$ rpki-client -vvf rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft File: pN7tlZPlkTA6mwOYBh_o71GGZco.mft (raw, json) Hash identifier: QeB1ednYNCm/Q3Ce7dT2TS6XYWLedNwSlWzF7gAAqBs= Subject key identifier: 19:33:F0:9D:5E:F9:4B:A0:58:17:B6:16:65:BA:96:9C:7F:23:4A:56 Authority key identifier: A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA Certificate issuer: /CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Certificate serial: 0183 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft Manifest number: 0180 Signing time: Wed 22 Oct 2025 19:47:20 +0000 Manifest this update: Wed 22 Oct 2025 19:47:20 +0000 Manifest next update: Wed 29 Oct 2025 19:47:20 +0000 Files and hashes: 1: pN7tlZPlkTA6mwOYBh_o71GGZco.crl (hash: HGpfi7i/U+ASEQIt4sWNABJngBw4R7rsWj+UKdPKgyU=) 2: E12607CE6F0411EEA5298939C4F9AE02.roa (hash: 8l049HuRfYTZKVjmyHEuH/syy1lOm3iSGmRbwY8PSnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 19:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CABF, serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Validity Not Before: Oct 22 19:47:20 2025 GMT Not After : Oct 29 19:47:20 2025 GMT Subject: CN=68f934c8-5246 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:d9:21:88:9f:9b:d9:9c:28:24:fa:8e:1e:30: b5:33:48:2e:72:bd:cf:94:0a:4a:9a:cf:a3:d6:cb: d5:06:8f:7c:0c:c9:92:75:e3:12:ac:ad:1e:c2:46: 96:91:f3:2b:a8:f7:63:09:ba:80:1a:a0:eb:47:65: 1d:c5:5f:00:32:70:b7:88:9c:56:35:da:38:c8:70: aa:d8:5b:9e:9d:7f:85:86:08:99:a3:35:78:d6:d3: 5d:d8:d4:74:14:e2:34:a5:13:1d:f2:b8:c4:cd:2e: 04:37:ad:d1:79:10:f1:c4:02:de:12:93:0d:0b:1d: f2:b1:d6:e3:14:19:f7:16:de:da:9b:15:e9:cb:cd: 37:13:97:0a:ea:41:95:ff:69:05:47:fd:c1:d4:04: 62:d7:c6:71:c6:49:c1:7d:b8:fa:63:c4:ca:65:ae: 0c:65:3a:3f:67:04:19:af:a2:12:9a:c4:20:f6:9d: b3:9e:a1:ab:11:0b:8b:2b:d7:2b:42:57:65:e8:65: d1:81:37:c6:9f:21:ef:46:75:f7:17:ad:67:44:3b: b3:57:fa:65:61:d1:c6:35:f6:81:d2:f2:0a:d4:d1: e3:4d:0d:10:19:39:e5:84:84:3d:aa:57:26:ee:7c: e9:3f:17:ae:11:31:f3:b1:20:01:53:ac:fa:a1:c9: 90:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:33:F0:9D:5E:F9:4B:A0:58:17:B6:16:65:BA:96:9C:7F:23:4A:56 X509v3 Authority Key Identifier: keyid:A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:ae:e6:74:01:a2:76:6d:53:e9:8c:62:3d:c0:37:7b:b7:8f: 9c:91:3c:5c:b9:0c:96:ea:5f:33:5a:e4:bc:b8:cc:78:d2:3a: 17:bc:a4:e3:63:da:e9:31:1e:c6:96:e5:17:49:c6:10:0e:a1: e3:b0:0c:33:4c:6c:93:88:02:b1:e8:82:13:86:a9:ff:66:52: f9:e1:ee:be:1a:d4:d3:bf:f4:24:ea:a6:44:4a:de:51:d0:d0: bb:7d:b0:24:f6:ce:ba:45:ae:1b:1e:a5:32:5f:3a:cb:f3:0e: a5:14:8c:12:ee:fc:35:d7:17:31:d4:eb:7b:2e:81:c2:50:2c: 41:6d:9e:24:55:85:5a:03:6b:fd:d6:68:b0:25:6a:62:4b:bb: 5c:38:b4:65:16:c2:40:ec:d7:9f:77:a0:e4:e3:a7:eb:16:4d: fb:16:bb:91:2f:64:93:a6:cb:15:df:d0:60:e7:22:58:64:4b: 50:4f:88:9a:33:24:7d:82:7b:12:48:6f:84:bd:cd:b9:37:49: 96:59:ed:66:b8:5b:54:72:96:6c:b4:01:54:96:81:09:67:4e: b8:c7:fb:e7:04:b8:51:65:61:4d:8d:e9:bc:17:14:92:dd:4e: 4d:8e:6f:48:e6:18:96:b3:f0:b6:af:0a:f6:5a:69:e4:da:02: 86:c5:fd:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENBQkYxMTAvBgNVBAUTKEE0REVFRDk1OTNFNTkxMzAzQTlCMDM5ODA2MUZFOEVG NTE4NjY1Q0EwHhcNMjUxMDIyMTk0NzIwWhcNMjUxMDI5MTk0NzIwWjAYMRYwFAYD VQQDEw02OGY5MzRjOC01MjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3NkhiJ+b2ZwoJPqOHjC1M0gucr3PlApKms+j1svVBo98DMmSdeMSrK0ewkaW kfMrqPdjCbqAGqDrR2UdxV8AMnC3iJxWNdo4yHCq2FuenX+FhgiZozV41tNd2NR0 FOI0pRMd8rjEzS4EN63ReRDxxALeEpMNCx3ysdbjFBn3Ft7amxXpy803E5cK6kGV /2kFR/3B1ARi18ZxxknBfbj6Y8TKZa4MZTo/ZwQZr6ISmsQg9p2znqGrEQuLK9cr Qldl6GXRgTfGnyHvRnX3F61nRDuzV/plYdHGNfaB0vIK1NHjTQ0QGTnlhIQ9qlcm 7nzpPxeuETHzsSABU6z6ocmQlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBkz8J1e +UugWBe2FmW6lpx/I0pWMB8GA1UdIwQYMBaAFKTe7ZWT5ZEwOpsDmAYf6O9RhmXK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0FCRi8xODkxOTVBQzY4 MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtUQTZtd09ZQmhfbzcxR0da Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BON3RsWlBsa1RBNm13T1lCaF9vNzFHR1pjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0FCRi8xODkxOTVBQzY4MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtU QTZtd09ZQmhfbzcxR0daY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0ruZ0AaJ2bVPpjGI9wDd7t4+ckTxcuQyW6l8zWuS8uMx40joXvKTj Y9rpMR7GluUXScYQDqHjsAwzTGyTiAKx6IIThqn/ZlL54e6+GtTTv/Qk6qZESt5R 0NC7fbAk9s66Ra4bHqUyXzrL8w6lFIwS7vw11xcx1Ot7LoHCUCxBbZ4kVYVaA2v9 1miwJWpiS7tcOLRlFsJA7Nefd6Dk46frFk37FruRL2STpssV39Bg5yJYZEtQT4ia MyR9gnsSSG+Evc25N0mWWe1muFtUcpZstAFUloEJZ064x/vnBLhRZWFNjem8FxSS 3U5Njm9I5hiWs/C2rwr2Wmnk2gKGxf3I -----END CERTIFICATE-----Generated at Thu Oct 23 20:02:24 2025 by rpki-client