$ rpki-client -vvf rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.mft File: 2gElQupZNV_ohHjSHXPjbOvN88s.mft (raw, json) Hash identifier: jA/zDhQk2q5kwlCfYzXc8EEd8+SrBbCUKvynYHKsyJo= Subject key identifier: 9B:5C:BB:90:84:D9:89:CC:5C:A0:3C:3F:06:0B:D2:C6:E5:DE:C1:E6 Authority key identifier: DA:01:25:42:EA:59:35:5F:E8:84:78:D2:1D:73:E3:6C:EB:CD:F3:CB Certificate issuer: /CN=A918B241/serialNumber=DA012542EA59355FE88478D21D73E36CEBCDF3CB Certificate serial: 0314 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.mft Manifest number: 030E Signing time: Sun 19 Oct 2025 03:15:10 +0000 Manifest this update: Sun 19 Oct 2025 03:15:09 +0000 Manifest next update: Sun 26 Oct 2025 03:15:09 +0000 Files and hashes: 1: 2gElQupZNV_ohHjSHXPjbOvN88s.crl (hash: BJSPklS6g9Pu5gqL9bFkxxegUAgte6zUbEmM5DZW868=) 2: A33B03A2F07911ECBDB1BC4BC4F9AE02.roa (hash: V0PWHgjdigOTAk+IhNcZGbzQ+qgLVdszRbUdJLxDupo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.crl rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:15:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 788 (0x314) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B241, serialNumber=DA012542EA59355FE88478D21D73E36CEBCDF3CB Validity Not Before: Oct 19 03:15:09 2025 GMT Not After : Oct 26 03:15:09 2025 GMT Subject: CN=68f457bd-b3f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4d:64:4a:78:1f:8f:f9:6c:6f:20:72:31:ca: 90:6f:54:c8:60:d8:31:04:b0:0f:97:3b:c9:49:93: 41:32:fa:f7:01:88:30:63:3b:08:f0:a4:11:6e:82: 20:a0:c7:79:26:02:a7:e6:ff:f5:a4:16:ba:e8:e4: 94:10:9f:40:53:04:82:4b:58:94:6a:ee:b4:0d:ee: f9:30:0b:2d:87:1e:09:45:ac:de:69:1f:86:09:f9: 43:2b:8a:63:a8:88:16:e5:29:bc:a0:72:e4:1e:ec: f3:a5:ff:0f:af:13:a4:ef:2a:b8:11:02:43:13:3e: 4a:02:65:74:81:22:b3:fc:f5:53:cc:ff:eb:9b:a2: 3b:ae:f3:c8:42:3c:0d:5d:e0:96:ea:83:33:f1:cb: 66:19:8c:69:28:7a:5a:54:25:7f:61:3c:92:31:cf: 70:b7:39:c5:a8:7c:ee:7b:09:16:d9:dd:f7:0c:6d: 45:e9:36:09:48:ce:55:ad:a0:26:b3:7c:f5:db:e8: d7:5a:1a:91:56:ea:b7:ec:1d:0d:ba:51:29:fb:c9: e2:63:a5:df:10:7b:46:f5:c5:d5:c7:c4:0f:8c:92: 8c:48:a6:33:6a:9e:97:c1:f8:f5:ff:2d:7b:9c:d0: ca:9c:53:1f:67:d8:7d:aa:58:cf:cb:bd:9f:3e:9f: ca:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:5C:BB:90:84:D9:89:CC:5C:A0:3C:3F:06:0B:D2:C6:E5:DE:C1:E6 X509v3 Authority Key Identifier: keyid:DA:01:25:42:EA:59:35:5F:E8:84:78:D2:1D:73:E3:6C:EB:CD:F3:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:b6:83:9c:9a:20:0f:de:57:10:81:3b:46:04:c7:cc:ed:5e: e8:2b:cc:85:8f:06:30:16:71:cf:64:c3:b7:b9:51:3a:ec:d0: 7b:98:69:e9:f2:4b:b0:35:25:a5:f1:cd:f5:33:b3:2c:1c:16: 31:b8:bc:17:f9:2c:ff:c8:19:48:fc:ce:d7:e0:1b:b1:65:a2: c4:3b:61:6f:2a:1f:28:c5:cc:83:84:41:3d:70:6c:69:c1:5d: 31:c0:d7:44:e4:a8:fb:35:85:13:51:a0:26:b4:20:52:4c:ae: bb:fe:88:67:6f:00:27:ad:07:2b:08:78:f3:58:20:bd:6c:b0: 79:88:3c:d1:d4:c4:db:32:6f:61:3a:2d:3d:eb:7a:89:e0:37: c1:1c:b4:46:2c:fa:99:1c:3b:bb:85:41:43:e6:f3:01:f3:ae: 6f:69:0e:2c:a6:7e:9b:91:e8:73:0d:7b:58:fe:54:3a:30:8b: 26:72:5f:33:90:0a:74:a4:d7:32:70:0e:e9:1b:12:c9:26:76: 3c:1b:4b:ab:84:eb:41:ad:7e:dd:bb:49:f1:0b:5a:87:52:e5: 2f:48:58:81:56:60:2d:0b:64:0b:83:57:e2:df:5c:7e:44:2d: 22:97:44:84:00:c4:87:8a:79:7e:e8:a6:73:5b:36:25:68:f2: 3d:48:a7:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIyNDExMTAvBgNVBAUTKERBMDEyNTQyRUE1OTM1NUZFODg0NzhEMjFENzNFMzZD RUJDREYzQ0IwHhcNMjUxMDE5MDMxNTA5WhcNMjUxMDI2MDMxNTA5WjAYMRYwFAYD VQQDEw02OGY0NTdiZC1iM2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq01kSngfj/lsbyByMcqQb1TIYNgxBLAPlzvJSZNBMvr3AYgwYzsI8KQRboIg oMd5JgKn5v/1pBa66OSUEJ9AUwSCS1iUau60De75MAsthx4JRazeaR+GCflDK4pj qIgW5Sm8oHLkHuzzpf8PrxOk7yq4EQJDEz5KAmV0gSKz/PVTzP/rm6I7rvPIQjwN XeCW6oMz8ctmGYxpKHpaVCV/YTySMc9wtznFqHzuewkW2d33DG1F6TYJSM5VraAm s3z12+jXWhqRVuq37B0NulEp+8niY6XfEHtG9cXVx8QPjJKMSKYzap6Xwfj1/y17 nNDKnFMfZ9h9qljPy72fPp/KjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJtcu5CE 2YnMXKA8PwYL0sbl3sHmMB8GA1UdIwQYMBaAFNoBJULqWTVf6IR40h1z42zrzfPL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjI0MS9CNjQ5Q0E5NkYw NzQxMUVDOUE1MUQ1NDhDNEY5QUUwMi8yZ0VsUXVwWk5WX29oSGpTSFhQamJPdk44 OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRWxRdXBaTlZfb2hIalNIWFBqYk92Tjg4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjI0MS9CNjQ5Q0E5NkYwNzQxMUVDOUE1MUQ1NDhDNEY5QUUwMi8yZ0VsUXVwWk5W X29oSGpTSFhQamJPdk44OHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAotoOcmiAP3lcQgTtGBMfM7V7oK8yFjwYwFnHPZMO3uVE67NB7mGnp 8kuwNSWl8c31M7MsHBYxuLwX+Sz/yBlI/M7X4BuxZaLEO2FvKh8oxcyDhEE9cGxp wV0xwNdE5Kj7NYUTUaAmtCBSTK67/ohnbwAnrQcrCHjzWCC9bLB5iDzR1MTbMm9h Oi0963qJ4DfBHLRGLPqZHDu7hUFD5vMB865vaQ4spn6bkehzDXtY/lQ6MIsmcl8z kAp0pNcycA7pGxLJJnY8G0urhOtBrX7du0nxC1qHUuUvSFiBVmAtC2QLg1fi31x+ RC0il0SEAMSHinl+6KZzWzYlaPI9SKeP -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:32 2025 by rpki-client