$ rpki-client -vvf rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft File: 1FLGfvaHRDivqZOoStCrwYUWkhs.mft (raw, json) Hash identifier: /PURvCfKzIk2uWxVpyrJLDIsgok8FvDoH2qDYYXJHTo= Subject key identifier: 3B:AE:CE:88:7A:24:E2:D7:86:50:28:2B:AE:22:63:7D:A9:14:DB:51 Authority key identifier: D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B Certificate issuer: /CN=A915FD27/serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Certificate serial: 0271 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft Manifest number: 026A Signing time: Mon 03 Nov 2025 01:39:12 +0000 Manifest this update: Mon 03 Nov 2025 01:39:12 +0000 Manifest next update: Mon 10 Nov 2025 01:39:12 +0000 Files and hashes: 1: 1FLGfvaHRDivqZOoStCrwYUWkhs.crl (hash: AbmqtK/xiEsUE1zSWyufPeWWK2FDRAiztDiB5lBb1QA=) 2: 9BDA59F69C8C11F0A27C535EC4F9AE02.roa (hash: tcpEfQimbgGgCKxs43ap0j00HaFFUo0cjpbDGWWFteI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:39:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 625 (0x271) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FD27, serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Validity Not Before: Nov 3 01:39:12 2025 GMT Not After : Nov 10 01:39:12 2025 GMT Subject: CN=690807c0-726b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:90:ac:cc:48:ec:36:64:6e:66:43:e2:03:c4: b1:04:b9:2c:be:88:99:85:b1:aa:99:3b:d5:42:65: 33:51:da:3b:ff:ff:2e:d3:67:45:46:ae:3e:84:df: a5:bc:f9:95:7d:48:22:8c:f5:e5:71:45:4d:d6:5c: bb:3a:92:eb:11:df:3b:b4:4e:6e:dd:e8:da:af:46: c0:19:15:de:a0:c7:70:cc:d9:19:25:20:c1:93:cf: a0:e6:a3:d9:e0:b0:c4:b3:2b:2d:b5:15:24:33:5a: 68:f0:a5:19:e2:44:9f:7f:c5:fd:8b:65:02:86:20: 52:f0:19:ed:60:5a:6c:43:40:cb:10:f5:d0:41:1f: 27:35:fc:6b:b9:48:8d:b8:6d:18:d8:3f:d3:32:3a: df:2b:18:77:29:0b:88:e0:1f:36:ea:53:61:90:49: be:65:01:83:62:94:54:53:ea:c8:ff:18:f0:db:f8: 1d:74:41:12:74:6b:38:72:b2:82:94:68:87:3d:13: 39:f9:16:9d:4c:e5:cb:66:8c:0c:a5:7a:20:b9:1f: d0:5c:4a:35:68:90:00:c2:9a:0a:95:cb:c7:28:f1: 32:48:be:52:1a:7a:75:2e:69:22:5a:9f:a0:de:a8: 0a:6f:ea:50:ca:dc:77:6b:27:fc:f7:03:e8:cc:91: bd:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:AE:CE:88:7A:24:E2:D7:86:50:28:2B:AE:22:63:7D:A9:14:DB:51 X509v3 Authority Key Identifier: keyid:D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:93:91:85:ee:14:ec:f9:ce:14:47:32:af:19:03:68:a0:39: da:db:47:b0:83:ae:e8:4e:00:fc:5b:a0:9a:ea:95:6a:fe:71: 0d:ad:7d:22:d3:93:15:e1:3f:57:42:41:04:f0:d4:2a:51:90: aa:7a:6a:c8:33:0a:40:29:50:9f:3a:22:a5:1d:f5:56:67:a3: f8:57:3e:b2:2b:1a:32:46:16:0b:04:f0:01:72:67:8c:8f:64: 12:d0:65:31:91:1b:0a:ba:59:07:dc:d8:29:c1:2a:07:09:b6: b5:b4:1d:4f:e9:d9:c8:f4:bb:5c:41:c6:04:1a:5f:b6:2c:64: 01:dc:e2:d2:a8:0d:d8:29:ac:70:e7:1b:9f:c7:56:4d:e8:75: 2e:40:58:75:85:bf:b5:e9:4a:69:03:20:5e:8b:1c:2a:21:83: c9:a9:92:66:3c:37:f2:e4:4d:8a:43:14:f1:ea:bf:c4:c4:8b: c4:90:c3:09:0f:68:c2:a2:dc:e3:82:73:7b:aa:b2:5a:32:4b: fc:f2:b6:16:01:f2:80:92:b1:2b:46:7e:39:d4:bc:93:b3:16: a6:f8:05:97:49:7f:8f:10:78:2a:d3:34:ea:f1:50:d8:c6:fa: e2:9c:63:cf:d4:5b:1a:dc:13:9d:2d:e6:09:13:ea:94:3e:79: 39:92:32:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZEMjcxMTAvBgNVBAUTKEQ0NTJDNjdFRjY4NzQ0MzhBRkE5OTNBODRBRDBBQkMx ODUxNjkyMUIwHhcNMjUxMTAzMDEzOTEyWhcNMjUxMTEwMDEzOTEyWjAYMRYwFAYD VQQDEw02OTA4MDdjMC03MjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJCszEjsNmRuZkPiA8SxBLksvoiZhbGqmTvVQmUzUdo7//8u02dFRq4+hN+l vPmVfUgijPXlcUVN1ly7OpLrEd87tE5u3ejar0bAGRXeoMdwzNkZJSDBk8+g5qPZ 4LDEsysttRUkM1po8KUZ4kSff8X9i2UChiBS8BntYFpsQ0DLEPXQQR8nNfxruUiN uG0Y2D/TMjrfKxh3KQuI4B826lNhkEm+ZQGDYpRUU+rI/xjw2/gddEESdGs4crKC lGiHPRM5+RadTOXLZowMpXoguR/QXEo1aJAAwpoKlcvHKPEySL5SGnp1LmkiWp+g 3qgKb+pQytx3ayf89wPozJG9HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDuuzoh6 JOLXhlAoK64iY32pFNtRMB8GA1UdIwQYMBaAFNRSxn72h0Q4r6mTqErQq8GFFpIb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkQyNy9BODBEQjM4MjM1 RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJEaXZxWk9vU3RDcndZVVdr aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGTEdmdmFIUkRpdnFaT29TdENyd1lVV2tocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkQyNy9BODBEQjM4MjM1RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJE aXZxWk9vU3RDcndZVVdraHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgk5GF7hTs+c4URzKvGQNooDna20ewg67oTgD8W6Ca6pVq/nENrX0i 05MV4T9XQkEE8NQqUZCqemrIMwpAKVCfOiKlHfVWZ6P4Vz6yKxoyRhYLBPABcmeM j2QS0GUxkRsKulkH3NgpwSoHCba1tB1P6dnI9LtcQcYEGl+2LGQB3OLSqA3YKaxw 5xufx1ZN6HUuQFh1hb+16UppAyBeixwqIYPJqZJmPDfy5E2KQxTx6r/ExIvEkMMJ D2jCotzjgnN7qrJaMkv88rYWAfKAkrErRn451LyTsxam+AWXSX+PEHgq0zTq8VDY xvrinGPP1Fsa3BOdLeYJE+qUPnk5kjJo -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:07 2025 by rpki-client