$ rpki-client -vvf rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft File: ck2EEAslmZMZA4aasFIgd2yLrEI.mft (raw, json) Hash identifier: tzGUkh43Z4ipwbaQESkftRsY7WTQPF48FoF50/uxwe0= Subject key identifier: 4C:A3:92:47:9F:50:A6:53:79:EC:4E:85:46:57:E2:D3:30:31:97:80 Authority key identifier: 72:4D:84:10:0B:25:99:93:19:03:86:9A:B0:52:20:77:6C:8B:AC:42 Certificate issuer: /CN=A916A39E/serialNumber=724D84100B2599931903869AB05220776C8BAC42 Certificate serial: 01D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck2EEAslmZMZA4aasFIgd2yLrEI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft Manifest number: 01CC Signing time: Sun 19 Oct 2025 05:18:53 +0000 Manifest this update: Sun 19 Oct 2025 05:18:52 +0000 Manifest next update: Sun 26 Oct 2025 05:18:52 +0000 Files and hashes: 1: ck2EEAslmZMZA4aasFIgd2yLrEI.crl (hash: cxo2oFASQkq5Iy/JguO9uZIIJYwya8RR3xEdPsZhd9g=) 2: AF01BB42EE4B11EDA0FDF350C4F9AE02.roa (hash: XG0ognbrHuDFVvw75BGHMdtpiHu/beUvd7TsChbHkCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.crl rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck2EEAslmZMZA4aasFIgd2yLrEI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:18:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 464 (0x1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A39E, serialNumber=724D84100B2599931903869AB05220776C8BAC42 Validity Not Before: Oct 19 05:18:52 2025 GMT Not After : Oct 26 05:18:52 2025 GMT Subject: CN=68f474bc-a399 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:75:ce:55:41:77:b4:9a:90:ff:f6:4b:ad:18: 49:ed:26:c7:c2:af:77:cd:b4:c8:f4:89:39:85:a6: a4:23:7e:31:c0:55:92:12:ba:cc:ae:de:8f:0a:7c: 75:11:56:55:23:e0:fe:e2:81:49:cb:e6:54:6b:56: c8:1c:3f:32:87:15:50:7b:ad:16:d1:96:20:7f:00: e0:ff:08:f4:e8:ad:b2:24:ed:52:08:15:86:54:30: 15:3e:60:98:69:99:82:ab:c6:ee:61:a6:70:85:5d: d4:f0:22:98:89:09:ed:3d:2d:75:c3:c8:e3:68:2b: 6c:a5:e7:b6:16:d8:47:a7:43:bc:65:18:3a:5d:04: 6c:a2:d1:d7:ec:a9:56:36:ef:59:6f:65:aa:1e:66: b3:64:be:bc:1c:17:8b:dd:1e:67:d7:5b:13:fe:76: e4:12:21:82:b2:dd:b1:3a:a1:d6:50:16:f2:c2:ef: 39:b1:82:77:3d:df:12:d8:bf:f7:c5:84:3a:42:bd: d5:ac:17:43:ea:cf:38:9a:18:43:c5:c1:ae:0e:3d: 33:08:c7:a0:dc:f7:89:e8:bb:83:e5:40:31:9c:f0: 89:23:a8:31:f5:6f:a5:ad:c9:c3:22:49:c8:1d:04: 2e:38:4a:7f:ef:2e:6a:a9:c6:52:8f:46:45:ff:3d: 6c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:A3:92:47:9F:50:A6:53:79:EC:4E:85:46:57:E2:D3:30:31:97:80 X509v3 Authority Key Identifier: