$ rpki-client -vvf rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.mft File: jZoijMUvgA7lpDIwezQyxj2KnYc.mft (raw, json) Hash identifier: piuuzQ0DywnkglrCydhIbHWNicmnvmzQ1f1YfWV5LnY= Subject key identifier: 81:34:16:19:00:E6:26:76:36:E7:FB:EF:CE:44:EE:80:12:B5:74:C7 Authority key identifier: 8D:9A:22:8C:C5:2F:80:0E:E5:A4:32:30:7B:34:32:C6:3D:8A:9D:87 Certificate issuer: /CN=A918FDBF/serialNumber=8D9A228CC52F800EE5A432307B3432C63D8A9D87 Certificate serial: 1C1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.mft Manifest number: 1C12 Signing time: Sat 18 Oct 2025 16:32:13 +0000 Manifest this update: Sat 18 Oct 2025 16:32:13 +0000 Manifest next update: Sat 25 Oct 2025 16:32:13 +0000 Files and hashes: 1: jZoijMUvgA7lpDIwezQyxj2KnYc.crl (hash: RaS8A3POVJlcR4ua6mbz/ySPkVfDDPBgOQYjEN8vM7U=) 2: 1D88BC36F8C711E6B6C42C6CC4F9AE02.roa (hash: kBZXfU8hYHbxkpL5pMVsBeQd1k5TVtind4j2n+kliDs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.crl rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:32:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7197 (0x1c1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FDBF, serialNumber=8D9A228CC52F800EE5A432307B3432C63D8A9D87 Validity Not Before: Oct 18 16:32:13 2025 GMT Not After : Oct 25 16:32:13 2025 GMT Subject: CN=68f3c10d-7807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:65:fa:75:2e:37:07:91:c5:58:d8:be:51:ba: d3:22:6a:a8:76:7d:08:b0:70:48:4a:ff:05:f3:7e: f0:ee:23:2b:3f:b5:a7:5a:09:90:68:d0:76:4c:0d: 00:19:2a:a9:58:63:1d:24:94:43:a2:9f:b8:8c:08: 71:57:58:65:aa:0e:b6:8c:99:33:eb:2a:4f:ee:ac: 49:d5:63:a8:46:cd:8f:1e:be:e9:38:a8:07:15:12: 88:f8:26:4c:7a:90:93:30:cf:44:45:1f:d9:be:c4: 6e:d0:a4:c0:3a:85:dd:a0:2b:77:80:d3:78:b7:e0: b9:d7:71:a6:67:83:25:05:b3:ad:6e:73:f9:0d:bc: 1e:91:79:fe:5d:50:65:61:d4:e3:d2:81:0c:a7:f7: f8:eb:12:61:ef:2d:03:d5:48:9f:6f:c4:e3:a0:60: 8a:ea:4e:37:77:80:8f:10:d9:f7:63:f6:1f:0a:9b: cf:7b:2d:2c:cf:d4:2d:ce:3d:80:7b:d7:48:22:60: a3:37:56:a2:e1:d2:11:80:f3:17:7b:bb:ee:90:ba: e5:60:57:89:4b:fe:4d:79:f7:b4:c5:59:39:e0:e5: 2b:c8:9a:63:ac:55:1f:8f:29:50:0c:6f:63:4c:2c: 18:7f:a6:aa:d8:db:09:08:73:42:05:f5:d2:e8:b8: 07:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:34:16:19:00:E6:26:76:36:E7:FB:EF:CE:44:EE:80:12:B5:74:C7 X509v3 Authority Key Identifier: keyid:8D:9A:22:8C:C5:2F:80:0E:E5:A4:32:30:7B:34:32:C6:3D:8A:9D:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:89:82:a9:0a:b7:99:32:c6:86:17:98:cb:f1:af:b8:92:21: 