$ rpki-client -vvf rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft File: 2RBlAbU10PfK1XyOenR8oGnQTVk.mft (raw, json) Hash identifier: V6WZ1IJ6bjY5/5iMYJYoYZlO+8H8AFI5UJuXay7CopY= Subject key identifier: DD:3E:F8:48:BA:96:6A:D4:75:9B:62:1F:5E:83:B9:39:33:CE:D6:77 Authority key identifier: D9:10:65:01:B5:35:D0:F7:CA:D5:7C:8E:7A:74:7C:A0:69:D0:4D:59 Certificate issuer: /CN=A916FACB/serialNumber=D9106501B535D0F7CAD57C8E7A747CA069D04D59 Certificate serial: 03FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft Manifest number: 03FA Signing time: Sun 19 Oct 2025 02:24:42 +0000 Manifest this update: Sun 19 Oct 2025 02:24:42 +0000 Manifest next update: Sun 26 Oct 2025 02:24:42 +0000 Files and hashes: 1: 2RBlAbU10PfK1XyOenR8oGnQTVk.crl (hash: EoENb+zRGOpGFKSKkXhqMyIArjobsYlijVWYLYBtGhw=) 2: 97D35382924311EC927C972FC4F9AE02.roa (hash: F5cT4m4LGvhZopgIl7MS1o33/eaQaKX2bSwBB1GnJYA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.crl rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:24:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1022 (0x3fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FACB, serialNumber=D9106501B535D0F7CAD57C8E7A747CA069D04D59 Validity Not Before: Oct 19 02:24:42 2025 GMT Not After : Oct 26 02:24:42 2025 GMT Subject: CN=68f44bea-b7de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:71:54:a7:30:7a:fd:e7:28:24:2e:a0:db:23: 6b:5b:ca:06:ab:a5:02:7d:03:99:00:a4:3c:ef:3e: b7:2f:94:00:c1:2c:6a:9c:c4:21:f8:5c:b3:0b:31: ac:6d:f2:62:83:07:6d:56:0d:26:30:e6:f8:f4:30: 47:d2:5c:a3:d8:4c:35:dc:3f:7f:37:c1:42:cc:d1: 97:14:f6:83:b7:8c:db:b5:fd:3b:ec:92:ee:50:c6: 57:43:3b:02:d9:e2:7f:ce:01:bc:1e:e4:f3:44:24: 95:a1:8e:cb:19:10:fe:af:cd:40:d8:b0:62:42:b1: 9c:5c:a5:4c:7d:b7:28:c4:8f:03:c9:89:11:e1:54: 51:32:c9:48:97:a7:b9:80:bb:d5:d4:d1:97:c1:50: 3b:66:cd:50:62:4c:5b:8a:bf:5d:c0:59:b8:51:f7: a8:1c:e0:be:aa:f8:ee:a5:d1:ce:8f:4a:15:97:6b: ac:ce:eb:b2:0d:15:44:c8:d9:36:6b:8c:58:0a:ab: 11:51:1f:cf:d3:dd:96:8a:32:9c:f3:c6:ad:71:a4: bc:da:91:6d:76:d8:66:1c:f1:5c:e2:27:86:64:1c: 5e:25:d7:b4:5b:af:c4:ec:ad:32:fc:57:cf:56:55: 6f:eb:06:dc:66:ec:f0:98:46:f1:c7:5f:3d:bf:29: 7f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:3E:F8:48:BA:96:6A:D4:75:9B:62:1F:5E:83:B9:39:33:CE:D6:77 X509v3 Authority Key Identifier: keyid:D9:10:65:01:B5:35:D0:F7:CA:D5:7C:8E:7A:74:7C:A0:69:D0:4D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:de:65:bd:85:09:92:3f:97:51:75:af:57:1a:4f:e8:17:c8: 