$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft File: 2QaTkaPngEpuvd-dQfLeTZG9UbM.mft (raw, json) Hash identifier: pSAKNqBjGTNW0ew2b5KBtP7NyKylPF61NDKNLNA8Tbs= Subject key identifier: 1F:A0:40:04:32:74:5A:A8:B7:02:3B:1E:16:0A:1F:EB:FA:DA:78:A2 Authority key identifier: D9:06:93:91:A3:E7:80:4A:6E:BD:DF:9D:41:F2:DE:4D:91:BD:51:B3 Certificate issuer: /CN=A9125C22/serialNumber=D9069391A3E7804A6EBDDF9D41F2DE4D91BD51B3 Certificate serial: 06BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft Manifest number: 06B5 Signing time: Sat 18 Oct 2025 23:39:23 +0000 Manifest this update: Sat 18 Oct 2025 23:39:22 +0000 Manifest next update: Sat 25 Oct 2025 23:39:22 +0000 Files and hashes: 1: 2QaTkaPngEpuvd-dQfLeTZG9UbM.crl (hash: 1Iar3/iQ48ULRp+Dj+wVYznZw6KzXVPpGM2dRs9nglE=) 2: 202A51EA52D611EFA0333E23C4F9AE02.roa (hash: jy45pLpGUEHdAvcc7aV1J1N0BlCts0GUmsU/8qKGZrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.crl rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1727 (0x6bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22, serialNumber=D9069391A3E7804A6EBDDF9D41F2DE4D91BD51B3 Validity Not Before: Oct 18 23:39:22 2025 GMT Not After : Oct 25 23:39:22 2025 GMT Subject: CN=68f4252a-52fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5c:f5:90:fb:fb:72:1b:54:82:01:34:1a:97: 18:76:eb:a6:aa:30:89:69:59:21:bd:b7:0a:fc:3f: c3:12:dd:fa:6c:20:c4:57:49:50:81:4e:6f:20:06: 11:20:28:f2:09:c5:c9:0f:9c:9e:d9:5c:0c:8e:e3: 9b:f6:af:1f:8b:94:62:2d:de:b6:b9:88:ca:d4:d5: 3e:21:8f:fd:73:a3:e0:7b:41:cf:42:71:40:0b:ad: b1:5d:43:ac:ab:4f:5f:fb:75:16:99:0c:d6:c7:0e: a2:4d:bb:91:e1:1f:be:68:e6:6d:fc:91:f0:e5:a7: 91:ef:67:51:b0:7e:dd:c0:24:fe:03:07:2f:2c:92: 4c:23:68:e4:a2:ae:f1:ed:be:80:01:49:17:62:a4: 4d:3f:a3:43:23:62:40:b9:f6:d0:16:82:58:f2:ba: 90:55:89:cd:d8:1b:d1:1c:e7:8b:d1:af:3d:4f:75: 55:ff:94:28:47:1d:ee:b8:64:0a:a6:27:c8:24:e2: 23:36:94:ff:76:13:10:e6:58:70:5b:c2:95:a4:87: e9:5f:48:30:23:95:d0:75:92:e2:28:f3:26:7c:36: 4c:00:c8:55:5d:84:c3:8d:18:ad:17:86:60:29:fb: d8:b0:7e:57:0f:a9:e7:01:35:26:9c:e9:da:91:e4: d6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:A0:40:04:32:74:5A:A8:B7:02:3B:1E:16:0A:1F:EB:FA:DA:78:A2 X509v3 Authority Key Identifier: keyid:D9:06:93:91:A3:E7:80:4A:6E:BD:DF:9D:41:F2:DE:4D:91:BD:51:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:54:a9:c7:6f:92:f1:fc:66:b8:fe:6c:de:5a:96:56:15:c8: 