$ rpki-client -vvf rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft File: 2szbgPh19VKJMaiCXRqvoYCpsXk.mft (raw, json) Hash identifier: P6ivrMdiujY37uXY0ZZ25TwtWgbOSm1WlKTG3zzRDv0= Subject key identifier: A2:57:01:5E:DA:70:29:C1:94:BF:2F:25:68:7C:6D:B1:78:3C:11:90 Authority key identifier: DA:CC:DB:80:F8:75:F5:52:89:31:A8:82:5D:1A:AF:A1:80:A9:B1:79 Certificate issuer: /CN=A918D701/serialNumber=DACCDB80F875F5528931A8825D1AAFA180A9B179 Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft Manifest number: 01E5 Signing time: Sun 19 Oct 2025 05:03:30 +0000 Manifest this update: Sun 19 Oct 2025 05:03:30 +0000 Manifest next update: Sun 26 Oct 2025 05:03:30 +0000 Files and hashes: 1: 2szbgPh19VKJMaiCXRqvoYCpsXk.crl (hash: +eRnJD8fgEbkM9u6PcDmpZBo2649NrJ8a+F/ViVz6Mw=) 2: 98D5AE30C88C11ED907C1C0EC4F9AE02.roa (hash: /+RFC3ph8TBdVcE4Ho9sjOY2q50Lm+IUGN0ewBHECtI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.crl rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D701, serialNumber=DACCDB80F875F5528931A8825D1AAFA180A9B179 Validity Not Before: Oct 19 05:03:30 2025 GMT Not After : Oct 26 05:03:30 2025 GMT Subject: CN=68f47122-460a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1d:74:b0:51:ee:4a:11:3f:0e:3a:5c:01:91: c0:fc:9e:96:27:f6:08:2e:2a:6f:78:a0:08:01:c5: 98:9b:46:d2:64:0e:ac:00:09:c2:80:47:42:4a:85: bf:11:52:df:f5:b8:d4:c4:f3:43:74:bb:77:67:32: 08:9e:22:ce:be:bb:77:0e:c1:17:91:81:4c:f5:52: d3:7c:51:a0:3c:ea:dd:f7:8f:26:01:f3:40:75:13: 43:5e:9d:28:6b:92:b5:60:ba:8a:a1:36:06:1d:e9: fd:1e:27:af:37:e4:95:9c:b2:e6:f7:69:e1:84:3f: bb:b1:ba:d1:25:e4:00:0c:d2:a7:3f:89:28:17:5a: 50:08:63:ca:83:c5:7e:b4:fc:65:8b:71:84:10:dc: 5a:1a:2b:7a:40:9d:8b:0c:14:5a:6f:8c:5c:a0:db: 34:71:5b:3a:f0:6c:65:b7:56:b8:cc:30:06:b1:bc: 54:43:7a:0b:92:1c:3a:f2:e5:c1:29:54:0e:66:c1: da:47:47:b2:ad:2e:ee:04:7b:2f:77:b0:7a:d8:66: 88:32:08:7f:3e:8d:dd:7b:5d:d8:16:71:a0:46:f8: 93:1d:75:5a:3d:07:05:37:79:de:c3:80:aa:a3:ec: 93:43:08:ef:bb:65:e2:4b:1d:1e:13:fe:f3:4f:6f: df:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:57:01:5E:DA:70:29:C1:94:BF:2F:25:68:7C:6D:B1:78:3C:11:90 X509v3 Authority Key Identifier: keyid:DA:CC:DB:80:F8:75:F5:52:89:31:A8:82:5D:1A:AF:A1:80:A9:B1:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2szbgPh19VKJMaiCXRqvoYCpsXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D701/D1878EF6C88711EDBBE6A32BC4F9AE02/2szbgPh19VKJMaiCXRqvoYCpsXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:01:c0:a6:51:61:7f:00:d2:a1:f8:a2:7d:f8:94:b8:90:89: