$ rpki-client -vvf rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft File: 0ewZe9sNlRk40e71SWoRrMoCiO8.mft (raw, json) Hash identifier: SdTYmqTmPQUOu6xfjOoMRHN9PfIRBFEP3y3j1kwSRLA= Subject key identifier: 56:A1:06:43:F5:B6:4A:23:A4:ED:92:12:17:68:69:FE:0B:51:7F:E2 Authority key identifier: D1:EC:19:7B:DB:0D:95:19:38:D1:EE:F5:49:6A:11:AC:CA:02:88:EF Certificate issuer: /CN=A919FDC0/serialNumber=D1EC197BDB0D951938D1EEF5496A11ACCA0288EF Certificate serial: 2F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ewZe9sNlRk40e71SWoRrMoCiO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft Manifest number: 2E Signing time: Sun 19 Oct 2025 11:12:29 +0000 Manifest this update: Sun 19 Oct 2025 11:12:28 +0000 Manifest next update: Sun 26 Oct 2025 11:12:28 +0000 Files and hashes: 1: 0ewZe9sNlRk40e71SWoRrMoCiO8.crl (hash: eWJC8P3Ox4/9GNS4MtZf/st76KLXV1FghkDYDTHEfAg=) 2: ACFE803469E911F0A7D42F68C4F9AE02.roa (hash: hVcLQOQnj8t+4j/b6kUDlk5JAqcOolfdhy262nXQ91E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.crl rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ewZe9sNlRk40e71SWoRrMoCiO8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:12:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FDC0, serialNumber=D1EC197BDB0D951938D1EEF5496A11ACCA0288EF Validity Not Before: Oct 19 11:12:28 2025 GMT Not After : Oct 26 11:12:28 2025 GMT Subject: CN=68f4c79c-95cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:37:c2:78:24:17:8d:28:9b:a5:4e:d1:e9:95: 89:e7:d2:80:67:b5:5b:ca:9f:34:60:a6:d2:1c:14: 9a:ec:5d:80:48:17:8d:7e:00:e1:95:1d:96:c5:83: 02:59:70:91:85:fa:e0:94:c1:d4:ce:3d:d8:88:db: fc:64:79:35:cd:fb:49:1e:f3:5f:99:d1:77:ed:ce: a0:63:9e:35:0f:53:bb:5a:f8:04:cb:b9:bf:37:91: 7e:90:92:93:d0:3e:fa:39:ca:ed:48:c0:85:72:62: f7:ce:e7:80:89:10:f0:75:b0:07:3e:3d:b0:3b:2f: 10:bd:c5:31:93:42:79:95:4c:7a:13:ed:86:e9:2a: 0a:49:c4:ad:88:2d:b9:7c:66:0e:fe:40:f2:3a:c2: 74:3c:ce:1f:2f:eb:d1:5a:8e:20:4b:f0:f9:5a:a7: 83:5f:49:42:7e:cf:3b:c6:77:0e:30:aa:16:53:e3: 69:3b:5c:c1:5c:d4:a5:73:7b:f8:6e:f0:4a:b8:3a: 1e:12:0e:9a:bd:03:9b:e8:a3:e8:56:1f:3a:fb:42: 03:b9:51:5e:01:ae:18:cf:a5:eb:8f:ab:81:40:7f: df:22:46:97:95:21:a5:60:dd:10:9c:4b:67:d9:d4: 48:a3:96:d6:2a:59:31:42:b8:5e:9d:cd:99:4f:0e: 9c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:A1:06:43:F5:B6:4A:23:A4:ED:92:12:17:68:69:FE:0B:51:7F:E2 X509v3 Authority Key Identifier: