$ rpki-client -vvf rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft File: Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft (raw, json) Hash identifier: u0HgWnwaDTMkF7uZHcSVEvTcANNPhJ+AM4aE5wJCVs8= Subject key identifier: A8:B4:6D:8B:91:CC:F7:70:8F:49:21:5F:DE:8A:EF:7B:9E:BE:BF:12 Authority key identifier: 15:DF:79:A0:07:39:BC:39:B7:17:89:25:95:8D:FE:E9:9B:E0:0D:42 Certificate issuer: /CN=A916B0EA/serialNumber=15DF79A00739BC39B7178925958DFEE99BE00D42 Certificate serial: 0864 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft Manifest number: 14B5 Signing time: Thu 18 Sep 2025 18:42:57 +0000 Manifest this update: Thu 18 Sep 2025 18:42:56 +0000 Manifest next update: Thu 25 Sep 2025 18:42:56 +0000 Files and hashes: 1: Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl (hash: eqtM2pmP5db78TduGcK2/iChCxy+VKP1r/nrsJGbxlc=) 2: 6535FEC0345C11F0B4126F3CC4F9AE02.roa (hash: pjUqvx9LjqZcGK0IESA4LP1Wg4xMY3NQqlqvkln9QM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:42:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2148 (0x864) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B0EA, serialNumber=15DF79A00739BC39B7178925958DFEE99BE00D42 Validity Not Before: Sep 18 18:42:56 2025 GMT Not After : Sep 25 18:42:56 2025 GMT Subject: CN=68cc52b0-d681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d5:20:11:b7:97:5e:c9:1d:73:56:4b:bb:84: 8e:f8:f8:28:ba:75:2d:be:23:38:be:3a:03:22:8b: bb:09:f5:21:37:38:18:0f:00:2f:b0:f7:ef:f9:8a: 8f:a9:b5:ca:88:e9:39:d5:5d:20:ef:b7:17:2f:be: 20:f1:88:99:77:cc:2c:ea:b6:0a:de:13:20:3e:91: 59:b3:f3:72:8d:de:99:63:54:c0:f9:0c:39:65:c9: e6:83:70:47:24:85:0e:ad:7b:ad:b8:d0:78:cb:f2: 27:fe:5c:10:51:aa:e8:ce:ef:bd:7a:b9:cf:cd:2f: 25:90:88:30:36:74:0e:e1:2f:9f:8a:bf:1f:43:0f: 75:3c:b5:df:5a:94:cc:61:c7:df:a3:d2:fe:dc:d0: 5b:86:8b:f6:ec:90:77:48:95:28:6a:e5:ec:15:af: 5c:d0:48:9f:1f:c4:11:89:c9:9d:ba:21:0a:2d:99: 0b:77:35:1a:ed:c8:a8:a7:fb:65:1a:39:8e:2a:80: 5d:2e:3d:38:68:79:d2:e2:98:50:c5:80:6c:c6:ba: 87:f4:97:25:2e:49:ef:ab:fa:26:c1:a9:db:5d:f9: eb:ed:06:06:1a:5f:ee:f6:8c:39:b9:81:88:ab:bb: eb:d7:cc:62:5b:82:a7:9f:0a:c5:f5:aa:12:e7:58: 70:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:B4:6D:8B:91:CC:F7:70:8F:49:21:5F:DE:8A:EF:7B:9E:BE:BF:12 X509v3 Authority Key Identifier: keyid:15:DF:79:A0:07:39:BC:39:B7:17:89:25:95:8D:FE:E9:9B:E0:0D:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:f6:e3:bc:be:7c:53:54:34:06:37:be:6f:35:b8:ef:c7:0e: 