$ rpki-client -vvf rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft File: aEWjVwdX5r8sBIWsIXib_1AFHpo.mft (raw, json) Hash identifier: Qo+wvCaSewu74SQcP0pZnADYl+ia1MejOFh5UYcaaUA= Subject key identifier: F1:8C:C8:CA:68:A5:75:16:92:E6:09:24:1A:97:65:6F:03:BA:4D:4A Authority key identifier: 68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A Certificate issuer: /CN=A913500A/serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Certificate serial: 0183 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft Manifest number: 0180 Signing time: Wed 17 Sep 2025 04:10:20 +0000 Manifest this update: Wed 17 Sep 2025 04:10:19 +0000 Manifest next update: Wed 24 Sep 2025 04:10:19 +0000 Files and hashes: 1: aEWjVwdX5r8sBIWsIXib_1AFHpo.crl (hash: ci4TcL4rYDHoZ8Bj/1vuSsZZDlR/PZ9bghfCjolrN1g=) 2: 0CE4B8C6474911EEA995D74FC4F9AE02.roa (hash: o8XeNpRnuUBlVWA6mPKxdSovFEQUWjBzrI7Rs+4BJAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:10:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913500A, serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Validity Not Before: Sep 17 04:10:19 2025 GMT Not After : Sep 24 04:10:19 2025 GMT Subject: CN=68ca34ac-e984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:dc:3d:65:9d:eb:e4:0f:84:0c:2f:63:96:88: d0:87:d3:de:ba:a1:7b:96:8c:f6:2e:77:65:cf:b9: 65:98:88:12:f0:48:d3:25:27:09:22:6b:17:7e:17: a2:04:83:04:f0:47:b3:b2:96:e2:7c:a9:28:47:c5: 84:3b:f6:45:9b:af:2e:7d:c3:2b:38:95:a1:7d:f6: 91:af:6b:53:44:14:38:a5:e9:94:af:a7:02:18:50: 53:f7:f1:11:bd:6e:c4:2e:ca:05:40:4e:21:e5:98: 2a:57:28:75:aa:31:fe:a0:3a:18:52:83:c5:7a:7b: 13:c8:32:23:41:d2:9b:a8:d7:d4:b7:5c:c5:8b:74: 2f:d6:8f:74:bc:16:92:65:41:86:be:21:7c:fc:d8: 7a:a8:e3:cc:e3:c4:47:a3:43:3a:b6:33:2c:df:89: b1:1a:65:01:9f:eb:03:66:60:4c:ef:77:87:6d:ba: a2:bb:fb:ca:02:77:49:80:d6:7b:2a:67:bd:4b:44: 2b:82:e7:e0:cf:f6:dd:3e:7e:7e:08:f4:eb:56:c8: f2:97:f4:4d:42:89:ab:65:42:23:9f:9d:b1:6d:2f: de:f4:b4:0a:fd:55:7a:82:72:16:18:a0:f1:ca:99: da:5b:8c:e7:d0:dc:96:53:56:aa:45:cf:bf:20:40: 17:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:8C:C8:CA:68:A5:75:16:92:E6:09:24:1A:97:65:6F:03:BA:4D:4A X509v3 Authority Key Identifier: keyid:68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:74:21:6b:f5:64:5e:1a:32:70:9d:bb:a7:ee:3e:eb:91:b0: ed:4f:76:80:67:a5:44:e7:5b:e5:61:f1:22:cf:d5:6b:90:34: 5e:fa:ea:07:30:74:b4:66:34:78:41:be:a1:9b:d7:e4:18:eb: 41:7c:9a:b6:1e:b6:a1:43:49:fc:09:09:10:03:37:74:63:2c: 59:56:3e:81:89:7b:97:9b:2a:8b:00:ce:f3:ff:71:95:d5:ed: e5:b0:9d:5b:f4:e0:f6:73:45:c2:e8:7e:56:0f:03:de:bb:eb: c0:ae:2d:a4:a1:11:3d:0a:38:18:9a:4a:d4:10:98:4a:57:36: 64:ba:c4:d4:74:f3:b2:5d:a0:e8:17:b4:e9:9c:92:3e:1b:63: 3f:55:e0:2c:cf:7a:31:f2:02:44:f3:02:a4:ae:79:2f:a2:5e: 00:27:17:93:15:16:b1:bb:28:57:d2:da:66:eb:d3:d3:aa:63: 03:5b:f4:74:91:f3:b6:36:f0:0c:ef:ea:5c:78:16:8e:c6:3f: 68:0e:ad:48:9b:48:93:a7:6e:43:27:14:51:9f:75:fe:89:a1: 45:f5:e3:d4:c6:f7:32:44:9c:94:5b:aa:d8:d5:74:27:19:b4: be:7f:b5:03:e2:fa:3d:bc:d3:46:e6:15:f4:c6:3c:9f:e2:74: bd:c0:cb:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMEExMTAvBgNVBAUTKDY4NDVBMzU3MDc1N0U2QkYyQzA0ODVBQzIxNzg5QkZG NTAwNTFFOUEwHhcNMjUwOTE3MDQxMDE5WhcNMjUwOTI0MDQxMDE5WjAYMRYwFAYD VQQDEw02OGNhMzRhYy1lOTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9w9ZZ3r5A+EDC9jlojQh9PeuqF7loz2Lndlz7llmIgS8EjTJScJImsXfhei BIME8EezspbifKkoR8WEO/ZFm68ufcMrOJWhffaRr2tTRBQ4pemUr6cCGFBT9/ER vW7ELsoFQE4h5ZgqVyh1qjH+oDoYUoPFensTyDIjQdKbqNfUt1zFi3Qv1o90vBaS ZUGGviF8/Nh6qOPM48RHo0M6tjMs34mxGmUBn+sDZmBM73eHbbqiu/vKAndJgNZ7 Kme9S0Qrgufgz/bdPn5+CPTrVsjyl/RNQomrZUIjn52xbS/e9LQK/VV6gnIWGKDx ypnaW4zn0NyWU1aqRc+/IEAXWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPGMyMpo pXUWkuYJJBqXZW8Duk1KMB8GA1UdIwQYMBaAFGhFo1cHV+a/LASFrCF4m/9QBR6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAwQS9DQ0EzRUE5MjQ3 M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVyOHNCSVdzSVhpYl8xQUZI cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FFV2pWd2RYNXI4c0JJV3NJWGliXzFBRkhwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTAwQS9DQ0EzRUE5MjQ3M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVy OHNCSVdzSVhpYl8xQUZIcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCidCFr9WReGjJwnbun7j7rkbDtT3aAZ6VE51vlYfEiz9VrkDRe+uoH MHS0ZjR4Qb6hm9fkGOtBfJq2HrahQ0n8CQkQAzd0YyxZVj6BiXuXmyqLAM7z/3GV 1e3lsJ1b9OD2c0XC6H5WDwPeu+vAri2koRE9CjgYmkrUEJhKVzZkusTUdPOyXaDo F7TpnJI+G2M/VeAsz3ox8gJE8wKkrnkvol4AJxeTFRaxuyhX0tpm69PTqmMDW/R0 kfO2NvAM7+pceBaOxj9oDq1Im0iTp25DJxRRn3X+iaFF9ePUxvcyRJyUW6rY1XQn GbS+f7UD4vo9vNNG5hX0xjyf4nS9wMtP -----END CERTIFICATE-----Generated at Thu Sep 18 20:29:07 2025 by rpki-client