$ rpki-client -vvf rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft File: 2gQijT7rRR_A8iM2aXFwV_irNmk.mft (raw, json) Hash identifier: BPcaoyfb3Vnk7CrILEMc5860tQO0P+jdzv7UqmSJCWs= Subject key identifier: 03:D6:F0:E4:50:C7:DB:2F:14:78:79:C5:9F:31:08:62:DD:F1:20:FA Authority key identifier: DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 Certificate issuer: /CN=A914B165/serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Certificate serial: 08D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft Manifest number: 08C8 Signing time: Sun 02 Nov 2025 20:24:29 +0000 Manifest this update: Sun 02 Nov 2025 20:24:28 +0000 Manifest next update: Sun 09 Nov 2025 20:24:28 +0000 Files and hashes: 1: 2gQijT7rRR_A8iM2aXFwV_irNmk.crl (hash: Q+g3D7xdMk4wLluaQvyRuVQSBy9PgsSORBJ6nIzsQ+E=) 2: 26AECD92C2B211EABBD0ED4AC4F9AE02.roa (hash: C/eVnfyL6ySkKhbG0QllU10wv4xhGd4o4YA02lTj0B4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2256 (0x8d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B165, serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Validity Not Before: Nov 2 20:24:28 2025 GMT Not After : Nov 9 20:24:28 2025 GMT Subject: CN=6907bdfd-c714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a5:30:11:1c:a9:85:4b:05:9a:e0:3e:6c:74: c0:43:ab:0b:67:d5:1d:fd:e0:5e:86:18:9b:a1:2f: 30:76:27:c8:51:24:18:65:aa:de:0d:43:89:c6:94: 45:f6:e3:d6:0e:77:e3:8a:e4:68:e0:2d:01:b2:60: 41:f1:e8:29:74:0d:e0:05:68:00:14:5e:c0:10:3d: 42:b0:6d:5c:8f:8a:f3:1d:2c:6d:8a:ad:e3:7e:62: 7f:a6:a5:db:ce:f0:f0:7a:cf:28:6b:3d:95:9b:3a: e5:df:b7:93:4f:0a:8d:5e:90:fd:51:e8:ea:40:e7: 76:c7:eb:a0:82:1f:a7:24:49:94:8c:12:08:4c:96: 69:7f:4d:52:c6:60:38:06:15:9b:35:6e:77:17:a7: 5e:85:ac:37:7d:61:79:5f:f1:97:9e:bc:20:ba:83: ef:2b:08:00:11:df:fb:61:fd:52:6a:9b:e0:92:c2: a1:83:27:07:56:4d:d4:3c:e9:28:82:fb:02:7d:ec: a6:88:99:b6:e0:fa:f7:f2:b2:78:d0:14:56:01:1d: b5:f7:44:00:1a:a9:bf:04:1c:39:f0:d1:21:6e:37: 98:47:51:bb:a0:13:5b:83:c9:d5:d6:3e:27:91:cf: 44:3b:a5:49:b9:01:13:90:5e:40:b1:24:75:89:40: d4:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:D6:F0:E4:50:C7:DB:2F:14:78:79:C5:9F:31:08:62:DD:F1:20:FA X509v3 Authority Key Identifier: keyid:DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:ca:0d:fd:ae:c6:73:ae:42:7e:3d:33:ee:48:f5:58:e3:47: be:4d:08:f2:17:ab:b7:d7:23:1a:e5:b8:ef:50:6c:49:0c:88: 74:11:f0:a6:69:53:01:18:e9:73:2e:e4:e6:94:da:0e:89:ab: 68:30:89:90:07:e6:88:e4:15:c8:03:80:40:a2:55:f6:d2:24: 90:52:a3:f8:84:dd:2d:4b:bb:41:3b:7d:ab:a5:65:5a:47:fa: 97:62:cf:27:1b:5d:4d:58:8e:ba:1f:e0:01:1b:6b:09:1b:8a: e1:82:0b:77:4e:85:d6:cd:b5:66:30:cc:ed:49:ae:26:55:e6: f3:a1:41:7f:c8:17:f9:d0:88:40:f6:5e:93:be:a6:7b:3c:6b: 93:0e:fe:75:8d:ea:70:47:ba:d7:02:65:ea:2d:89:29:f1:d5: 70:e8:3d:24:8f:ed:60:3e:84:9b:b1:f8:cc:76:06:48:76:09: 7c:23:fc:f9:fa:cf:9f:de:ef:4c:9b:6c:77:61:bd:63:ec:0c: 35:8f:dc:ed:bb:85:2e:39:b3:fb:89:0d:70:30:1c:55:2b:22: 90:ac:84:c9:a5:cc:57:df:d7:08:90:fd:f1:67:02:a6:db:14: a7:43:1c:29:05:f6:9b:81:30:e4:42:91:94:bd:75:ce:73:71: 52:57:38:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIxNjUxMTAvBgNVBAUTKERBMDQyMjhEM0VFQjQ1MUZDMEYyMjMzNjY5NzE3MDU3 RjhBQjM2NjkwHhcNMjUxMTAyMjAyNDI4WhcNMjUxMTA5MjAyNDI4WjAYMRYwFAYD VQQDEw02OTA3YmRmZC1jNzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqUwERyphUsFmuA+bHTAQ6sLZ9Ud/eBehhiboS8wdifIUSQYZareDUOJxpRF 9uPWDnfjiuRo4C0BsmBB8egpdA3gBWgAFF7AED1CsG1cj4rzHSxtiq3jfmJ/pqXb zvDwes8oaz2Vmzrl37eTTwqNXpD9UejqQOd2x+uggh+nJEmUjBIITJZpf01SxmA4 BhWbNW53F6dehaw3fWF5X/GXnrwguoPvKwgAEd/7Yf1SapvgksKhgycHVk3UPOko gvsCfeymiJm24Pr38rJ40BRWAR2190QAGqm/BBw58NEhbjeYR1G7oBNbg8nV1j4n kc9EO6VJuQETkF5AsSR1iUDUNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPW8ORQ x9svFHh5xZ8xCGLd8SD6MB8GA1UdIwQYMBaAFNoEIo0+60UfwPIjNmlxcFf4qzZp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjE2NS82QTNFQjhCNkMy QjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJSX0E4aU0yYVhGd1ZfaXJO bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnUWlqVDdyUlJfQThpTTJhWEZ3Vl9pck5tay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjE2NS82QTNFQjhCNkMyQjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJS X0E4aU0yYVhGd1ZfaXJObWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAyg39rsZzrkJ+PTPuSPVY40e+TQjyF6u31yMa5bjvUGxJDIh0EfCm aVMBGOlzLuTmlNoOiatoMImQB+aI5BXIA4BAolX20iSQUqP4hN0tS7tBO32rpWVa R/qXYs8nG11NWI66H+ABG2sJG4rhggt3ToXWzbVmMMztSa4mVebzoUF/yBf50IhA 9l6TvqZ7PGuTDv51jepwR7rXAmXqLYkp8dVw6D0kj+1gPoSbsfjMdgZIdgl8I/z5 +s+f3u9Mm2x3Yb1j7Aw1j9ztu4UuObP7iQ1wMBxVKyKQrITJpcxX39cIkP3xZwKm 2xSnQxwpBfabgTDkQpGUvXXOc3FSVziU -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:46 2025 by rpki-client