$ rpki-client -vvf rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft File: 2DvcT6zNnbegvEa0JE6jEHBgS5c.mft (raw, json) Hash identifier: 8XOJ3kPVcjGk5gu+6rOo3vaSK/GPayHFoxeySwA0d9o= Subject key identifier: 0E:CD:DA:70:F1:25:FA:9A:5D:D5:BE:22:7F:BF:29:F7:45:7A:A3:6D Authority key identifier: D8:3B:DC:4F:AC:CD:9D:B7:A0:BC:46:B4:24:4E:A3:10:70:60:4B:97 Certificate issuer: /CN=A914F870/serialNumber=D83BDC4FACCD9DB7A0BC46B4244EA31070604B97 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DvcT6zNnbegvEa0JE6jEHBgS5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft Manifest number: 8C Signing time: Sun 19 Oct 2025 09:50:07 +0000 Manifest this update: Sun 19 Oct 2025 09:50:06 +0000 Manifest next update: Sun 26 Oct 2025 09:50:06 +0000 Files and hashes: 1: 2DvcT6zNnbegvEa0JE6jEHBgS5c.crl (hash: qpy54u+QeMQKa7eO9st5dEK+sUjEhqxXIYNa76TOPaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.crl rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DvcT6zNnbegvEa0JE6jEHBgS5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:50:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F870, serialNumber=D83BDC4FACCD9DB7A0BC46B4244EA31070604B97 Validity Not Before: Oct 19 09:50:06 2025 GMT Not After : Oct 26 09:50:06 2025 GMT Subject: CN=68f4b44e-92b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d4:7d:59:8c:d1:ae:dd:13:c6:4f:9f:ae:42: 0c:a6:c0:37:f0:1d:1a:39:6c:54:cf:14:13:f4:9e: df:54:8e:c4:ed:9b:f5:a5:46:0d:12:f4:69:81:70: 45:68:26:a8:4f:d5:d5:f3:3a:56:3e:e2:5f:8b:15: a6:38:db:a5:d3:b0:b4:82:f0:7a:15:09:70:4c:61: fa:29:23:6f:5d:7a:3e:44:bc:52:90:81:5d:66:83: 83:97:45:5f:24:e8:e4:6f:85:95:9b:75:99:c8:47: 22:c2:4f:f2:8b:54:ca:24:7d:73:27:c0:33:76:ae: 0a:92:a6:42:00:fe:f7:ae:35:3c:7f:82:90:30:10: 18:63:6c:dd:74:cd:04:1e:40:48:0a:be:e1:88:6a: 5c:3d:eb:31:57:27:d1:9c:41:e1:a3:4c:60:4b:43: 2b:fb:f3:7e:b3:83:c2:3e:1b:3e:5f:bb:ce:0b:2c: cf:35:89:c3:d3:92:e8:68:50:24:c8:17:00:8d:b7: 05:57:e6:a9:20:1c:5c:24:17:71:cc:6e:7e:ee:9d: fa:61:51:f5:99:90:f5:21:b2:8d:af:8a:dc:1d:d7: fb:2b:a8:93:bf:fb:76:62:31:fd:e7:d4:07:1b:fc: 82:ef:12:f1:76:d2:af:37:94:da:2f:31:f8:ca:9a: db:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:CD:DA:70:F1:25:FA:9A:5D:D5:BE:22:7F:BF:29:F7:45:7A:A3:6D X509v3 Authority Key Identifier: keyid:D8:3B:DC:4F:AC:CD:9D:B7:A0:BC:46:B4:24:4E:A3:10:70:60:4B:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DvcT6zNnbegvEa0JE6jEHBgS5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F870/D2E24C98D7E211EFAF0B3B7DC4F9AE02/2DvcT6zNnbegvEa0JE6jEHBgS5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:18:a8:fc:bc:03:a4:ef:d7:65:20:6c:ab:66:78:d1:9a:6e: fe:6b:35:1f:91:2b:35:f8:85:1e:c2:ae:f1:64:70:90:8a:4b: 46:94:bd:85:c6:df:5a:9d:64:8d:09:71:f3:f8:4f:1b:66:aa: 8b:ee:0d:17:e7:d4:5f:80:d7:bc:d2:16:a7:de:bb:33:dd:38: 95:74:9b:3c:9c:de:ac:34:cd:8b:8c:be:27:dd:7f:8a:34:06: ff:55:3f:a5:57:6a:53:ed:5f:1f:77:5a:ab:84:db:7d:fa:10: 55:84:eb:28:b4:85:99:16:dc:03:db:7f:44:22:af:1e:1f:a9: 54:7e:a2:26:a2:52:8c:b0:46:3f:7e:04:09:75:a5:34:20:00: 16:d8:d1:7e:27:46:00:ce:7a:8e:1d:4c:fc:97:8e:03:ff:f4: f9:9e:ce:65:0f:5a:a2:0e:79:fe:21:b9:8d:44:13:a3:fa:28: ac:f4:02:17:10:5b:45:28:a0:16:ec:46:cd:83:f1:90:da:ab: 09:8c:70:3f:25:de:b4:19:4e:03:8f:90:be:7b:2f:87:a9:6f: ef:f8:f2:e0:4a:f0:2c:39:bb:84:ac:d1:28:89:46:3c:8b:3e: 63:cc:a3:a2:79:5a:95:8c:ff:fd:7a:9c:a8:7a:7d:44:8e:48: d6:9c:c0:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY4NzAxMTAvBgNVBAUTKEQ4M0JEQzRGQUNDRDlEQjdBMEJDNDZCNDI0NEVBMzEw NzA2MDRCOTcwHhcNMjUxMDE5MDk1MDA2WhcNMjUxMDI2MDk1MDA2WjAYMRYwFAYD VQQDEw02OGY0YjQ0ZS05MmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9R9WYzRrt0Txk+frkIMpsA38B0aOWxUzxQT9J7fVI7E7Zv1pUYNEvRpgXBF aCaoT9XV8zpWPuJfixWmONul07C0gvB6FQlwTGH6KSNvXXo+RLxSkIFdZoODl0Vf JOjkb4WVm3WZyEciwk/yi1TKJH1zJ8Azdq4KkqZCAP73rjU8f4KQMBAYY2zddM0E HkBICr7hiGpcPesxVyfRnEHho0xgS0Mr+/N+s4PCPhs+X7vOCyzPNYnD05LoaFAk yBcAjbcFV+apIBxcJBdxzG5+7p36YVH1mZD1IbKNr4rcHdf7K6iTv/t2YjH959QH G/yC7xLxdtKvN5TaLzH4yprbbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7N2nDx JfqaXdW+In+/KfdFeqNtMB8GA1UdIwQYMBaAFNg73E+szZ23oLxGtCROoxBwYEuX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Rjg3MC9EMkUyNEM5OEQ3 RTIxMUVGQUYwQjNCN0RDNEY5QUUwMi8yRHZjVDZ6Tm5iZWd2RWEwSkU2akVIQmdT NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJEdmNUNnpObmJlZ3ZFYTBKRTZqRUhCZ1M1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Rjg3MC9EMkUyNEM5OEQ3RTIxMUVGQUYwQjNCN0RDNEY5QUUwMi8yRHZjVDZ6Tm5i ZWd2RWEwSkU2akVIQmdTNWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjGKj8vAOk79dlIGyrZnjRmm7+azUfkSs1+IUewq7xZHCQiktGlL2F xt9anWSNCXHz+E8bZqqL7g0X59RfgNe80han3rsz3TiVdJs8nN6sNM2LjL4n3X+K NAb/VT+lV2pT7V8fd1qrhNt9+hBVhOsotIWZFtwD239EIq8eH6lUfqImolKMsEY/ fgQJdaU0IAAW2NF+J0YAznqOHUz8l44D//T5ns5lD1qiDnn+IbmNRBOj+iis9AIX EFtFKKAW7EbNg/GQ2qsJjHA/Jd60GU4Dj5C+ey+HqW/v+PLgSvAsObuErNEoiUY8 iz5jzKOieVqVjP/9epyoen1EjkjWnMBN -----END CERTIFICATE-----Generated at Mon Oct 20 04:26:28 2025 by rpki-client