$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft File: 40tPgNnj9wC8rExSxasj61t-37s.mft (raw, json) Hash identifier: 3iM2SXyMCnuL0ne23YKIqXCSAyYhCxBB0KENlNAOJ9E= Subject key identifier: A1:AA:72:14:D4:D6:D3:D4:34:02:93:D6:5F:C9:FD:07:DF:E3:58:8D Authority key identifier: E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB Certificate issuer: /CN=A918E4B7/serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Certificate serial: 0184 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft Manifest number: 017E Signing time: Thu 23 Oct 2025 00:40:47 +0000 Manifest this update: Thu 23 Oct 2025 00:40:47 +0000 Manifest next update: Thu 30 Oct 2025 00:40:47 +0000 Files and hashes: 1: 40tPgNnj9wC8rExSxasj61t-37s.crl (hash: rEfZcuduS3suwxvZa2sR20Q795QviUOf2rM2VVsI5so=) 2: 1E4ABC8C50C111EFA64C2437C4F9AE02.roa (hash: DiLiUTq4svYLUGh7Zlk/IkFGkuorqIquvoUuPTfglVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 21:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Validity Not Before: Oct 23 00:40:47 2025 GMT Not After : Oct 30 00:40:47 2025 GMT Subject: CN=68f9798f-e218 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:61:f1:bb:62:ef:72:6b:d2:67:f6:8e:44:61: b9:de:3d:3a:2b:9d:0f:7d:8e:56:0b:52:7a:e8:7e: dd:fb:3b:3e:4f:f6:27:c5:92:a7:03:32:cb:df:27: 0a:3e:d1:ad:6f:6a:7e:78:92:26:a9:22:65:c6:58: 57:b3:d6:a8:e6:61:52:fd:a1:07:71:fd:f9:ab:63: 23:aa:3d:93:8b:0d:7d:6b:cb:18:31:76:17:18:6c: 9f:64:ad:46:0a:7a:79:c0:86:0b:f0:c5:cc:1f:47: ed:f5:51:6c:b4:2a:77:17:99:b6:68:0d:1c:c8:52: a0:9b:a5:08:e7:53:2e:ed:6f:ca:65:7d:2b:13:e0: 52:66:0c:82:d4:96:e1:3d:2b:62:5b:8a:6d:33:1b: 71:88:6a:f9:ec:51:00:cd:e3:81:54:15:3c:ce:69: 9d:99:6a:7e:81:55:a9:bb:de:fc:c6:7c:05:0e:81: d3:82:64:17:19:d0:f0:34:8c:d1:ca:84:97:37:a3: 65:ca:59:19:02:60:c4:e7:61:e5:e0:d1:c3:61:46: 4f:b5:c6:cd:ea:5b:51:a0:aa:65:1e:b0:37:e9:33: f4:20:5b:6e:96:7e:03:1a:96:7a:92:3e:42:37:ef: 42:b7:e9:9b:f8:ff:d8:a4:91:5a:f8:b7:bb:d8:ff: 59:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:AA:72:14:D4:D6:D3:D4:34:02:93:D6:5F:C9:FD:07:DF:E3:58:8D X509v3 Authority Key Identifier: keyid:E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:7c:2b:db:f5:d9:e8:63:40:e4:1c:3e:e5:7d:0b:9f:d0:40: 9d:0e:4e:0a:4a:86:f4:7b:61:ed:89:ab:aa:3b:37:c8:7a:ae: ce:b9:bf:80:69:ca:5a:17:48:85:07:58:f5:16:17:49:c0:71: 67:d0:35:dd:37:67:2c:89:52:f2:ee:f2:2e:ac:8d:7c:81:61: e3:59:10:ef:c2:39:9e:b2:98:dc:6c:82:16:f9:12:ab:81:e7: 4e:27:44:9c:39:c9:b3:4a:0c:2b:61:ca:f1:fb:b8:cb:08:1c: 9c:8a:8e:b5:4c:ec:7d:74:aa:74:ea:68:21:de:9d:fa:c6:05: 1b:bc:78:ad:17:5f:11:77:56:7a:86:c2:7f:50:c9:a4:75:91: 1f:46:be:ef:92:0f:f6:7e:5d:52:4f:6e:aa:74:fe:72:fd:27: 9f:4e:69:4d:8c:61:a7:2f:91:d9:2e:89:c5:67:bc:dc:55:3d: 0e:b3:d9:09:45:8e:07:c9:53:1c:51:57:89:db:d0:ba:6e:c9: 56:b6:88:0a:77:9c:b2:d7:f9:9b:40:e7:a5:aa:0f:01:a9:aa: 83:6c:6b:b1:ab:b4:0a:5b:8d:18:b2:56:c3:0a:c1:68:b9:49: f3:75:33:9e:dc:48:23:30:0d:b5:13:85:13:b7:e8:3a:45:52: f3:3e:a8:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKEUzNEI0RjgwRDlFM0Y3MDBCQ0FDNEM1MkM1QUIyM0VC NUI3RURGQkIwHhcNMjUxMDIzMDA0MDQ3WhcNMjUxMDMwMDA0MDQ3WjAYMRYwFAYD VQQDEw02OGY5Nzk4Zi1lMjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmHxu2LvcmvSZ/aORGG53j06K50PfY5WC1J66H7d+zs+T/YnxZKnAzLL3ycK PtGtb2p+eJImqSJlxlhXs9ao5mFS/aEHcf35q2Mjqj2Tiw19a8sYMXYXGGyfZK1G Cnp5wIYL8MXMH0ft9VFstCp3F5m2aA0cyFKgm6UI51Mu7W/KZX0rE+BSZgyC1Jbh PStiW4ptMxtxiGr57FEAzeOBVBU8zmmdmWp+gVWpu978xnwFDoHTgmQXGdDwNIzR yoSXN6NlylkZAmDE52Hl4NHDYUZPtcbN6ltRoKplHrA36TP0IFtuln4DGpZ6kj5C N+9Ct+mb+P/YpJFa+Le72P9Z1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKGqchTU 1tPUNAKT1l/J/Qff41iNMB8GA1UdIwQYMBaAFONLT4DZ4/cAvKxMUsWrI+tbft+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy85NkU2Njc1QTc4 NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3QzhyRXhTeGFzajYxdC0z N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQwdFBnTm5qOXdDOHJFeFN4YXNqNjF0LTM3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTRCNy85NkU2Njc1QTc4NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3 QzhyRXhTeGFzajYxdC0zN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYfCvb9dnoY0DkHD7lfQuf0ECdDk4KSob0e2HtiauqOzfIeq7Oub+A acpaF0iFB1j1FhdJwHFn0DXdN2csiVLy7vIurI18gWHjWRDvwjmespjcbIIW+RKr gedOJ0ScOcmzSgwrYcrx+7jLCBycio61TOx9dKp06mgh3p36xgUbvHitF18Rd1Z6 hsJ/UMmkdZEfRr7vkg/2fl1ST26qdP5y/SefTmlNjGGnL5HZLonFZ7zcVT0Os9kJ RY4HyVMcUVeJ29C6bslWtogKd5yy1/mbQOelqg8BqaqDbGuxq7QKW40YslbDCsFo uUnzdTOe3EgjMA21E4UTt+g6RVLzPqiX -----END CERTIFICATE-----Generated at Thu Oct 23 02:51:49 2025 by rpki-client