$ rpki-client -vvf rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft File: 2lexkcVbszGevZGC3A1Oau8-Ddg.mft (raw, json) Hash identifier: fQuybPzuttzq55azDSCy7O7trWRYdN6yBK0lHz3LSGg= Subject key identifier: D2:4C:27:BF:55:42:C5:B0:42:71:F6:42:E7:0C:AE:09:D0:9A:3B:62 Authority key identifier: DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 Certificate issuer: /CN=A912A31E/serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft Manifest number: 01D1 Signing time: Sun 19 Oct 2025 05:16:41 +0000 Manifest this update: Sun 19 Oct 2025 05:16:41 +0000 Manifest next update: Sun 26 Oct 2025 05:16:41 +0000 Files and hashes: 1: 2lexkcVbszGevZGC3A1Oau8-Ddg.crl (hash: VgtGxJl9FCR0IFsyJpEVKAe4pCV+yI2Ox5iisqBQjFY=) 2: 5181F33CE8C011EDADA54A23C4F9AE02.roa (hash: 9wRwgsGB8Fy9z1Xq7bw5sLUsMsE1FSTZuA/DyllyXak=) 3: 7DA38A8E727011F08682A20EC4F9AE02.roa (hash: 5M/0FRLT6dVdFlhFwevO8pC082IglmsJ5K/2QwF0Lz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:16:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A31E, serialNumber=DA57B191C55BB3319EBD9182DC0D4E6AEF3E0DD8 Validity Not Before: Oct 19 05:16:41 2025 GMT Not After : Oct 26 05:16:41 2025 GMT Subject: CN=68f47439-8431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ff:11:fc:b6:76:4a:77:12:98:52:e0:dc:04: fd:b8:86:cf:c5:00:b8:82:ed:f7:6e:1c:14:4e:41: 60:62:9f:cb:90:f2:05:92:02:55:1d:dc:78:cf:3e: e0:05:ef:f1:c5:f5:59:8a:d7:e7:db:a2:53:c4:42: 8d:49:03:f6:0b:47:23:5a:cb:96:f6:a7:95:13:dc: 9f:bf:16:4a:20:e3:1b:8d:38:b9:c6:74:cd:55:37: 76:4a:9f:07:07:63:7d:fe:b7:97:b1:9b:f4:71:63: 3a:fc:8a:2b:e3:2c:d2:71:07:1c:a0:0a:aa:6f:fe: eb:22:07:81:89:64:b7:05:a7:84:2c:e8:5e:4a:51: 37:28:79:d8:ba:a2:c2:51:ff:6a:81:3a:70:24:cd: cd:be:bd:27:ba:69:ac:02:8e:a9:7a:5c:86:1c:98: ab:7e:02:09:c4:13:2b:df:b1:5b:6c:15:76:07:07: 0e:8b:83:ab:be:63:b7:03:98:22:9e:5b:45:da:7d: d1:f6:c0:51:b6:7d:f9:cf:0c:f4:04:91:de:5b:a7: 7a:30:e5:5d:ee:20:ac:9f:60:7b:2e:2e:c6:d2:87: 5a:ce:bc:02:4c:3b:f1:16:86:59:d7:9b:aa:56:cc: 0c:a3:08:47:bc:43:0b:9c:9f:18:b2:3b:c8:01:d5: 1f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:4C:27:BF:55:42:C5:B0:42:71:F6:42:E7:0C:AE:09:D0:9A:3B:62 X509v3 Authority Key Identifier: keyid:DA:57:B1:91:C5:5B:B3:31:9E:BD:91:82:DC:0D:4E:6A:EF:3E:0D:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lexkcVbszGevZGC3A1Oau8-Ddg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A31E/C8A4C4E4E8BB11EDA8DB8A1FC4F9AE02/2lexkcVbszGevZGC3A1Oau8-Ddg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:27:c5:5e:67:e0:95:b0:92:52:6e:c6:7c:91:d7:4d:43:c7: 