$ rpki-client -vvf rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft File: 2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft (raw, json) Hash identifier: ymWMDA9UASrGyZ+zc6ed+mOz3mK/0U0A4RikB7nxZpc= Subject key identifier: 60:A2:7C:2F:4E:9C:F9:57:7E:E6:D7:15:2B:A1:32:48:EA:0D:D5:EC Authority key identifier: D9:CD:C0:89:48:2A:67:49:B5:20:05:1C:0F:38:5F:62:DE:8C:B4:93 Certificate issuer: /CN=A9164F6C/serialNumber=D9CDC089482A6749B520051C0F385F62DE8CB493 Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft Manifest number: 0115 Signing time: Sun 19 Oct 2025 07:46:58 +0000 Manifest this update: Sun 19 Oct 2025 07:46:58 +0000 Manifest next update: Sun 26 Oct 2025 07:46:58 +0000 Files and hashes: 1: 2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl (hash: RFIAC3KkKPshh3WJi1xAhMwJZioDN9R1nYsD/68D8C4=) 2: EC1244C40C0A11EF86081F2FC4F9AE02.roa (hash: NJlTUu7/QW4EWdki02Krp+vIjKwpqnHJl+6zdGP8Tfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164F6C, serialNumber=D9CDC089482A6749B520051C0F385F62DE8CB493 Validity Not Before: Oct 19 07:46:58 2025 GMT Not After : Oct 26 07:46:58 2025 GMT Subject: CN=68f49772-8b3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a2:26:fe:13:b3:2c:be:17:a7:38:0b:9f:12: 1a:35:a3:15:cd:cc:da:82:fa:b2:b2:d5:33:aa:90: 98:a1:e8:a0:f4:03:3e:c6:e2:9b:1c:ce:ca:1a:a7: 19:57:03:08:8c:77:15:db:a3:22:61:c6:26:24:03: ca:9b:6e:ae:39:7d:fc:eb:d6:51:86:06:02:a4:f1: 00:7c:e9:14:19:8a:19:50:61:07:9f:0f:c1:8f:1e: 8b:8f:5c:06:c9:cc:7a:47:75:56:51:00:88:18:26: dd:6d:1d:95:c0:12:fa:31:c5:7a:4a:94:aa:15:5b: fa:84:9b:db:96:04:cc:9a:ba:57:fc:cc:c9:11:df: fe:94:15:e8:5a:a2:cf:76:ea:8e:10:a7:93:0e:7c: 59:ae:5d:bf:be:46:91:92:a7:3e:52:80:42:30:95: 54:c8:8d:0a:c7:75:4d:67:c0:83:a3:6b:3b:9e:f1: 44:0a:0c:60:90:3b:7b:ac:a3:29:a3:4f:02:ad:e0: 9b:d5:df:d1:82:12:12:53:e0:d1:04:3a:7c:f4:05: bb:67:e4:41:39:67:79:80:82:b4:c9:88:a7:d8:0e: c7:8a:99:8d:9f:d2:31:13:a8:fd:b2:c9:dd:48:38: b6:4e:e6:2a:6e:94:2b:0f:58:25:db:b9:77:53:48: 82:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:A2:7C:2F:4E:9C:F9:57:7E:E6:D7:15:2B:A1:32:48:EA:0D:D5:EC X509v3 Authority Key Identifier: keyid:D9:CD:C0:89:48:2A:67:49:B5:20:05:1C:0F:38:5F:62:DE:8C:B4:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164F6C/B88237280C0911EF9BD9132CC4F9AE02/2c3AiUgqZ0m1IAUcDzhfYt6MtJM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:94:5a:0c:ad:42:58:32:05:9f:7d:b1:20:6b:c7:6a:fc:50: 