83:e8:b2:ce:08:d6:99:86:b6:94:a4:11:1c:68:9e:84:6b:96: 3a:47:21:90:d9:df:40:5e:01:d0:a5:71:99:f2:b0:4b:4a:1a: 70:4d:8e:8d:25:69:ec:e1:0d:ba:21:ee:09:ac:4f:f1:a8:49: d2:8a:ae:6a:f4:5e:ae:9e:47:a4:0e:67:2b:7f:7e:c8:4c:40: 35:9d:a7:ed:9a:b5:af:af:c5:5f:79:6e:d0:da:bb:96:0a:1d: 05:8c:6a:9c:15:1c:2f:36:f6:41:cc:08:17:cd:57:69:32:0f: 52:03:1a:3d:35:80:e5:a2:f0:e3:f0:61:2e:7b:9c:ee:07:56: 95:73:0a:4a:27:87:21:2c:30:ab:2f:b0:52:e2:7a:86:34:92: 91:3a:9c:e3:6a:7d:30:25:39:19:1a:d3:59:5b:75:4f:c7:68: a8:61:11:68:1e:74:00:7e:c6:de:c7:1f:ae:c9:51:63:de:b8: 7f:30:44:82:ad:39:dc:8a:cf:00:d4:2e:69:77:19:de:7a:61: a9:79:f7:ff:29:e0:90:78:aa:50:cd:57:55:36:05:b4:28:5e: bf:1b:d9:30:de:f4:30:a7:e7:83:00:80:5b:3c:de:03:d6:95: dc:25:88:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEQ5MDY5MzkxQTNFNzgwNEE2RUJEREY5RDQxRjJERTRE OTFCRDUxQjMwHhcNMjUxMDE4MjMzOTIyWhcNMjUxMDI1MjMzOTIyWjAYMRYwFAYD VQQDEw02OGY0MjUyYS01MmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVz1kPv7chtUggE0GpcYduumqjCJaVkhvbcK/D/DEt36bCDEV0lQgU5vIAYR ICjyCcXJD5ye2VwMjuOb9q8fi5RiLd62uYjK1NU+IY/9c6Pge0HPQnFAC62xXUOs q09f+3UWmQzWxw6iTbuR4R++aOZt/JHw5aeR72dRsH7dwCT+AwcvLJJMI2jkoq7x 7b6AAUkXYqRNP6NDI2JAufbQFoJY8rqQVYnN2BvRHOeL0a89T3VV/5QoRx3uuGQK pifIJOIjNpT/dhMQ5lhwW8KVpIfpX0gwI5XQdZLiKPMmfDZMAMhVXYTDjRitF4Zg KfvYsH5XD6nnATUmnOnakeTW1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB+gQAQy dFqotwI7HhYKH+v62niiMB8GA1UdIwQYMBaAFNkGk5Gj54BKbr3fnUHy3k2RvVGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi8wNDU2OTVCODdG QUUxMUVCOTc3QjUzMzVDNEY5QUUwMi8yUWFUa2FQbmdFcHV2ZC1kUWZMZVRaRzlV Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRYVRrYVBuZ0VwdXZkLWRRZkxlVFpHOVViTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi8wNDU2OTVCODdGQUUxMUVCOTc3QjUzMzVDNEY5QUUwMi8yUWFUa2FQbmdF cHV2ZC1kUWZMZVRaRzlVYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPVKnHb5Lx/Ga4/mzeWpZWFciD6LLOCNaZhraUpBEcaJ6Ea5Y6RyGQ 2d9AXgHQpXGZ8rBLShpwTY6NJWns4Q26Ie4JrE/xqEnSiq5q9F6unkekDmcrf37I TEA1naftmrWvr8VfeW7Q2ruWCh0FjGqcFRwvNvZBzAgXzVdpMg9SAxo9NYDlovDj 8GEue5zuB1aVcwpKJ4chLDCrL7BS4nqGNJKROpzjan0wJTkZGtNZW3VPx2ioYRFo HnQAfsbexx+uyVFj3rh/MESCrTncis8A1C5pdxneemGpeff/KeCQeKpQzVdVNgW0 KF6/G9kw3vQwp+eDAIBbPN4D1pXcJYi8 -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:49 2025 by rpki-client