10:bf:06:70:ac:3c:49:32:cb:7f:7e:0e:70:27:13:3c:45:e9: 41:3e:99:76:dc:96:a8:2d:3a:cc:74:6c:ba:75:bf:1b:00:96: a4:79:33:9f:25:e4:e7:12:8f:df:b5:44:08:e4:9a:01:0d:09: 3c:f6:d1:0c:59:fd:d9:98:d7:45:65:f5:33:07:7d:ab:31:24: f7:07:dc:fd:6d:f2:4f:c4:f6:d6:28:eb:fd:d4:eb:df:c8:12: 62:de:07:a9:74:9b:3d:ca:44:ea:72:c6:75:68:32:42:d7:3c: 00:bc:b8:a5:42:ab:8a:03:df:ac:d2:c7:ba:9e:b7:a0:46:71: 73:d4:32:85:c9:c1:04:99:a4:e8:d0:db:92:35:fa:86:09:de: fa:d9:34:c3:8b:f9:97:42:8b:2f:c1:6a:9a:68:fe:51:90:58: bc:4b:10:cd:d6:61:5b:4a:1b:5a:0c:bd:4e:00:b1:dc:eb:c5: c4:72:16:17:5b:83:d2:85:4b:fe:3e:e9:49:ca:46:2b:e7:8d: 73:10:d3:d4:81:b2:5a:2e:60:ce:ed:83:bd:2a:a2:80:5b:d9: 4f:bf:74:e6:47:8c:5c:a3:5d:9f:98:7e:1f:eb:fb:91:73:ad: 2e:97:4b:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzMUUxMTAvBgNVBAUTKERBNTdCMTkxQzU1QkIzMzE5RUJEOTE4MkRDMEQ0RTZB RUYzRTBERDgwHhcNMjUxMDE5MDUxNjQxWhcNMjUxMDI2MDUxNjQxWjAYMRYwFAYD VQQDEw02OGY0NzQzOS04NDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1v8R/LZ2SncSmFLg3AT9uIbPxQC4gu33bhwUTkFgYp/LkPIFkgJVHdx4zz7g Be/xxfVZitfn26JTxEKNSQP2C0cjWsuW9qeVE9yfvxZKIOMbjTi5xnTNVTd2Sp8H B2N9/reXsZv0cWM6/Ior4yzScQccoAqqb/7rIgeBiWS3BaeELOheSlE3KHnYuqLC Uf9qgTpwJM3Nvr0nummsAo6pelyGHJirfgIJxBMr37FbbBV2BwcOi4OrvmO3A5gi nltF2n3R9sBRtn35zwz0BJHeW6d6MOVd7iCsn2B7Li7G0odazrwCTDvxFoZZ15uq VswMowhHvEMLnJ8YsjvIAdUfwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJMJ79V QsWwQnH2QucMrgnQmjtiMB8GA1UdIwQYMBaAFNpXsZHFW7Mxnr2RgtwNTmrvPg3Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTMxRS9DOEE0QzRFNEU4 QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6R2V2WkdDM0ExT2F1OC1E ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZXhrY1Zic3pHZXZaR0MzQTFPYXU4LURkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTMxRS9DOEE0QzRFNEU4QkIxMUVEQThEQjhBMUZDNEY5QUUwMi8ybGV4a2NWYnN6 R2V2WkdDM0ExT2F1OC1EZGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDJ8VeZ+CVsJJSbsZ8kddNQ8cQvwZwrDxJMst/fg5wJxM8RelBPpl2 3JaoLTrMdGy6db8bAJakeTOfJeTnEo/ftUQI5JoBDQk89tEMWf3ZmNdFZfUzB32r MST3B9z9bfJPxPbWKOv91OvfyBJi3gepdJs9ykTqcsZ1aDJC1zwAvLilQquKA9+s 0se6nregRnFz1DKFycEEmaTo0NuSNfqGCd762TTDi/mXQosvwWqaaP5RkFi8SxDN 1mFbShtaDL1OALHc68XEchYXW4PShUv+PulJykYr541zENPUgbJaLmDO7YO9KqKA W9lPv3TmR4xco12fmH4f6/uRc60ul0t1 -----END CERTIFICATE-----Generated at Mon Oct 20 01:46:20 2025 by rpki-client