$ rpki-client -vvf rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.mft File: 0fxphnCiQetFTVXFZ6paY1rwoGM.mft (raw, json) Hash identifier: nAznNpB2tRmH8Zdy33wRi9NOQdDJOXSiTtP+3c0cAfU= Subject key identifier: 29:16:81:1D:F4:81:98:8B:AB:50:ED:93:BE:C2:F6:AD:FE:E4:5D:1A Authority key identifier: D1:FC:69:86:70:A2:41:EB:45:4D:55:C5:67:AA:5A:63:5A:F0:A0:63 Certificate issuer: /CN=A918681B/serialNumber=D1FC698670A241EB454D55C567AA5A635AF0A063 Certificate serial: 054A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fxphnCiQetFTVXFZ6paY1rwoGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.mft Manifest number: 053E Signing time: Mon 27 Oct 2025 00:30:23 +0000 Manifest this update: Mon 27 Oct 2025 00:30:23 +0000 Manifest next update: Mon 03 Nov 2025 00:30:23 +0000 Files and hashes: 1: 0fxphnCiQetFTVXFZ6paY1rwoGM.crl (hash: FtKCH4MaVBYJAoB4EuTZIFw5dTH4DUeP4lAfiD3Pwx0=) 2: 5D4D3E261A3E11ECB42D0B80C4F9AE02.roa (hash: Am0tyv0SW/vQBy5lGTGy4TYfxwQ9Lc6UrqhzC51ywy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.crl rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fxphnCiQetFTVXFZ6paY1rwoGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 00:30:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1354 (0x54a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918681B, serialNumber=D1FC698670A241EB454D55C567AA5A635AF0A063 Validity Not Before: Oct 27 00:30:23 2025 GMT Not After : Nov 3 00:30:23 2025 GMT Subject: CN=68febd1f-2e70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c7:87:94:c3:9f:ad:cf:65:28:86:a1:47:e0: bd:0a:6e:90:c7:71:32:b4:e5:e8:83:b6:48:fe:2a: 8c:27:3a:51:ea:01:49:57:7a:54:17:38:d5:a7:44: 01:92:48:2c:55:1b:f7:85:11:72:d9:29:f7:ee:6b: 90:98:55:86:41:ac:34:97:83:ac:3e:73:80:4d:fc: b3:aa:91:ba:c5:c1:57:46:89:e5:8a:50:76:71:4f: 16:d2:34:d7:d5:df:52:58:22:c0:80:65:8f:ee:15: 80:6b:30:94:4c:38:9c:e1:01:0d:05:e8:b9:f7:9d: 68:16:af:01:e8:de:47:6c:23:41:0f:ac:8a:32:b0: 07:6e:ff:9d:1d:14:e5:ca:a4:81:ae:6f:87:6b:bf: d9:25:7c:f4:13:00:d4:53:00:63:a8:79:92:dd:79: 80:af:5c:20:bb:10:c4:39:a9:68:0d:7b:1c:c5:f1: 64:5d:67:04:11:40:af:82:e8:e1:f8:9a:a5:83:b7: 97:fb:42:c9:7f:8e:3c:db:c4:76:61:fd:fe:11:7e: c3:f5:1b:8b:46:1e:d8:be:d2:98:35:d2:33:f8:85: da:6a:ec:f3:1d:31:fb:a3:63:07:05:9e:20:55:24: 6f:c0:f3:4c:af:09:4d:70:05:8a:1c:5d:73:04:fe: e4:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:16:81:1D:F4:81:98:8B:AB:50:ED:93:BE:C2:F6:AD:FE:E4:5D:1A X509v3 Authority Key Identifier: