$ rpki-client -vvf rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft File: X2mHOU7ukmatexkjRBv29RNP-VA.mft (raw, json) Hash identifier: 8QDrjK/fer5uxY4oGxM7NlCEiYSOp770Gr13KF4C3wI= Subject key identifier: C4:C5:8D:D5:D5:D7:79:45:0B:C1:94:A5:C9:72:BA:94:3D:9E:CB:CF Authority key identifier: 5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 Certificate issuer: /CN=A9147241/serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Certificate serial: 083C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft Manifest number: 0834 Signing time: Sun 02 Nov 2025 20:45:52 +0000 Manifest this update: Sun 02 Nov 2025 20:45:51 +0000 Manifest next update: Sun 09 Nov 2025 20:45:51 +0000 Files and hashes: 1: X2mHOU7ukmatexkjRBv29RNP-VA.crl (hash: X+Ttx7n6IcJA1Mra3EpwYON/Oa//rO8qudhrnxwcOpg=) 2: F69648C2ECF211EABBFDDD24C4F9AE02.roa (hash: iinohx2uez2EL2svxSw8QxTPKTPPk9i54jHLL6kBKQg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:45:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2108 (0x83c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147241, serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Validity Not Before: Nov 2 20:45:51 2025 GMT Not After : Nov 9 20:45:51 2025 GMT Subject: CN=6907c2ff-36e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:55:b1:e9:cb:9d:5c:e5:7e:79:59:6b:40:8d: 12:ec:43:2b:54:c7:bc:c3:1c:a9:05:a5:c9:0a:bc: e2:f6:7f:31:45:fe:43:af:f6:b3:1a:1f:fb:c3:42: d4:aa:60:91:a1:71:e1:38:32:25:58:a3:29:c4:bb: 69:9f:9b:27:43:1d:f1:3f:6f:61:38:8c:1a:02:e4: 09:3a:8b:ef:9b:82:da:66:58:03:f5:ec:f9:75:51: 19:59:7c:ea:9d:18:10:6e:2d:a6:a5:e1:06:f7:4e: 0d:03:85:08:c9:12:fc:d2:72:11:11:2f:5f:a5:6f: d1:54:aa:8a:92:2e:92:aa:27:d3:12:f9:b5:3f:01: 6f:03:32:4f:83:ed:86:53:66:12:6c:f8:01:b0:2b: 4e:71:25:ea:e0:27:8c:d8:41:c7:35:6f:51:90:22: 14:eb:d1:03:32:8b:28:41:38:b9:26:91:03:ec:d7: 41:80:8c:d1:02:e0:3b:9b:9f:99:ea:d1:4b:60:c5: 2d:cf:91:c3:4f:77:2d:c3:8f:85:76:6b:d3:7a:c5: 23:b7:ad:19:c6:9b:9f:63:57:5a:9e:f2:57:8a:c4: 97:72:0e:fb:78:a2:12:c0:9a:3c:59:41:b6:de:c9: 96:13:17:52:a7:97:58:de:88:7f:9a:54:a2:61:64: ab:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:C5:8D:D5:D5:D7:79:45:0B:C1:94:A5:C9:72:BA:94:3D:9E:CB:CF X509v3 Authority Key Identifier: keyid:5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:1c:b3:8c:04:3e:51:86:d9:72:39:8f:bb:08:ef:15:1f:47: f6:5f:76:e1:97:8d:5c:e8:2c:3a:43:29:e1:fb:2f:be:99:4b: f2:f9:a3:f8:f1:f4:ff:d1:2a:87:f1:eb:cb:f2:f0:75:29:8e: 2c:cc:0c:e4:19:df:7d:b6:c6:41:eb:b4:9c:9f:a8:a5:7b:37: 06:2c:aa:c6:21:18:12:95:53:a6:49:49:8b:bc:3e:e1:fc:97: 73:4f:bb:9a:69:a6:33:cc:4d:66:24:a1:38:a8:0c:b5:f8:21: 73:33:3d:19:fd:70:dd:1a:9e:ab:f1:ff:12:43:bb:53:12:8a: 4d:90:00:30:72:72:66:4b:02:63:95:90:b5:cf:a5:5a:68:86: 1c:98:19:0b:95:80:c3:fe:cf:64:84:3f:97:be:f4:99:93:4d: de:f0:71:db:4f:31:ed:99:fb:9c:50:94:a0:d7:37:de:08:00: e0:21:bc:85:55:4a:43:3b:ff:a5:19:6c:ec:ed:0f:85:f8:df: da:d6:0d:96:ae:24:ef:15:40:05:f7:b0:0f:17:3b:ae:41:3d: 91:6a:51:26:d8:94:9b:b3:e9:f9:ff:34:3d:90:73:a3:a9:fb: 27:02:6c:81:cd:2e:30:68:d9:73:14:2d:83:43:c3:df:94:80: 31:7e:f2:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcyNDExMTAvBgNVBAUTKDVGNjk4NzM5NEVFRTkyNjZBRDdCMTkyMzQ0MUJGNkY1 MTM0RkY5NTAwHhcNMjUxMTAyMjA0NTUxWhcNMjUxMTA5MjA0NTUxWjAYMRYwFAYD VQQDEw02OTA3YzJmZi0zNmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVWx6cudXOV+eVlrQI0S7EMrVMe8wxypBaXJCrzi9n8xRf5Dr/azGh/7w0LU qmCRoXHhODIlWKMpxLtpn5snQx3xP29hOIwaAuQJOovvm4LaZlgD9ez5dVEZWXzq nRgQbi2mpeEG904NA4UIyRL80nIRES9fpW/RVKqKki6SqifTEvm1PwFvAzJPg+2G U2YSbPgBsCtOcSXq4CeM2EHHNW9RkCIU69EDMosoQTi5JpED7NdBgIzRAuA7m5+Z 6tFLYMUtz5HDT3ctw4+FdmvTesUjt60ZxpufY1danvJXisSXcg77eKISwJo8WUG2 3smWExdSp5dY3oh/mlSiYWSrMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMTFjdXV 13lFC8GUpclyupQ9nsvPMB8GA1UdIwQYMBaAFF9phzlO7pJmrXsZI0Qb9vUTT/lQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzI0MS82MkJCNUM3NEVD RjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWttYXRleGtqUkJ2MjlSTlAt VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybUhPVTd1a21hdGV4a2pSQnYyOVJOUC1WQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzI0MS82MkJCNUM3NEVDRjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWtt YXRleGtqUkJ2MjlSTlAtVkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeHLOMBD5RhtlyOY+7CO8VH0f2X3bhl41c6Cw6Qynh+y++mUvy+aP4 8fT/0SqH8evL8vB1KY4szAzkGd99tsZB67Scn6ilezcGLKrGIRgSlVOmSUmLvD7h /JdzT7uaaaYzzE1mJKE4qAy1+CFzMz0Z/XDdGp6r8f8SQ7tTEopNkAAwcnJmSwJj lZC1z6VaaIYcmBkLlYDD/s9khD+XvvSZk03e8HHbTzHtmfucUJSg1zfeCADgIbyF VUpDO/+lGWzs7Q+F+N/a1g2WriTvFUAF97APFzuuQT2RalEm2JSbs+n5/zQ9kHOj qfsnAmyBzS4waNlzFC2DQ8PflIAxfvJJ -----END CERTIFICATE-----Generated at Tue Nov 4 01:11:51 2025 by rpki-client