$ rpki-client -vvf rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft File: 2CIvXKRzliJE_BNBFXEOvtXjlWA.mft (raw, json) Hash identifier: /9PLfTd5L+U3kmNXzDbqMWsuIOQPqyV2a85FQZtJyAI= Subject key identifier: EA:55:09:04:C0:77:BA:30:9A:8A:ED:F7:64:B2:FD:86:CF:36:96:01 Authority key identifier: D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 Certificate issuer: /CN=A9119624/serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Certificate serial: 0C53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft Manifest number: 0C4D Signing time: Mon 20 Oct 2025 18:28:31 +0000 Manifest this update: Mon 20 Oct 2025 18:28:30 +0000 Manifest next update: Mon 27 Oct 2025 18:28:30 +0000 Files and hashes: 1: 2CIvXKRzliJE_BNBFXEOvtXjlWA.crl (hash: TPllHyQK8uVxbi+xrseVcZ1wrLB1ALdzFbCvSC/bZtk=) 2: A4049C06213E11EAAA89A95DC4F9AE02.roa (hash: fJj5V7B0tj2U/amxOYn7MfT1h8cR0RvRgHTxKdHbOM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 18:28:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3155 (0xc53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119624, serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Validity Not Before: Oct 20 18:28:30 2025 GMT Not After : Oct 27 18:28:30 2025 GMT Subject: CN=68f67f4f-ec4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7f:fc:1b:61:12:d4:5c:d8:c2:5a:8d:19:73: 1a:34:6d:ea:af:27:4b:d0:e5:3f:6b:8b:31:3c:73: 4c:1c:7a:ce:7a:d0:73:39:65:b8:48:b9:f3:b9:e1: 65:22:3b:f4:7e:d3:92:97:d1:96:99:80:4b:6c:ce: 71:7c:48:68:dc:88:9a:6e:08:45:d4:01:e1:10:6d: b0:68:de:b7:02:d0:e5:17:01:1c:52:ed:1d:75:01: 5f:2c:3e:9c:c3:55:73:ff:71:20:be:47:19:f2:73: c1:e7:c5:fc:5e:4f:43:6a:b6:65:2d:1e:b2:c5:9b: df:97:5d:59:bf:fa:4e:8c:c7:e9:e1:8e:70:d6:62: b3:e1:ac:f4:2e:0b:d2:47:4d:91:75:eb:4b:14:a0: 09:d3:ad:0a:6d:00:5a:b8:f9:14:94:51:e5:46:e7: 05:31:ec:b1:97:79:8b:f2:14:5b:75:88:b1:3c:cf: ed:af:5c:aa:b1:d9:09:f8:ee:96:79:c6:0f:be:ac: bd:dc:1c:6c:35:38:ac:db:e6:c4:da:d0:8f:64:5a: dd:e7:00:75:ee:74:22:d0:63:28:fa:e6:5b:12:ef: 17:71:65:9a:ab:41:83:74:70:f1:eb:e0:f1:0a:7b: 4e:dc:d2:3f:84:9c:58:e5:1f:57:e2:fd:f4:d7:db: 8a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:55:09:04:C0:77:BA:30:9A:8A:ED:F7:64:B2:FD:86:CF:36:96:01 X509v3 Authority Key Identifier: keyid:D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:7d:45:96:6b:a8:b1:5d:38:35:83:a0:46:62:d9:8b:6c:13: 1c:21:e7:7d:79:bd:ec:5f:70:a2:6d:2c:bc:a1:56:c7:e5:9c: f4:92:4c:1e:d5:a0:8a:cc:14:fe:19:32:45:d0:55:2e:92:72: d9:70:fd:6a:44:18:52:48:51:6b:c1:ef:1e:dc:43:3a:18:6f: cd:86:7f:3c:6e:6f:01:fc:da:b0:69:d2:83:8d:72:47:2f:35: 5d:27:5a:b0:6f:28:9d:4e:69:10:7f:61:2b:9e:75:14:fd:dd: ae:41:35:35:da:82:6f:ae:5e:c3:96:25:c3:7d:d5:a5:10:8e: 60:e8:15:39:e6:df:2e:cb:bf:ef:c8:6a:ed:7a:98:51:b7:8d: dc:c9:9f:82:12:63:57:4a:58:fc:c7:ad:96:49:33:3e:95:f5: 17:c8:b2:8b:b4:7b:59:e5:d8:40:cb:7d:52:ad:12:52:20:78: 7c:d4:d5:ba:44:ef:6b:60:6b:c1:99:f3:ab:74:e3:17:f8:46: 5b:8e:5c:14:07:81:85:9b:c6:33:8a:43:dc:09:0f:ca:99:17: 92:fb:95:54:a5:71:1a:9e:79:59:de:66:47:bc:fd:d3:f0:30: 95:05:a5:cd:88:10:b4:7e:0c:74:cc:c6:18:62:fe:e5:60:cc: 64:a9:ca:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk2MjQxMTAvBgNVBAUTKEQ4MjIyRjVDQTQ3Mzk2MjI0NEZDMTM0MTE1NzEwRUJF RDVFMzk1NjAwHhcNMjUxMDIwMTgyODMwWhcNMjUxMDI3MTgyODMwWjAYMRYwFAYD VQQDEw02OGY2N2Y0Zi1lYzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3/8G2ES1FzYwlqNGXMaNG3qrydL0OU/a4sxPHNMHHrOetBzOWW4SLnzueFl Ijv0ftOSl9GWmYBLbM5xfEho3IiabghF1AHhEG2waN63AtDlFwEcUu0ddQFfLD6c w1Vz/3EgvkcZ8nPB58X8Xk9DarZlLR6yxZvfl11Zv/pOjMfp4Y5w1mKz4az0LgvS R02RdetLFKAJ060KbQBauPkUlFHlRucFMeyxl3mL8hRbdYixPM/tr1yqsdkJ+O6W ecYPvqy93BxsNTis2+bE2tCPZFrd5wB17nQi0GMo+uZbEu8XcWWaq0GDdHDx6+Dx CntO3NI/hJxY5R9X4v3019uKiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOpVCQTA d7owmort92Sy/YbPNpYBMB8GA1UdIwQYMBaAFNgiL1ykc5YiRPwTQRVxDr7V45Vg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTYyNC9DNjk0ODIzNjEw RTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxpSkVfQk5CRlhFT3Z0WGps V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDSXZYS1J6bGlKRV9CTkJGWEVPdnRYamxXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTYyNC9DNjk0ODIzNjEwRTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxp SkVfQk5CRlhFT3Z0WGpsV0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChfUWWa6ixXTg1g6BGYtmLbBMcIed9eb3sX3CibSy8oVbH5Zz0kkwe 1aCKzBT+GTJF0FUuknLZcP1qRBhSSFFrwe8e3EM6GG/Nhn88bm8B/NqwadKDjXJH LzVdJ1qwbyidTmkQf2ErnnUU/d2uQTU12oJvrl7DliXDfdWlEI5g6BU55t8uy7/v yGrtephRt43cyZ+CEmNXSlj8x62WSTM+lfUXyLKLtHtZ5dhAy31SrRJSIHh81NW6 RO9rYGvBmfOrdOMX+EZbjlwUB4GFm8YzikPcCQ/KmReS+5VUpXEannlZ3mZHvP3T 8DCVBaXNiBC0fgx0zMYYYv7lYMxkqcqo -----END CERTIFICATE-----Generated at Tue Oct 21 00:03:47 2025 by rpki-client