$ rpki-client -vvf rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft File: 2gQijT7rRR_A8iM2aXFwV_irNmk.mft (raw, json) Hash identifier: j4yQ/XUo9Ft3aOiOlIcFXTaFTbyYWGyoUY4PDea0kIA= Subject key identifier: AB:70:44:9A:55:CF:A3:5D:3C:67:FF:5A:81:FB:04:84:39:E6:FB:A1 Authority key identifier: DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 Certificate issuer: /CN=A914B165/serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Certificate serial: 08C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft Manifest number: 08BE Signing time: Sat 18 Oct 2025 21:36:36 +0000 Manifest this update: Sat 18 Oct 2025 21:36:35 +0000 Manifest next update: Sat 25 Oct 2025 21:36:35 +0000 Files and hashes: 1: 2gQijT7rRR_A8iM2aXFwV_irNmk.crl (hash: fgM8cntzbghxdWPD5MLHDS8BeVv5AuKT2b12VsjcP6o=) 2: 26AECD92C2B211EABBD0ED4AC4F9AE02.roa (hash: hKjX0zsnF+JxyQ67GvVtZs4r7c+HClMF5ggV839fcgo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:36:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2245 (0x8c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B165, serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Validity Not Before: Oct 18 21:36:35 2025 GMT Not After : Oct 25 21:36:35 2025 GMT Subject: CN=68f40864-17ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:18:bc:2e:2a:f8:46:39:2b:24:92:7d:3b:13: 08:e0:dc:29:bf:55:97:88:0e:c1:1e:c3:6c:84:9f: 65:22:32:94:8e:31:27:f2:c6:2e:df:df:85:cf:18: 86:fe:6b:db:25:58:c0:97:d3:86:3a:66:e4:21:0f: e4:31:88:72:48:3f:ce:89:e6:7c:cc:11:ee:37:99: 58:9b:1f:66:86:dc:1c:a7:c8:f4:60:28:44:e7:2e: 54:df:23:b4:79:21:a3:36:43:6e:83:44:1f:89:4e: 97:ed:17:34:30:65:0a:61:31:03:21:79:22:1a:4f: d9:2d:af:0b:2a:cb:4b:cd:93:10:eb:e9:02:cb:78: 2a:8c:64:dc:4a:22:dc:65:35:44:ec:78:20:d5:0a: 22:38:9e:27:28:77:40:0e:60:35:d7:41:15:44:02: 01:ea:2c:2c:9d:2d:dd:cc:03:d3:df:09:ed:48:3c: ad:2f:dc:bc:e4:bd:16:6c:14:87:8a:bf:6e:aa:e4: 0f:9a:a6:c7:3b:a1:b2:88:9b:3b:14:9d:a7:e9:37: 21:81:83:8c:62:72:62:bc:87:88:a1:f7:f7:9b:78: 13:27:15:00:56:52:cf:eb:3a:04:4e:a7:81:20:a3: e3:3d:16:2a:2e:2a:5d:8b:de:a4:df:aa:64:25:1e: d9:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:70:44:9A:55:CF:A3:5D:3C:67:FF:5A:81:FB:04:84:39:E6:FB:A1 X509v3 Authority Key Identifier: keyid:DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:bf:8e:61:02:9e:6f:58:37:f8:37:ad:ee:91:65:51:01:2f: da:d8:fb:ab:32:81:82:cb:ba:e8:c8:a3:b2:2e:d8:0b:ac:62: 48:75:1d:58:fb:f8:1e:6c:f7:a1:0e:f0:00:67:e9:1c:6b:f7: 0f:3c:50:c5:b4:5f:16:01:41:11:af:2c:73:ab:82:0b:73:d1: 4e:4a:9f:88:70:20:42:e5:b8:35:62:93:db:c6:25:50:ca:ef: e2:89:91:1a:b8:b9:c7:5e:47:97:87:8b:d9:74:fc:ea:9f:a6: 1f:95:3a:76:5d:0e:d2:48:e0:59:7d:a0:df:fe:ce:19:3a:17: e1:46:38:c3:8a:c5:77:a8:29:3a:22:fc:fe:06:47:0a:52:0c: cc:20:c5:6f:09:f5:dd:ea:de:b6:ed:86:10:b6:f4:d4:b2:8a: 65:c6:1e:0d:6f:33:9d:ab:e7:55:a1:0a:49:c9:b1:51:99:be: 30:2f:b8:90:3e:de:ef:84:22:21:38:f8:a0:90:26:3e:4e:b3: b1:71:80:3d:c4:43:3e:55:83:dc:7f:10:68:28:da:21:7e:74: e2:e5:f5:df:6e:11:67:5a:b3:60:0a:ad:cf:89:9f:95:c0:22: b4:c9:81:25:a2:72:f8:b5:c5:11:57:13:60:e2:76:a0:24:f8: 84:46:82:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIxNjUxMTAvBgNVBAUTKERBMDQyMjhEM0VFQjQ1MUZDMEYyMjMzNjY5NzE3MDU3 RjhBQjM2NjkwHhcNMjUxMDE4MjEzNjM1WhcNMjUxMDI1MjEzNjM1WjAYMRYwFAYD VQQDEw02OGY0MDg2NC0xN2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArRi8Lir4RjkrJJJ9OxMI4Nwpv1WXiA7BHsNshJ9lIjKUjjEn8sYu39+FzxiG /mvbJVjAl9OGOmbkIQ/kMYhySD/OieZ8zBHuN5lYmx9mhtwcp8j0YChE5y5U3yO0 eSGjNkNug0QfiU6X7Rc0MGUKYTEDIXkiGk/ZLa8LKstLzZMQ6+kCy3gqjGTcSiLc ZTVE7Hgg1QoiOJ4nKHdADmA110EVRAIB6iwsnS3dzAPT3wntSDytL9y85L0WbBSH ir9uquQPmqbHO6GyiJs7FJ2n6TchgYOMYnJivIeIoff3m3gTJxUAVlLP6zoETqeB IKPjPRYqLipdi96k36pkJR7ZewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKtwRJpV z6NdPGf/WoH7BIQ55vuhMB8GA1UdIwQYMBaAFNoEIo0+60UfwPIjNmlxcFf4qzZp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjE2NS82QTNFQjhCNkMy QjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJSX0E4aU0yYVhGd1ZfaXJO bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnUWlqVDdyUlJfQThpTTJhWEZ3Vl9pck5tay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjE2NS82QTNFQjhCNkMyQjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJS X0E4aU0yYVhGd1ZfaXJObWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWv45hAp5vWDf4N63ukWVRAS/a2PurMoGCy7royKOyLtgLrGJIdR1Y +/gebPehDvAAZ+kca/cPPFDFtF8WAUERryxzq4ILc9FOSp+IcCBC5bg1YpPbxiVQ yu/iiZEauLnHXkeXh4vZdPzqn6YflTp2XQ7SSOBZfaDf/s4ZOhfhRjjDisV3qCk6 Ivz+BkcKUgzMIMVvCfXd6t627YYQtvTUsoplxh4NbzOdq+dVoQpJybFRmb4wL7iQ Pt7vhCIhOPigkCY+TrOxcYA9xEM+VYPcfxBoKNohfnTi5fXfbhFnWrNgCq3PiZ+V wCK0yYElonL4tcURVxNg4nagJPiERoJ2 -----END CERTIFICATE-----Generated at Mon Oct 20 10:02:20 2025 by rpki-client