$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft File: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft (raw, json) Hash identifier: +KDQ+AY6ITPhkybwZmOj0RuKgBCzMRli1tkzG8RpKVM= Subject key identifier: 27:FB:7B:69:90:1C:E1:C0:70:4E:F7:67:9C:31:BC:A8:D2:41:7E:68 Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft Manifest number: 014D Signing time: Sun 19 Oct 2025 07:01:26 +0000 Manifest this update: Sun 19 Oct 2025 07:01:26 +0000 Manifest next update: Sun 26 Oct 2025 07:01:26 +0000 Files and hashes: 1: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl (hash: 59fgXcDcGQGC63PKld0kiLuMR25/qeesAui6VzFw8x0=) 2: 2DCC0688B57211EEBB68526DC4F9AE02.roa (hash: 3pfVChkV7zELWja+oHQv3Km6INJzdWSQS1Y4XK0gQXg=) 3: 2E31B8FCB57211EEBB68526DC4F9AE02.roa (hash: sp0oN6M3b0vKQWiSIdTtVM/z4x+pZK5BNETB2TbgZ2E=) 4: 6F5F30B8B56111EE91C72951C4F9AE02.roa (hash: ipvSSCsuIB7+MwYDiVzzG4/g5ky54F8EF1XYBBpIM6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277, serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: Oct 19 07:01:26 2025 GMT Not After : Oct 26 07:01:26 2025 GMT Subject: CN=68f48cc6-8a31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:0f:8a:75:82:92:60:88:75:9f:b9:21:c6:34: 23:c9:9e:f7:c9:c5:89:b3:24:bb:b5:68:b0:2f:9f: 7d:ef:0c:3d:9d:16:6f:0d:21:04:c8:f8:65:5e:76: 5c:ad:b8:8b:8c:29:f0:87:85:10:ac:63:a5:d6:ac: 7c:bf:77:2d:1a:f4:14:a5:61:dc:93:2e:51:4f:4b: 53:dc:0b:a9:1d:e9:cd:43:35:2b:28:17:5b:e1:e2: 54:24:05:0d:bf:89:f3:16:40:a9:eb:68:25:b6:6b: d0:14:2c:08:dc:c9:15:84:02:d7:ad:06:5d:08:25: 77:e0:b8:42:44:dc:be:b4:c0:a1:d3:53:db:b3:d5: fb:5c:37:5d:1f:d5:f5:04:ca:06:1f:a9:c6:17:03: 41:53:1e:30:40:06:dd:4a:63:24:a5:a8:7a:b8:e1: 98:47:e7:c2:99:78:92:eb:b7:7b:f4:28:a9:ce:25: c3:c7:c9:88:9d:e5:37:29:9f:2b:d4:8f:ab:15:89: 4e:6e:2b:eb:5e:5d:18:9e:db:fb:d8:50:f0:9c:3f: c4:0f:91:e2:9e:d2:3b:27:c2:61:12:5e:d1:87:66: 6e:1b:cd:9b:4e:91:78:ed:0b:bc:a2:0a:73:8e:2e: 2e:11:cc:c6:5a:f0:31:5d:0c:5d:b9:bd:0e:fe:6b: c7:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:FB:7B:69:90:1C:E1:C0:70:4E:F7:67:9C:31:BC:A8:D2:41:7E:68 X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:12:13:78:61:eb:06:55:9b:5d:f9:73:c0:bb:2b:1b:87:57: ce:51:b7:dc:11:83:be:05:2d:cb:a9:c0:29:aa:48:51:d4:50: 7f:b3:9e:0a:a2:0f:b2:72:6d:4b:42:69:5a:34:c2:f1:d9:0c: c7:19:21:55:26:1e:ed:5d:d5:dd:d8:c1:0f:65:32:40:67:92: ed:33:f9:ad:c1:79:d9:e9:84:d5:e5:f9:01:74:1e:58:36:d3: 63:7f:93:d0:b3:51:66:27:30:12:73:c4:3f:7c:f0:32:f7:c8: 0e:9d:ba:4a:2c:fd:66:a7:2c:d4:0b:c6:16:2c:96:3d:05:45: e0:90:55:66:51:4c:17:92:f2:3c:10:35:47:50:19:1e:2d:66: 06:8a:4d:de:a0:a9:df:73:1f:ed:f1:e4:d9:29:46:58:cd:b5: cb:15:44:76:35:24:6d:24:36:42:7a:1c:f7:ac:cf:36:0e:15: f7:98:62:fa:5c:f0:6f:3b:fb:e7:47:06:40:a4:7d:b2:0f:d3: a1:5d:e3:29:f5:81:50:91:bb:03:e7:fa:e7:2b:c4:95:9a:75: 76:f4:75:2b:df:95:0e:b4:a8:4b:ca:1e:98:34:30:a2:bd:81: 0e:e5:e2:2e:8e:10:34:17:6e:bd:32:ac:5f:1b:15:cd:5b:47: fe:31:63:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyNzcxMTAvBgNVBAUTKEQ4M0I5M0UzMUU5Mzk5MzdEOENCMTVGRTM5Q0E1RTZF OEZFQUZBOUIwHhcNMjUxMDE5MDcwMTI2WhcNMjUxMDI2MDcwMTI2WjAYMRYwFAYD VQQDEw02OGY0OGNjNi04YTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4g+KdYKSYIh1n7khxjQjyZ73ycWJsyS7tWiwL5997ww9nRZvDSEEyPhlXnZc rbiLjCnwh4UQrGOl1qx8v3ctGvQUpWHcky5RT0tT3AupHenNQzUrKBdb4eJUJAUN v4nzFkCp62gltmvQFCwI3MkVhALXrQZdCCV34LhCRNy+tMCh01Pbs9X7XDddH9X1 BMoGH6nGFwNBUx4wQAbdSmMkpah6uOGYR+fCmXiS67d79CipziXDx8mIneU3KZ8r 1I+rFYlObivrXl0Yntv72FDwnD/ED5HintI7J8JhEl7Rh2ZuG82bTpF47Qu8ogpz ji4uEczGWvAxXQxdub0O/mvH1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCf7e2mQ HOHAcE73Z5wxvKjSQX5oMB8GA1UdIwQYMBaAFNg7k+Mek5k32MsV/jnKXm6P6vqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzI3Ny80M0E3RTg5NEI1 NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1UZll5eFgtT2NwZWJvX3Et cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzI3Ny80M0E3RTg5NEI1NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1U Zll5eFgtT2NwZWJvX3EtcHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALEhN4YesGVZtd+XPAuysbh1fOUbfcEYO+BS3LqcApqkhR1FB/s54K og+ycm1LQmlaNMLx2QzHGSFVJh7tXdXd2MEPZTJAZ5LtM/mtwXnZ6YTV5fkBdB5Y NtNjf5PQs1FmJzASc8Q/fPAy98gOnbpKLP1mpyzUC8YWLJY9BUXgkFVmUUwXkvI8 EDVHUBkeLWYGik3eoKnfcx/t8eTZKUZYzbXLFUR2NSRtJDZCehz3rM82DhX3mGL6 XPBvO/vnRwZApH2yD9OhXeMp9YFQkbsD5/rnK8SVmnV29HUr35UOtKhLyh6YNDCi vYEO5eIujhA0F269MqxfGxXNW0f+MWNm -----END CERTIFICATE-----Generated at Tue Oct 21 00:44:40 2025 by rpki-client