$ rpki-client -vvf rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft File: 2MZzCV6Cqbfn381GWA94MajRiso.mft (raw, json) Hash identifier: e6wwDVfLrQX+OcC6TRiSHxC6LwdjwKFGJucFD8p+dBE= Subject key identifier: 10:DB:A0:20:5D:FE:1D:08:69:C4:59:AC:89:5E:18:A5:7F:A6:2B:D6 Authority key identifier: D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA Certificate issuer: /CN=A911862D/serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Certificate serial: 1780 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft Manifest number: 1765 Signing time: Sat 18 Oct 2025 17:01:17 +0000 Manifest this update: Sat 18 Oct 2025 17:01:17 +0000 Manifest next update: Sat 25 Oct 2025 17:01:17 +0000 Files and hashes: 1: 2MZzCV6Cqbfn381GWA94MajRiso.crl (hash: NRDhpAesfz1EbWQfrqQqukZ5wVwVIx643BENMR8J2pE=) 2: D4A7497E6E6B11EF9FC61C6AC4F9AE02.roa (hash: JBsRHnJPdnzdINV0pvwEs0IpHO7Li2A9KaO/T3DyLM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6016 (0x1780) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911862D, serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Validity Not Before: Oct 18 17:01:17 2025 GMT Not After : Oct 25 17:01:17 2025 GMT Subject: CN=68f3c7dd-cdb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:61:10:8a:06:54:7c:92:c0:d7:f3:e6:ba:d2: 8e:db:0d:0b:0f:ba:51:21:0f:68:3a:cf:b6:4d:c8: d0:bf:6a:7f:0d:02:45:21:05:f1:9c:05:3e:a3:eb: a9:a9:ea:6f:b5:46:0a:69:13:61:61:f9:48:88:9e: 08:40:0a:fe:6b:99:9c:45:9f:32:40:5a:78:53:d6: 36:c8:46:e1:f5:a2:6c:f6:5c:b2:d5:5f:d3:2b:48: 0c:f9:01:9b:57:e2:2a:ed:8b:a2:a5:ad:da:30:4a: cf:c9:c0:5b:1d:1d:2c:c3:68:2d:69:da:5d:f3:23: 00:d2:7d:ce:c2:64:85:47:81:f7:23:88:b5:19:97: 00:0d:70:1b:0c:91:84:77:46:95:c2:e0:3b:c5:c1: 4c:54:e1:da:14:07:39:6e:53:1f:6c:d6:8b:26:c7: 36:57:ef:9f:2b:c5:b0:d1:4f:a3:d3:b3:87:b8:a3: e6:83:c8:94:8d:64:52:86:f5:b1:eb:b3:ad:98:b5: 26:49:d1:5c:d4:da:c5:97:e0:dd:59:33:43:e4:8c: a4:19:51:42:b4:02:42:79:62:1d:d8:7d:15:62:aa: 5c:a4:a5:92:e6:37:ee:99:ea:75:ee:c7:18:85:96: 71:c4:ef:08:bb:23:31:fb:0a:10:27:b1:5a:90:03: 76:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:DB:A0:20:5D:FE:1D:08:69:C4:59:AC:89:5E:18:A5:7F:A6:2B:D6 X509v3 Authority Key Identifier: keyid:D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:ae:ed:f1:c0:95:07:96:8c:c0:9d:56:43:3f:8b:bc:7c:e0: 7a:5a:62:dd:ee:7b:70:21:37:80:d9:1c:b3:ef:f1:07:eb:2b: 11:ce:b7:d7:bf:e0:84:e2:db:39:5b:1e:45:ee:c1:d7:5d:57: bd:8a:0d:78:a8:f4:3b:f2:9f:7a:32:81:eb:95:f7:d6:42:0f: de:32:c3:f3:79:d6:4d:76:24:c3:6b:db:dc:b8:0f:99:fa:e9: d0:ef:43:1f:9d:df:f7:85:b5:6b:58:f3:67:a4:5f:f2:23:11: 79:fd:ec:ee:1a:76:a2:e6:45:cf:e1:88:d8:6e:4d:c2:65:f9: d0:f7:b6:4a:dc:2d:6b:74:37:eb:af:cd:c9:4f:59:9e:90:ea: a5:fa:32:d1:02:41:b6:f4:b8:4a:ed:71:5e:e5:31:cf:7c:83: 63:9c:76:4e:de:00:23:e8:f5:7e:a7:a0:fb:b9:f7:7a:9f:1e: 0c:6c:13:9a:9d:4f:4c:63:1d:f0:da:5d:80:13:17:79:b9:ce: 8d:f3:05:d7:d5:4f:5c:fd:77:99:c3:b2:08:b8:53:32:96:ce: 87:8b:bb:e1:68:80:46:3a:e3:b7:c7:19:59:8d:ae:8c:cf:92: d6:0d:6f:1a:15:5f:c0:8c:38:ad:80:15:0d:46:b1:5e:3c:03: dd:d5:d8:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2MkQxMTAvBgNVBAUTKEQ4QzY3MzA5NUU4MkE5QjdFN0RGQ0Q0NjU4MEY3ODMx QThEMThBQ0EwHhcNMjUxMDE4MTcwMTE3WhcNMjUxMDI1MTcwMTE3WjAYMRYwFAYD VQQDEw02OGYzYzdkZC1jZGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWEQigZUfJLA1/PmutKO2w0LD7pRIQ9oOs+2TcjQv2p/DQJFIQXxnAU+o+up qepvtUYKaRNhYflIiJ4IQAr+a5mcRZ8yQFp4U9Y2yEbh9aJs9lyy1V/TK0gM+QGb V+Iq7Yuipa3aMErPycBbHR0sw2gtadpd8yMA0n3OwmSFR4H3I4i1GZcADXAbDJGE d0aVwuA7xcFMVOHaFAc5blMfbNaLJsc2V++fK8Ww0U+j07OHuKPmg8iUjWRShvWx 67OtmLUmSdFc1NrFl+DdWTND5IykGVFCtAJCeWId2H0VYqpcpKWS5jfumep17scY hZZxxO8IuyMx+woQJ7FakAN2hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBDboCBd /h0IacRZrIleGKV/pivWMB8GA1UdIwQYMBaAFNjGcwlegqm359/NRlgPeDGo0YrK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODYyRC8zMjg3OUQzQUU4 QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3FiZm4zODFHV0E5NE1halJp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJNWnpDVjZDcWJmbjM4MUdXQTk0TWFqUmlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODYyRC8zMjg3OUQzQUU4QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3Fi Zm4zODFHV0E5NE1halJpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkru3xwJUHlozAnVZDP4u8fOB6WmLd7ntwITeA2Ryz7/EH6ysRzrfX v+CE4ts5Wx5F7sHXXVe9ig14qPQ78p96MoHrlffWQg/eMsPzedZNdiTDa9vcuA+Z +unQ70Mfnd/3hbVrWPNnpF/yIxF5/ezuGnai5kXP4YjYbk3CZfnQ97ZK3C1rdDfr r83JT1mekOql+jLRAkG29LhK7XFe5THPfINjnHZO3gAj6PV+p6D7ufd6nx4MbBOa nU9MYx3w2l2AExd5uc6N8wXX1U9c/XeZw7IIuFMyls6Hi7vhaIBGOuO3xxlZja6M z5LWDW8aFV/AjDitgBUNRrFePAPd1dgP -----END CERTIFICATE-----Generated at Mon Oct 20 09:35:47 2025 by rpki-client