keyid:D1:EC:19:7B:DB:0D:95:19:38:D1:EE:F5:49:6A:11:AC:CA:02:88:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ewZe9sNlRk40e71SWoRrMoCiO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FDC0/2954D62A69E911F081B65B67C4F9AE02/0ewZe9sNlRk40e71SWoRrMoCiO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:9c:f4:36:18:0e:cd:06:2c:b8:15:1e:5e:11:6a:d0:ec:b9: 9e:12:1a:7a:cc:e5:ae:c2:9f:35:72:30:e9:cb:90:cb:06:0d: 03:9e:68:ee:7f:e1:4a:93:48:72:b9:cb:23:28:d0:a5:e6:8d: c9:c9:52:09:78:48:18:fc:bb:f0:9b:5b:8b:41:66:b4:4b:8b: d9:57:26:25:42:01:7a:0e:d6:04:76:27:20:6d:57:a7:da:f5: 84:5d:7e:7a:e6:7a:4a:e5:d0:6b:5d:bd:bf:42:90:f4:22:fd: d3:d6:07:3b:8f:bc:e1:0e:bd:c4:fa:cd:4d:17:11:50:56:a7: e0:62:b2:bb:69:32:a0:92:9d:29:d0:71:16:9f:e3:ce:1d:b8: 2d:8e:73:30:97:2f:1e:17:36:2c:8d:67:fd:ff:45:42:67:76: 0a:87:11:f5:ad:8e:7f:db:9e:01:47:64:9f:ff:70:18:93:e2: 71:f5:c9:59:52:02:ac:ac:30:8a:83:63:3e:62:36:ca:b5:cd: 0c:68:96:fb:85:d7:82:8d:82:b5:df:79:e8:56:b0:c7:d0:47: b2:8a:7c:d6:52:4a:d5:76:b8:1f:93:43:41:ae:8e:fb:84:7c: eb:56:aa:c8:f4:31:56:42:52:85:af:78:8e:a6:a0:f5:df:0d: e0:5d:18:2f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RkRDMDExMC8GA1UEBRMoRDFFQzE5N0JEQjBEOTUxOTM4RDFFRUY1NDk2QTExQUND QTAyODhFRjAeFw0yNTEwMTkxMTEyMjhaFw0yNTEwMjYxMTEyMjhaMBgxFjAUBgNV BAMTDTY4ZjRjNzljLTk1Y2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyN8J4JBeNKJulTtHplYnn0oBntVvKnzRgptIcFJrsXYBIF41+AOGVHZbFgwJZ cJGF+uCUwdTOPdiI2/xkeTXN+0ke81+Z0XftzqBjnjUPU7ta+ATLub83kX6QkpPQ Pvo5yu1IwIVyYvfO54CJEPB1sAc+PbA7LxC9xTGTQnmVTHoT7YbpKgpJxK2ILbl8 Zg7+QPI6wnQ8zh8v69FajiBL8Plap4NfSUJ+zzvGdw4wqhZT42k7XMFc1KVze/hu 8Eq4Oh4SDpq9A5voo+hWHzr7QgO5UV4BrhjPpeuPq4FAf98iRpeVIaVg3RCcS2fZ 1EijltYqWTFCuF6dzZlPDpzDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVqEGQ/W2 SiOk7ZISF2hp/gtRf+IwHwYDVR0jBBgwFoAU0ewZe9sNlRk40e71SWoRrMoCiO8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlGREMwLzI5NTRENjJBNjlF OTExRjA4MUI2NUI2N0M0RjlBRTAyLzBld1plOXNObFJrNDBlNzFTV29Sck1vQ2lP OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMGV3WmU5c05sUms0MGU3MVNXb1JyTW9DaU84LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlG REMwLzI5NTRENjJBNjlFOTExRjA4MUI2NUI2N0M0RjlBRTAyLzBld1plOXNObFJr NDBlNzFTV29Sck1vQ2lPOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKOc9DYYDs0GLLgVHl4RatDsuZ4SGnrM5a7CnzVyMOnLkMsGDQOeaO5/ 4UqTSHK5yyMo0KXmjcnJUgl4SBj8u/CbW4tBZrRLi9lXJiVCAXoO1gR2JyBtV6fa 9YRdfnrmekrl0Gtdvb9CkPQi/dPWBzuPvOEOvcT6zU0XEVBWp+BisrtpMqCSnSnQ cRaf484duC2OczCXLx4XNiyNZ/3/RUJndgqHEfWtjn/bngFHZJ//cBiT4nH1yVlS AqysMIqDYz5iNsq1zQxolvuF14KNgrXfeehWsMfQR7KKfNZSStV2uB+TQ0GujvuE fOtWqsj0MVZCUoWveI6moPXfDeBdGC8= -----END CERTIFICATE-----Generated at Tue Oct 21 15:15:15 2025 by rpki-client