$ rpki-client -vvf rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft File: fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft (raw, json) Hash identifier: pAmbmFHX4Yw13bH1pvfcPqc077aFwAhT/5S1jLuds0s= Subject key identifier: C4:89:BB:A7:86:52:C4:B2:DB:0C:98:30:18:90:27:08:B6:B0:1F:F5 Authority key identifier: 7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D Certificate issuer: /CN=A918753F/serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Certificate serial: 08F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft Manifest number: 08ED Signing time: Tue 04 Nov 2025 20:27:11 +0000 Manifest this update: Tue 04 Nov 2025 20:27:11 +0000 Manifest next update: Tue 11 Nov 2025 20:27:11 +0000 Files and hashes: 1: fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl (hash: mCsnI7BBrVpdvMUFQrj5jmpft3GRdIE8LdY1D5j5Wvw=) 2: 10A6E062B70A11EDB851464EC4F9AE02.roa (hash: FH1SU9GKJvbucv0gXmHk6Vc7dPieI2aucBrxBlxHAdE=) 3: 38B92F54E17D11EDBCAFC081C4F9AE02.roa (hash: KcabN84FuC1RCZKB2biZEnUyMb0N5RBlFWlu2grfP8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:27:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2296 (0x8f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918753F, serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Validity Not Before: Nov 4 20:27:11 2025 GMT Not After : Nov 11 20:27:11 2025 GMT Subject: CN=690a619f-6819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:64:bc:a8:3c:ce:5b:58:61:39:4a:9a:5f:51: df:c5:1a:8c:61:fe:15:f8:72:b6:33:05:a3:74:b1: de:da:27:98:61:35:6b:b1:09:68:0e:d0:e7:e8:8b: 87:4b:9e:ad:41:a2:db:78:88:85:59:ab:f4:44:36: 3d:b1:63:d6:8d:7b:39:19:94:6f:41:31:4a:ba:b6: 02:a7:ad:59:4d:1c:88:7d:da:1b:3c:fa:a1:41:4c: 0d:af:70:82:74:d1:e0:2e:d5:60:d1:ea:30:51:ec: 5d:13:a3:b4:01:a6:98:d7:1e:b7:6e:a2:2a:f4:e3: c8:31:b1:ae:ce:74:4c:4a:5d:7b:99:f9:ca:35:2e: 5b:14:99:5c:11:6a:55:2f:ce:62:1d:d5:54:75:25: 59:4e:e9:f0:c0:a9:50:0e:0e:ab:76:b9:e1:50:69: ba:30:3a:90:b2:e0:09:f2:2f:77:b5:5c:7f:6b:b8: 47:73:2e:cd:1e:ec:50:25:01:33:b8:4f:29:53:ce: 73:49:60:7a:26:5a:02:5d:ee:70:3d:27:da:b3:22: 5c:b1:61:54:71:ac:f5:bc:25:d6:08:14:2d:0d:52: 92:81:33:c2:a5:be:f9:55:d5:dc:6a:53:e3:f0:3f: d1:62:d8:d9:c1:39:f9:19:b1:4a:4a:ae:2a:cf:b4: 3c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:89:BB:A7:86:52:C4:B2:DB:0C:98:30:18:90:27:08:B6:B0:1F:F5 X509v3 Authority Key Identifier: keyid:7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:49:d1:8a:2a:8a:ec:e1:8d:aa:71:96:91:c0:a8:fd:b7:6e: dd:1a:ec:62:5e:4e:21:08:f1:05:d8:0d:9c:21:cd:be:ba:88: e9:b3:22:97:75:3c:92:c3:85:91:58:d3:67:59:50:19:78:56: 88:95:03:2a:ae:61:9a:12:b8:24:17:a0:49:b4:b9:a3:5b:c0: de:92:26:06:62:6d:66:8c:ab:94:de:fb:4e:2f:15:95:2b:55: 28:d5:ef:cd:1f:b6:4b:5b:05:55:4a:d5:ca:38:8d:20:51:d4: bb:1d:ab:65:2c:89:3b:ad:d8:00:d1:7d:cf:de:67:98:87:3e: 40:59:c9:c3:f7:cd:7b:a5:5b:31:a1:f5:38:bb:03:1d:18:71: 4d:8b:08:8e:c8:bf:d0:20:aa:ad:17:9c:14:53:1e:2f:00:0f: c4:a2:fb:de:ef:a3:25:82:d0:5d:d8:54:4f:3f:5b:6e:1e:3f: 8b:fd:32:39:e7:72:1e:80:1e:35:e1:b5:e9:55:b1:d4:3a:5f: b2:0b:53:7f:e5:bb:40:80:29:6d:33:b7:36:83:3d:db:6c:54: 44:25:33:1a:83:28:ef:05:86:eb:ba:ff:57:08:dd:d3:e6:c5: 64:23:51:cb:85:9a:d4:42:79:60:c8:43:e9:2f:b1:8f:2b:75: 66:34:d4:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc1M0YxMTAvBgNVBAUTKDdFNzJEODAxQjM4QTcyQUI0QjAzNzZFMTJDOTU0MTI0 QUFFNDNDNkQwHhcNMjUxMTA0MjAyNzExWhcNMjUxMTExMjAyNzExWjAYMRYwFAYD VQQDEw02OTBhNjE5Zi02ODE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmS8qDzOW1hhOUqaX1HfxRqMYf4V+HK2MwWjdLHe2ieYYTVrsQloDtDn6IuH S56tQaLbeIiFWav0RDY9sWPWjXs5GZRvQTFKurYCp61ZTRyIfdobPPqhQUwNr3CC dNHgLtVg0eowUexdE6O0AaaY1x63bqIq9OPIMbGuznRMSl17mfnKNS5bFJlcEWpV L85iHdVUdSVZTunwwKlQDg6rdrnhUGm6MDqQsuAJ8i93tVx/a7hHcy7NHuxQJQEz uE8pU85zSWB6JloCXe5wPSfasyJcsWFUcaz1vCXWCBQtDVKSgTPCpb75VdXcalPj 8D/RYtjZwTn5GbFKSq4qz7Q8xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMSJu6eG UsSy2wyYMBiQJwi2sB/1MB8GA1UdIwQYMBaAFH5y2AGzinKrSwN24SyVQSSq5Dxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzUzRi9CREE1N0ZGRUJD MTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2NxdExBM2JoTEpWQkpLcmtQ RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuTFlBYk9LY3F0TEEzYmhMSlZCSktya1BHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzUzRi9CREE1N0ZGRUJDMTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2Nx dExBM2JoTEpWQkpLcmtQRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeSdGKKors4Y2qcZaRwKj9t27dGuxiXk4hCPEF2A2cIc2+uojpsyKX dTySw4WRWNNnWVAZeFaIlQMqrmGaErgkF6BJtLmjW8DekiYGYm1mjKuU3vtOLxWV K1Uo1e/NH7ZLWwVVStXKOI0gUdS7HatlLIk7rdgA0X3P3meYhz5AWcnD9817pVsx ofU4uwMdGHFNiwiOyL/QIKqtF5wUUx4vAA/Eovve76MlgtBd2FRPP1tuHj+L/TI5 53IegB414bXpVbHUOl+yC1N/5btAgCltM7c2gz3bbFREJTMagyjvBYbruv9XCN3T 5sVkI1HLhZrUQnlgyEPpL7GPK3VmNNSo -----END CERTIFICATE-----Generated at Wed Nov 5 19:46:59 2025 by rpki-client