$ rpki-client -vvf rpki.apnic.net/member_repository/A913DA3E/42268748734411EBA8E4DA5FC4F9AE02/wT2PgrPTzkdGU1QOU2XEyQiUwD0.mft File: wT2PgrPTzkdGU1QOU2XEyQiUwD0.mft (raw, json) Hash identifier: JNpk2fGkq5qZkOq5nZxulA1CzN/a8QFUW4Fygskh7K0= Subject key identifier: A8:94:13:7F:B4:4E:EA:76:AD:2C:83:14:64:C7:B6:6B:E3:B2:A5:BF Authority key identifier: C1:3D:8F:82:B3:D3:CE:47:46:53:54:0E:53:65:C4:C9:08:94:C0:3D Certificate issuer: /CN=A913DA3E/serialNumber=C13D8F82B3D3CE474653540E5365C4C90894C03D Certificate serial: 06D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wT2PgrPTzkdGU1QOU2XEyQiUwD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DA3E/42268748734411EBA8E4DA5FC4F9AE02/wT2PgrPTzkdGU1QOU2XEyQiUwD0.mft Manifest number: 06D0 Signing time: Sat 18 Oct 2025 23:29:18 +0000 Manifest this update: Sat 18 Oct 2025 23:29:17 +0000 Manifest next update: Sat 25 Oct 2025 23:29:17 +0000 Files and hashes: 1: wT2PgrPTzkdGU1QOU2XEyQiUwD0.crl (hash: cgG1NvUZ3hZNO6rPdjMqZvmDF8Z5K9+uzTXIrnNdJIA=) 2: 19AB8E92734611EB816DB064C4F9AE02.roa (hash: 7I2G/hN0Fa3HUj7sGDHCqmaUYDxqe3fLWkw77NWZoq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DA3E/42268748734411EBA8E4DA5FC4F9AE02/wT2PgrPTzkdGU1QOU2XEyQiUwD0.crl rsync://rpki.apnic.net/member_repository/A913DA3E/42268748734411EBA8E4DA5FC4F9AE02/wT2PgrPTzkdGU1QOU2XEyQiUwD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wT2PgrPTzkdGU1QOU2XEyQiUwD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1750 (0x6d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DA3E, serialNumber=C13D8F82B3D3CE474653540E5365C4C90894C03D Validity Not Before: Oct 18 23:29:17 2025 GMT Not After : Oct 25 23:29:17 2025 GMT Subject: CN=68f422ce-2302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9e:22:bb:a8:1d:a2:01:21:c2:18:a6:80:50: 13:76:4f:8f:0a:0b:8b:d0:83:83:e4:83:4f:e0:f9: 28:12:aa:e3:a9:71:b6:ae:68:54:8f:b3:80:ae:fd: b9:e1:8c:fb:8c:90:34:3f:67:25:30:10:92:1a:9c: 6b:47:21:18:0d:ff:ea:81:cb:f3:6e:8d:23:67:58: 95:a3:a7:fe:e7:35:bc:76:36:b1:54:d9:4d:f5:47: 44:a8:b8:d0:74:2e:83:a5:bc:b3:d9:43:7d:77:10: 5e:cb:e2:17:51:1a:1f:f4:de:ea:8a:f7:5b:40:41: e4:ba:64:bb:83:f3:dd:d2:41:16:17:a0:e8:4d:62: ac:e9:de:78:24:fb:23:1c:53:98:65:09:8f:14:fd: d8:f0:1a:21:4b:b9:0c:24:6d:d0:5e:d2:57:44:b9: 3b:f5:dc:23:dd:89:2c:5c:51:72:9a:ae:b0:89:12: 0b:66:2f:97:6d:46:76:1e:42:b8:03:b3:d0:5f:8b: bb:93:ed:2e:8e:b9:80:32:e7:d3:28:2b:7b:8c:ac: f5:e7:e8:f3:88:85:3a:ff:a3:ae:c9:80:96:1f:99: 94:45:af:dd:c2:4f:ff:28:1a:a8:13:0d:ba:d4:b1: f9:eb:f5:b5:7e:f2:95:c7:2c:4f:5d:78:5f:db:3e: 29:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:94:13:7F:B4:4E:EA:76:AD:2C:83:14:64:C7:B6:6B:E3:B2:A5:BF X509v3 Authority Key Identifier: keyid:C1:3D:8F:82:B3:D3:CE:47:46:53:54:0E:53:65:C4:C9:08:94:C0:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DA3E/42268748734411EBA8E4DA5FC4F9AE02/wT2PgrPTzkdGU1QOU2XEyQiUwD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wT2PgrPTzkdGU1QOU2XEyQiUwD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DA3E/42268748734411EBA8E4DA5FC4F9AE02/wT2PgrPTzkdGU1QOU2XEyQiUwD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:c5:f5:5d:f8:22:a5:26:e5:1f:2a:97:b0:f8:f8:10:1f:fa: 85:4f:a1:ac:53:a4:2e:96:a6:2a:73:b1:4a:d9:11:6c:c0:23: 6f:69:b4:92:ff:12:a9:44:1d:30:d8:49:a3:ba:04:29:65:d0: a7:05:85:da:ce:30:dc:25:ce:58:ea:f2:33:18:00:b9:62:6e: e1:83:a2:8b:58:81:a6:23:96:fe:12:75:50:ba:bb:b7:28:22: 26:52:23:c1:bc:1c:59:34:3c:ee:75:e2:7d:93:6e:56:ed:7a: 72:8d:8e:85:53:62:81:ad:53:27:a3:60:ea:47:5e:5d:ac:3e: ee:1b:ec:e7:ff:45:10:cb:3e:24:40:76:b3:a2:47:11:f9:62: ea:bd:0d:21:c8:df:46:e3:37:fb:ce:be:e6:04:9c:60:23:42: 6d:66:1a:33:1d:32:c4:a9:e0:d1:6b:8d:ef:4b:df:5f:aa:c0: 8e:cc:a7:de:28:91:ef:6c:a1:8e:f4:56:38:3e:21:ce:ff:50: c1:d3:44:10:dc:9d:93:f3:7a:e3:a3:38:a2:c7:be:0f:61:b4: 74:1f:2b:97:1a:84:21:a2:76:88:9f:f3:5a:43:35:8b:fd:4c: 30:a7:8e:d8:b8:1e:87:42:cc:89:6f:26:7b:2a:a2:52:40:d5: 3f:34:a1:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RBM0UxMTAvBgNVBAUTKEMxM0Q4RjgyQjNEM0NFNDc0NjUzNTQwRTUzNjVDNEM5 MDg5NEMwM0QwHhcNMjUxMDE4MjMyOTE3WhcNMjUxMDI1MjMyOTE3WjAYMRYwFAYD VQQDEw02OGY0MjJjZS0yMzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZ4iu6gdogEhwhimgFATdk+PCguL0IOD5INP4PkoEqrjqXG2rmhUj7OArv25 4Yz7jJA0P2clMBCSGpxrRyEYDf/qgcvzbo0jZ1iVo6f+5zW8djaxVNlN9UdEqLjQ dC6Dpbyz2UN9dxBey+IXURof9N7qivdbQEHkumS7g/Pd0kEWF6DoTWKs6d54JPsj HFOYZQmPFP3Y8BohS7kMJG3QXtJXRLk79dwj3YksXFFymq6wiRILZi+XbUZ2HkK4 A7PQX4u7k+0ujrmAMufTKCt7jKz15+jziIU6/6OuyYCWH5mURa/dwk//KBqoEw26 1LH56/W1fvKVxyxPXXhf2z4ppwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKiUE3+0 Tup2rSyDFGTHtmvjsqW/MB8GA1UdIwQYMBaAFME9j4Kz085HRlNUDlNlxMkIlMA9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREEzRS80MjI2ODc0ODcz NDQxMUVCQThFNERBNUZDNEY5QUUwMi93VDJQZ3JQVHprZEdVMVFPVTJYRXlRaVV3 RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dUMlBnclBUemtkR1UxUU9VMlhFeVFpVXdEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz REEzRS80MjI2ODc0ODczNDQxMUVCQThFNERBNUZDNEY5QUUwMi93VDJQZ3JQVHpr ZEdVMVFPVTJYRXlRaVV3RDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4xfVd+CKlJuUfKpew+PgQH/qFT6GsU6QulqYqc7FK2RFswCNvabSS /xKpRB0w2EmjugQpZdCnBYXazjDcJc5Y6vIzGAC5Ym7hg6KLWIGmI5b+EnVQuru3 KCImUiPBvBxZNDzudeJ9k25W7XpyjY6FU2KBrVMno2DqR15drD7uG+zn/0UQyz4k QHazokcR+WLqvQ0hyN9G4zf7zr7mBJxgI0JtZhozHTLEqeDRa43vS99fqsCOzKfe KJHvbKGO9FY4PiHO/1DB00QQ3J2T83rjoziix74PYbR0HyuXGoQhonaIn/NaQzWL /Uwwp47YuB6HQsyJbyZ7KqJSQNU/NKEh -----END CERTIFICATE-----Generated at Mon Oct 20 08:26:25 2025 by rpki-client