$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json) Hash identifier: /GFzH/95kWmj5rmMgX+k74S/PG9p7f/N8rrrzO0WnfE= Subject key identifier: 1C:0A:B8:03:D3:B2:3B:3E:AC:F7:9D:7F:CA:C5:A5:9D:69:0C:E3:F8 Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: 0237 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft Manifest number: 0231 Signing time: Sun 19 Oct 2025 04:08:51 +0000 Manifest this update: Sun 19 Oct 2025 04:08:50 +0000 Manifest next update: Sun 26 Oct 2025 04:08:50 +0000 Files and hashes: 1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: lfQeDIT37JtyH0QOlO6OCDwjvIrHZislIZ23385tG/o=) 2: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: EH2CgKpJsudgq4d5ghs/SJTUKeHCisdiJwkRQRkot80=) 3: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: Js88dwnU0hyC4RLKD1NQ44jyQxJzu0X07dqPCT3Ukh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:08:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255, serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: Oct 19 04:08:50 2025 GMT Not After : Oct 26 04:08:50 2025 GMT Subject: CN=68f46453-90e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6a:02:1b:2f:8b:87:dc:db:de:cc:92:81:25: 78:59:74:27:22:c1:7d:15:af:54:6f:e5:d4:61:e2: c3:4c:62:92:a8:d5:2e:67:35:80:dd:aa:1a:da:8c: 4e:5d:dc:d3:ce:f5:0e:aa:47:a0:bf:62:42:64:a3: 2b:11:f0:e5:6e:44:15:0e:9d:66:d4:6d:ca:1b:5d: 63:11:28:59:3f:1d:57:49:b7:7d:26:d2:fd:ef:a6: df:bc:12:8c:38:1d:4e:cc:72:48:ec:2b:f5:3d:40: 67:8c:56:8c:b9:75:88:b0:5b:7b:c2:4e:fc:25:b4: a7:29:c4:a4:f3:cd:1c:09:a9:6b:b9:24:89:d1:fb: 03:7a:f8:84:2e:73:72:b7:d8:bd:97:cb:8b:0d:22: 24:1b:f9:81:6a:a3:de:b6:b0:44:96:1b:db:5f:55: 82:7e:b6:49:bf:be:9e:41:db:36:45:b3:69:8f:ce: bb:25:22:7b:77:e3:50:69:0f:99:e6:2c:d1:95:c0: c3:82:23:0c:3f:96:bc:26:bf:c2:8a:84:0a:ad:80: ea:df:1d:57:3c:b2:f1:d4:82:e2:91:60:14:32:fd: 47:20:f4:e1:ea:f1:ed:19:4d:22:0c:c9:e7:db:a4: 3f:0d:ed:ec:85:56:f1:75:8c:c2:03:22:fc:fe:77: 84:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:0A:B8:03:D3:B2:3B:3E:AC:F7:9D:7F:CA:C5:A5:9D:69:0C:E3:F8 X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:b3:08:f3:9a:2e:4d:4d:20:e7:87:cc:36:8d:cf:48:c4:3d: 5d:d3:27:54:f3:3b:ad:a2:31:01:0d:c0:f4:af:a4:57:d0:3c: 59:03:a0:1d:1b:73:ac:ca:50:96:e4:b6:da:7a:68:3c:88:a8: b8:bb:a7:0d:59:64:9a:c5:fe:12:3f:d8:7f:b1:45:5c:67:d8: 58:8c:b7:9a:d3:80:12:6f:06:4d:62:08:fe:a7:a8:e6:43:9b: ab:93:1a:bf:00:5e:b6:d5:fe:10:af:63:cd:d5:a8:53:5f:6b: 60:23:8f:d8:d4:8d:80:4e:f9:04:7b:27:07:24:39:73:31:cf: 84:c5:7c:0d:f9:6d:40:c9:80:1b:c5:57:5d:81:aa:02:5c:40: 5a:83:31:af:93:fd:73:ba:fd:2d:5f:06:23:c1:8d:ae:66:e3: 52:83:a0:d2:c2:41:81:9e:c1:e7:c5:bb:5f:66:a6:6d:28:19: 76:79:5b:15:db:cb:a2:90:3b:d9:56:50:24:e1:42:b9:65:d7: da:dc:52:be:b2:e7:41:18:fb:5f:35:83:fe:55:04:a8:60:c0: 13:25:50:7c:3a:b6:2a:62:aa:70:6d:22:23:8c:6f:d4:d9:fc: ae:0c:1c:c9:c4:ee:c3:1c:41:2e:d4:f2:87:79:cc:5a:e6:d8: c5:4e:6f:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjUxMDE5MDQwODUwWhcNMjUxMDI2MDQwODUwWjAYMRYwFAYD VQQDEw02OGY0NjQ1My05MGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWoCGy+Lh9zb3sySgSV4WXQnIsF9Fa9Ub+XUYeLDTGKSqNUuZzWA3aoa2oxO XdzTzvUOqkegv2JCZKMrEfDlbkQVDp1m1G3KG11jEShZPx1XSbd9JtL976bfvBKM OB1OzHJI7Cv1PUBnjFaMuXWIsFt7wk78JbSnKcSk880cCalruSSJ0fsDeviELnNy t9i9l8uLDSIkG/mBaqPetrBElhvbX1WCfrZJv76eQds2RbNpj867JSJ7d+NQaQ+Z 5izRlcDDgiMMP5a8Jr/CioQKrYDq3x1XPLLx1ILikWAUMv1HIPTh6vHtGU0iDMnn 26Q/De3shVbxdYzCAyL8/neEnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBwKuAPT sjs+rPedf8rFpZ1pDOP4MB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjI1NS85MTYyMDg0QzUwNzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRB SXhzc1N4TklHLUVWQUszSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8swjzmi5NTSDnh8w2jc9IxD1d0ydU8zutojEBDcD0r6RX0DxZA6Ad G3OsylCW5Lbaemg8iKi4u6cNWWSaxf4SP9h/sUVcZ9hYjLea04ASbwZNYgj+p6jm Q5urkxq/AF621f4Qr2PN1ahTX2tgI4/Y1I2ATvkEeycHJDlzMc+ExXwN+W1AyYAb xVddgaoCXEBagzGvk/1zuv0tXwYjwY2uZuNSg6DSwkGBnsHnxbtfZqZtKBl2eVsV 28uikDvZVlAk4UK5Zdfa3FK+sudBGPtfNYP+VQSoYMATJVB8OrYqYqpwbSIjjG/U 2fyuDBzJxO7DHEEu1PKHecxa5tjFTm+i -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:35 2025 by rpki-client