$ rpki-client -vvf rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft File: -xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft (raw, json) Hash identifier: 01mt2OCU8bRPwd2BggklPza/kIhplp31jiPS6vQxxj4= Subject key identifier: 3D:AA:2F:38:0B:80:55:60:64:FA:16:35:DC:85:31:03:1F:5F:5E:2D Authority key identifier: FB:11:A2:D8:36:8C:15:02:1A:5B:F3:12:F5:1D:44:CE:58:FD:44:51 Certificate issuer: /CN=A912FF6F/serialNumber=FB11A2D8368C15021A5BF312F51D44CE58FD4451 Certificate serial: 02B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft Manifest number: 02AE Signing time: Sun 19 Oct 2025 03:41:27 +0000 Manifest this update: Sun 19 Oct 2025 03:41:26 +0000 Manifest next update: Sun 26 Oct 2025 03:41:26 +0000 Files and hashes: 1: -xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl (hash: Gpfwy/R+onJwiK658Y1lM6z3Ja7G5diMEMO/8h6irVU=) 2: 6D5014F2146F11EDB756F727C4F9AE02.roa (hash: YZYraaTW4N+SBvMTqXTfavIL9Ycht4bd0iE5EB0Igv0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:41:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 690 (0x2b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FF6F, serialNumber=FB11A2D8368C15021A5BF312F51D44CE58FD4451 Validity Not Before: Oct 19 03:41:26 2025 GMT Not After : Oct 26 03:41:26 2025 GMT Subject: CN=68f45de7-0aac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7e:09:8e:16:1c:42:d6:62:0a:25:9e:24:8e: ba:c7:1b:7a:53:9d:b1:5c:58:bd:2a:97:53:9b:c4: 54:8e:fc:32:20:63:e6:d8:d7:4d:61:11:21:d4:23: 3e:cd:7e:c6:f6:09:1a:62:36:7b:22:4f:f9:e1:f2: 4a:8e:86:5e:e5:58:09:02:b6:c0:f1:f6:73:a8:7b: ec:0f:cf:67:15:fd:e5:c7:e8:c0:36:8f:31:7c:69: 65:e3:e2:d3:03:51:83:49:98:a8:29:0e:6f:42:d0: d6:b8:61:c5:11:43:1a:f1:1e:b4:19:66:65:d6:c5: 28:6f:de:38:ed:6d:f4:79:68:2d:ab:48:76:e1:a2: 22:2f:5b:98:fb:a5:14:97:cb:22:83:30:50:2b:50: 97:da:49:2e:72:68:ea:08:8f:40:64:03:a0:27:ee: b1:be:77:6e:8b:58:4c:29:82:ab:90:8b:ff:d6:8e: c4:0c:87:79:f4:f7:3b:d2:48:39:a5:79:1f:c3:87: e3:7a:da:1d:1c:c2:34:ff:16:1f:8d:1c:14:e0:24: 69:a3:72:91:ae:23:8a:93:72:90:1d:06:60:a5:d5: a5:97:83:18:bb:25:5e:cf:26:ab:8e:25:99:6c:54: 0e:4e:dd:08:58:c6:54:95:d8:92:e5:74:bb:96:a1: 24:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:AA:2F:38:0B:80:55:60:64:FA:16:35:DC:85:31:03:1F:5F:5E:2D X509v3 Authority Key Identifier: keyid:FB:11:A2:D8:36:8C:15:02:1A:5B:F3:12:F5:1D:44:CE:58:FD:44:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:84:a1:c1:4d:f9:12:9e:3b:a3:8d:f7:7f:9c:24:cc:a3:4a: 