15:b5:10:6d:bf:78:1b:6f:d8:67:ea:c9:6b:f2:98:c4:40:6f: b3:57:45:69:95:0e:f6:b0:b8:d2:12:dd:fc:4b:2a:07:a8:81: 3a:f1:30:03:cf:3a:2d:b2:45:c9:3f:1e:40:d3:70:c4:29:46: 2b:51:ba:b7:58:24:4c:05:1b:f8:99:6e:3e:8d:45:04:65:8d: 8b:f1:63:b3:9a:fb:9c:61:2c:74:1d:a7:0a:61:78:80:72:6e: 14:b7:78:ef:1f:03:f1:62:47:4b:b1:c4:b0:09:45:bf:94:87: 75:1a:70:ac:98:bb:b9:fa:bb:b3:87:c7:d1:4c:8b:05:fb:19: 8c:a2:40:b3:07:91:5a:01:ea:3e:99:fb:62:77:e2:29:63:27: ce:e3:1c:38:d8:11:8b:5c:f9:2b:58:af:51:b6:db:c8:f1:15: e6:3d:a8:f8:b5:6c:5a:f9:03:2f:9c:30:24:29:ed:b7:84:a8: 0d:e0:54:c2:d3:c3:ed:5a:66:b4:37:a8:16:ed:3a:73:4a:6e: bb:d2:3c:f6:cb:5c:e2:90:7a:5f:6f:8d:dc:76:d8:7f:5e:8c: 1a:ad:aa:58:d6:0b:dd:fa:ea:ce:11:7a:ac:dd:87:d2:25:8d: a6:99:80:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwRUExMTAvBgNVBAUTKDE1REY3OUEwMDczOUJDMzlCNzE3ODkyNTk1OERGRUU5 OUJFMDBENDIwHhcNMjUwOTE4MTg0MjU2WhcNMjUwOTI1MTg0MjU2WjAYMRYwFAYD VQQDEw02OGNjNTJiMC1kNjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtUgEbeXXskdc1ZLu4SO+PgounUtviM4vjoDIou7CfUhNzgYDwAvsPfv+YqP qbXKiOk51V0g77cXL74g8YiZd8ws6rYK3hMgPpFZs/Nyjd6ZY1TA+Qw5Zcnmg3BH JIUOrXutuNB4y/In/lwQUarozu+9ernPzS8lkIgwNnQO4S+fir8fQw91PLXfWpTM Ycffo9L+3NBbhov27JB3SJUoauXsFa9c0EifH8QRicmduiEKLZkLdzUa7ciop/tl GjmOKoBdLj04aHnS4phQxYBsxrqH9JclLknvq/omwanbXfnr7QYGGl/u9ow5uYGI q7vr18xiW4KnnwrF9aoS51hw3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKi0bYuR zPdwj0khX96K73uevr8SMB8GA1UdIwQYMBaAFBXfeaAHObw5txeJJZWN/umb4A1C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjBFQS80RDhFNDlCMDBC NzQxMUVBQTU4NDAwMUNDNEY5QUUwMi9GZDk1b0FjNXZEbTNGNGtsbFkzLTZadmdE VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZkOTVvQWM1dkRtM0Y0a2xsWTMtNlp2Z0RVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjBFQS80RDhFNDlCMDBCNzQxMUVBQTU4NDAwMUNDNEY5QUUwMi9GZDk1b0FjNXZE bTNGNGtsbFkzLTZadmdEVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDF9uO8vnxTVDQGN75vNbjvxw4VtRBtv3gbb9hn6slr8pjEQG+zV0Vp lQ72sLjSEt38SyoHqIE68TADzzotskXJPx5A03DEKUYrUbq3WCRMBRv4mW4+jUUE ZY2L8WOzmvucYSx0HacKYXiAcm4Ut3jvHwPxYkdLscSwCUW/lId1GnCsmLu5+ruz h8fRTIsF+xmMokCzB5FaAeo+mftid+IpYyfO4xw42BGLXPkrWK9RttvI8RXmPaj4 tWxa+QMvnDAkKe23hKgN4FTC08PtWma0N6gW7TpzSm670jz2y1zikHpfb43cdth/ XowarapY1gvd+urOEXqs3YfSJY2mmYA7 -----END CERTIFICATE-----Generated at Fri Sep 19 02:36:20 2025 by rpki-client