5b:98:0b:e3:b0:14:be:14:3d:56:4d:52:0c:83:f8:f2:cc:50: 85:8e:4f:39:c9:62:5b:75:8e:ac:83:e1:61:0a:83:75:4e:3d: dc:76:60:7b:17:d3:07:7f:2c:fb:39:a0:63:a6:77:49:fc:50: 9e:78:92:0b:40:54:22:f1:b0:2c:6b:90:76:8c:13:e7:be:1c: 60:dd:07:dd:6f:90:99:03:53:1b:eb:3a:e9:b5:83:79:80:cb: 73:a0:d8:ea:81:ce:50:87:13:fa:6b:5d:f5:fe:e0:ea:48:f7: a6:fe:8d:1e:1b:21:42:65:0b:0c:05:3b:05:ec:74:a0:3c:2c: 25:48:70:c2:97:25:6a:ae:82:35:ab:89:c1:c4:63:4e:1a:e2: 84:f0:ca:de:31:d4:1f:01:44:77:14:6a:1a:0c:f4:73:8a:fe: 1e:73:c7:e2:de:0d:c0:82:43:df:b6:cc:38:88:d3:a4:ef:02: c0:e7:5f:9a:43:2e:07:b3:cf:64:0f:7e:7a:75:88:51:5e:a6: 7a:6c:0e:2a:09:f2:ed:f8:b7:f0:54:99:1a:0f:87:da:9d:25: 98:48:3b:6e:d0:ee:01:d1:40:9b:7d:26:ed:d0:2d:25:3d:11: 6f:ea:1c:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRGNkMxMTAvBgNVBAUTKEQ5Q0RDMDg5NDgyQTY3NDlCNTIwMDUxQzBGMzg1RjYy REU4Q0I0OTMwHhcNMjUxMDE5MDc0NjU4WhcNMjUxMDI2MDc0NjU4WjAYMRYwFAYD VQQDEw02OGY0OTc3Mi04YjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKIm/hOzLL4XpzgLnxIaNaMVzczagvqystUzqpCYoeig9AM+xuKbHM7KGqcZ VwMIjHcV26MiYcYmJAPKm26uOX3869ZRhgYCpPEAfOkUGYoZUGEHnw/Bjx6Lj1wG ycx6R3VWUQCIGCbdbR2VwBL6McV6SpSqFVv6hJvblgTMmrpX/MzJEd/+lBXoWqLP duqOEKeTDnxZrl2/vkaRkqc+UoBCMJVUyI0Kx3VNZ8CDo2s7nvFECgxgkDt7rKMp o08CreCb1d/RghISU+DRBDp89AW7Z+RBOWd5gIK0yYin2A7HipmNn9IxE6j9ssnd SDi2TuYqbpQrD1gl27l3U0iC4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCifC9O nPlXfubXFSuhMkjqDdXsMB8GA1UdIwQYMBaAFNnNwIlIKmdJtSAFHA84X2LejLST MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEY2Qy9CODgyMzcyODBD MDkxMUVGOUJEOTEzMkNDNEY5QUUwMi8yYzNBaVVncVowbTFJQVVjRHpoZll0Nk10 Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJjM0FpVWdxWjBtMUlBVWNEemhmWXQ2TXRKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NEY2Qy9CODgyMzcyODBDMDkxMUVGOUJEOTEzMkNDNEY5QUUwMi8yYzNBaVVncVow bTFJQVVjRHpoZll0Nk10Sk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCblFoMrUJYMgWffbEga8dq/FBbmAvjsBS+FD1WTVIMg/jyzFCFjk85 yWJbdY6sg+FhCoN1Tj3cdmB7F9MHfyz7OaBjpndJ/FCeeJILQFQi8bAsa5B2jBPn vhxg3Qfdb5CZA1Mb6zrptYN5gMtzoNjqgc5QhxP6a131/uDqSPem/o0eGyFCZQsM BTsF7HSgPCwlSHDClyVqroI1q4nBxGNOGuKE8MreMdQfAUR3FGoaDPRziv4ec8fi 3g3AgkPftsw4iNOk7wLA51+aQy4Hs89kD356dYhRXqZ6bA4qCfLt+LfwVJkaD4fa nSWYSDtu0O4B0UCbfSbt0C0lPRFv6hx+ -----END CERTIFICATE-----Generated at Mon Oct 20 12:42:03 2025 by rpki-client