38:a4:7c:0c:dd:01:80:8a:fe:4e:ea:5d:64:60:02:6c:fb:ae: 66:cf:0b:ea:44:98:e0:da:d2:0b:25:34:97:c9:d5:91:0e:8f: cc:cb:98:c2:2e:8e:fb:a3:3e:f2:59:6f:58:45:fc:38:1f:d2: 09:89:64:b4:7e:d1:1f:33:7f:90:90:37:5a:cb:ce:db:42:e0: 29:7a:9a:06:2e:36:dd:58:f8:14:ca:03:8d:c4:5e:35:1e:bb: 4a:3c:83:91:a9:28:1d:29:f7:19:c0:dd:4f:14:e8:89:88:fe: 97:4b:56:07:b0:b6:f1:4f:27:b9:93:a3:ec:ec:62:fa:88:90: d6:2f:57:df:33:c4:53:f6:c5:0f:81:62:cb:f7:c4:59:bb:5e: e1:af:c4:b3:aa:dc:4b:e7:9d:36:d8:c8:b9:7b:2c:db:25:6f: 2b:36:4f:86:eb:79:4e:1e:5b:63:df:6b:40:09:b8:ee:b0:31: 3b:e0:88:44:0c:a8:d4:c8:58:8d:64:69:87:d3:16:f3:0e:a6: 6f:00:5b:80:ee:7c:b5:04:90:d1:68:7b:0d:66:35:ed:76:9c: 8f:a0:58:b3:c7:71:27:91:25:a2:f6:bc:3c:ec:ae:63:62:01: 04:d2:94:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZGNkYxMTAvBgNVBAUTKEZCMTFBMkQ4MzY4QzE1MDIxQTVCRjMxMkY1MUQ0NENF NThGRDQ0NTEwHhcNMjUxMDE5MDM0MTI2WhcNMjUxMDI2MDM0MTI2WjAYMRYwFAYD VQQDEw02OGY0NWRlNy0wYWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnX4JjhYcQtZiCiWeJI66xxt6U52xXFi9KpdTm8RUjvwyIGPm2NdNYREh1CM+ zX7G9gkaYjZ7Ik/54fJKjoZe5VgJArbA8fZzqHvsD89nFf3lx+jANo8xfGll4+LT A1GDSZioKQ5vQtDWuGHFEUMa8R60GWZl1sUob9447W30eWgtq0h24aIiL1uY+6UU l8sigzBQK1CX2kkucmjqCI9AZAOgJ+6xvndui1hMKYKrkIv/1o7EDId59Pc70kg5 pXkfw4fjetodHMI0/xYfjRwU4CRpo3KRriOKk3KQHQZgpdWll4MYuyVezyarjiWZ bFQOTt0IWMZUldiS5XS7lqEkswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2qLzgL gFVgZPoWNdyFMQMfX14tMB8GA1UdIwQYMBaAFPsRotg2jBUCGlvzEvUdRM5Y/URR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkY2Ri8xMkUyNTE3QzE0 NkMxMUVEQjdDNDBBMjNDNEY5QUUwMi8teEdpMkRhTUZRSWFXX01TOVIxRXpsajlS RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14R2kyRGFNRlFJYVdfTVM5UjFFemxqOVJGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkY2Ri8xMkUyNTE3QzE0NkMxMUVEQjdDNDBBMjNDNEY5QUUwMi8teEdpMkRhTUZR SWFXX01TOVIxRXpsajlSRkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxhKHBTfkSnjujjfd/nCTMo0o4pHwM3QGAiv5O6l1kYAJs+65mzwvq RJjg2tILJTSXydWRDo/My5jCLo77oz7yWW9YRfw4H9IJiWS0ftEfM3+QkDday87b QuApepoGLjbdWPgUygONxF41HrtKPIORqSgdKfcZwN1PFOiJiP6XS1YHsLbxTye5 k6Ps7GL6iJDWL1ffM8RT9sUPgWLL98RZu17hr8SzqtxL55022Mi5eyzbJW8rNk+G 63lOHltj32tACbjusDE74IhEDKjUyFiNZGmH0xbzDqZvAFuA7ny1BJDRaHsNZjXt dpyPoFizx3EnkSWi9rw87K5jYgEE0pSV -----END CERTIFICATE-----Generated at Mon Oct 20 11:40:06 2025 by rpki-client