keyid:D1:FC:69:86:70:A2:41:EB:45:4D:55:C5:67:AA:5A:63:5A:F0:A0:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fxphnCiQetFTVXFZ6paY1rwoGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:da:88:60:1d:ae:f8:6c:77:88:e4:ba:55:88:67:e5:9b:ea: a5:c8:7e:4c:e9:d2:3d:c2:2a:34:ef:83:39:61:e3:46:46:51: 8b:f7:5f:c8:3d:d3:8c:aa:55:6f:d5:21:c5:3a:d7:d6:78:95: a4:bb:e9:c2:3a:95:b0:4b:a7:18:9e:66:c5:5e:fe:4a:37:3e: 87:d5:b5:0b:ff:12:5d:ab:c6:ab:fd:9a:b7:dc:42:15:17:26: 4e:bb:dd:1d:aa:2b:7b:01:75:41:a2:d4:f2:14:b8:ab:ad:a6: c0:f5:ac:2d:22:79:d1:9f:3a:76:9f:84:24:b9:66:92:b8:76: df:f6:0d:cc:23:d9:72:70:8e:56:27:e0:40:ea:61:ba:9f:7b: d6:14:1a:97:17:4c:2a:19:b7:01:f1:54:e8:6b:2d:77:70:d0: b9:97:67:57:6b:89:1e:44:68:54:02:ef:24:39:fe:b5:e7:94: b5:50:e2:39:e3:71:4f:9a:c9:b7:94:8e:c2:38:68:c3:46:e6: 05:f5:21:e7:fc:f1:21:de:cd:8b:1a:68:d9:d8:d6:7b:e2:42: 5a:52:2b:d2:bf:4b:d5:86:17:d8:9d:d0:e5:f6:e0:21:93:15: d7:13:52:e6:cb:bf:69:3a:04:76:6a:42:66:e4:26:37:82:eb: 75:9c:61:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY4MUIxMTAvBgNVBAUTKEQxRkM2OTg2NzBBMjQxRUI0NTRENTVDNTY3QUE1QTYz NUFGMEEwNjMwHhcNMjUxMDI3MDAzMDIzWhcNMjUxMTAzMDAzMDIzWjAYMRYwFAYD VQQDEw02OGZlYmQxZi0yZTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMeHlMOfrc9lKIahR+C9Cm6Qx3EytOXog7ZI/iqMJzpR6gFJV3pUFzjVp0QB kkgsVRv3hRFy2Sn37muQmFWGQaw0l4OsPnOATfyzqpG6xcFXRonlilB2cU8W0jTX 1d9SWCLAgGWP7hWAazCUTDic4QENBei5951oFq8B6N5HbCNBD6yKMrAHbv+dHRTl yqSBrm+Ha7/ZJXz0EwDUUwBjqHmS3XmAr1wguxDEOaloDXscxfFkXWcEEUCvgujh +Jqlg7eX+0LJf44828R2Yf3+EX7D9RuLRh7YvtKYNdIz+IXaauzzHTH7o2MHBZ4g VSRvwPNMrwlNcAWKHF1zBP7kJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCkWgR30 gZiLq1Dtk77C9q3+5F0aMB8GA1UdIwQYMBaAFNH8aYZwokHrRU1VxWeqWmNa8KBj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjgxQi9DNDNGQkQwNjFB M0ExMUVDOEZCRjQxN0JDNEY5QUUwMi8wZnhwaG5DaVFldEZUVlhGWjZwYVkxcndv R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBmeHBobkNpUWV0RlRWWEZaNnBhWTFyd29HTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjgxQi9DNDNGQkQwNjFBM0ExMUVDOEZCRjQxN0JDNEY5QUUwMi8wZnhwaG5DaVFl dEZUVlhGWjZwYVkxcndvR00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJ2ohgHa74bHeI5LpViGflm+qlyH5M6dI9wio074M5YeNGRlGL91/I PdOMqlVv1SHFOtfWeJWku+nCOpWwS6cYnmbFXv5KNz6H1bUL/xJdq8ar/Zq33EIV FyZOu90dqit7AXVBotTyFLirrabA9awtInnRnzp2n4QkuWaSuHbf9g3MI9lycI5W J+BA6mG6n3vWFBqXF0wqGbcB8VToay13cNC5l2dXa4keRGhUAu8kOf6155S1UOI5 43FPmsm3lI7COGjDRuYF9SHn/PEh3s2LGmjZ2NZ74kJaUivSv0vVhhfYndDl9uAh kxXXE1Lmy79pOgR2akJm5CY3gut1nGGM -----END CERTIFICATE-----Generated at Tue Oct 28 07:21:27 2025 by rpki-client