$ rpki-client -vvf rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft File: PS2TrIsQhlgX2adMyBoDDX010HQ.mft (raw, json) Hash identifier: iq7X2z46DkBsK792028SSu1blby6SMxeKqVKnwpFyZw= Subject key identifier: C8:CD:BB:73:21:53:F4:56:58:5E:E7:CF:AA:89:C0:25:C4:96:F2:98 Authority key identifier: 3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 Certificate issuer: /CN=A9196D9E/serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Certificate serial: 016F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft Manifest number: 016D Signing time: Sun 19 Oct 2025 06:32:18 +0000 Manifest this update: Sun 19 Oct 2025 06:32:17 +0000 Manifest next update: Sun 26 Oct 2025 06:32:17 +0000 Files and hashes: 1: PS2TrIsQhlgX2adMyBoDDX010HQ.crl (hash: LhpViGrRYVf6bBNpnLrKFyMwLRkBemJvJRTur4PBXw0=) 2: C8BDA37CF68A11EFB7F91E24C4F9AE02.roa (hash: mArtjyT247pE1lA//+boJTcqB+yh5REahIcbkP9BBs0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:32:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196D9E, serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Validity Not Before: Oct 19 06:32:17 2025 GMT Not After : Oct 26 06:32:17 2025 GMT Subject: CN=68f485f1-6295 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:7e:3a:d1:86:49:71:4c:18:d1:0f:55:6a:9e: 4a:72:07:e8:e4:b3:57:74:ca:12:89:e3:22:69:7c: 8b:50:d2:05:79:c3:6e:9f:3c:1e:0a:16:af:ab:9e: 6e:f1:a3:38:a1:82:4b:8d:e6:13:8d:5b:0b:d8:d8: bd:28:68:04:78:7a:6b:03:56:72:e9:ce:29:ff:b1: f1:3f:20:6c:05:13:14:7d:d2:83:20:6f:91:85:d0: 0d:f4:62:1d:49:2e:78:a4:5e:07:9a:30:23:a0:d2: e6:5d:eb:2e:fd:fa:6f:47:ce:20:de:be:d9:19:35: a5:74:5e:5a:3e:7e:c5:b3:70:64:7e:9c:12:25:32: ad:76:ff:c0:f6:68:9d:b1:a0:63:d2:7f:57:84:5b: d0:b8:07:07:86:16:4a:56:9a:34:9e:00:e2:9f:6b: 39:ad:ba:23:20:c9:a7:91:58:3c:71:7b:91:3f:cc: 6c:30:e2:19:d2:bb:95:34:00:17:33:7f:d0:b2:93: d4:72:01:50:c8:e8:19:ba:51:51:c4:eb:40:e2:3c: 71:1f:61:80:11:71:2e:f2:d7:00:4e:66:e2:93:b1: 8a:05:4d:5d:b9:e6:0e:b6:61:d5:42:a9:f8:a3:0a: c7:ed:9c:85:63:66:fe:1a:e7:72:f9:7b:73:be:25: be:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:CD:BB:73:21:53:F4:56:58:5E:E7:CF:AA:89:C0:25:C4:96:F2:98 X509v3 Authority Key Identifier: keyid:3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:f8:d2:90:f9:3d:f7:20:bc:5d:d4:88:05:7e:99:9e:56:78: 13:43:ea:62:70:3e:e4:b6:55:e3:e6:94:be:07:96:e7:ac:69: 8e:08:21:6b:4c:f2:08:29:df:b6:d2:57:0a:eb:39:1e:3d:83: 46:83:ea:5f:72:ee:0f:9c:53:a1:80:70:7a:18:43:51:3e:5c: c4:69:f5:da:c2:db:d2:6c:cc:97:3b:6e:ba:e9:26:5d:de:69: b9:88:ca:c3:45:dc:e1:69:a1:1f:1b:04:c0:48:b5:f4:57:5c: 45:9f:d4:d4:4a:51:a5:59:fe:70:9c:b0:2e:03:05:3c:78:2d: 45:dc:ce:e6:f2:c0:bd:5b:a7:30:4e:aa:c0:8d:ae:2f:64:af: 8c:9e:72:da:b1:7a:c5:71:57:ff:2f:3d:a5:e0:94:d4:09:52: 34:6e:30:c4:9a:c7:5c:d0:dc:ee:52:b2:b5:2e:0e:59:1a:04: 21:4c:10:55:83:f4:b6:02:21:e0:4f:d9:b0:2b:95:9b:0b:b8: ed:0c:9e:35:53:5e:8f:98:47:24:aa:1e:56:97:a8:6f:ab:1a: 58:e9:30:5b:6b:57:3b:a9:15:69:cb:69:1c:a5:96:72:24:6e: b5:9b:70:fc:cb:f0:5b:50:6a:8a:a0:2b:1a:0d:17:9a:b8:60: 76:bf:77:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZEOUUxMTAvBgNVBAUTKDNEMkQ5M0FDOEIxMDg2NTgxN0Q5QTc0Q0M4MUEwMzBE N0QzNUQwNzQwHhcNMjUxMDE5MDYzMjE3WhcNMjUxMDI2MDYzMjE3WjAYMRYwFAYD VQQDEw02OGY0ODVmMS02Mjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA73460YZJcUwY0Q9Vap5Kcgfo5LNXdMoSieMiaXyLUNIFecNunzweChavq55u 8aM4oYJLjeYTjVsL2Ni9KGgEeHprA1Zy6c4p/7HxPyBsBRMUfdKDIG+RhdAN9GId SS54pF4HmjAjoNLmXesu/fpvR84g3r7ZGTWldF5aPn7Fs3BkfpwSJTKtdv/A9mid saBj0n9XhFvQuAcHhhZKVpo0ngDin2s5rbojIMmnkVg8cXuRP8xsMOIZ0ruVNAAX M3/QspPUcgFQyOgZulFRxOtA4jxxH2GAEXEu8tcATmbik7GKBU1dueYOtmHVQqn4 owrH7ZyFY2b+Gudy+XtzviW+BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMjNu3Mh U/RWWF7nz6qJwCXElvKYMB8GA1UdIwQYMBaAFD0tk6yLEIZYF9mnTMgaAw19NdB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkQ5RS83N0JCOTg0QzdE NjExMUVFQjQ2M0M4NUFDNEY5QUUwMi9QUzJUcklzUWhsZ1gyYWRNeUJvRERYMDEw SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTMlRySXNRaGxnWDJhZE15Qm9ERFgwMTBIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkQ5RS83N0JCOTg0QzdENjExMUVFQjQ2M0M4NUFDNEY5QUUwMi9QUzJUcklzUWhs Z1gyYWRNeUJvRERYMDEwSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBb+NKQ+T33ILxd1IgFfpmeVngTQ+picD7ktlXj5pS+B5bnrGmOCCFr TPIIKd+20lcK6zkePYNGg+pfcu4PnFOhgHB6GENRPlzEafXawtvSbMyXO2666SZd 3mm5iMrDRdzhaaEfGwTASLX0V1xFn9TUSlGlWf5wnLAuAwU8eC1F3M7m8sC9W6cw TqrAja4vZK+MnnLasXrFcVf/Lz2l4JTUCVI0bjDEmsdc0NzuUrK1Lg5ZGgQhTBBV g/S2AiHgT9mwK5WbC7jtDJ41U16PmEckqh5Wl6hvqxpY6TBba1c7qRVpy2kcpZZy JG61m3D8y/BbUGqKoCsaDReauGB2v3dC -----END CERTIFICATE-----Generated at Mon Oct 20 10:47:35 2025 by rpki-client