$ rpki-client -vvf rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft File: A0iYvB-xsaJGF6zZvIMq6D6vni0.mft (raw, json) Hash identifier: OLL/rU3/uW//1vKsfB9lgvY/N9GNuH62c2SPtepAYQw= Subject key identifier: FF:53:36:76:17:28:C2:13:CB:E7:69:C6:A2:10:D8:05:C5:BB:B4:24 Authority key identifier: 03:48:98:BC:1F:B1:B1:A2:46:17:AC:D9:BC:83:2A:E8:3E:AF:9E:2D Certificate issuer: /CN=A918D727/serialNumber=034898BC1FB1B1A24617ACD9BC832AE83EAF9E2D Certificate serial: 018E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0iYvB-xsaJGF6zZvIMq6D6vni0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft Manifest number: 018B Signing time: Wed 17 Sep 2025 04:04:34 +0000 Manifest this update: Wed 17 Sep 2025 04:04:34 +0000 Manifest next update: Wed 24 Sep 2025 04:04:34 +0000 Files and hashes: 1: A0iYvB-xsaJGF6zZvIMq6D6vni0.crl (hash: xzd26GrR9QrWK4cjyU0PCoaJpnElQ0gBJI+8fezU9Jw=) 2: A7E3DAB237FB11EEBB03FD6CC4F9AE02.roa (hash: 9sHmTTxFdikI75A0R8/VBaOSUMcfi7+BpHqL1iyf12Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.crl rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0iYvB-xsaJGF6zZvIMq6D6vni0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:04:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D727, serialNumber=034898BC1FB1B1A24617ACD9BC832AE83EAF9E2D Validity Not Before: Sep 17 04:04:34 2025 GMT Not After : Sep 24 04:04:34 2025 GMT Subject: CN=68ca3352-d432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a6:ea:79:b3:a3:c7:90:fa:ee:a4:54:90:97: 6e:d9:74:97:30:8c:93:80:55:2b:ce:eb:ad:f8:70: cf:60:da:36:66:ad:7c:67:c3:68:c0:fa:8a:a1:dd: b0:d6:4e:3b:81:ed:01:77:44:f6:cd:68:a5:f5:8f: 19:58:e7:d5:61:72:b8:6f:19:9a:3e:28:16:23:c9: c6:70:ef:0a:65:c8:8e:a8:e4:fb:6d:a3:60:a4:7d: ad:20:39:2d:26:34:88:19:10:28:e7:c6:23:41:bb: ed:41:fa:cf:70:7f:f2:99:52:eb:f7:88:26:b1:9d: ec:78:e4:e8:83:da:2e:78:4c:1a:e1:64:9a:67:07: d2:9e:19:43:13:b0:b3:59:cf:f4:af:18:28:72:82: 3a:b5:96:f4:16:f0:c2:08:2a:6c:e8:b6:cd:8c:2b: 2b:0a:70:da:eb:80:92:4e:f0:21:8f:6f:6c:92:6c: c8:f7:b1:60:31:f8:24:f9:b2:2e:e4:c3:d1:de:18: 26:76:fa:85:ad:50:56:dc:43:70:cb:51:97:54:19: 5a:c9:49:5a:f0:9f:b9:00:95:61:54:e1:07:3a:99: d4:5e:0c:15:57:74:8d:79:01:5f:ae:c7:51:00:57: a6:62:72:eb:9e:b5:f3:9c:87:64:eb:07:35:1b:0a: 48:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:53:36:76:17:28:C2:13:CB:E7:69:C6:A2:10:D8:05:C5:BB:B4:24 X509v3 Authority Key Identifier: