$ rpki-client -vvf rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft File: x2h2G8gatP5_1EAVSCYcuocge-o.mft (raw, json) Hash identifier: 0zE4de+ZVSjo27Dxywm2Xw/0SXZVaOOK9dkfs52ESTg= Subject key identifier: 80:9D:1A:93:31:46:05:EA:02:71:C4:2A:A7:6A:AD:F8:E5:3B:E9:DC Authority key identifier: C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA Certificate issuer: /CN=A9118022/serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Certificate serial: 0E79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft Manifest number: 0E51 Signing time: Fri 24 Oct 2025 18:16:50 +0000 Manifest this update: Fri 24 Oct 2025 18:16:50 +0000 Manifest next update: Fri 31 Oct 2025 18:16:50 +0000 Files and hashes: 1: x2h2G8gatP5_1EAVSCYcuocge-o.crl (hash: Sn7/Ak0FIXIbE5Tl6JUkQDQpwwvUz1mP86zfilVMQpE=) 2: 127D33EC027011EB98FEC44BC4F9AE02.roa (hash: qtVktuatmgxYDOUKpmx9+4mvFE8ErGGHadU2rZXHHOI=) 3: 1C99C7E021D911EB85DAFE71C4F9AE02.roa (hash: 6vTa2jFZRIl18mXvmJhTh/HGMJaVZWt9h8uikA4SPmc=) 4: 670DF186232111EB9896B783C4F9AE02.roa (hash: QRv08V7HqtcB3bHnZdM9X+W4jlFsB6z2SpL2l3Cbxgo=) 5: 1609CE067A4A11EB99C11F5FC4F9AE02.roa (hash: rV1Z8AbpTv1d+o44R7LlYsk8JevP6flWo0s81DQ5Rok=) 6: 1D93B82C21D911EB85DAFE71C4F9AE02.roa (hash: lbAPfcc0myVwdYbEISgNYKY5g+qS8g/HzTgMPDxOCGE=) 7: 1BBE249C21D911EB85DAFE71C4F9AE02.roa (hash: 1hlPRZQBD73jEyWKbHC8ZRWrArjylE9If913X/Jb57A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 18:16:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3705 (0xe79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118022, serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Validity Not Before: Oct 24 18:16:50 2025 GMT Not After : Oct 31 18:16:50 2025 GMT Subject: CN=68fbc292-aee5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8f:dc:0d:de:5f:3b:2a:17:67:a4:be:90:cf: 04:f3:4d:31:e4:35:c4:80:76:21:46:22:15:86:a2: 3b:b4:7c:17:81:38:f5:4b:07:b3:b9:8e:a5:48:3e: 52:75:45:7b:17:b9:d8:b2:5b:30:34:94:1d:c9:c5: 59:07:80:84:b1:b7:c1:01:ec:d9:92:c9:86:ba:7e: cd:44:f9:8b:da:0f:65:9d:9d:41:2c:16:4b:51:e5: 0e:33:05:1b:3b:c6:1c:d8:33:15:a0:28:8e:89:dd: 8c:38:65:67:c8:2a:a5:5d:a5:12:4c:03:83:00:1f: 3e:62:be:6b:d6:4e:7f:de:82:f3:5d:44:64:99:08: a3:f2:38:a8:f1:37:45:49:c5:f6:f5:36:03:e4:86: 44:d4:d3:41:a0:48:eb:af:93:a9:51:c6:1b:68:0f: 77:b0:30:02:02:64:93:fb:e0:df:94:c7:63:04:7e: 9d:d4:52:85:95:53:1b:a2:d7:57:3b:ec:22:e3:31: 8f:1e:a0:df:df:5d:ea:29:44:46:98:6c:ab:59:61: ad:9c:cb:06:f0:c6:3e:ae:b2:c0:b5:34:8d:0c:b5: d1:e6:ba:0b:79:64:ad:8f:20:09:b6:38:47:57:6a: e0:27:49:68:e0:68:b8:83:18:e5:b4:ef:5b:dd:9c: 