keyid:72:4D:84:10:0B:25:99:93:19:03:86:9A:B0:52:20:77:6C:8B:AC:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck2EEAslmZMZA4aasFIgd2yLrEI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:6c:bc:7c:6d:6a:fd:41:df:ea:a0:2f:53:1a:d3:41:ce:ee: 10:d2:e6:37:a1:83:24:09:18:96:78:6a:0e:59:95:66:70:b5: 1b:c9:5c:23:a9:8a:64:82:88:b4:06:94:65:9b:3d:25:18:c4: 0b:bc:35:ab:b7:81:34:ea:53:74:8f:60:d6:c3:c5:6d:48:25: 06:88:1c:7b:46:6b:b6:6b:82:2f:3a:d2:4d:5a:9d:4a:a3:88: 66:59:a6:11:76:f8:ec:7c:5f:9d:0f:b6:4e:e2:e7:18:41:3b: 62:29:1e:6b:20:d4:b0:91:d7:32:4c:ce:64:32:a8:d6:9e:91: ee:44:2e:b7:00:2a:b0:75:41:8c:61:40:39:3e:55:49:a4:b0: ec:df:52:8f:03:dc:fd:94:a4:cc:01:45:44:60:a4:bd:d9:0a: 79:cf:47:6f:fa:b2:48:09:08:41:89:8d:28:a6:ba:08:a7:df: 6e:4e:5c:fe:ef:c0:a1:e6:86:28:e7:a7:4d:24:5a:99:b2:91: 85:07:92:c5:e9:56:e8:61:1a:65:26:a2:96:e7:1a:16:2a:ea: 15:4e:57:b9:57:7a:10:9d:c7:47:3d:cb:e3:cd:b4:11:4c:ec: 9a:25:61:1f:bb:6c:b4:ff:d6:1e:62:f9:49:36:79:01:21:8d: b1:ce:49:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzOUUxMTAvBgNVBAUTKDcyNEQ4NDEwMEIyNTk5OTMxOTAzODY5QUIwNTIyMDc3 NkM4QkFDNDIwHhcNMjUxMDE5MDUxODUyWhcNMjUxMDI2MDUxODUyWjAYMRYwFAYD VQQDEw02OGY0NzRiYy1hMzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnXOVUF3tJqQ//ZLrRhJ7SbHwq93zbTI9Ik5haakI34xwFWSErrMrt6PCnx1 EVZVI+D+4oFJy+ZUa1bIHD8yhxVQe60W0ZYgfwDg/wj06K2yJO1SCBWGVDAVPmCY aZmCq8buYaZwhV3U8CKYiQntPS11w8jjaCtspee2FthHp0O8ZRg6XQRsotHX7KlW Nu9Zb2WqHmazZL68HBeL3R5n11sT/nbkEiGCst2xOqHWUBbywu85sYJ3Pd8S2L/3 xYQ6Qr3VrBdD6s84mhhDxcGuDj0zCMeg3PeJ6LuD5UAxnPCJI6gx9W+lrcnDIknI HQQuOEp/7y5qqcZSj0ZF/z1sRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEyjkkef UKZTeexOhUZX4tMwMZeAMB8GA1UdIwQYMBaAFHJNhBALJZmTGQOGmrBSIHdsi6xC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTM5RS9ENjQ0ODFGOEVF NDExMUVEQjk1NDVBMTZDNEY5QUUwMi9jazJFRUFzbG1aTVpBNGFhc0ZJZ2QyeUxy RUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrMkVFQXNsbVpNWkE0YWFzRklnZDJ5THJFSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTM5RS9ENjQ0ODFGOEVFNDExMUVEQjk1NDVBMTZDNEY5QUUwMi9jazJFRUFzbG1a TVpBNGFhc0ZJZ2QyeUxyRUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9bLx8bWr9Qd/qoC9TGtNBzu4Q0uY3oYMkCRiWeGoOWZVmcLUbyVwj qYpkgoi0BpRlmz0lGMQLvDWrt4E06lN0j2DWw8VtSCUGiBx7Rmu2a4IvOtJNWp1K o4hmWaYRdvjsfF+dD7ZO4ucYQTtiKR5rINSwkdcyTM5kMqjWnpHuRC63ACqwdUGM YUA5PlVJpLDs31KPA9z9lKTMAUVEYKS92Qp5z0dv+rJICQhBiY0oproIp99uTlz+ 78Ch5oYo56dNJFqZspGFB5LF6VboYRplJqKW5xoWKuoVTle5V3oQncdHPcvjzbQR TOyaJWEfu2y0/9YeYvlJNnkBIY2xzknc -----END CERTIFICATE-----Generated at Mon Oct 20 14:44:55 2025 by rpki-client