$ rpki-client -vvf rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft File: Pq60tRb3A-pY8W4I2opmdwP7XK4.mft (raw, json) Hash identifier: JCjMnXmVJPM+CUr21xrnVZnw+QQ58a919Uhbzrr6YIQ= Subject key identifier: 23:33:70:9A:32:C4:3A:6D:1D:98:CD:0C:D4:4D:14:FE:7A:EB:EB:90 Authority key identifier: 3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE Certificate issuer: /CN=A919D109/serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Certificate serial: 0192 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft Manifest number: 018A Signing time: Sun 19 Oct 2025 06:15:08 +0000 Manifest this update: Sun 19 Oct 2025 06:15:07 +0000 Manifest next update: Sun 26 Oct 2025 06:15:07 +0000 Files and hashes: 1: Pq60tRb3A-pY8W4I2opmdwP7XK4.crl (hash: t8Cw3JeJcqyAHHR/dl3QvTuH2er9E/dbg3beo/MpS/Y=) 2: B67DC27A60E311EEB04BEA49C4F9AE02.roa (hash: Uh7NExbaYKDBSUUKd+crKnXeWpl3+22sEhcewGQ9kp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:15:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 402 (0x192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D109, serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Validity Not Before: Oct 19 06:15:07 2025 GMT Not After : Oct 26 06:15:07 2025 GMT Subject: CN=68f481ec-7434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d7:1e:94:ed:ba:f0:84:f7:a5:f1:f8:8e:5a: f6:b8:d0:c3:2a:a0:f8:02:81:b3:9b:fb:1d:4e:d9: 3f:15:f0:82:af:0b:38:9b:5d:ad:c9:01:e1:98:1f: 02:35:2e:83:a1:6f:e5:c0:83:34:e8:f4:02:9a:13: 0b:35:bb:5c:ac:96:a7:03:0e:58:f6:a7:eb:62:44: af:bc:7a:8b:e3:e9:dc:4b:2d:f9:ce:f2:40:a3:56: 03:f5:2c:43:4a:d7:3b:33:7e:24:58:e0:b1:99:63: 02:b6:d7:b5:99:c1:fa:0f:28:b3:d4:15:d9:f5:68: 90:71:d8:78:88:a7:1c:0f:7b:e0:5d:69:35:8f:e4: ec:82:de:26:d0:a1:3a:1c:f5:ab:6c:33:5f:3b:fc: 0a:db:48:63:fe:72:e4:cd:82:7d:a8:58:29:83:91: 2b:ed:8b:12:4d:46:e7:90:ae:8b:1a:9b:f6:78:d8: 14:ab:49:41:b5:38:7f:6a:3f:e5:4e:f5:5b:1b:15: aa:7f:09:e9:49:43:ae:d9:12:21:58:14:b8:da:2f: 59:40:5a:85:64:bd:b7:24:67:e8:55:de:01:ff:f3: 1a:8b:6e:8f:7c:f7:27:02:a9:6f:be:94:1e:14:f0: bf:70:45:70:82:42:9c:4d:7e:7d:dd:4c:09:81:2e: d2:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:33:70:9A:32:C4:3A:6D:1D:98:CD:0C:D4:4D:14:FE:7A:EB:EB:90 X509v3 Authority Key Identifier: keyid:3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:70:73:80:36:a9:04:bf:ab:db:83:e3:c9:97:d5:45:4b:1c: 24:22:59:d7:33:8b:78:b4:1a:c1:7f:d3:4f:e7:98:8b:43:80: e9:de:ca:7d:ee:0e:8e:1c:a4:81:fc:0c:28:e5:f8:6a:cc:24: ff:6f:4d:39:f6:6c:a4:c9:81:c8:f6:cc:b7:fe:84:ad:2a:eb: 0b:70:64:21:7f:f7:f2:87:f5:88:9f:95:e9:1a:e3:ba:c9:d7: f3:5e:59:d1:34:da:ce:e0:79:df:d7:20:65:86:1d:09:69:cd: c5:4b:fa:07:e7:8d:6a:bf:04:db:11:dc:b6:23:37:62:79:d6: f1:38:9f:32:d3:26:2a:c1:98:1d:9c:33:99:e2:96:ea:3d:73: d9:37:5b:30:03:61:eb:38:f8:4b:14:83:22:a1:14:af:31:2b: 86:bd:6a:e2:50:9d:7c:06:49:0b:69:83:91:e3:31:47:0f:e5: 21:5a:3e:11:a5:4b:14:f4:19:dc:f9:c9:b6:8b:aa:1f:17:f7: ce:f6:e3:35:ca:91:45:db:c6:4c:e4:e5:ea:47:f2:80:09:ed: 76:02:e8:ca:4f:e2:d9:d8:1f:a2:db:71:c9:dd:95:21:8c:93: 63:0e:06:d9:55:66:25:7a:31:8f:ca:4f:44:5b:3a:b3:2b:92: 15:1b:04:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxMDkxMTAvBgNVBAUTKDNFQUVCNEI1MTZGNzAzRUE1OEYxNkUwOERBOEE2Njc3 MDNGQjVDQUUwHhcNMjUxMDE5MDYxNTA3WhcNMjUxMDI2MDYxNTA3WjAYMRYwFAYD VQQDEw02OGY0ODFlYy03NDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNcelO268IT3pfH4jlr2uNDDKqD4AoGzm/sdTtk/FfCCrws4m12tyQHhmB8C NS6DoW/lwIM06PQCmhMLNbtcrJanAw5Y9qfrYkSvvHqL4+ncSy35zvJAo1YD9SxD Stc7M34kWOCxmWMCtte1mcH6Dyiz1BXZ9WiQcdh4iKccD3vgXWk1j+Tsgt4m0KE6 HPWrbDNfO/wK20hj/nLkzYJ9qFgpg5Er7YsSTUbnkK6LGpv2eNgUq0lBtTh/aj/l TvVbGxWqfwnpSUOu2RIhWBS42i9ZQFqFZL23JGfoVd4B//Mai26PfPcnAqlvvpQe FPC/cEVwgkKcTX593UwJgS7SgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCMzcJoy xDptHZjNDNRNFP566+uQMB8GA1UdIwQYMBaAFD6utLUW9wPqWPFuCNqKZncD+1yu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDEwOS9EQUM2NjZDMDVD RTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0EtcFk4VzRJMm9wbWR3UDdY SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxNjB0UmIzQS1wWThXNEkyb3BtZHdQN1hLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDEwOS9EQUM2NjZDMDVDRTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0Et cFk4VzRJMm9wbWR3UDdYSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAicHOANqkEv6vbg+PJl9VFSxwkIlnXM4t4tBrBf9NP55iLQ4Dp3sp9 7g6OHKSB/Awo5fhqzCT/b0059mykyYHI9sy3/oStKusLcGQhf/fyh/WIn5XpGuO6 ydfzXlnRNNrO4Hnf1yBlhh0Jac3FS/oH541qvwTbEdy2IzdiedbxOJ8y0yYqwZgd nDOZ4pbqPXPZN1swA2HrOPhLFIMioRSvMSuGvWriUJ18BkkLaYOR4zFHD+UhWj4R pUsU9Bnc+cm2i6ofF/fO9uM1ypFF28ZM5OXqR/KACe12AujKT+LZ2B+i23HJ3ZUh jJNjDgbZVWYlejGPyk9EWzqzK5IVGwQq -----END CERTIFICATE-----Generated at Mon Oct 20 04:45:52 2025 by rpki-client