$ rpki-client -vvf rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft File: aFCqv5vavya_oJKDAh_pE9aVbjI.mft (raw, json) Hash identifier: eMpqMUYNT+3Z8Yf1RJTe0Uywg62PInJSNY+eQwjlx/g= Subject key identifier: 15:9E:70:D7:B4:FE:60:EB:DD:49:BC:26:3A:DE:A0:5D:7C:98:0F:2A Authority key identifier: 68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 Certificate issuer: /CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Certificate serial: 133C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft Manifest number: 132C Signing time: Mon 08 Sep 2025 17:03:30 +0000 Manifest this update: Mon 08 Sep 2025 17:03:30 +0000 Manifest next update: Mon 15 Sep 2025 17:03:30 +0000 Files and hashes: 1: aFCqv5vavya_oJKDAh_pE9aVbjI.crl (hash: M9OFxevc6eSqhV0ZC8cUui5A3G0F72LVxfVrQ9kzqMo=) 2: 583F2920A6E611EF9BD0C728C4F9AE02.roa (hash: QCjfIjSatqEkani4vFyMBR81W4WM4U5LTw8JrcC/R5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 17:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4924 (0x133c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F978, serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Validity Not Before: Sep 8 17:03:30 2025 GMT Not After : Sep 15 17:03:30 2025 GMT Subject: CN=68bf0c62-ffb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0c:32:a7:f0:92:f1:07:10:5d:dd:2d:f5:cd: 30:1b:4e:1b:da:1a:e2:d8:a2:de:cb:e8:75:a6:88: c9:a5:13:a4:e4:a7:92:f3:2a:23:a3:16:be:90:54: d1:07:af:61:b4:af:cf:5a:c5:2b:5a:d1:9f:cf:35: 66:d9:71:1f:32:4d:4e:10:24:5d:2e:12:fd:f1:6d: ac:e9:c7:63:d3:95:08:db:b9:ed:bc:00:bb:93:8d: 71:98:47:6e:dc:51:ae:a7:31:2f:34:40:ab:40:f1: 93:b1:15:ec:b9:a2:f6:6d:d1:91:22:16:87:72:5e: 14:74:a6:0c:cc:9a:01:f2:8e:03:28:aa:3e:8e:f0: 6f:68:89:d9:fb:ba:9d:e0:6f:2b:88:0d:e1:2d:ff: a7:65:b7:be:24:4e:36:9c:b6:59:77:f1:7d:04:08: 1f:d9:04:c2:39:29:b5:9e:f4:0d:e0:ac:15:7f:ca: 95:1d:6d:c0:be:40:98:ab:23:ea:e1:a3:b9:a9:cd: 4c:78:9d:2e:70:48:0f:b3:35:83:18:7c:1a:29:a5: 75:01:84:f6:f4:dc:da:be:5e:bd:88:7d:27:c2:fc: a6:c8:9d:e0:df:47:6b:cd:8c:ab:2d:e9:f3:7a:df: b6:ba:0c:a8:11:4b:44:95:4b:ae:1b:f1:5d:45:ee: 42:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:9E:70:D7:B4:FE:60:EB:DD:49:BC:26:3A:DE:A0:5D:7C:98:0F:2A X509v3 Authority Key Identifier: keyid:68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:dd:3f:80:9b:9d:6b:d5:6b:48:a7:c3:b8:f5:6b:e4:75:1c: e0:db:1c:a0:e0:4e:f8:6e:08:e8:d5:2f:31:88:1b:87:01:2e: b7:46:80:3c:75:99:18:9c:03:16:af:a8:51:a3:cc:bc:5d:3d: 1e:b2:80:19:46:a5:44:54:30:bb:e1:6a:4f:b3:77:63:75:34: 17:d2:d8:bc:56:53:31:03:09:99:45:77:5d:42:cb:7d:5a:ba: 08:d9:ea:46:45:c3:20:ab:92:49:10:3e:32:b6:bd:5a:8e:f4: 0c:46:26:60:60:a8:a5:d9:98:00:9a:27:44:72:33:0c:08:b7: 18:f3:31:b0:73:fd:7d:19:a1:e0:1a:06:64:b5:b4:e9:d5:51: 87:1c:5e:d7:55:7d:c2:5a:d3:3f:e5:b6:7d:41:6d:47:09:1f: 1e:00:48:9f:6f:75:cc:75:9e:c2:a3:02:1c:a3:cf:5b:eb:4b: 1c:93:8d:05:8d:e1:7b:2a:7b:91:76:f1:8f:0b:9e:6f:99:2e: 5b:dc:44:39:62:74:19:e2:ac:54:80:ce:63:30:97:26:46:60: c0:24:92:b0:64:1f:f4:56:a7:8e:97:bb:e5:ac:0d:af:dd:c2: 7d:08:2a:5c:fe:a5:09:23:41:6b:f4:9e:9f:2d:d1:22:9e:72: 0b:ce:46:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY5NzgxMTAvBgNVBAUTKDY4NTBBQUJGOUJEQUJGMjZCRkEwOTI4MzAyMUZFOTEz RDY5NTZFMzIwHhcNMjUwOTA4MTcwMzMwWhcNMjUwOTE1MTcwMzMwWjAYMRYwFAYD VQQDEw02OGJmMGM2Mi1mZmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygwyp/CS8QcQXd0t9c0wG04b2hri2KLey+h1pojJpROk5KeS8yojoxa+kFTR B69htK/PWsUrWtGfzzVm2XEfMk1OECRdLhL98W2s6cdj05UI27ntvAC7k41xmEdu 3FGupzEvNECrQPGTsRXsuaL2bdGRIhaHcl4UdKYMzJoB8o4DKKo+jvBvaInZ+7qd 4G8riA3hLf+nZbe+JE42nLZZd/F9BAgf2QTCOSm1nvQN4KwVf8qVHW3AvkCYqyPq 4aO5qc1MeJ0ucEgPszWDGHwaKaV1AYT29Nzavl69iH0nwvymyJ3g30drzYyrLenz et+2ugyoEUtElUuuG/FdRe5C1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBWecNe0 /mDr3Um8JjreoF18mA8qMB8GA1UdIwQYMBaAFGhQqr+b2r8mv6CSgwIf6RPWlW4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjk3OC83RTIyQjM3NEI2 OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5YV9vSktEQWhfcEU5YVZi akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGQ3F2NXZhdnlhX29KS0RBaF9wRTlhVmJqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjk3OC83RTIyQjM3NEI2OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5 YV9vSktEQWhfcEU5YVZiakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa3T+Am51r1WtIp8O49WvkdRzg2xyg4E74bgjo1S8xiBuHAS63RoA8 dZkYnAMWr6hRo8y8XT0esoAZRqVEVDC74WpPs3djdTQX0ti8VlMxAwmZRXddQst9 WroI2epGRcMgq5JJED4ytr1ajvQMRiZgYKil2ZgAmidEcjMMCLcY8zGwc/19GaHg GgZktbTp1VGHHF7XVX3CWtM/5bZ9QW1HCR8eAEifb3XMdZ7CowIco89b60sck40F jeF7KnuRdvGPC55vmS5b3EQ5YnQZ4qxUgM5jMJcmRmDAJJKwZB/0VqeOl7vlrA2v 3cJ9CCpc/qUJI0Fr9J6fLdEinnILzkbX -----END CERTIFICATE-----Generated at Tue Sep 9 19:10:56 2025 by rpki-client