$ rpki-client -vvf rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft File: 2dCjxqTde6e0VN6uAa9nryxUxDM.mft (raw, json) Hash identifier: J34qjXzwnGF1M7HvwZcu2neoWQ/B+mLySresIf5gBiE= Subject key identifier: 5B:06:00:21:28:D4:E0:1E:60:6D:A6:9B:EA:7C:15:3B:F2:AE:8C:97 Authority key identifier: D9:D0:A3:C6:A4:DD:7B:A7:B4:54:DE:AE:01:AF:67:AF:2C:54:C4:33 Certificate issuer: /CN=A915C9B7/serialNumber=D9D0A3C6A4DD7BA7B454DEAE01AF67AF2C54C433 Certificate serial: 0834 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft Manifest number: 0829 Signing time: Sat 18 Oct 2025 22:01:00 +0000 Manifest this update: Sat 18 Oct 2025 22:01:00 +0000 Manifest next update: Sat 25 Oct 2025 22:01:00 +0000 Files and hashes: 1: 2dCjxqTde6e0VN6uAa9nryxUxDM.crl (hash: 4BIj65yZw/knvB8ko2+z+Jy766EABYaI1ZvuPXhynE0=) 2: 12A47D4E9CDB11EF857FB626C4F9AE02.roa (hash: DuU/zvCDCUg2TONY7brDsE/++qWvSBYjnL7XCdcyag0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.crl rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2100 (0x834) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C9B7, serialNumber=D9D0A3C6A4DD7BA7B454DEAE01AF67AF2C54C433 Validity Not Before: Oct 18 22:01:00 2025 GMT Not After : Oct 25 22:01:00 2025 GMT Subject: CN=68f40e1c-b232 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:47:b8:64:23:fa:59:48:d8:e0:78:a3:d4:52: 30:13:28:9b:30:30:b3:6a:b0:69:eb:c3:55:42:fa: 99:d4:7b:f3:74:c8:7d:b7:21:a1:01:e9:90:a7:fd: ed:78:9c:b7:a8:ae:89:ea:07:41:4a:44:bb:3b:f0: 4a:48:9a:5d:65:c8:85:53:ff:20:af:7f:53:e0:f2: aa:48:bd:29:14:a4:7d:f8:3f:39:45:ad:2c:54:7f: 55:38:b8:8a:64:bf:0c:07:49:1f:40:a7:00:cb:2f: 75:d4:84:61:f6:4f:be:ac:d5:54:4c:80:65:25:78: 69:52:a3:e6:46:dd:d2:38:6e:22:a1:ea:32:d8:6a: 38:00:91:07:cd:22:6b:85:73:fc:f2:b9:ce:81:74: 8c:2f:97:2f:2f:b2:30:c1:b1:88:b9:6c:ce:24:a5: a7:91:06:1d:ed:a1:77:28:33:34:79:da:ff:b3:75: 4c:17:ff:d4:54:23:cb:75:b6:cc:d4:dc:69:34:18: 7d:da:8e:5d:5d:1b:4b:7a:54:01:4b:3f:b4:3c:9f: b1:ac:61:e3:2e:ac:6b:2f:c9:61:6f:1c:c6:ee:c2: 67:49:9d:4e:86:46:cd:4f:bc:13:0e:d8:c4:c6:e2: 90:e1:3d:50:57:da:fd:54:b3:42:ca:89:d7:b6:7c: 2d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:06:00:21:28:D4:E0:1E:60:6D:A6:9B:EA:7C:15:3B:F2:AE:8C:97 X509v3 Authority Key Identifier: keyid:D9:D0:A3:C6:A4:DD:7B:A7:B4:54:DE:AE:01:AF:67:AF:2C:54:C4:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:77:d0:89:1a:8f:40:68:52:e6:f1:46:be:e4:4e:75:ba:cd: 