$ rpki-client -vvf rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft File: X2mHOU7ukmatexkjRBv29RNP-VA.mft (raw, json) Hash identifier: KJhalxw1xut6yB9N0AHKGuS0cg2WF4z92FrlYPeRcxI= Subject key identifier: 4C:4E:AC:CC:5F:2E:1F:98:BF:CE:6E:65:00:07:B9:08:75:1C:29:5D Authority key identifier: 5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 Certificate issuer: /CN=A9147241/serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Certificate serial: 0834 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft Manifest number: 082C Signing time: Sat 18 Oct 2025 22:00:36 +0000 Manifest this update: Sat 18 Oct 2025 22:00:35 +0000 Manifest next update: Sat 25 Oct 2025 22:00:35 +0000 Files and hashes: 1: X2mHOU7ukmatexkjRBv29RNP-VA.crl (hash: D+ZpbbRjkdBlk653HnmETfQv4JzDklnJ83RqbnNhr24=) 2: F69648C2ECF211EABBFDDD24C4F9AE02.roa (hash: iinohx2uez2EL2svxSw8QxTPKTPPk9i54jHLL6kBKQg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2100 (0x834) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147241, serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Validity Not Before: Oct 18 22:00:35 2025 GMT Not After : Oct 25 22:00:35 2025 GMT Subject: CN=68f40e03-6404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:49:95:8d:c2:2d:96:2c:3b:b4:24:17:27:a9: 99:f8:44:e9:43:51:50:21:fc:03:ef:c0:76:a5:64: 9d:a5:ae:25:df:93:fc:eb:79:66:5b:e8:e2:aa:f2: de:4b:e9:5c:af:61:49:18:02:15:90:b6:9a:35:c3: a5:0b:67:cd:54:6f:9b:8e:f0:3b:37:bd:c8:ad:f8: f9:15:d9:15:ac:2b:91:cf:80:42:2c:91:08:3c:de: ee:2e:cd:a1:dc:91:e9:c4:d8:ad:16:be:bd:fc:d3: 92:61:1a:3b:76:b1:d0:a6:a8:73:d4:23:ec:22:a3: 3f:87:3c:be:ee:14:ff:cd:8f:b2:82:3a:78:65:98: b4:53:93:56:a3:c1:bf:20:b2:79:23:e9:80:61:e3: ff:0a:6e:e4:1c:f1:50:b1:f6:39:75:1f:be:46:3e: 26:0f:93:da:7c:32:c1:29:c7:16:8f:73:f2:c8:3e: bc:86:ac:30:ef:fe:2f:d4:72:85:19:74:be:d7:4c: 2b:b1:1d:f9:c2:ec:4f:bc:5d:86:ca:f2:13:c3:88: 16:f4:82:1a:42:c4:ad:af:c5:53:8e:20:d0:0f:5d: bc:eb:23:91:c8:cd:ed:69:e3:7e:26:6a:29:52:62: b8:1f:14:e0:86:61:da:99:e5:0d:ce:e1:35:b3:cc: 66:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:4E:AC:CC:5F:2E:1F:98:BF:CE:6E:65:00:07:B9:08:75:1C:29:5D X509v3 Authority Key Identifier: keyid:5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:e0:37:60:98:83:76:0e:be:a9:db:af:ef:8c:a0:cf:94:9e: d7:9f:65:3c:4a:7b:56:6d:d6:4a:0b:d7:ce:f9:96:2b:de:0b: 2e:9e:c7:e4:21:e9:4a:eb:f2:8c:16:2a:6e:cd:eb:85:32:ce: 83:f0:73:39:ee:d1:ae:b4:6e:06:74:08:72:d4:27:f2:77:d4: 59:a7:5a:cd:bd:ac:d0:1d:dc:0b:b5:ab:af:27:59:1c:64:d2: 23:68:61:54:f9:25:24:e8:6f:cd:4c:72:9f:a8:58:45:fd:47: 72:37:38:73:b0:a5:22:85:87:ee:ef:ba:49:a4:96:68:ae:27: 3a:e4:aa:48:a9:b0:6d:8d:39:49:45:d5:5a:de:a2:0a:e0:74: d0:5f:8e:ae:9a:85:0c:61:da:27:ff:b4:52:a3:2c:aa:a8:54: 95:38:2d:b1:b0:81:d6:fd:23:2b:62:56:f8:03:27:8d:f8:32: fd:d2:d7:02:e8:41:4c:be:a3:5c:9a:f7:55:3c:fe:93:bf:88: da:93:ef:18:b6:8d:a9:28:1e:75:43:c3:fd:a0:be:4f:de:16: 8c:32:d2:d1:4e:0e:0a:11:9d:68:e3:33:6e:c2:da:e2:d1:56: 6e:38:8d:5a:14:74:38:7f:0a:fa:8a:42:e4:c2:1b:ff:ee:b2: 29:76:87:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcyNDExMTAvBgNVBAUTKDVGNjk4NzM5NEVFRTkyNjZBRDdCMTkyMzQ0MUJGNkY1 MTM0RkY5NTAwHhcNMjUxMDE4MjIwMDM1WhcNMjUxMDI1MjIwMDM1WjAYMRYwFAYD VQQDEw02OGY0MGUwMy02NDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArkmVjcItliw7tCQXJ6mZ+ETpQ1FQIfwD78B2pWSdpa4l35P863lmW+jiqvLe S+lcr2FJGAIVkLaaNcOlC2fNVG+bjvA7N73Irfj5FdkVrCuRz4BCLJEIPN7uLs2h 3JHpxNitFr69/NOSYRo7drHQpqhz1CPsIqM/hzy+7hT/zY+ygjp4ZZi0U5NWo8G/ ILJ5I+mAYeP/Cm7kHPFQsfY5dR++Rj4mD5PafDLBKccWj3PyyD68hqww7/4v1HKF GXS+10wrsR35wuxPvF2GyvITw4gW9IIaQsStr8VTjiDQD1286yORyM3taeN+Jmop UmK4HxTghmHameUNzuE1s8xmAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExOrMxf Lh+Yv85uZQAHuQh1HCldMB8GA1UdIwQYMBaAFF9phzlO7pJmrXsZI0Qb9vUTT/lQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzI0MS82MkJCNUM3NEVD RjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWttYXRleGtqUkJ2MjlSTlAt VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybUhPVTd1a21hdGV4a2pSQnYyOVJOUC1WQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzI0MS82MkJCNUM3NEVDRjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWtt YXRleGtqUkJ2MjlSTlAtVkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL4DdgmIN2Dr6p26/vjKDPlJ7Xn2U8SntWbdZKC9fO+ZYr3gsunsfk IelK6/KMFipuzeuFMs6D8HM57tGutG4GdAhy1Cfyd9RZp1rNvazQHdwLtauvJ1kc ZNIjaGFU+SUk6G/NTHKfqFhF/UdyNzhzsKUihYfu77pJpJZoric65KpIqbBtjTlJ RdVa3qIK4HTQX46umoUMYdon/7RSoyyqqFSVOC2xsIHW/SMrYlb4AyeN+DL90tcC 6EFMvqNcmvdVPP6Tv4jak+8Yto2pKB51Q8P9oL5P3haMMtLRTg4KEZ1o4zNuwtri 0VZuOI1aFHQ4fwr6ikLkwhv/7rIpdodk -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:26 2025 by rpki-client