03:6a:90:e5:f2:a3:47:96:e7:9d:ba:18:ac:68:66:9b: bf:45:3b:2b:4b:18:f9:a0:bb:36:ef:ee:c5:9c:0d:70:56:eb: f3:d1:6d:9f:10:60:e5:a0:65:db:03:cb:a7:99:c3:db:70:db: 96:34:fc:c2:f0:a3:3c:c8:a7:78:68:dd:e9:e4:93:32:ef:c2: 2d:00:79:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNDAxMTAvBgNVBAUTKDE2MDFEODY1MERENTU2QjJBRkIwODNCMjMzRkY2NUFF M0RBRDE1NzEwHhcNMjUxMDE4MTk1OTU4WhcNMjUxMDI1MTk1OTU4WjAYMRYwFAYD VQQDEw02OGYzZjFiZi01ZjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxt85cUc27gdz6BmtWJhvPVeZ3oHZkrvf0/kKW4WKnzJxWFV2+QLMKmfgtR4 stpjflUzh6taZtKcV7+chcc7N1/PbHhrNgGZ0mwUagndXqRkwP/3ZbH8ObDtVWtW D4ZqrW+L8riLbalFEFon4Bo1ilD/KCjALizqWtykvV5TQRH7RKtCofoUhsA6oPCT uJCI0lwTUXqZLE7X2i/q3lRP5u7iLm2YzbXsm16pS41m0hB9kCPFjv2Szrn+aU/1 0JtJKQfjcomhNsDur61ZhNp20mmFScy15Y+afp5E+Rw57hb5Fczi6Le8zy24dYgp 7UOcUrB8k6J+JBE4bpZ+Zngd6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFe36MwW 6phS+thSYMzgWNMTWpQWMB8GA1UdIwQYMBaAFBYB2GUN1Vayr7CDsjP/Za49rRVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM0MC82MTdGMzUzNjQw RTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZyS3ZzSU95TV85bHJqMnRG WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnSFlaUTNWVnJLdnNJT3lNXzlscmoydEZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkM0MC82MTdGMzUzNjQwRTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZy S3ZzSU95TV85bHJqMnRGWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVBYvDzsYtvIdqjHValXIXb+0+qEGIcDzHdhTgKSbt+qu+eBfeFXQC kxO81GJmRUQ8+MWBuEweCJ3b0ss46edwNRwuytWoNNULF5z1i41YTcrAqLItIRA/ 16hSPeEQHjQTcxKw7JvZMg2Lheym6DM59wu8VelxkDPs6iNclAk2D8Adobb2y8G6 gyYp+hi1Knu6+XHX+03z4Tndp2bSvKcLqkNyKWgWIBMa/Ttkbgyzcf1AMKis0QNq kOXyo0eW5526GKxoZpu/RTsrSxj5oLs27+7FnA1wVuvz0W2fEGDloGXbA8unmcPb cNuWNPzC8KM8yKd4aN3p5JMy78ItAHl4 -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:44 2025 by rpki-client