$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft File: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft (raw, json) Hash identifier: jrHTOu16hoETdF1n2ScWuUi66FNNITEshJYCaSi4HAs= Subject key identifier: D1:74:2E:66:17:32:EC:90:A6:FB:FD:77:D7:13:B6:8E:7C:8B:D4:6A Authority key identifier: D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 Certificate issuer: /CN=A914C4ED/serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Certificate serial: 0226 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft Manifest number: 0221 Signing time: Sun 19 Oct 2025 02:42:13 +0000 Manifest this update: Sun 19 Oct 2025 02:42:13 +0000 Manifest next update: Sun 26 Oct 2025 02:42:13 +0000 Files and hashes: 1: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl (hash: NK9QS6cojVUPSULAAKOM2wAHaEWem6MSgpbB9/LB1v4=) 2: F060FF0E720D11EDA84BE02EC4F9AE02.roa (hash: MTvQaAV2j4a15rRSTpoB41scqYTwrnry9bJaizx2K5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:42:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 550 (0x226) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Validity Not Before: Oct 19 02:42:13 2025 GMT Not After : Oct 26 02:42:13 2025 GMT Subject: CN=68f45005-a17c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:07:61:42:14:a7:3a:69:af:8f:98:6a:21:b6: 83:18:b2:e8:ed:55:03:ec:d2:65:6e:9f:05:8d:d4: b8:55:f7:dd:9f:19:4a:d8:e0:c2:33:bb:1b:b5:c2: dd:b5:d0:72:ef:01:2b:97:47:d9:19:c7:e2:05:a2: bb:bf:75:4f:d3:44:40:9a:3d:56:66:d0:a0:e7:32: 15:fd:8b:72:14:b8:dc:fc:28:89:1e:28:ab:3f:ca: 86:b1:f0:bd:af:87:d6:3f:61:0e:ac:55:43:63:14: 0b:b2:03:bc:9f:e4:7a:2f:b9:22:a5:f5:ed:33:b5: da:1c:8f:03:a0:36:02:b4:c4:9a:59:76:a9:36:dc: 56:93:4b:88:a3:05:7a:b2:0c:55:af:53:c0:0a:42: 0d:e8:c2:87:bf:e1:10:15:89:b9:a8:55:7b:3f:44: e5:cc:9c:8e:8a:0d:a0:c5:61:d5:fa:d3:32:07:c9: 3a:4f:83:6a:e1:42:e4:b5:8f:8f:95:9e:6b:99:b2: 00:c7:0f:15:f7:8f:54:f1:d8:9b:86:82:24:a5:db: 86:25:c4:c0:8b:91:5c:73:d0:09:62:95:dd:59:3e: aa:63:3e:38:6f:fb:b4:30:d3:f5:10:e4:b5:b8:32: 7d:4b:30:88:d9:4d:ba:52:82:b9:da:6b:0f:c7:a7: 94:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:74:2E:66:17:32:EC:90:A6:FB:FD:77:D7:13:B6:8E:7C:8B:D4:6A X509v3 Authority Key Identifier: keyid:D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:52:56:9b:de:bb:a5:b9:97:be:61:ac:16:18:5d:32:c4:d5: 46:26:09:a6:ee:5a:86:2b:3e:c1:79:c2:98:b1:e6:ce:cc:7f: 28:f8:24:ac:99:c1:26:8a:bc:70:ba:0e:2b:c6:fe:07:8f:fa: ac:08:75:ef:d8:d6:be:4f:ef:0b:d6:87:de:88:23:6e:b9:a2: 3b:0c:78:6d:11:c5:23:a5:34:be:8c:ad:e6:af:e2:5b:56:6a: 00:ff:46:9e:e8:a1:45:a4:d0:b4:39:b0:09:d2:09:3f:c4:3a: ff:08:b2:a9:23:36:02:e9:dd:5f:e7:53:8f:7d:72:13:85:5c: c2:41:bc:e7:60:be:7b:34:4d:59:b2:99:3d:10:2b:07:83:ea: 49:45:db:5f:b7:a0:52:49:2a:46:bc:4a:4e:ba:c9:c6:b5:69: 8d:78:4b:c2:47:27:9e:61:25:2c:3a:c7:dc:cd:30:e5:1d:0a: 5d:fd:8f:30:01:6b:03:ea:74:22:fc:f2:d7:43:d1:e9:64:cf: 1f:09:db:fc:1e:04:2b:5a:e0:99:8c:97:2d:c5:07:3c:37:36: fd:4f:f5:41:18:de:a9:ae:63:ad:ab:b1:a8:ff:7e:36:03:1e: 47:72:ba:50:90:5c:53:ac:be:74:ba:86:f2:ec:d0:a5:08:95: 80:a8:a8:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEQ5ODUyOTE0OENCQTVEREVEM0I3M0Q2MDUyRUUwNTE2 QzAyNEM0RjMwHhcNMjUxMDE5MDI0MjEzWhcNMjUxMDI2MDI0MjEzWjAYMRYwFAYD VQQDEw02OGY0NTAwNS1hMTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAdhQhSnOmmvj5hqIbaDGLLo7VUD7NJlbp8FjdS4VffdnxlK2ODCM7sbtcLd tdBy7wErl0fZGcfiBaK7v3VP00RAmj1WZtCg5zIV/YtyFLjc/CiJHiirP8qGsfC9 r4fWP2EOrFVDYxQLsgO8n+R6L7kipfXtM7XaHI8DoDYCtMSaWXapNtxWk0uIowV6 sgxVr1PACkIN6MKHv+EQFYm5qFV7P0TlzJyOig2gxWHV+tMyB8k6T4Nq4ULktY+P lZ5rmbIAxw8V949U8dibhoIkpduGJcTAi5Fcc9AJYpXdWT6qYz44b/u0MNP1EOS1 uDJ9SzCI2U26UoK52msPx6eUOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNF0LmYX MuyQpvv9d9cTto58i9RqMB8GA1UdIwQYMBaAFNmFKRSMul3e07c9YFLuBRbAJMTz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC83NTk4NDQ0NDcy MEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5NlhkN1R0ejFnVXU0RkZzQWt4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJZVXBGSXk2WGQ3VHR6MWdVdTRGRnNBa3hQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC83NTk4NDQ0NDcyMEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5Nlhk N1R0ejFnVXU0RkZzQWt4UE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOUlab3ruluZe+YawWGF0yxNVGJgmm7lqGKz7BecKYsebOzH8o+CSs mcEmirxwug4rxv4Hj/qsCHXv2Na+T+8L1ofeiCNuuaI7DHhtEcUjpTS+jK3mr+Jb VmoA/0ae6KFFpNC0ObAJ0gk/xDr/CLKpIzYC6d1f51OPfXIThVzCQbznYL57NE1Z spk9ECsHg+pJRdtft6BSSSpGvEpOusnGtWmNeEvCRyeeYSUsOsfczTDlHQpd/Y8w AWsD6nQi/PLXQ9HpZM8fCdv8HgQrWuCZjJctxQc8Nzb9T/VBGN6prmOtq7Go/342 Ax5HcrpQkFxTrL50uoby7NClCJWAqKik -----END CERTIFICATE-----Generated at Mon Oct 20 16:05:26 2025 by rpki-client