75:f1:fd:58:b0:a9:dc:07:e4:c6:5a:90:f9:04:5b:ac:5f:0b: 08:cf:f3:3f:0f:2e:33:69:60:39:a4:b6:6b:3b:4a:ea:2f:0c: cb:14:f6:31:45:7f:45:89:5c:39:ed:c7:46:52:55:98:9b:4b: b3:1b:c2:54:d2:82:7b:07:1f:44:1a:cf:a3:52:ec:c1:e8:03: 42:d5:ef:92:28:72:5c:42:6e:ea:31:f7:7e:e8:59:6a:7c:d1: 33:08:26:da:f9:47:c1:c9:c7:6b:1f:a4:ac:53:6a:cb:92:1d: b1:5b:aa:c5:0b:31:79:cb:21:52:a0:8b:2d:ce:e4:e5:97:7d: a5:d4:8c:c2:0f:83:00:55:77:e2:a0:30:c3:ff:53:f7:9a:f2: 1d:60:00:ce:da:f6:ff:02:a0:82:bf:71:c8:8f:97:4c:34:50: 00:a1:34:12:06:8b:15:f1:de:29:3a:c0:27:06:11:05:96:a5: 9c:e8:f9:a6:83:ca:6b:70:6f:0e:2e:00:bb:b0:3d:6d:47:6f: 62:7c:51:fd:a0:a4:ca:19:d9:71:99:15:32:7d:cb:c9:cd:97: d9:fa:f5:74:4d:9f:0e:62:12:77:2e:1a:05:c8:8d:07:79:6a: c4:47:b5:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBQ0IxMTAvBgNVBAUTKEQ5MTA2NTAxQjUzNUQwRjdDQUQ1N0M4RTdBNzQ3Q0Ew NjlEMDRENTkwHhcNMjUxMDE5MDIyNDQyWhcNMjUxMDI2MDIyNDQyWjAYMRYwFAYD VQQDEw02OGY0NGJlYS1iN2RlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlHFUpzB6/ecoJC6g2yNrW8oGq6UCfQOZAKQ87z63L5QAwSxqnMQh+FyzCzGs bfJigwdtVg0mMOb49DBH0lyj2Ew13D9/N8FCzNGXFPaDt4zbtf077JLuUMZXQzsC 2eJ/zgG8HuTzRCSVoY7LGRD+r81A2LBiQrGcXKVMfbcoxI8DyYkR4VRRMslIl6e5 gLvV1NGXwVA7Zs1QYkxbir9dwFm4UfeoHOC+qvjupdHOj0oVl2uszuuyDRVEyNk2 a4xYCqsRUR/P092WijKc88atcaS82pFtdthmHPFc4ieGZBxeJde0W6/E7K0y/FfP VlVv6wbcZuzwmEbxx189vyl/xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0++Ei6 lmrUdZtiH16DuTkzztZ3MB8GA1UdIwQYMBaAFNkQZQG1NdD3ytV8jnp0fKBp0E1Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkFDQi9GNTU5OEQwODky NDAxMUVDQkVENERBMkNDNEY5QUUwMi8yUkJsQWJVMTBQZksxWHlPZW5SOG9HblFU VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJSQmxBYlUxMFBmSzFYeU9lblI4b0duUVRWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkFDQi9GNTU5OEQwODkyNDAxMUVDQkVENERBMkNDNEY5QUUwMi8yUkJsQWJVMTBQ ZksxWHlPZW5SOG9HblFUVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr3mW9hQmSP5dRda9XGk/oF8h18f1YsKncB+TGWpD5BFusXwsIz/M/ Dy4zaWA5pLZrO0rqLwzLFPYxRX9FiVw57cdGUlWYm0uzG8JU0oJ7Bx9EGs+jUuzB 6ANC1e+SKHJcQm7qMfd+6FlqfNEzCCba+UfBycdrH6SsU2rLkh2xW6rFCzF5yyFS oIstzuTll32l1IzCD4MAVXfioDDD/1P3mvIdYADO2vb/AqCCv3HIj5dMNFAAoTQS BosV8d4pOsAnBhEFlqWc6Pmmg8prcG8OLgC7sD1tR29ifFH9oKTKGdlxmRUyfcvJ zZfZ+vV0TZ8OYhJ3LhoFyI0HeWrER7Wq -----END CERTIFICATE-----Generated at Mon Oct 20 12:44:33 2025 by rpki-client