$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft File: R2lFsh8liffnEnUf50f6IUOlI1s.mft (raw, json) Hash identifier: KQ5v8YjHrbisPVbo5vOsVF2Ef4pUEBblAk5tnWTfvF8= Subject key identifier: 55:E3:77:66:29:AC:C4:02:5C:2D:6C:F5:80:D3:0D:97:50:EC:F6:82 Authority key identifier: 47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B Certificate issuer: /CN=A9132B1D/serialNumber=476945B21F2589F7E712751FE747FA2143A5235B Certificate serial: 02AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft Manifest number: 02A9 Signing time: Sun 19 Oct 2025 03:43:51 +0000 Manifest this update: Sun 19 Oct 2025 03:43:51 +0000 Manifest next update: Sun 26 Oct 2025 03:43:51 +0000 Files and hashes: 1: R2lFsh8liffnEnUf50f6IUOlI1s.crl (hash: h5sBIkMyymP3QJw6oQnPhHYnxI0CKLjE4nZSrOVsgF4=) 2: A917D87217A711ED8D17FC7CC4F9AE02.roa (hash: z4fSX+HgysFgztcLVSgzgNzcCLSP4fk+TSQS6+LuYQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:43:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 686 (0x2ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B1D, serialNumber=476945B21F2589F7E712751FE747FA2143A5235B Validity Not Before: Oct 19 03:43:51 2025 GMT Not After : Oct 26 03:43:51 2025 GMT Subject: CN=68f45e77-6dac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f7:15:73:1b:ae:6a:3d:b7:00:73:89:62:43: e3:5f:7b:a8:1b:25:2d:46:78:cf:7f:25:0b:78:fe: 85:a6:fb:20:b7:e1:88:22:b0:a4:dd:9a:5b:18:e6: 6e:b2:e6:e5:fb:05:e9:f9:e9:b8:f5:31:6d:fb:5e: 25:d3:68:01:ca:b2:2b:80:f3:ed:c2:ce:84:df:88: 8a:40:2d:3f:48:05:28:2c:12:b7:a6:1d:cc:cd:e0: ca:26:d8:d5:13:89:a8:ba:89:29:cd:c1:ac:fc:48: 2e:72:b6:55:03:89:16:32:22:66:41:e9:2d:4a:11: 2f:76:c8:18:db:3c:9a:d0:9e:95:a5:b8:d2:ed:4f: fc:c4:06:0c:b5:42:c7:1c:74:f1:6a:1d:84:b2:fd: d4:90:bf:a3:1f:74:c0:5a:ef:83:96:cd:b1:dd:e2: 84:1f:5c:75:f7:b0:7d:ad:36:93:4f:48:da:f3:c3: 74:ef:56:8b:a2:14:7a:64:d8:a6:05:6d:a3:64:11: 76:cb:67:ef:bc:76:27:fd:74:e4:2f:8c:96:df:c1: 26:35:d3:1e:ae:82:a4:e5:09:b9:46:e2:cb:2f:0c: a9:0d:65:92:dd:2e:47:07:9f:f6:f0:bb:2b:7d:63: 92:b9:66:3b:98:42:7b:dc:9b:91:82:b5:60:eb:18: 14:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:E3:77:66:29:AC:C4:02:5C:2D:6C:F5:80:D3:0D:97:50:EC:F6:82 X509v3 Authority Key Identifier: keyid:47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:d4:d3:c3:5f:a7:33:cd:0b:cb:d0:ce:b5:05:48:76:0a:c2: 10:a5:87:7c:b6:4e:2c:23:cc:93:87:26:59:5b:20:c1:79:cc: b5:ac:5b:c3:8d:62:ed:5b:89:28:d2:9a:11:7b:c5:b5:15:ec: 7d:5a:65:84:b4:d4:c5:e6:96:1f:57:61:bc:c2:05:b8:d1:e5: d9:0c:03:f5:f4:d3:e1:82:97:c9:d2:66:8c:17:0d:31:a7:dc: 5a:fd:f9:cc:cc:84:9c:77:c0:d7:37:cf:6c:03:81:5f:52:a5: c8:1a:e7:95:8a:d0:89:76:4a:66:c5:f0:46:2c:31:f8:98:0f: f7:60:06:ba:b0:36:c2:c6:8e:10:ee:2c:d7:c7:1d:f0:75:a5: 2c:d8:b8:69:94:17:7e:6c:5e:3a:d0:d6:04:76:4b:fb:d4:9c: f1:0f:8d:6c:87:86:d3:a6:82:f6:c9:e8:25:23:f1:26:a5:4b: a2:df:81:d0:b6:73:ac:42:af:d3:fd:e9:f6:9a:c3:03:c8:38: 59:5b:ce:1a:2b:f2:92:91:e2:fc:d3:30:d4:0a:23:17:99:4f: 47:6a:af:7d:6a:c3:14:8f:d4:32:1d:53:8d:6a:24:35:37:ba: 6e:10:ee:ad:00:cb:db:f1:f9:ab:f2:e0:57:bb:eb:ea:96:f9: e6:81:1b:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCMUQxMTAvBgNVBAUTKDQ3Njk0NUIyMUYyNTg5RjdFNzEyNzUxRkU3NDdGQTIx NDNBNTIzNUIwHhcNMjUxMDE5MDM0MzUxWhcNMjUxMDI2MDM0MzUxWjAYMRYwFAYD VQQDEw02OGY0NWU3Ny02ZGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvcVcxuuaj23AHOJYkPjX3uoGyUtRnjPfyULeP6Fpvsgt+GIIrCk3ZpbGOZu subl+wXp+em49TFt+14l02gByrIrgPPtws6E34iKQC0/SAUoLBK3ph3MzeDKJtjV E4mouokpzcGs/EgucrZVA4kWMiJmQektShEvdsgY2zya0J6VpbjS7U/8xAYMtULH HHTxah2Esv3UkL+jH3TAWu+Dls2x3eKEH1x197B9rTaTT0ja88N071aLohR6ZNim BW2jZBF2y2fvvHYn/XTkL4yW38EmNdMeroKk5Qm5RuLLLwypDWWS3S5HB5/28Lsr fWOSuWY7mEJ73JuRgrVg6xgUlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFXjd2Yp rMQCXC1s9YDTDZdQ7PaCMB8GA1UdIwQYMBaAFEdpRbIfJYn35xJ1H+dH+iFDpSNb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkIxRC8zMDIwM0VEMDE3 QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlmZm5FblVmNTBmNklVT2xJ MXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IybEZzaDhsaWZmbkVuVWY1MGY2SVVPbEkxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkIxRC8zMDIwM0VEMDE3QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlm Zm5FblVmNTBmNklVT2xJMXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU1NPDX6czzQvL0M61BUh2CsIQpYd8tk4sI8yThyZZWyDBecy1rFvD jWLtW4ko0poRe8W1Fex9WmWEtNTF5pYfV2G8wgW40eXZDAP19NPhgpfJ0maMFw0x p9xa/fnMzIScd8DXN89sA4FfUqXIGueVitCJdkpmxfBGLDH4mA/3YAa6sDbCxo4Q 7izXxx3wdaUs2LhplBd+bF460NYEdkv71JzxD41sh4bTpoL2yeglI/EmpUui34HQ tnOsQq/T/en2msMDyDhZW84aK/KSkeL80zDUCiMXmU9Haq99asMUj9QyHVONaiQ1 N7puEO6tAMvb8fmr8uBXu+vqlvnmgRv4 -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:07 2025 by rpki-client