$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft File: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft (raw, json) Hash identifier: C3fCGVHbEE3CY3Zc4nvu0OPvOv2d/8cbtI6oDfzfRpE= Subject key identifier: EB:4E:AF:AE:CF:54:5A:35:46:48:40:39:14:A0:DC:20:D2:E7:19:67 Authority key identifier: 16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 Certificate issuer: /CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Certificate serial: 0B73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft Manifest number: 0B5C Signing time: Wed 22 Oct 2025 19:43:09 +0000 Manifest this update: Wed 22 Oct 2025 19:43:08 +0000 Manifest next update: Wed 29 Oct 2025 19:43:08 +0000 Files and hashes: 1: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl (hash: P1TejalZ54wzGcVgIxjMmzYwdtLE167y5SvLTuKks/w=) 2: 9D999E187CA811F0AE15ED6EC4F9AE02.roa (hash: J/Y6p2/yKRXDBc4lXrVgkXTkn/NmrMfJzbfX/5O/hQo=) 3: B285AC807CA911F09D442F15C4F9AE02.roa (hash: UX2zMGfv+WxZ0voK+QDzKZn1ZKk782a4iAXgqqE0IQo=) 4: DC06CBC0419A11EAA5E2BA6EC4F9AE02.roa (hash: jb+NbLPJbNRFrpXKly3k3uaY8m7AD5q86vW7O0jvGcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 19:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2931 (0xb73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC40, serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Validity Not Before: Oct 22 19:43:08 2025 GMT Not After : Oct 29 19:43:08 2025 GMT Subject: CN=68f933cd-370d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c0:4f:60:89:62:61:06:d4:c5:e7:13:fc:ef: f4:5c:56:1e:37:7c:6e:a5:a7:83:50:e3:c0:4b:da: 5c:39:c8:8a:75:b3:b0:81:aa:35:69:25:94:35:f4: 81:40:c7:35:a9:98:c6:69:6b:58:16:a0:cb:ee:a2: 60:2e:45:97:28:09:b6:71:22:cd:12:a9:fd:ad:93: 61:2d:1c:cf:7a:8e:7f:ab:b9:25:b6:c5:93:6a:23: 91:cd:5c:5c:29:86:d5:85:fb:31:4d:90:be:26:27: 0b:08:9a:2f:3c:5b:fb:ee:fa:aa:d9:9b:d7:9c:14: 86:0f:62:c8:0f:13:ef:63:7e:b7:eb:12:c2:88:75: 31:68:33:aa:66:6b:dc:e0:80:43:f8:5f:70:be:2f: 4d:4e:91:9c:f3:d9:a1:e5:67:6c:76:37:a6:69:c4: 5e:71:c7:de:30:54:90:80:64:8f:0d:15:c7:50:38: b1:e0:27:e3:34:75:66:3c:a3:ed:14:3b:ec:78:71: ad:71:21:82:f3:aa:66:39:b2:da:f4:bf:e6:61:7b: da:16:93:71:f0:65:22:35:16:f1:d2:66:69:41:f9: 19:62:04:a7:13:e1:62:c8:be:fe:18:43:37:de:83: 15:23:08:40:8e:77:29:6a:0e:4e:bc:07:9e:e0:8a: 9f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:4E:AF:AE:CF:54:5A:35:46:48:40:39:14:A0:DC:20:D2:E7:19:67 X509v3 Authority Key Identifier: keyid:16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:ee:ac:c6:33:a0:cb:b4:d7:b7:a4:02:47:ad:2a:d8:14:13: ab:8a:36:7e:a9:b4:9d:59:b9:80:ab:4a:15:06:95:d7:8c:80: 18:a4:ce:93:77:7a:d2:f7:93:37:34:8d:47:d3:c2:37:ad:76: 3a:fd:63:a3:d7:d8:dd:db:b8:dc:7b:f1:e9:16:99:8d:ae:0c: e5:67:27:5a:64:58:b8:35:9f:34:a9:b4:b7:bc:86:e8:6e:29: 59:ee:8b:c8:b4:d3:0e:b3:7a:e9:43:54:5b:75:2f:6f:64:93: a3:00:7c:65:b5:68:33:b1:d7:1d:c8:1f:91:18:9d:69:e4:13: b6:21:f1:1a:15:c4:79:e1:4a:f7:92:b6:6e:d7:c3:da:46:66: 86:bd:6a:72:08:0b:56:30:7a:3e:77:b8:60:da:db:47:df:d1: e3:63:9d:f8:0a:bd:75:d8:69:e6:1f:33:cd:95:43:26:79:61: 88:42:68:a8:f1:a1:ce:f4:00:25:2e:03:58:b7:e3:ca:53:1c: 7c:10:06:1e:ba:11:b4:96:3b:7c:e0:13:90:82:04:8e:33:af: ba:01:bd:87:8f:5c:0c:84:55:c5:ed:0e:35:19:fa:28:0b:7e: 64:43:5c:ee:01:b6:9a:ea:cd:99:fb:6f:20:9a:17:96:65:29: fc:78:a3:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNDAxMTAvBgNVBAUTKDE2MDFEODY1MERENTU2QjJBRkIwODNCMjMzRkY2NUFF M0RBRDE1NzEwHhcNMjUxMDIyMTk0MzA4WhcNMjUxMDI5MTk0MzA4WjAYMRYwFAYD VQQDEw02OGY5MzNjZC0zNzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA48BPYIliYQbUxecT/O/0XFYeN3xupaeDUOPAS9pcOciKdbOwgao1aSWUNfSB QMc1qZjGaWtYFqDL7qJgLkWXKAm2cSLNEqn9rZNhLRzPeo5/q7kltsWTaiORzVxc KYbVhfsxTZC+JicLCJovPFv77vqq2ZvXnBSGD2LIDxPvY3636xLCiHUxaDOqZmvc 4IBD+F9wvi9NTpGc89mh5WdsdjemacReccfeMFSQgGSPDRXHUDix4CfjNHVmPKPt FDvseHGtcSGC86pmObLa9L/mYXvaFpNx8GUiNRbx0mZpQfkZYgSnE+FiyL7+GEM3 3oMVIwhAjncpag5OvAee4Iqf0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtOr67P VFo1RkhAORSg3CDS5xlnMB8GA1UdIwQYMBaAFBYB2GUN1Vayr7CDsjP/Za49rRVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM0MC82MTdGMzUzNjQw RTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZyS3ZzSU95TV85bHJqMnRG WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnSFlaUTNWVnJLdnNJT3lNXzlscmoydEZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkM0MC82MTdGMzUzNjQwRTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZy S3ZzSU95TV85bHJqMnRGWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA7qzGM6DLtNe3pAJHrSrYFBOrijZ+qbSdWbmAq0oVBpXXjIAYpM6T d3rS95M3NI1H08I3rXY6/WOj19jd27jce/HpFpmNrgzlZydaZFi4NZ80qbS3vIbo bilZ7ovItNMOs3rpQ1RbdS9vZJOjAHxltWgzsdcdyB+RGJ1p5BO2IfEaFcR54Ur3 krZu18PaRmaGvWpyCAtWMHo+d7hg2ttH39HjY534Cr112GnmHzPNlUMmeWGIQmio 8aHO9AAlLgNYt+PKUxx8EAYeuhG0ljt84BOQggSOM6+6Ab2Hj1wMhFXF7Q41Gfoo C35kQ1zuAbaa6s2Z+28gmheWZSn8eKOw -----END CERTIFICATE-----Generated at Thu Oct 23 04:47:01 2025 by rpki-client