$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft File: 2WQZRdW0z31j_JExr89yeuNtkCA.mft (raw, json) Hash identifier: idfOAr0IFa673TDoSeFyjJtyx0PC3Y9kjUKS4BpusBY= Subject key identifier: BB:2D:BA:D1:45:56:27:19:C0:CE:08:53:86:AB:94:D9:20:B7:41:34 Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Certificate serial: 0224 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft Manifest number: 021A Signing time: Sun 19 Oct 2025 04:27:32 +0000 Manifest this update: Sun 19 Oct 2025 04:27:32 +0000 Manifest next update: Sun 26 Oct 2025 04:27:32 +0000 Files and hashes: 1: 2WQZRdW0z31j_JExr89yeuNtkCA.crl (hash: zvm5/8pROTWkkGh6D1G3NQwpKNiu1x3p4ET6u065U+A=) 2: 15714ED2776A11ED98AF7341C4F9AE02.roa (hash: WBxu67wj7qK+1XHnF6Gm/tpT83HjDxcRJ+5R7dbCf7I=) 3: 77490C9A792F11EEBF849942C4F9AE02.roa (hash: +qSb4R4TGVMwO8UibifLnyUfy5g07BZr/1fOfOFiaKg=) 4: 590A6A9A792E11EEA5AAB840C4F9AE02.roa (hash: TjgZvd8NTyfnTIYx+SMzczM6IMYvFc5scP1aWMMbHyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 548 (0x224) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F316, serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Validity Not Before: Oct 19 04:27:32 2025 GMT Not After : Oct 26 04:27:32 2025 GMT Subject: CN=68f468b4-6fa8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:45:6a:d0:d1:0b:98:4c:fc:04:ba:5b:d5:27: f3:fc:a2:78:11:5c:ca:1f:38:68:10:08:a6:a8:a5: 37:39:0f:e7:0f:46:e8:8b:53:e1:89:01:ed:c9:6a: 7c:6e:12:b7:4c:b5:09:0d:2d:69:bf:c0:f5:21:7b: 9c:ab:06:28:8f:31:4b:bb:fb:56:90:fa:1d:84:cd: 45:61:ee:18:c3:5e:17:f9:8c:db:e4:f9:4d:39:e8: 14:3a:53:eb:57:52:79:99:48:0e:11:10:10:60:19: 85:17:9b:ac:fb:a6:87:0a:94:21:66:03:17:8c:e3: 55:fb:16:f6:50:56:1e:d1:90:88:d8:54:8d:5c:b1: 30:8c:62:24:6c:56:41:ef:89:88:c0:01:41:87:c2: 4e:52:83:1e:69:3c:fa:97:99:09:50:0f:27:13:49: 13:52:ed:19:54:ec:1f:43:16:d9:92:18:5d:cf:d5: fe:45:ad:76:fd:33:df:25:49:fb:28:88:56:f7:d5: 60:ef:18:58:e9:58:52:7d:7b:3e:7f:53:bf:f6:63: 3b:a0:25:f1:b9:61:7d:02:4b:3e:fa:e9:1a:22:92: ca:35:6c:db:f2:a7:5d:75:03:4a:a7:a2:b0:e3:e1: 6e:e1:03:7d:fd:0c:b3:3b:e5:9e:b6:7d:a3:dc:64: 9c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:2D:BA:D1:45:56:27:19:C0:CE:08:53:86:AB:94:D9:20:B7:41:34 X509v3 Authority Key Identifier: keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:2b:3d:47:9f:36:84:9f:af:6d:46:ec:48:a4:49:31:7b:b3: 88:75:6a:16:a1:3b:f2:78:5b:45:9e:ed:25:e4:9d:eb:25:79: 7b:ab:3a:61:d6:57:58:e6:df:8b:ea:a4:c0:27:13:f8:a1:34: 93:14:70:76:3d:1b:d7:a1:7c:18:69:9a:0e:0b:de:5a:24:67: 27:d9:bf:b8:49:6e:26:d5:23:b1:8d:16:82:d0:ec:19:ac:63: d4:5c:27:5d:b2:c2:cd:15:83:d7:1f:a1:02:6c:96:7f:4f:12: d2:e6:d6:38:13:bf:46:e2:57:72:7d:c0:ac:83:aa:bc:ee:07: 96:e0:6b:69:84:d3:fe:23:93:c5:80:39:33:14:35:8e:35:12: 59:9d:8d:f2:32:95:e2:1b:69:be:80:f7:12:5d:91:91:86:e2: 81:cd:89:59:27:a7:e6:72:d4:18:72:3a:91:db:5b:8c:da:7b: 3c:1c:c0:36:96:9f:37:59:39:a6:57:47:6b:4d:a0:bd:f1:10: a7:84:3b:c9:d1:4f:6c:80:bb:57:13:88:6c:f5:9f:ab:4c:4d: 66:ad:ae:86:ed:9a:34:10:12:55:1b:a6:4c:e4:f5:49:3c:ab: 95:96:de:49:ce:a0:e7:38:16:38:8f:bd:7a:e5:68:0e:12:45: 72:29:c3:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB RTM2RDkwMjAwHhcNMjUxMDE5MDQyNzMyWhcNMjUxMDI2MDQyNzMyWjAYMRYwFAYD VQQDEw02OGY0NjhiNC02ZmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskVq0NELmEz8BLpb1Sfz/KJ4EVzKHzhoEAimqKU3OQ/nD0boi1PhiQHtyWp8 bhK3TLUJDS1pv8D1IXucqwYojzFLu/tWkPodhM1FYe4Yw14X+Yzb5PlNOegUOlPr V1J5mUgOERAQYBmFF5us+6aHCpQhZgMXjONV+xb2UFYe0ZCI2FSNXLEwjGIkbFZB 74mIwAFBh8JOUoMeaTz6l5kJUA8nE0kTUu0ZVOwfQxbZkhhdz9X+Ra12/TPfJUn7 KIhW99Vg7xhY6VhSfXs+f1O/9mM7oCXxuWF9Aks++ukaIpLKNWzb8qdddQNKp6Kw 4+Fu4QN9/QyzO+Wetn2j3GScAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLstutFF VicZwM4IU4arlNkgt0E0MB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3 NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjMxNi9BMURGMTUyMDc3NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHoz MWpfSkV4cjg5eWV1TnRrQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIKz1HnzaEn69tRuxIpEkxe7OIdWoWoTvyeFtFnu0l5J3rJXl7qzph 1ldY5t+L6qTAJxP4oTSTFHB2PRvXoXwYaZoOC95aJGcn2b+4SW4m1SOxjRaC0OwZ rGPUXCddssLNFYPXH6ECbJZ/TxLS5tY4E79G4ldyfcCsg6q87geW4GtphNP+I5PF gDkzFDWONRJZnY3yMpXiG2m+gPcSXZGRhuKBzYlZJ6fmctQYcjqR21uM2ns8HMA2 lp83WTmmV0drTaC98RCnhDvJ0U9sgLtXE4hs9Z+rTE1mra6G7Zo0EBJVG6ZM5PVJ PKuVlt5JzqDnOBY4j7165WgOEkVyKcMe -----END CERTIFICATE-----Generated at Mon Oct 20 19:10:55 2025 by rpki-client