46:eb:4b:e5:70:5e:3c:79:f9:68:13:67:66:e3:0d:07:ff:98: bc:ec:10:39:ef:30:54:d3:00:e7:d6:85:b0:d9:b3:2b:71:c5: 49:2b:42:09:4b:76:ef:d6:9a:6f:f6:6c:6d:ea:4b:75:b1:b3: 7e:44:d8:c8:fd:2b:5d:30:b3:e3:1c:bf:6a:57:b3:40:e4:e1: 52:64:30:7d:b6:d6:1e:02:08:54:1a:b8:0d:55:a1:b3:7e:a9: 91:81:16:1c:97:67:87:d5:06:68:91:bb:6b:25:da:30:74:df: 49:28:a6:62:7d:be:2b:7e:39:fb:32:50:2e:dc:f0:b5:da:4f: c3:1f:39:bf:47:3d:f4:d4:76:21:d4:cf:61:8c:6f:6a:dc:74: 41:3e:c3:ff:2f:b3:3b:17:ec:b1:4d:91:ec:9d:8e:2f:dd:b2: 67:47:83:94:73:06:31:1f:f9:d8:1e:20:99:e9:cb:7d:39:d4: 5e:e5:9f:07:b6:69:57:53:a6:00:4c:b1:93:fa:a5:9e:94:92: 04:44:44:42:66:31:93:6d:3c:a6:a3:60:f2:f3:3c:66:2a:17: 9b:1c:cd:8a:32:56:dd:8e:f7:1a:8e:a0:75:e0:c0:6a:8d:85: e3:c0:2c:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM5QjcxMTAvBgNVBAUTKEQ5RDBBM0M2QTRERDdCQTdCNDU0REVBRTAxQUY2N0FG MkM1NEM0MzMwHhcNMjUxMDE4MjIwMTAwWhcNMjUxMDI1MjIwMTAwWjAYMRYwFAYD VQQDEw02OGY0MGUxYy1iMjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Ee4ZCP6WUjY4Hij1FIwEyibMDCzarBp68NVQvqZ1HvzdMh9tyGhAemQp/3t eJy3qK6J6gdBSkS7O/BKSJpdZciFU/8gr39T4PKqSL0pFKR9+D85Ra0sVH9VOLiK ZL8MB0kfQKcAyy911IRh9k++rNVUTIBlJXhpUqPmRt3SOG4ioeoy2Go4AJEHzSJr hXP88rnOgXSML5cvL7IwwbGIuWzOJKWnkQYd7aF3KDM0edr/s3VMF//UVCPLdbbM 1NxpNBh92o5dXRtLelQBSz+0PJ+xrGHjLqxrL8lhbxzG7sJnSZ1OhkbNT7wTDtjE xuKQ4T1QV9r9VLNCyonXtnwt/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsGACEo 1OAeYG2mm+p8FTvyroyXMB8GA1UdIwQYMBaAFNnQo8ak3XuntFTergGvZ68sVMQz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzlCNy84QzI2NEZEMkVF NUExMUVBQUQ3NjkwMzNDNEY5QUUwMi8yZENqeHFUZGU2ZTBWTjZ1QWE5bnJ5eFV4 RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkQ2p4cVRkZTZlMFZONnVBYTlucnl4VXhETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzlCNy84QzI2NEZEMkVFNUExMUVBQUQ3NjkwMzNDNEY5QUUwMi8yZENqeHFUZGU2 ZTBWTjZ1QWE5bnJ5eFV4RE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCd9CJGo9AaFLm8Ua+5E51us1G60vlcF48efloE2dm4w0H/5i87BA5 7zBU0wDn1oWw2bMrccVJK0IJS3bv1ppv9mxt6kt1sbN+RNjI/StdMLPjHL9qV7NA 5OFSZDB9ttYeAghUGrgNVaGzfqmRgRYcl2eH1QZokbtrJdowdN9JKKZifb4rfjn7 MlAu3PC12k/DHzm/Rz301HYh1M9hjG9q3HRBPsP/L7M7F+yxTZHsnY4v3bJnR4OU cwYxH/nYHiCZ6ct9OdRe5Z8HtmlXU6YATLGT+qWelJIERERCZjGTbTymo2Dy8zxm KhebHM2KMlbdjvcajqB14MBqjYXjwCy/ -----END CERTIFICATE-----Generated at Mon Oct 20 16:15:00 2025 by rpki-client