$ rpki-client -vvf rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft File: aFEZgfy52vrY49MDBLtBqW-5p28.mft (raw, json) Hash identifier: ZmglJEssDSxSECqKlnUwaOgaJp+09BqYzVjF5gm2W/I= Subject key identifier: 70:AF:2C:B6:0C:9B:2F:00:98:7D:BE:8E:D0:14:D1:6D:FD:F9:3C:BF Authority key identifier: 68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F Certificate issuer: /CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Certificate serial: 04E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft Manifest number: 04DA Signing time: Sun 02 Nov 2025 23:46:15 +0000 Manifest this update: Sun 02 Nov 2025 23:46:14 +0000 Manifest next update: Sun 09 Nov 2025 23:46:14 +0000 Files and hashes: 1: aFEZgfy52vrY49MDBLtBqW-5p28.crl (hash: FhNL0zg1KW2M6wwleHBbGWkFPPVzGeY/66To0ullAUA=) 2: 5C2186C444B011F0B9799F48C4F9AE02.roa (hash: JJ/1SR0EZ5l7PECR67PAK+euRry+RLFa/pJug2YY29I=) 3: 3E60217E42D211EC956C7F65C4F9AE02.roa (hash: uugn7/J2yz2AlJqn3GxqBNZUwmGZ4weF3jg7XtTcTNs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:46:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1257 (0x4e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918196D, serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Validity Not Before: Nov 2 23:46:14 2025 GMT Not After : Nov 9 23:46:14 2025 GMT Subject: CN=6907ed46-a143 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:58:93:b9:40:d6:eb:44:68:a6:11:8d:6b:58: 77:04:cf:4a:a9:23:c1:c2:5a:2f:e3:03:40:a4:32: 2f:a0:20:c8:77:fc:d0:a6:3a:4d:e8:48:39:c9:c8: 0f:07:2d:3c:ea:ae:f1:72:49:59:97:3a:f8:96:63: 7f:e3:f9:d3:74:5d:8f:20:b7:2b:f7:82:76:6b:56: 58:f2:a2:89:44:68:83:cc:4e:da:50:89:6f:9f:d2: 10:cf:25:a1:75:4d:14:da:7c:89:e4:51:38:90:d1: bd:64:b9:36:ca:ec:3f:c9:50:53:73:70:2e:37:ed: aa:ff:76:c1:8a:2b:1b:c1:cb:bd:b6:f0:28:48:76: 56:27:61:1a:e9:af:d4:2d:17:04:19:db:7d:ab:36: 3c:3f:ce:8c:1f:08:e0:d5:71:ae:1f:33:93:78:d8: ea:f2:91:8d:a7:08:29:fb:e2:b7:f4:69:c5:c5:f5: e5:1c:05:5f:a8:3e:d6:d1:70:e3:52:b5:af:e8:54: 30:6c:c9:51:bd:0c:7b:bb:d5:ff:81:cf:43:05:fe: c4:a7:7b:29:5a:ad:d6:2d:97:a9:66:6b:30:a3:ba: 57:d5:e6:0b:b9:16:a0:ea:b8:dc:be:99:9c:c3:c6: 9f:a0:4a:2f:47:3f:17:96:32:aa:d1:16:be:b2:f9: 12:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:AF:2C:B6:0C:9B:2F:00:98:7D:BE:8E:D0:14:D1:6D:FD:F9:3C:BF X509v3 Authority Key Identifier: keyid:68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:43:b4:eb:71:1d:92:4e:9c:f5:65:48:e3:64:ca:86:0f:3f: 7b:9c:cb:cb:a7:77:32:bf:1a:a0:9c:b6:2e:75:f0:e4:c5:26: 7d:50:f8:99:e2:3c:ef:78:8c:2d:1a:e8:87:b1:ed:ec:3d:35: ec:e4:11:ef:16:f0:87:05:64:da:a4:20:17:e4:aa:f0:3c:e5: c5:bb:18:18:ec:5c:13:34:1b:07:bc:0d:d0:39:24:cf:e8:cd: ab:83:07:47:7d:d8:fb:6a:ae:7f:02:1d:c1:4f:67:73:aa:81: 19:50:d5:c3:01:39:14:2a:a8:b0:31:8a:c4:66:64:f7:06:cd: 92:02:d0:a2:c5:3d:2f:d7:e9:01:05:19:6f:d2:a5:c6:df:dc: ac:12:25:4a:50:73:d6:9f:49:9b:6a:92:a7:89:e9:30:64:c2: 9c:8d:ce:c2:0c:12:48:98:1a:9d:da:d2:76:52:ca:fb:37:f4: 59:0c:66:86:b3:85:93:68:26:21:d4:5d:f1:64:0a:08:7b:0c: d6:ea:0d:0f:3a:2d:e2:80:ae:f6:eb:20:54:22:98:e8:27:25: 4c:78:95:c8:94:aa:40:b0:7e:e4:69:48:0b:c5:4e:ee:a8:6b: 6d:10:3d:8b:e4:49:13:0e:d9:29:f1:80:85:12:78:d8:1c:75: 10:75:27:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE5NkQxMTAvBgNVBAUTKDY4NTExOTgxRkNCOURBRkFEOEUzRDMwMzA0QkI0MUE5 NkZCOUE3NkYwHhcNMjUxMTAyMjM0NjE0WhcNMjUxMTA5MjM0NjE0WjAYMRYwFAYD VQQDEw02OTA3ZWQ0Ni1hMTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFiTuUDW60RophGNa1h3BM9KqSPBwlov4wNApDIvoCDId/zQpjpN6Eg5ycgP By086q7xcklZlzr4lmN/4/nTdF2PILcr94J2a1ZY8qKJRGiDzE7aUIlvn9IQzyWh dU0U2nyJ5FE4kNG9ZLk2yuw/yVBTc3AuN+2q/3bBiisbwcu9tvAoSHZWJ2Ea6a/U LRcEGdt9qzY8P86MHwjg1XGuHzOTeNjq8pGNpwgp++K39GnFxfXlHAVfqD7W0XDj UrWv6FQwbMlRvQx7u9X/gc9DBf7Ep3spWq3WLZepZmswo7pX1eYLuRag6rjcvpmc w8afoEovRz8XljKq0Ra+svkSXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCvLLYM my8AmH2+jtAU0W39+Ty/MB8GA1UdIwQYMBaAFGhRGYH8udr62OPTAwS7Qalvuadv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTk2RC82MjAyQUEzRTQx MTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2clk0OU1EQkx0QnFXLTVw MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGRVpnZnk1MnZyWTQ5TURCTHRCcVctNXAyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTk2RC82MjAyQUEzRTQxMTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2 clk0OU1EQkx0QnFXLTVwMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjQ7TrcR2STpz1ZUjjZMqGDz97nMvLp3cyvxqgnLYudfDkxSZ9UPiZ 4jzveIwtGuiHse3sPTXs5BHvFvCHBWTapCAX5KrwPOXFuxgY7FwTNBsHvA3QOSTP 6M2rgwdHfdj7aq5/Ah3BT2dzqoEZUNXDATkUKqiwMYrEZmT3Bs2SAtCixT0v1+kB BRlv0qXG39ysEiVKUHPWn0mbapKniekwZMKcjc7CDBJImBqd2tJ2Usr7N/RZDGaG s4WTaCYh1F3xZAoIewzW6g0POi3igK726yBUIpjoJyVMeJXIlKpAsH7kaUgLxU7u qGttED2L5EkTDtkp8YCFEnjYHHUQdSdd -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:36 2025 by rpki-client