$ rpki-client -vvf rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft File: R2wrlqUY81f22XaCqHHD5Iu54SM.mft (raw, json) Hash identifier: sYJuCJT3q6NSXbyEiL5HKInQBbVBcChhWOyL4gv7M8Y= Subject key identifier: 1F:A4:5B:BE:8B:47:26:5C:B0:D0:61:9F:87:CF:BC:B8:02:9B:C0:1A Authority key identifier: 47:6C:2B:96:A5:18:F3:57:F6:D9:76:82:A8:71:C3:E4:8B:B9:E1:23 Certificate issuer: /CN=A917A442/serialNumber=476C2B96A518F357F6D97682A871C3E48BB9E123 Certificate serial: 01F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft Manifest number: 01EE Signing time: Sun 19 Oct 2025 05:03:06 +0000 Manifest this update: Sun 19 Oct 2025 05:03:05 +0000 Manifest next update: Sun 26 Oct 2025 05:03:05 +0000 Files and hashes: 1: R2wrlqUY81f22XaCqHHD5Iu54SM.crl (hash: a+ZSsm53OH8TaiDUdHoEiwRFO7ONF+3srLjgjEJ97uc=) 2: 65E02670C83E11ED9FAAFA22C4F9AE02.roa (hash: QqBINDd+m6GAidQPZDLnjXwqI13nDti3MNbtgoHfQfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.crl rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:03:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 501 (0x1f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A442, serialNumber=476C2B96A518F357F6D97682A871C3E48BB9E123 Validity Not Before: Oct 19 05:03:05 2025 GMT Not After : Oct 26 05:03:05 2025 GMT Subject: CN=68f4710a-c77b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:25:80:00:76:c8:8e:d8:c5:15:9f:fc:04:bb: 7a:55:69:b0:d6:ba:e1:af:0a:41:3e:7a:56:c7:a9: a3:c8:eb:ba:71:a2:df:22:5e:f3:7a:50:17:e3:95: 91:fb:25:c1:83:eb:58:e8:f8:36:f0:1d:b3:99:62: b2:18:36:33:de:7a:65:69:78:10:06:ed:3f:c8:b1: 21:37:83:27:e1:5b:9d:1d:33:13:e8:82:07:a1:5a: 26:a8:b1:21:6e:83:4b:60:14:7c:8d:e0:46:b9:6d: 07:55:f1:e0:1c:cb:59:3c:2f:b6:73:5c:3d:1f:ed: 6c:9d:eb:05:f8:8b:fe:5c:52:e3:a3:ab:10:c7:af: 9f:4e:8c:94:26:6f:92:81:8a:a7:1a:58:bc:64:63: 56:2d:8b:33:f2:2c:88:de:42:83:c7:3d:ae:08:6d: 80:b9:07:05:3e:2c:d7:d1:e7:14:6a:21:c4:aa:8c: d0:19:e6:16:e3:7d:5b:30:c4:01:ad:23:27:b7:c1: 21:1a:d6:73:a4:7b:fc:c7:9c:9e:1b:c0:10:56:f6: 43:94:59:4b:f0:30:52:e3:bb:0d:b1:58:39:fc:e7: d9:73:a7:ea:e5:8b:42:c2:f1:46:80:a6:42:12:c6: d9:74:b0:33:f3:31:9c:7e:ce:f3:49:16:e7:b6:4a: c6:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:A4:5B:BE:8B:47:26:5C:B0:D0:61:9F:87:CF:BC:B8:02:9B:C0:1A X509v3 Authority Key Identifier: keyid:47:6C:2B:96:A5:18:F3:57:F6:D9:76:82:A8:71:C3:E4:8B:B9:E1:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:bb:25:a7:e6:e3:e0:78:22:d3:1a:02:37:c8:85:04:6e:a8: 