$ rpki-client -vvf rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft File: aEWjVwdX5r8sBIWsIXib_1AFHpo.mft (raw, json) Hash identifier: 6OXkVjusltWksNaVleGmdphZtCnBebQeWOjig5WRBV8= Subject key identifier: 67:DB:09:54:42:18:6B:7C:02:8A:CA:49:D6:C2:87:88:B3:ED:CC:2D Authority key identifier: 68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A Certificate issuer: /CN=A913500A/serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Certificate serial: 019A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft Manifest number: 0197 Signing time: Mon 03 Nov 2025 03:23:00 +0000 Manifest this update: Mon 03 Nov 2025 03:23:00 +0000 Manifest next update: Mon 10 Nov 2025 03:23:00 +0000 Files and hashes: 1: aEWjVwdX5r8sBIWsIXib_1AFHpo.crl (hash: 2epgfWoTXjliKAHMKMXv/csl0tr6hTLPpZOAYF+Goa4=) 2: 0CE4B8C6474911EEA995D74FC4F9AE02.roa (hash: o8XeNpRnuUBlVWA6mPKxdSovFEQUWjBzrI7Rs+4BJAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:22:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 410 (0x19a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913500A, serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Validity Not Before: Nov 3 03:23:00 2025 GMT Not After : Nov 10 03:23:00 2025 GMT Subject: CN=69082014-c943 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0d:85:40:81:61:16:a7:5b:2e:6b:e2:b0:d3: 30:99:13:89:e5:36:e3:f9:ca:67:c7:c7:bd:7f:4d: e0:fa:f0:f2:b2:8d:3b:c9:6a:9e:d9:7a:25:e1:a2: 93:58:e6:d8:86:3c:7f:79:42:d1:1a:f3:9e:e1:78: 60:d3:af:86:12:bc:be:f7:f3:f0:79:f8:02:28:10: 9c:0e:cc:79:5e:4f:80:9b:19:48:51:d5:f4:c4:9b: ac:cd:6a:23:c3:0b:a7:a9:51:19:25:a2:80:dd:8d: 24:54:ba:e2:86:b6:f9:e7:58:4e:3c:46:e4:56:49: f4:29:c7:f8:bf:72:f0:16:37:a6:50:0c:ce:74:d4: 15:8b:0e:ff:c2:f3:57:56:43:2d:bd:7b:fd:20:19: 5c:bf:71:bb:f1:c3:99:26:96:49:10:83:6b:ee:ae: f4:68:48:5d:d1:cf:ff:23:00:28:6a:d1:20:0c:e0: e9:0a:05:9b:57:5c:cc:5a:ba:57:8b:3f:9a:96:76: f7:31:15:7a:66:a6:11:51:52:87:37:e8:de:ab:26: 64:91:36:9e:3d:59:9b:3d:5b:62:ff:e2:18:79:04: a4:e2:35:60:65:c1:6a:bb:4b:a9:33:31:96:6a:b6: c6:01:c1:53:25:45:88:aa:ac:5a:dd:71:73:1a:70: de:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:DB:09:54:42:18:6B:7C:02:8A:CA:49:D6:C2:87:88:B3:ED:CC:2D X509v3 Authority Key Identifier: keyid:68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:34:06:98:c6:61:ce:11:89:47:e4:a2:68:94:fd:18:4e:c2: 40:0e:65:97:b5:d6:b7:2d:26:2c:38:79:12:cd:85:08:c4:55: 17:5a:11:27:8f:ee:af:c0:b2:8a:d9:6c:28:01:6e:ff:8e:3a: 80:c2:6b:16:2c:bd:8d:79:1e:57:9d:86:10:e1:c0:92:ea:35: e1:ea:e1:6d:56:31:78:70:60:ce:67:e0:e2:65:e1:7a:17:8f: 69:97:54:2b:b8:9e:86:c8:c0:3b:10:32:36:e4:ba:ad:b9:f2: b3:12:bd:4c:1f:a5:0c:c1:fc:2b:c5:e9:78:cd:1a:e8:82:68: 2c:64:d5:d0:d8:e7:e7:01:71:a8:a9:08:e6:5f:87:c5:b0:a7: ee:4f:23:2b:39:d4:df:87:a3:da:c5:19:97:b4:9b:b5:86:67: 5b:9b:e5:c4:69:05:f5:80:72:a4:4c:2d:63:70:da:da:79:50: 00:dd:f2:fb:f7:1f:31:fd:49:34:6e:17:a9:35:59:8f:6f:3d: 0d:c9:19:0b:2f:d9:1e:44:ea:42:56:35:e7:78:11:6d:36:31: 3a:bc:4a:16:d2:fe:e4:49:c9:8a:e9:19:e8:90:01:af:7a:49: 04:37:12:2c:03:f5:f6:af:66:50:06:ae:21:3a:ab:03:d6:32: 6c:48:1c:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMEExMTAvBgNVBAUTKDY4NDVBMzU3MDc1N0U2QkYyQzA0ODVBQzIxNzg5QkZG NTAwNTFFOUEwHhcNMjUxMTAzMDMyMzAwWhcNMjUxMTEwMDMyMzAwWjAYMRYwFAYD VQQDEw02OTA4MjAxNC1jOTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApw2FQIFhFqdbLmvisNMwmROJ5Tbj+cpnx8e9f03g+vDyso07yWqe2Xol4aKT WObYhjx/eULRGvOe4Xhg06+GEry+9/PwefgCKBCcDsx5Xk+AmxlIUdX0xJuszWoj wwunqVEZJaKA3Y0kVLrihrb551hOPEbkVkn0Kcf4v3LwFjemUAzOdNQViw7/wvNX VkMtvXv9IBlcv3G78cOZJpZJEINr7q70aEhd0c//IwAoatEgDODpCgWbV1zMWrpX iz+alnb3MRV6ZqYRUVKHN+jeqyZkkTaePVmbPVti/+IYeQSk4jVgZcFqu0upMzGW arbGAcFTJUWIqqxa3XFzGnDeBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfbCVRC GGt8AorKSdbCh4iz7cwtMB8GA1UdIwQYMBaAFGhFo1cHV+a/LASFrCF4m/9QBR6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAwQS9DQ0EzRUE5MjQ3 M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVyOHNCSVdzSVhpYl8xQUZI cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FFV2pWd2RYNXI4c0JJV3NJWGliXzFBRkhwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTAwQS9DQ0EzRUE5MjQ3M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVy OHNCSVdzSVhpYl8xQUZIcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmNAaYxmHOEYlH5KJolP0YTsJADmWXtda3LSYsOHkSzYUIxFUXWhEn j+6vwLKK2WwoAW7/jjqAwmsWLL2NeR5XnYYQ4cCS6jXh6uFtVjF4cGDOZ+DiZeF6 F49pl1QruJ6GyMA7EDI25LqtufKzEr1MH6UMwfwrxel4zRrogmgsZNXQ2OfnAXGo qQjmX4fFsKfuTyMrOdTfh6PaxRmXtJu1hmdbm+XEaQX1gHKkTC1jcNraeVAA3fL7 9x8x/Uk0bhepNVmPbz0NyRkLL9keROpCVjXneBFtNjE6vEoW0v7kScmK6RnokAGv ekkENxIsA/X2r2ZQBq4hOqsD1jJsSBx0 -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:19 2025 by rpki-client