6d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:9D:1A:93:31:46:05:EA:02:71:C4:2A:A7:6A:AD:F8:E5:3B:E9:DC X509v3 Authority Key Identifier: keyid:C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:81:9f:ea:04:0b:1d:4c:ab:a0:d5:cd:46:27:a4:2f:de:b5: 65:7b:5a:c8:14:89:f6:eb:2c:cc:28:7f:8a:f6:ee:61:4a:94: 63:2e:39:7a:4b:5f:19:73:7c:6e:e4:e6:00:27:92:51:b6:c3: f9:fe:4f:8f:1f:b3:92:0e:22:d0:83:0a:76:25:5d:46:ab:ec: 41:71:d4:c9:d4:d5:0f:82:77:e6:54:4d:72:ee:14:74:e9:07: ae:ab:02:d1:e4:b7:f5:c2:aa:e9:d7:97:60:59:df:12:46:9f: 07:f9:00:6f:e3:5d:d4:04:c3:34:6a:77:c4:7d:52:4d:9f:ff: 6e:71:6a:07:58:ff:f8:ca:4d:37:6f:42:65:2f:6b:e8:d7:0a: 16:9e:16:ff:c3:26:02:4c:87:1b:fa:8b:ed:f4:52:83:ef:3e: 4f:6e:10:63:47:c1:c4:39:f8:9f:2f:30:a0:34:0f:a6:dc:a0: 12:10:50:77:05:59:a5:8c:cc:49:ec:40:5c:20:07:77:c7:fc: 83:62:0a:5f:8c:7f:31:03:5a:1d:a0:25:e7:78:ff:79:4a:c0: a6:38:b9:76:ee:62:a4:99:02:2b:3a:37:9e:b0:62:23:8d:b1: 6c:29:e4:f4:26:4f:78:6a:0a:43:ec:6a:3b:50:6f:e2:cf:f7: a3:87:35:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMjIxMTAvBgNVBAUTKEM3Njg3NjFCQzgxQUI0RkU3RkQ0NDAxNTQ4MjYxQ0JB ODcyMDdCRUEwHhcNMjUxMDI0MTgxNjUwWhcNMjUxMDMxMTgxNjUwWjAYMRYwFAYD VQQDEw02OGZiYzI5Mi1hZWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4/cDd5fOyoXZ6S+kM8E800x5DXEgHYhRiIVhqI7tHwXgTj1SwezuY6lSD5S dUV7F7nYslswNJQdycVZB4CEsbfBAezZksmGun7NRPmL2g9lnZ1BLBZLUeUOMwUb O8Yc2DMVoCiOid2MOGVnyCqlXaUSTAODAB8+Yr5r1k5/3oLzXURkmQij8jio8TdF ScX29TYD5IZE1NNBoEjrr5OpUcYbaA93sDACAmST++DflMdjBH6d1FKFlVMbotdX O+wi4zGPHqDf313qKURGmGyrWWGtnMsG8MY+rrLAtTSNDLXR5roLeWStjyAJtjhH V2rgJ0lo4Gi4gxjltO9b3Zxt1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFICdGpMx RgXqAnHEKqdqrfjlO+ncMB8GA1UdIwQYMBaAFMdodhvIGrT+f9RAFUgmHLqHIHvq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAyMi9DNjFDMjU2QUFE Q0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQNV8xRUFWU0NZY3VvY2dl LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gyaDJHOGdhdFA1XzFFQVZTQ1ljdW9jZ2Utby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODAyMi9DNjFDMjU2QUFEQ0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQ NV8xRUFWU0NZY3VvY2dlLW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxgZ/qBAsdTKug1c1GJ6Qv3rVle1rIFIn26yzMKH+K9u5hSpRjLjl6 S18Zc3xu5OYAJ5JRtsP5/k+PH7OSDiLQgwp2JV1Gq+xBcdTJ1NUPgnfmVE1y7hR0 6QeuqwLR5Lf1wqrp15dgWd8SRp8H+QBv413UBMM0anfEfVJNn/9ucWoHWP/4yk03 b0JlL2vo1woWnhb/wyYCTIcb+ovt9FKD7z5PbhBjR8HEOfifLzCgNA+m3KASEFB3 BVmljMxJ7EBcIAd3x/yDYgpfjH8xA1odoCXneP95SsCmOLl27mKkmQIrOjeesGIj jbFsKeT0Jk94agpD7Go7UG/iz/ejhzUe -----END CERTIFICATE-----Generated at Sun Oct 26 08:45:25 2025 by rpki-client