$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft File: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft (raw, json) Hash identifier: InFRkYIRzsTnNOui8oBfV8HePwKf7oTkOY8kYRuEAoU= Subject key identifier: AA:A5:05:B2:F8:AD:30:68:02:47:1C:62:59:18:05:5F:09:E9:AA:02 Authority key identifier: D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 Certificate issuer: /CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Certificate serial: F8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft Manifest number: F5 Signing time: Sun 19 Oct 2025 01:04:20 +0000 Manifest this update: Sun 19 Oct 2025 01:04:19 +0000 Manifest next update: Sun 26 Oct 2025 01:04:19 +0000 Files and hashes: 1: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl (hash: IwqR+G6qfHvgoENOqMX18XOxGznoZZ3XnYKwb72BC5E=) 2: 5A4723DA6F3C11EF8FD45F13C4F9AE02.roa (hash: nJrP5XyTG2U3goSrQUjPEnvTLR/1/bqUd5TtsJOT5YA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:04:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD, serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Validity Not Before: Oct 19 01:04:19 2025 GMT Not After : Oct 26 01:04:19 2025 GMT Subject: CN=68f43913-0bcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:fb:98:a2:43:b0:1f:47:62:c4:dd:65:20:ba: 21:01:c0:42:83:f1:08:d7:25:f0:e4:3b:bf:91:cf: 34:4b:ef:4b:62:96:81:73:bd:b2:08:ee:b4:74:c0: cc:82:85:8f:5c:d0:53:96:7f:60:a2:a1:09:23:e1: de:06:13:d4:cf:42:e5:4f:1c:ca:26:dd:c6:ef:1a: 77:a0:3c:11:39:99:0d:b1:7b:e5:39:10:91:9b:35: cf:73:e7:d3:1e:04:13:2f:22:e0:31:93:4d:f2:b0: 03:03:df:94:cf:b1:02:57:cc:fb:cc:b9:16:11:d9: 00:0b:9f:97:bd:98:ed:20:7b:10:55:ec:5c:33:68: a9:df:3d:41:d4:af:6e:ec:a1:12:64:fa:bc:b5:2b: af:fd:4f:32:bb:95:eb:92:98:9b:19:c5:d8:f8:da: 49:2b:a3:64:66:3b:22:e9:6d:f0:9f:3c:9d:b6:93: 3f:5a:0c:33:09:8a:54:de:46:b2:0d:c7:fb:68:cb: b2:80:c7:8e:8e:1d:43:c1:41:ed:96:14:cb:2f:40: 60:aa:ae:c0:d2:11:e2:e2:ef:34:bc:4b:25:4e:b1: 36:57:c9:68:f2:12:aa:c4:f9:36:43:49:54:2c:fb: 14:1d:b4:38:6e:ed:b4:9f:0a:5f:5b:25:58:2d:f4: 37:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A5:05:B2:F8:AD:30:68:02:47:1C:62:59:18:05:5F:09:E9:AA:02 X509v3 Authority Key Identifier: keyid:D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:11:f2:8b:14:c7:9d:ed:20:c4:36:a6:ff:4a:a4:7a:64:7e: 9d:7e:0d:f1:6a:79:f2:0e:8d:84:20:e2:6f:d2:9c:ba:e8:52: 5d:c9:df:eb:70:e4:02:f9:8b:4f:38:71:f8:4f:a4:79:59:73: 9d:1d:c0:38:02:4c:36:07:59:52:86:2d:80:43:08:fe:99:a4: ef:e4:d1:69:11:17:04:49:bb:38:8b:13:15:4f:e8:01:6e:40: b3:da:69:d9:82:7b:e3:49:32:57:e1:f1:99:20:46:d0:f0:a1: dc:cf:29:81:f5:5e:3b:56:4e:60:d2:7b:71:31:2f:59:16:17: d9:20:f1:08:0c:0d:1e:f4:3f:4d:94:ba:9b:35:a8:da:e6:fc: de:da:f4:9f:2c:05:aa:62:87:3c:23:16:91:e4:28:f2:39:cd: d9:5e:3c:8e:a0:a1:be:45:61:15:87:ec:a0:77:6b:05:ea:c3: a3:64:25:d1:38:b3:f4:d0:72:42:c1:0b:8b:49:0f:3f:d3:dc: 30:a4:00:0b:a4:3f:cb:08:ce:01:a9:26:4b:7e:67:aa:ba:58: 44:02:4e:6e:8e:74:f6:35:d8:d0:d7:bf:ef:77:49:08:7c:8c: a7:d4:23:28:f5:c3:a9:b0:0f:75:ad:2c:d6:ed:a0:b4:a8:f4: 03:2d:14:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEQ5NURBMTE3MTQxMjMwMEFCNTNCM0U0ODcwRjJGNDQx RjA2QzgxMjQwHhcNMjUxMDE5MDEwNDE5WhcNMjUxMDI2MDEwNDE5WjAYMRYwFAYD VQQDEw02OGY0MzkxMy0wYmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/uYokOwH0dixN1lILohAcBCg/EI1yXw5Du/kc80S+9LYpaBc72yCO60dMDM goWPXNBTln9goqEJI+HeBhPUz0LlTxzKJt3G7xp3oDwROZkNsXvlORCRmzXPc+fT HgQTLyLgMZNN8rADA9+Uz7ECV8z7zLkWEdkAC5+XvZjtIHsQVexcM2ip3z1B1K9u 7KESZPq8tSuv/U8yu5XrkpibGcXY+NpJK6NkZjsi6W3wnzydtpM/WgwzCYpU3kay Dcf7aMuygMeOjh1DwUHtlhTLL0Bgqq7A0hHi4u80vEslTrE2V8lo8hKqxPk2Q0lU LPsUHbQ4bu20nwpfWyVYLfQ3ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqlBbL4 rTBoAkccYlkYBV8J6aoCMB8GA1UdIwQYMBaAFNldoRcUEjAKtTs+SHDy9EHwbIEk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC9FRjYzODNFMjNE OUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01BcTFPejVJY1BMMFFmQnNn U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJWMmhGeFFTTUFxMU96NUljUEwwUWZCc2dTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUVDRC9FRjYzODNFMjNEOUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01B cTFPejVJY1BMMFFmQnNnU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtEfKLFMed7SDENqb/SqR6ZH6dfg3xannyDo2EIOJv0py66FJdyd/r cOQC+YtPOHH4T6R5WXOdHcA4Akw2B1lShi2AQwj+maTv5NFpERcESbs4ixMVT+gB bkCz2mnZgnvjSTJX4fGZIEbQ8KHczymB9V47Vk5g0ntxMS9ZFhfZIPEIDA0e9D9N lLqbNaja5vze2vSfLAWqYoc8IxaR5CjyOc3ZXjyOoKG+RWEVh+ygd2sF6sOjZCXR OLP00HJCwQuLSQ8/09wwpAALpD/LCM4BqSZLfmequlhEAk5ujnT2NdjQ17/vd0kI fIyn1CMo9cOpsA91rSzW7aC0qPQDLRRy -----END CERTIFICATE-----Generated at Mon Oct 20 21:26:31 2025 by rpki-client