$ rpki-client -vvf rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft File: aFCqv5vavya_oJKDAh_pE9aVbjI.mft (raw, json) Hash identifier: 7sEzoae4cZwyOw5H2L77wSyEC0F8ixmN4YTmJEcmAMo= Subject key identifier: 49:98:3F:FD:74:26:1A:B4:79:D8:BE:6A:AF:5D:E0:C3:9E:81:9F:11 Authority key identifier: 68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 Certificate issuer: /CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Certificate serial: 1358 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft Manifest number: 1347 Signing time: Tue 28 Oct 2025 16:57:54 +0000 Manifest this update: Tue 28 Oct 2025 16:57:53 +0000 Manifest next update: Tue 04 Nov 2025 16:57:53 +0000 Files and hashes: 1: aFCqv5vavya_oJKDAh_pE9aVbjI.crl (hash: Dw2cQIw/4vuMl4IK37QdM45Asvl7GYcO4l2SmwBj/Jo=) 2: 583F2920A6E611EF9BD0C728C4F9AE02.roa (hash: 2Gji4G+Q8to0sVMvyUq5wjYv71c4JLksDjj2P3IW/B4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 16:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4952 (0x1358) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F978, serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Validity Not Before: Oct 28 16:57:53 2025 GMT Not After : Nov 4 16:57:53 2025 GMT Subject: CN=6900f611-db33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:1a:2e:dc:f7:a8:d7:97:98:1e:79:7c:56:76: 85:7c:a5:21:10:9e:dd:f9:b4:86:81:c4:ab:d0:3d: a8:a8:66:34:c9:bb:c1:37:8f:6a:05:43:57:4f:a4: 1a:54:61:db:e1:31:c9:06:c9:8f:e9:bc:3e:36:5e: 5e:4f:35:ea:71:d5:62:72:0b:de:ac:e1:a8:62:c2: ca:6f:f1:f3:14:b6:5a:0c:87:b8:e3:84:ad:c3:56: 54:c2:54:7f:34:99:19:4d:13:df:8e:17:f8:82:23: c9:ad:39:a1:ba:e3:a2:5b:ff:b4:42:77:e4:34:53: 6a:8a:1d:87:44:72:e9:74:33:f4:6e:39:64:9a:28: 2e:9d:91:25:d3:c9:a9:e7:e3:2b:69:aa:ff:0b:4d: 10:d9:0e:01:fb:a0:43:cd:d4:f7:19:51:53:13:ac: c7:4a:37:b8:73:27:2e:57:e6:85:53:ee:69:46:c6: 63:ca:63:19:f6:6e:44:6f:e9:e6:e4:b4:d2:7b:4f: 1c:39:31:67:05:94:49:93:21:b6:22:9a:2e:61:62: 7c:a7:c2:59:69:f0:f9:b4:97:9f:ca:a5:af:ad:04: 5a:38:43:95:bc:c1:95:28:7c:09:36:71:1d:ee:63: 36:34:8d:9f:d5:cc:4f:d8:5f:b6:17:b7:87:8b:86: f8:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:98:3F:FD:74:26:1A:B4:79:D8:BE:6A:AF:5D:E0:C3:9E:81:9F:11 X509v3 Authority Key Identifier: keyid:68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:1a:5b:1c:8d:3b:ba:bd:97:ed:be:6b:77:7f:50:62:1d:b5: b9:90:0c:22:b6:5f:83:cc:d5:6b:07:6a:b4:d3:ab:2d:d9:8f: 99:f0:1c:3a:76:7c:e4:28:b3:cd:12:d0:49:7f:2b:f9:8a:b3: 20:24:17:3a:7c:72:1b:1c:bf:b9:10:f9:7c:30:a6:b4:74:e1: c8:78:3d:f4:23:56:4d:b1:fa:7a:7e:a1:f3:f0:8b:d7:c4:ce: c0:26:7d:d7:5d:2e:8c:ec:ee:df:f5:5d:a7:62:ee:ae:27:0c: ef:b4:fd:d6:ea:41:7e:13:bc:7b:87:ad:f5:63:aa:6f:68:f6: 83:b6:a1:2c:22:5d:18:4b:58:ea:8d:b9:03:71:6d:84:d4:52: 65:7f:f3:84:0a:a7:4d:a1:73:f6:d6:ee:5b:37:62:04:bf:a1: dd:25:88:85:fe:42:69:3f:8a:ab:03:5b:23:b1:9a:7f:6b:fc: 6c:90:f0:6d:61:61:bc:bb:d6:6f:90:89:83:f1:41:8e:42:71: ef:59:fe:1a:7d:14:33:92:81:20:b8:cb:1d:ed:cc:c7:00:52: 1c:87:00:68:cd:35:c3:78:e5:0c:1f:75:5b:1b:44:20:23:6e: 0b:9c:8d:9c:12:5e:30:e9:53:62:1e:6b:40:8b:63:59:2d:7c: 2b:44:0a:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY5NzgxMTAvBgNVBAUTKDY4NTBBQUJGOUJEQUJGMjZCRkEwOTI4MzAyMUZFOTEz RDY5NTZFMzIwHhcNMjUxMDI4MTY1NzUzWhcNMjUxMTA0MTY1NzUzWjAYMRYwFAYD VQQDEw02OTAwZjYxMS1kYjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5xou3Peo15eYHnl8VnaFfKUhEJ7d+bSGgcSr0D2oqGY0ybvBN49qBUNXT6Qa VGHb4THJBsmP6bw+Nl5eTzXqcdVicgverOGoYsLKb/HzFLZaDIe444Stw1ZUwlR/ NJkZTRPfjhf4giPJrTmhuuOiW/+0QnfkNFNqih2HRHLpdDP0bjlkmigunZEl08mp 5+Mraar/C00Q2Q4B+6BDzdT3GVFTE6zHSje4cycuV+aFU+5pRsZjymMZ9m5Eb+nm 5LTSe08cOTFnBZRJkyG2IpouYWJ8p8JZafD5tJefyqWvrQRaOEOVvMGVKHwJNnEd 7mM2NI2f1cxP2F+2F7eHi4b4gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEmYP/10 Jhq0edi+aq9d4MOegZ8RMB8GA1UdIwQYMBaAFGhQqr+b2r8mv6CSgwIf6RPWlW4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjk3OC83RTIyQjM3NEI2 OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5YV9vSktEQWhfcEU5YVZi akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGQ3F2NXZhdnlhX29KS0RBaF9wRTlhVmJqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjk3OC83RTIyQjM3NEI2OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5 YV9vSktEQWhfcEU5YVZiakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOGlscjTu6vZftvmt3f1BiHbW5kAwitl+DzNVrB2q006st2Y+Z8Bw6 dnzkKLPNEtBJfyv5irMgJBc6fHIbHL+5EPl8MKa0dOHIeD30I1ZNsfp6fqHz8IvX xM7AJn3XXS6M7O7f9V2nYu6uJwzvtP3W6kF+E7x7h631Y6pvaPaDtqEsIl0YS1jq jbkDcW2E1FJlf/OECqdNoXP21u5bN2IEv6HdJYiF/kJpP4qrA1sjsZp/a/xskPBt YWG8u9ZvkImD8UGOQnHvWf4afRQzkoEguMsd7czHAFIchwBozTXDeOUMH3VbG0Qg I24LnI2cEl4w6VNiHmtAi2NZLXwrRAqw -----END CERTIFICATE-----Generated at Wed Oct 29 00:22:51 2025 by rpki-client