$ rpki-client -vvf rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft File: 0pm8o5yZPbgNETe5mbIhhGrPVWs.mft (raw, json) Hash identifier: beRpdipmh2G2vsL722MnbJr1B/2xbhjW8ZIYDv3Ui1Y= Subject key identifier: 2E:3E:08:15:AA:17:AC:E7:F3:71:0B:D1:D9:1F:65:CC:28:56:AE:C2 Authority key identifier: D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B Certificate issuer: /CN=A9115C2E/serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B Certificate serial: 051A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft Manifest number: 0514 Signing time: Sat 18 Oct 2025 20:50:29 +0000 Manifest this update: Sat 18 Oct 2025 20:50:29 +0000 Manifest next update: Sat 25 Oct 2025 20:50:29 +0000 Files and hashes: 1: 0pm8o5yZPbgNETe5mbIhhGrPVWs.crl (hash: FFnekB3+/dFiW2W9eQ29MWCRpGPj1Yi4YVVad+dL65s=) 2: F490AE2431D811ECA3C4CE3EC4F9AE02.roa (hash: /oifx1YqYxKOVaxnhM6Z6BMW1b5AcpZK0vDtcYNO6Zg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.crl rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1306 (0x51a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115C2E, serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B Validity Not Before: Oct 18 20:50:29 2025 GMT Not After : Oct 25 20:50:29 2025 GMT Subject: CN=68f3fd95-7c4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:bc:12:c1:26:96:4d:70:38:9b:7a:f6:43:f6: fd:50:a1:d6:17:8d:7f:96:94:3f:b4:c1:f6:c1:70: e8:ce:72:b7:d3:0b:6b:52:74:8b:c8:42:f7:67:38: 21:35:ad:dc:4b:6f:d0:8e:f3:88:ef:da:10:06:18: 39:54:40:46:9f:af:bd:68:94:23:7c:8d:61:fb:25: b8:7e:84:0d:6c:19:b0:96:92:3d:09:85:53:e1:a6: 34:6c:94:c6:34:38:e0:c1:0e:fb:ff:1f:6c:b7:91: f8:11:98:19:58:f6:a2:e7:f5:c4:1d:36:3c:cd:4f: 8d:46:50:5e:ac:19:c1:b2:c0:b5:a2:51:90:4c:c5: ee:40:88:5f:53:15:a6:ac:2d:28:7a:95:2f:b6:c3: 57:44:87:34:ba:6c:e6:e4:f3:b1:94:8b:9f:77:a1: 4f:83:56:d7:b5:c8:f8:37:9b:7a:64:18:5c:fb:df: 1e:91:29:9d:49:2b:7f:a4:50:3e:6d:05:7d:49:dc: 57:c0:92:a8:4c:b5:06:c8:ec:f5:3a:b3:7b:81:a2: cb:8b:22:da:68:e6:75:2b:87:92:74:a9:2b:71:39: b7:4d:1b:db:db:6e:57:6a:78:03:4c:ac:5a:e6:39: e1:59:5a:5b:35:7e:bf:21:1a:4b:c6:ae:c7:3f:f1: 72:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:3E:08:15:AA:17:AC:E7:F3:71:0B:D1:D9:1F:65:CC:28:56:AE:C2 X509v3 Authority Key Identifier: keyid:D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:43:ec:bd:4c:bc:b2:93:8c:09:fb:41:31:45:6f:39:b9:6c: 