$ rpki-client -vvf rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft File: 4bzIEhAO1GAiFweJMk8cw6-_aq0.mft (raw, json) Hash identifier: 1JCgk7gc76b4gy6Cf9VYl3JQWuVlN28wyRpTGH1QKRE= Subject key identifier: 40:B0:86:6E:2E:BC:18:0C:14:5E:9F:2E:66:80:CE:7A:DF:9C:F2:8C Authority key identifier: E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD Certificate issuer: /CN=A916AAFF/serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Certificate serial: 015B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft Manifest number: 0153 Signing time: Mon 27 Oct 2025 06:18:27 +0000 Manifest this update: Mon 27 Oct 2025 06:18:27 +0000 Manifest next update: Mon 03 Nov 2025 06:18:27 +0000 Files and hashes: 1: 4bzIEhAO1GAiFweJMk8cw6-_aq0.crl (hash: MO3yR+PUEKeB3UaAHPSEpW8+My4TUYRVMgQx0JHWyqk=) 2: 69E8AC12555811EFA88AEA24C4F9AE02.roa (hash: phqylkhfGei3IojXYcRRdYxObeB6TnyHw6jd5mx17zE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 06:18:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 347 (0x15b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AAFF, serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Validity Not Before: Oct 27 06:18:27 2025 GMT Not After : Nov 3 06:18:27 2025 GMT Subject: CN=68ff0eb3-a20d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:56:f0:c4:a8:e3:64:0a:99:29:86:ce:94:9c: d8:a5:b6:a2:ce:9b:41:f2:fb:5e:c3:eb:19:93:3c: 5a:5b:91:fa:f3:40:a6:91:67:a8:f9:41:d5:e0:66: 59:14:b5:4b:20:51:e7:b9:0f:16:f2:09:05:7c:c8: 2e:97:b4:ec:3b:d2:c7:2b:ef:54:bd:bb:38:f4:66: 05:b0:7b:90:5e:43:23:57:12:e8:50:78:e0:13:23: d5:d1:ee:bc:d6:59:c6:82:d0:d4:62:06:57:90:e3: 0a:67:7b:3d:8e:e4:f4:5e:b9:9f:bf:5f:c9:8a:0c: ed:be:d4:e7:f1:e9:a2:60:64:cc:e3:c0:8e:5f:2f: 38:c2:ee:e5:5d:11:26:e3:53:b3:f3:42:87:a1:60: 31:c0:87:07:9b:b3:5b:b3:bf:46:97:68:b7:36:57: 78:2c:4f:0b:18:68:97:3e:7f:92:2d:01:c4:76:69: c9:09:43:06:e7:46:1d:6f:23:28:d8:07:12:12:a9: 8e:b9:ae:c9:05:16:71:50:4d:6d:71:c9:44:a0:13: b2:ec:ce:d2:92:df:da:46:b9:46:0a:40:78:21:44: 71:c0:47:3c:5d:a5:29:b7:c3:66:52:27:fb:95:3f: b8:40:8e:bb:47:78:4b:cd:6b:e3:5e:1b:39:5f:a4: b7:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B0:86:6E:2E:BC:18:0C:14:5E:9F:2E:66:80:CE:7A:DF:9C:F2:8C X509v3 Authority Key Identifier: keyid:E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:5e:fd:de:56:c8:b4:a6:20:c8:fa:b5:f5:c6:62:ee:b2:4b: 98:2e:a8:a2:3d:d1:10:60:d5:05:66:8d:e2:cb:96:bc:8a:46: 36:3d:99:5c:a5:96:36:97:fb:48:05:c2:7b:94:4c:81:56:1a: 4d:29:c4:c9:9f:24:94:21:98:73:fe:d4:95:cb:33:97:35:c9: c7:a5:c6:92:f3:03:64:cc:0d:5f:19:95:33:f6:57:64:d5:a4: 13:46:3f:8f:83:a1:cf:80:b6:60:1b:79:fb:6e:b0:cf:32:cd: 58:d6:f5:5b:99:4c:42:46:94:29:be:62:d6:b3:7b:f1:2b:a3: 45:23:53:04:09:5c:09:6c:be:b3:8e:44:34:48:74:1b:26:10: 8c:51:16:79:bb:bf:ad:18:f0:62:b3:75:f2:94:02:07:40:e1: a7:d6:08:23:e5:6d:3e:28:71:12:d3:2d:d0:12:48:c0:7c:65: dd:37:74:91:d8:e3:39:bb:8c:82:9a:e9:05:b0:fb:3f:8d:41: c2:d4:9d:79:82:0e:a6:b3:6e:73:7a:6e:27:78:4b:6d:3e:dc: 7a:b6:56:08:36:56:e5:ef:62:31:a5:b9:46:36:48:03:43:4a: 9f:83:69:17:6b:01:f4:ec:c5:0c:9f:68:33:98:0e:2b:16:c1: b2:4c:92:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFBRkYxMTAvBgNVBAUTKEUxQkNDODEyMTAwRUQ0NjAyMjE3MDc4OTMyNEYxQ0Mz QUZCRjZBQUQwHhcNMjUxMDI3MDYxODI3WhcNMjUxMTAzMDYxODI3WjAYMRYwFAYD VQQDEw02OGZmMGViMy1hMjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9VbwxKjjZAqZKYbOlJzYpbaizptB8vtew+sZkzxaW5H680CmkWeo+UHV4GZZ FLVLIFHnuQ8W8gkFfMgul7TsO9LHK+9Uvbs49GYFsHuQXkMjVxLoUHjgEyPV0e68 1lnGgtDUYgZXkOMKZ3s9juT0Xrmfv1/JigztvtTn8emiYGTM48COXy84wu7lXREm 41Oz80KHoWAxwIcHm7Nbs79Gl2i3Nld4LE8LGGiXPn+SLQHEdmnJCUMG50YdbyMo 2AcSEqmOua7JBRZxUE1tcclEoBOy7M7Skt/aRrlGCkB4IURxwEc8XaUpt8NmUif7 lT+4QI67R3hLzWvjXhs5X6S38wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFECwhm4u vBgMFF6fLmaAznrfnPKMMB8GA1UdIwQYMBaAFOG8yBIQDtRgIhcHiTJPHMOvv2qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUFGRi83QkI4QkE2Q0JC M0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFHQWlGd2VKTWs4Y3c2LV9h cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRieklFaEFPMUdBaUZ3ZUpNazhjdzYtX2FxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUFGRi83QkI4QkE2Q0JCM0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFH QWlGd2VKTWs4Y3c2LV9hcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUXv3eVsi0piDI+rX1xmLuskuYLqiiPdEQYNUFZo3iy5a8ikY2PZlc pZY2l/tIBcJ7lEyBVhpNKcTJnySUIZhz/tSVyzOXNcnHpcaS8wNkzA1fGZUz9ldk 1aQTRj+Pg6HPgLZgG3n7brDPMs1Y1vVbmUxCRpQpvmLWs3vxK6NFI1MECVwJbL6z jkQ0SHQbJhCMURZ5u7+tGPBis3XylAIHQOGn1ggj5W0+KHES0y3QEkjAfGXdN3SR 2OM5u4yCmukFsPs/jUHC1J15gg6ms25zem4neEttPtx6tlYINlbl72IxpblGNkgD Q0qfg2kXawH07MUMn2gzmA4rFsGyTJJq -----END CERTIFICATE-----Generated at Tue Oct 28 11:45:14 2025 by rpki-client