96:d7:7d:a0:51:fd:93:26:64:d1:4c:e8:d7:3c:24:87:dd:f6: 5b:26:02:5a:73:ab:82:36:6a:94:59:db:38:e5:58:6d:de:4b: 21:45:16:38:4b:22:d6:e8:4d:7b:3d:58:2a:44:9d:bf:bc:e7: d0:a8:57:2d:df:ef:00:43:d0:62:a9:44:03:8c:31:da:be:75: 40:68:26:7c:7d:81:f9:47:cb:a2:1d:b9:c1:88:8c:f7:5f:c8: 3d:9a:10:e9:49:b0:ac:d7:76:a9:03:3d:94:7a:52:73:f0:4f: 33:d5:76:6b:ee:d9:ac:36:46:e8:39:55:75:25:2b:c6:71:2e: b0:ab:d7:ed:9b:38:0e:e4:60:be:a8:96:8e:66:22:60:7f:57: ec:d6:38:43:92:aa:0a:df:11:2f:2e:ad:e4:84:77:7a:7b:88: 1c:34:81:a6:a6:93:be:98:29:c2:f2:48:f4:3c:a4:c6:21:50: 12:08:72:3a:56:f8:af:b2:84:87:65:03:28:e2:02:6d:c6:56: 99:30:64:06:e8:20:81:ad:26:2b:3e:f7:e9:82:e5:40:95:e4: dd:ba:2c:2c:06:b1:56:61:dc:52:d3:2c:7b:82:99:4e:48:01: a3:4e:4d:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEQkYxMTAvBgNVBAUTKDhEOUEyMjhDQzUyRjgwMEVFNUE0MzIzMDdCMzQzMkM2 M0Q4QTlEODcwHhcNMjUxMDE4MTYzMjEzWhcNMjUxMDI1MTYzMjEzWjAYMRYwFAYD VQQDEw02OGYzYzEwZC03ODA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkWX6dS43B5HFWNi+UbrTImqodn0IsHBISv8F837w7iMrP7WnWgmQaNB2TA0A GSqpWGMdJJRDop+4jAhxV1hlqg62jJkz6ypP7qxJ1WOoRs2PHr7pOKgHFRKI+CZM epCTMM9ERR/ZvsRu0KTAOoXdoCt3gNN4t+C513GmZ4MlBbOtbnP5DbwekXn+XVBl YdTj0oEMp/f46xJh7y0D1Uifb8TjoGCK6k43d4CPENn3Y/YfCpvPey0sz9Qtzj2A e9dIImCjN1ai4dIRgPMXe7vukLrlYFeJS/5Nefe0xVk54OUryJpjrFUfjylQDG9j TCwYf6aq2NsJCHNCBfXS6LgH6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIE0FhkA 5iZ2Nuf7785E7oAStXTHMB8GA1UdIwQYMBaAFI2aIozFL4AO5aQyMHs0MsY9ip2H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkRCRi85OUEzMEFGOEY4 QzUxMUU2OUVCQzU1NkFDNEY5QUUwMi9qWm9pak1VdmdBN2xwREl3ZXpReXhqMktu WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pab2lqTVV2Z0E3bHBESXdlelF5eGoyS25ZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkRCRi85OUEzMEFGOEY4QzUxMUU2OUVCQzU1NkFDNEY5QUUwMi9qWm9pak1VdmdB N2xwREl3ZXpReXhqMktuWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYiYKpCreZMsaGF5jL8a+4kiGW132gUf2TJmTRTOjXPCSH3fZbJgJa c6uCNmqUWds45Vht3kshRRY4SyLW6E17PVgqRJ2/vOfQqFct3+8AQ9BiqUQDjDHa vnVAaCZ8fYH5R8uiHbnBiIz3X8g9mhDpSbCs13apAz2UelJz8E8z1XZr7tmsNkbo OVV1JSvGcS6wq9ftmzgO5GC+qJaOZiJgf1fs1jhDkqoK3xEvLq3khHd6e4gcNIGm ppO+mCnC8kj0PKTGIVASCHI6VvivsoSHZQMo4gJtxlaZMGQG6CCBrSYrPvfpguVA leTduiwsBrFWYdxS0yx7gplOSAGjTk1h -----END CERTIFICATE-----Generated at Mon Oct 20 04:05:49 2025 by rpki-client