0f:63:5e:e0:12:8b:56:74:9d:d6:c2:df:c4:14:82:b7:26:0d: 21:8a:27:8f:de:52:55:bf:9f:0b:d8:2a:0a:37:a4:93:8c:ab: 30:1a:eb:be:64:d8:dc:d6:74:6a:08:cf:5f:61:4a:00:27:b3: 97:91:63:4f:84:45:61:cb:38:66:0b:f5:f9:b1:4b:c6:9f:35: a4:5c:db:0f:64:01:93:0a:70:b3:a8:a7:01:17:5b:5b:2f:06: 93:4f:23:45:fe:97:03:b0:b3:35:08:fe:9b:31:bd:81:03:e5: c4:d1:4f:61:90:cb:e6:83:ac:15:3d:44:a4:93:28:6a:65:f3: d5:94:2b:0c:b9:6a:1b:16:51:76:ad:8b:0e:3b:69:6b:77:17: 07:5a:f3:7f:8f:a0:aa:2f:ed:7f:a6:a0:65:97:b6:93:46:ef: f8:5e:b3:b6:3e:51:d8:41:f0:d0:76:fc:5b:4d:18:7e:0e:15: 2b:5b:3b:12:bc:07:d0:d2:bb:4f:dc:f4:de:6c:da:10:58:ac: e2:ed:34:0d:a3:5d:e9:b7:8e:bc:6a:f1:e4:db:62:b0:98:d4: ef:a3:d5:d6:8d:da:4f:bf:3c:af:d5:8a:1f:3f:65:f5:ad:ee: d5:c6:e6:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDMkUxMTAvBgNVBAUTKEQyOTlCQ0EzOUM5OTNEQjgwRDExMzdCOTk5QjIyMTg0 NkFDRjU1NkIwHhcNMjUxMDE4MjA1MDI5WhcNMjUxMDI1MjA1MDI5WjAYMRYwFAYD VQQDEw02OGYzZmQ5NS03YzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA97wSwSaWTXA4m3r2Q/b9UKHWF41/lpQ/tMH2wXDoznK30wtrUnSLyEL3Zzgh Na3cS2/QjvOI79oQBhg5VEBGn6+9aJQjfI1h+yW4foQNbBmwlpI9CYVT4aY0bJTG NDjgwQ77/x9st5H4EZgZWPai5/XEHTY8zU+NRlBerBnBssC1olGQTMXuQIhfUxWm rC0oepUvtsNXRIc0umzm5POxlIufd6FPg1bXtcj4N5t6ZBhc+98ekSmdSSt/pFA+ bQV9SdxXwJKoTLUGyOz1OrN7gaLLiyLaaOZ1K4eSdKkrcTm3TRvb225XangDTKxa 5jnhWVpbNX6/IRpLxq7HP/FyYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4+CBWq F6zn83EL0dkfZcwoVq7CMB8GA1UdIwQYMBaAFNKZvKOcmT24DRE3uZmyIYRqz1Vr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUMyRS85NTI3RTZCNDI2 OEUxMUVDOEVEMEJBNkVDNEY5QUUwMi8wcG04bzV5WlBiZ05FVGU1bWJJaGhHclBW V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBwbThvNXlaUGJnTkVUZTVtYkloaEdyUFZXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NUMyRS85NTI3RTZCNDI2OEUxMUVDOEVEMEJBNkVDNEY5QUUwMi8wcG04bzV5WlBi Z05FVGU1bWJJaGhHclBWV3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXQ+y9TLyyk4wJ+0ExRW85uWwPY17gEotWdJ3Wwt/EFIK3Jg0hiieP 3lJVv58L2CoKN6STjKswGuu+ZNjc1nRqCM9fYUoAJ7OXkWNPhEVhyzhmC/X5sUvG nzWkXNsPZAGTCnCzqKcBF1tbLwaTTyNF/pcDsLM1CP6bMb2BA+XE0U9hkMvmg6wV PUSkkyhqZfPVlCsMuWobFlF2rYsOO2lrdxcHWvN/j6CqL+1/pqBll7aTRu/4XrO2 PlHYQfDQdvxbTRh+DhUrWzsSvAfQ0rtP3PTebNoQWKzi7TQNo13pt468avHk22Kw mNTvo9XWjdpPvzyv1YofP2X1re7VxuaW -----END CERTIFICATE-----Generated at Mon Oct 20 20:40:27 2025 by rpki-client