$ rpki-client -vvf rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft File: 2HXmPHNQjdifas3MBgFEoIwIZtw.mft (raw, json) Hash identifier: XirXADoAHTwrQHszUsSOrIJ4piBiyupNa/LbNachSCw= Subject key identifier: C7:56:54:6D:DD:96:8A:E4:5B:70:20:FC:0B:90:C4:64:F5:2A:53:A2 Authority key identifier: D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC Certificate issuer: /CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Certificate serial: 040B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft Manifest number: 0406 Signing time: Sun 19 Oct 2025 02:21:47 +0000 Manifest this update: Sun 19 Oct 2025 02:21:47 +0000 Manifest next update: Sun 26 Oct 2025 02:21:47 +0000 Files and hashes: 1: 2HXmPHNQjdifas3MBgFEoIwIZtw.crl (hash: Qot/WbAVmGXkUaYQjDRknNRfeW3PyRRa0eaY+aSYERo=) 2: 6199B5668DE011ECB9F9C06EC4F9AE02.roa (hash: FDWt9q3QAp1ofI7rrAESMwGQ2CDqFlVea3/sU3p0ycs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:21:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1035 (0x40b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E950, serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Validity Not Before: Oct 19 02:21:47 2025 GMT Not After : Oct 26 02:21:47 2025 GMT Subject: CN=68f44b3b-cca5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:57:ec:5e:02:e4:44:41:3d:c0:5c:8e:6a:64: 91:ce:2a:9e:83:3a:4f:d7:18:b4:2f:92:6b:8d:cb: ba:cc:74:ee:ab:cc:64:5f:d9:83:12:8b:94:d8:15: 87:7d:12:db:97:0f:fd:a8:7a:e0:a4:24:af:26:df: d8:95:90:05:db:ce:51:43:f0:0e:c5:71:a9:31:9d: 2a:be:24:1d:7a:7d:ea:00:bf:cd:fa:53:3f:f0:bf: f3:f4:d1:ec:a1:15:63:84:a6:e1:24:78:10:79:20: 55:ce:46:5c:0b:e6:f0:cf:b4:a7:c0:50:da:ef:57: 39:70:6b:52:62:12:ad:4c:1b:c6:41:d2:46:18:f2: 7d:e7:7f:7c:db:ca:af:93:70:36:a6:26:97:04:b7: 37:0b:8d:f4:e0:bc:12:0f:63:d2:ea:15:39:37:be: 4a:9f:b0:0e:48:58:e5:93:73:65:b2:4f:10:f9:03: fe:e8:e8:b7:31:26:00:76:99:b1:54:6c:8d:31:99: 03:f7:8c:97:71:e9:48:50:d8:54:0e:6c:ba:a5:65: 09:5f:0f:9b:f7:9e:99:b7:0a:bd:5d:8f:88:43:7f: 1a:56:24:e2:12:df:c5:b6:80:ac:49:c9:49:0e:fe: 0f:07:09:d0:93:c0:82:d4:c1:c9:e9:7b:9c:7a:95: ef:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:56:54:6D:DD:96:8A:E4:5B:70:20:FC:0B:90:C4:64:F5:2A:53:A2 X509v3 Authority Key Identifier: keyid:D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:a9:5a:74:46:6e:b3:e1:ac:19:dc:20:d5:82:e7:61:73:99: 84:ec:68:0a:f1:a8:69:81:42:32:ff:ae:b7:57:05:f2:2f:2a: 15:1f:c9:40:34:97:44:cd:22:90:89:a2:70:19:f4:57:6d:7b: 79:c6:53:ce:73:8f:b9:12:c7:f9:43:ee:74:c4:e0:c1:2c:92: 5c:77:18:23:be:a6:83:1e:ac:e1:fc:fa:59:db:63:23:31:f1: df:e5:6f:96:ad:cd:ce:b5:ef:bf:f5:4e:4f:d7:ef:da:7f:e6: cf:9f:d3:75:e6:f0:43:37:4a:c3:af:0f:6c:91:2e:7a:63:af: e2:94:0f:8b:7f:72:01:d4:a7:9a:ff:68:47:ac:71:b4:a4:b0: e5:10:b4:39:d6:4e:32:88:ef:60:19:cd:9a:72:ff:81:aa:80: 91:5d:b1:ff:48:2c:32:85:2b:e4:df:d9:de:6f:82:d2:48:bf: b3:56:17:1f:20:e8:9f:fa:04:86:c1:43:8a:6a:ef:f0:8e:c8: 27:de:cb:a1:7d:40:bf:31:88:3e:20:7f:e1:cd:ca:6b:63:6b: c2:9b:f4:7a:77:8a:8d:7f:6d:69:9e:ba:2d:13:60:2a:28:de: be:db:14:90:da:7d:13:34:07:ef:41:96:42:36:a0:67:66:51: 99:5d:49:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5NTAxMTAvBgNVBAUTKEQ4NzVFNjNDNzM1MDhERDg5RjZBQ0RDQzA2MDE0NEEw OEMwODY2REMwHhcNMjUxMDE5MDIyMTQ3WhcNMjUxMDI2MDIyMTQ3WjAYMRYwFAYD VQQDEw02OGY0NGIzYi1jY2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFfsXgLkREE9wFyOamSRziqegzpP1xi0L5Jrjcu6zHTuq8xkX9mDEouU2BWH fRLblw/9qHrgpCSvJt/YlZAF285RQ/AOxXGpMZ0qviQden3qAL/N+lM/8L/z9NHs oRVjhKbhJHgQeSBVzkZcC+bwz7SnwFDa71c5cGtSYhKtTBvGQdJGGPJ9539828qv k3A2piaXBLc3C4304LwSD2PS6hU5N75Kn7AOSFjlk3Nlsk8Q+QP+6Oi3MSYAdpmx VGyNMZkD94yXcelIUNhUDmy6pWUJXw+b956Ztwq9XY+IQ38aViTiEt/FtoCsSclJ Dv4PBwnQk8CC1MHJ6XucepXvXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMdWVG3d lorkW3Ag/AuQxGT1KlOiMB8GA1UdIwQYMBaAFNh15jxzUI3Yn2rNzAYBRKCMCGbc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTk1MC9DQkYwNkYzMDhE REMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpkaWZhczNNQmdGRW9Jd0la dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJIWG1QSE5RamRpZmFzM01CZ0ZFb0l3SVp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTk1MC9DQkYwNkYzMDhEREMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpk aWZhczNNQmdGRW9Jd0ladHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByqVp0Rm6z4awZ3CDVgudhc5mE7GgK8ahpgUIy/663VwXyLyoVH8lA NJdEzSKQiaJwGfRXbXt5xlPOc4+5Esf5Q+50xODBLJJcdxgjvqaDHqzh/PpZ22Mj MfHf5W+Wrc3Ote+/9U5P1+/af+bPn9N15vBDN0rDrw9skS56Y6/ilA+Lf3IB1Kea /2hHrHG0pLDlELQ51k4yiO9gGc2acv+BqoCRXbH/SCwyhSvk39neb4LSSL+zVhcf IOif+gSGwUOKau/wjsgn3suhfUC/MYg+IH/hzcprY2vCm/R6d4qNf21pnrotE2Aq KN6+2xSQ2n0TNAfvQZZCNqBnZlGZXUnt -----END CERTIFICATE-----Generated at Mon Oct 20 01:48:04 2025 by rpki-client