keyid:03:48:98:BC:1F:B1:B1:A2:46:17:AC:D9:BC:83:2A:E8:3E:AF:9E:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0iYvB-xsaJGF6zZvIMq6D6vni0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:93:f4:47:c3:f7:1a:2b:c2:55:e1:3f:d2:56:43:b6:db:d1: e2:b2:a3:e3:19:40:3e:c3:bd:47:c8:d0:68:7d:c4:06:08:03: 32:a6:83:31:92:01:91:fc:5d:b4:33:4c:d4:99:78:1f:84:dc: 45:d4:09:88:57:93:c6:bb:11:b6:fb:e4:99:74:bb:0b:93:92: 05:39:d6:f4:e4:b1:43:4c:b7:7d:2f:41:e4:51:4b:46:ec:b1: 9e:14:a1:da:22:b7:1b:ef:e8:26:53:13:6d:75:94:6c:39:3d: 12:b1:71:6b:87:26:4b:e9:82:2f:f6:5d:4a:7a:11:10:18:e8: ee:f6:3f:8e:fc:06:e9:9c:63:21:b1:5c:98:ad:bb:ec:9c:84: cb:5a:1d:44:c9:0c:7c:bd:34:88:b1:cf:8a:ce:b9:8d:5d:ac: ed:c2:3d:c3:76:7a:8b:e6:a1:f5:77:fe:2c:c5:c9:92:a7:3d: 4a:00:d5:d2:e9:46:0d:57:10:b6:40:cd:41:72:0a:db:15:9b: f2:f1:4a:0f:0c:8c:84:37:83:30:97:85:bc:ec:74:1e:ee:96: 4c:e4:9e:9b:2c:c7:22:5a:79:f1:a1:48:21:f4:04:77:27:7e: 6e:57:41:61:21:ac:a7:99:93:8a:6e:3f:b5:32:37:1d:9b:b6: 9e:56:07:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3MjcxMTAvBgNVBAUTKDAzNDg5OEJDMUZCMUIxQTI0NjE3QUNEOUJDODMyQUU4 M0VBRjlFMkQwHhcNMjUwOTE3MDQwNDM0WhcNMjUwOTI0MDQwNDM0WjAYMRYwFAYD VQQDEw02OGNhMzM1Mi1kNDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx6bqebOjx5D67qRUkJdu2XSXMIyTgFUrzuut+HDPYNo2Zq18Z8NowPqKod2w 1k47ge0Bd0T2zWil9Y8ZWOfVYXK4bxmaPigWI8nGcO8KZciOqOT7baNgpH2tIDkt JjSIGRAo58YjQbvtQfrPcH/ymVLr94gmsZ3seOTog9oueEwa4WSaZwfSnhlDE7Cz Wc/0rxgocoI6tZb0FvDCCCps6LbNjCsrCnDa64CSTvAhj29skmzI97FgMfgk+bIu 5MPR3hgmdvqFrVBW3ENwy1GXVBlayUla8J+5AJVhVOEHOpnUXgwVV3SNeQFfrsdR AFemYnLrnrXznIdk6wc1GwpIXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9TNnYX KMITy+dpxqIQ2AXFu7QkMB8GA1UdIwQYMBaAFANImLwfsbGiRhes2byDKug+r54t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDcyNy80Nzk4RkIwNjM3 RkIxMUVFQjQyOTZEM0RDNEY5QUUwMi9BMGlZdkIteHNhSkdGNnpadklNcTZENnZu aTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwaVl2Qi14c2FKR0Y2elp2SU1xNkQ2dm5pMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDcyNy80Nzk4RkIwNjM3RkIxMUVFQjQyOTZEM0RDNEY5QUUwMi9BMGlZdkIteHNh SkdGNnpadklNcTZENnZuaTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALk/RHw/caK8JV4T/SVkO229HisqPjGUA+w71HyNBofcQGCAMypoMx kgGR/F20M0zUmXgfhNxF1AmIV5PGuxG2++SZdLsLk5IFOdb05LFDTLd9L0HkUUtG 7LGeFKHaIrcb7+gmUxNtdZRsOT0SsXFrhyZL6YIv9l1KehEQGOju9j+O/AbpnGMh sVyYrbvsnITLWh1EyQx8vTSIsc+KzrmNXaztwj3DdnqL5qH1d/4sxcmSpz1KANXS 6UYNVxC2QM1BcgrbFZvy8UoPDIyEN4Mwl4W87HQe7pZM5J6bLMciWnnxoUgh9AR3 J35uV0FhIaynmZOKbj+1Mjcdm7aeVgf3 -----END CERTIFICATE-----Generated at Thu Sep 18 21:55:22 2025 by rpki-client