cc:d6:6e:f4:ed:aa:64:f0:ea:fe:51:ed:0c:02:79:b0:ab:a0: f5:fa:4b:b5:6f:0b:12:71:1a:a8:06:01:10:6b:30:89:b2:4a: 9b:25:c6:e9:03:c7:a8:5e:3f:2d:d9:0a:21:69:f1:8d:08:29: 27:db:f4:7e:42:c5:b6:13:15:c4:85:61:6a:14:14:fc:99:b3: 97:ef:b4:95:b5:86:7e:23:77:ef:1a:07:19:c6:0a:3f:30:3f: 30:64:6a:8e:16:ba:6f:66:b8:86:32:9d:68:97:0f:fe:77:e1: 92:d0:d3:44:b0:7f:2c:e8:78:8d:23:7c:bf:66:3c:d1:b1:4f: 3c:ff:72:d1:2c:4d:e2:f3:2b:20:6f:72:df:34:79:b8:b9:01: 5a:82:4b:f3:0e:12:be:17:c9:23:d2:71:d5:e5:8f:2f:cb:5c: 64:bc:d2:38:b7:f6:6c:df:1f:ec:1a:c1:7c:2f:1d:2b:58:8c: ca:45:7e:98:2b:2c:db:bf:10:1d:b5:df:42:5c:d0:14:7e:d8: fc:87:e4:14:e7:52:02:bc:b3:88:7a:94:9c:19:f7:32:a9:ca: a2:4e:86:7e:92:fa:6b:22:15:2e:ee:4e:25:2f:0f:36:35:dd: b2:95:25:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3MDExMTAvBgNVBAUTKERBQ0NEQjgwRjg3NUY1NTI4OTMxQTg4MjVEMUFBRkEx ODBBOUIxNzkwHhcNMjUxMDE5MDUwMzMwWhcNMjUxMDI2MDUwMzMwWjAYMRYwFAYD VQQDEw02OGY0NzEyMi00NjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsR10sFHuShE/DjpcAZHA/J6WJ/YILipveKAIAcWYm0bSZA6sAAnCgEdCSoW/ EVLf9bjUxPNDdLt3ZzIIniLOvrt3DsEXkYFM9VLTfFGgPOrd948mAfNAdRNDXp0o a5K1YLqKoTYGHen9HievN+SVnLLm92nhhD+7sbrRJeQADNKnP4koF1pQCGPKg8V+ tPxli3GEENxaGit6QJ2LDBRab4xcoNs0cVs68Gxlt1a4zDAGsbxUQ3oLkhw68uXB KVQOZsHaR0eyrS7uBHsvd7B62GaIMgh/Po3de13YFnGgRviTHXVaPQcFN3new4Cq o+yTQwjvu2XiSx0eE/7zT2/f9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJXAV7a cCnBlL8vJWh8bbF4PBGQMB8GA1UdIwQYMBaAFNrM24D4dfVSiTGogl0ar6GAqbF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDcwMS9EMTg3OEVGNkM4 ODcxMUVEQkJFNkEzMkJDNEY5QUUwMi8yc3piZ1BoMTlWS0pNYWlDWFJxdm9ZQ3Bz WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJzemJnUGgxOVZLSk1haUNYUnF2b1lDcHNYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDcwMS9EMTg3OEVGNkM4ODcxMUVEQkJFNkEzMkJDNEY5QUUwMi8yc3piZ1BoMTlW S0pNYWlDWFJxdm9ZQ3BzWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByAcCmUWF/ANKh+KJ9+JS4kInM1m707apk8Or+Ue0MAnmwq6D1+ku1 bwsScRqoBgEQazCJskqbJcbpA8eoXj8t2QohafGNCCkn2/R+QsW2ExXEhWFqFBT8 mbOX77SVtYZ+I3fvGgcZxgo/MD8wZGqOFrpvZriGMp1olw/+d+GS0NNEsH8s6HiN I3y/ZjzRsU88/3LRLE3i8ysgb3LfNHm4uQFagkvzDhK+F8kj0nHV5Y8vy1xkvNI4 t/Zs3x/sGsF8Lx0rWIzKRX6YKyzbvxAdtd9CXNAUftj8h+QU51ICvLOIepScGfcy qcqiToZ+kvprIhUu7k4lLw82Nd2ylSUm -----END CERTIFICATE-----Generated at Mon Oct 20 04:18:08 2025 by rpki-client