05:fb:47:8a:d3:7f:a1:33:5a:1c:db:f9:a5:90:bf:e8:83:92: 86:ca:d8:6f:a0:50:08:a8:b2:6e:ee:d7:4c:d2:33:a8:b8:98: aa:f7:de:a4:df:e6:fc:df:61:53:d2:da:b7:e8:01:67:43:99: 61:e6:36:64:61:2b:2a:00:2e:f5:91:09:fc:02:4d:cc:79:77: 31:70:e4:0c:54:07:cf:22:52:ef:13:51:f8:f7:54:a7:37:c3: 00:c2:e6:48:8d:7b:df:80:f8:e0:e8:d1:07:dd:f3:32:39:14: 0f:ae:08:fb:fe:09:ef:5f:5d:eb:e0:5f:11:5a:81:dc:7b:ff: a0:a4:4b:37:dd:f7:65:73:58:97:27:3c:70:58:30:cd:01:28: d0:f7:39:5e:12:50:77:c4:8d:2d:f2:11:c0:82:4d:d0:79:7a: 56:3a:fc:9b:e3:aa:a4:61:cd:6c:e2:84:c9:fd:f2:38:24:19: 54:28:9a:ca:27:a2:1a:f4:d4:01:38:04:7b:d2:e4:46:c0:9e: 39:5c:bc:33:fc:0d:94:91:ce:35:65:db:f1:be:96:bf:fc:cb: 56:43:1f:db:be:16:d7:47:3a:3b:2e:e5:e6:41:e9:5a:36:20: 09:61:58:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0NDIxMTAvBgNVBAUTKDQ3NkMyQjk2QTUxOEYzNTdGNkQ5NzY4MkE4NzFDM0U0 OEJCOUUxMjMwHhcNMjUxMDE5MDUwMzA1WhcNMjUxMDI2MDUwMzA1WjAYMRYwFAYD VQQDEw02OGY0NzEwYS1jNzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAriWAAHbIjtjFFZ/8BLt6VWmw1rrhrwpBPnpWx6mjyOu6caLfIl7zelAX45WR +yXBg+tY6Pg28B2zmWKyGDYz3nplaXgQBu0/yLEhN4Mn4VudHTMT6IIHoVomqLEh boNLYBR8jeBGuW0HVfHgHMtZPC+2c1w9H+1snesF+Iv+XFLjo6sQx6+fToyUJm+S gYqnGli8ZGNWLYsz8iyI3kKDxz2uCG2AuQcFPizX0ecUaiHEqozQGeYW431bMMQB rSMnt8EhGtZzpHv8x5yeG8AQVvZDlFlL8DBS47sNsVg5/OfZc6fq5YtCwvFGgKZC EsbZdLAz8zGcfs7zSRbntkrGYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB+kW76L RyZcsNBhn4fPvLgCm8AaMB8GA1UdIwQYMBaAFEdsK5alGPNX9tl2gqhxw+SLueEj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTQ0Mi9FMEU3REI1NkM4 MzkxMUVEQUM3MkIxMUNDNEY5QUUwMi9SMndybHFVWTgxZjIyWGFDcUhIRDVJdTU0 U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Iyd3JscVVZODFmMjJYYUNxSEhENUl1NTRTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTQ0Mi9FMEU3REI1NkM4MzkxMUVEQUM3MkIxMUNDNEY5QUUwMi9SMndybHFVWTgx ZjIyWGFDcUhIRDVJdTU0U00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2uyWn5uPgeCLTGgI3yIUEbqgF+0eK03+hM1oc2/mlkL/og5KGythv oFAIqLJu7tdM0jOouJiq996k3+b832FT0tq36AFnQ5lh5jZkYSsqAC71kQn8Ak3M eXcxcOQMVAfPIlLvE1H491SnN8MAwuZIjXvfgPjg6NEH3fMyORQPrgj7/gnvX13r 4F8RWoHce/+gpEs33fdlc1iXJzxwWDDNASjQ9zleElB3xI0t8hHAgk3QeXpWOvyb 46qkYc1s4oTJ/fI4JBlUKJrKJ6Ia9NQBOAR70uRGwJ45XLwz/A2Ukc41Zdvxvpa/ /MtWQx/bvhbXRzo7LuXmQelaNiAJYVhg -----END CERTIFICATE-----Generated at Mon Oct 20 13:41:05 2025 by rpki-client