$ rpki-client -vvf rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft File: 2HXmPHNQjdifas3MBgFEoIwIZtw.mft (raw, json) Hash identifier: ibigfSjj875Uns7Usp1D0CZaq1CSum4O8zOxA/TRuyk= Subject key identifier: ED:AF:B5:B3:5F:FD:08:04:45:D5:79:2E:F2:A8:55:AF:5D:17:29:D3 Authority key identifier: D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC Certificate issuer: /CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Certificate serial: 03F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft Manifest number: 03F4 Signing time: Wed 17 Sep 2025 00:55:26 +0000 Manifest this update: Wed 17 Sep 2025 00:55:25 +0000 Manifest next update: Wed 24 Sep 2025 00:55:25 +0000 Files and hashes: 1: 2HXmPHNQjdifas3MBgFEoIwIZtw.crl (hash: wx9n4yH4yW4w7WdFL1h010zd7rW65/K2prHGNGHJ0mc=) 2: 6199B5668DE011ECB9F9C06EC4F9AE02.roa (hash: 2v76irvv8YBootZ9ixmNS7BdVolsdY5VCXkGVLqaKlA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 00:55:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1016 (0x3f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E950, serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Validity Not Before: Sep 17 00:55:25 2025 GMT Not After : Sep 24 00:55:25 2025 GMT Subject: CN=68ca06fe-d1a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:dd:0f:e7:32:e1:be:4b:d2:4a:53:cb:63:89: 02:35:8d:9e:c7:01:d9:81:c1:27:e0:9f:d7:5b:5d: a9:cf:5b:e6:1c:b1:68:b5:ca:8b:eb:98:e9:50:5b: 13:3f:1f:09:73:09:9f:e1:6c:e1:08:05:44:a3:22: 29:29:13:9a:ae:db:d0:68:f5:bf:a6:8d:0f:0a:84: 96:52:f0:9b:61:7f:1c:6d:7e:1f:07:63:0e:85:fc: 99:17:ed:af:eb:f7:31:67:5a:fe:2b:8e:aa:08:18: 61:a7:50:19:3d:72:fa:9c:1c:b7:7f:d9:e8:2a:74: 06:c1:72:5b:e6:b8:dc:24:a6:03:20:6d:bb:15:22: 24:2d:d6:44:59:8b:b7:11:d1:2e:0a:73:6c:65:92: 91:99:d1:b9:b0:78:fa:68:e5:38:7f:2c:c4:ce:7e: 98:53:40:f6:f2:1e:ee:ad:2e:79:9e:b3:b6:f7:7a: 28:c7:39:75:92:da:68:fd:1a:6b:1a:a7:01:d0:6b: 2c:ad:8f:15:ff:3b:75:70:52:3b:c9:fd:6a:81:a4: 53:f9:a6:86:01:fb:66:16:d4:51:32:79:74:bf:0a: 2e:f9:44:54:26:dc:e0:d3:d5:99:e1:6c:f6:f9:71: 75:91:7e:ae:b6:07:a2:a1:96:99:7a:69:6e:64:3c: 74:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:AF:B5:B3:5F:FD:08:04:45:D5:79:2E:F2:A8:55:AF:5D:17:29:D3 X509v3 Authority Key Identifier: keyid:D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:ce:25:47:d8:b4:92:e1:3c:ad:cb:3a:f5:e9:63:49:a6:90: e4:6e:01:1a:49:9e:2e:66:24:ec:ca:c6:c1:1e:c1:06:99:ca: 15:75:60:be:c4:07:29:15:fd:5d:75:0d:79:1b:5e:a4:42:55: 27:56:52:9b:d1:d3:06:2f:b2:d1:1a:25:29:ad:28:5c:ba:26: db:d5:62:d4:90:44:6f:32:8a:5a:44:aa:31:a5:80:46:01:af: 6a:76:38:74:2e:b3:86:0b:56:47:c5:7a:3b:8e:6e:cf:ba:36: 63:61:9b:3f:b2:82:c9:17:ba:36:56:bd:a5:2c:0d:09:18:d6: fc:e8:d9:58:07:db:a6:44:c3:95:7c:1d:ec:c6:35:27:ae:f1: 3d:d0:a8:8e:c9:a3:4a:8e:b2:49:7f:56:40:bc:37:71:71:9c: 11:65:a0:45:e8:cf:8d:02:35:55:56:7f:35:5f:39:78:22:58: 04:90:61:04:f3:35:8e:71:a8:a0:7d:93:4f:4f:ea:db:07:f0: 45:63:6a:47:08:a1:5e:30:11:a6:b3:4f:97:d6:18:11:55:32: c0:0d:0b:3c:14:95:4c:95:92:6a:7f:05:bf:55:b3:ab:e8:63: b3:25:14:49:87:b0:48:27:7e:cf:c6:d6:e2:fe:3f:6c:3c:ff: 3c:7d:55:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5NTAxMTAvBgNVBAUTKEQ4NzVFNjNDNzM1MDhERDg5RjZBQ0RDQzA2MDE0NEEw OEMwODY2REMwHhcNMjUwOTE3MDA1NTI1WhcNMjUwOTI0MDA1NTI1WjAYMRYwFAYD VQQDEw02OGNhMDZmZS1kMWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxN0P5zLhvkvSSlPLY4kCNY2exwHZgcEn4J/XW12pz1vmHLFotcqL65jpUFsT Px8Jcwmf4WzhCAVEoyIpKROartvQaPW/po0PCoSWUvCbYX8cbX4fB2MOhfyZF+2v 6/cxZ1r+K46qCBhhp1AZPXL6nBy3f9noKnQGwXJb5rjcJKYDIG27FSIkLdZEWYu3 EdEuCnNsZZKRmdG5sHj6aOU4fyzEzn6YU0D28h7urS55nrO293ooxzl1ktpo/Rpr GqcB0GssrY8V/zt1cFI7yf1qgaRT+aaGAftmFtRRMnl0vwou+URUJtzg09WZ4Wz2 +XF1kX6utgeioZaZemluZDx0pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO2vtbNf /QgERdV5LvKoVa9dFynTMB8GA1UdIwQYMBaAFNh15jxzUI3Yn2rNzAYBRKCMCGbc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTk1MC9DQkYwNkYzMDhE REMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpkaWZhczNNQmdGRW9Jd0la dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJIWG1QSE5RamRpZmFzM01CZ0ZFb0l3SVp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTk1MC9DQkYwNkYzMDhEREMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpk aWZhczNNQmdGRW9Jd0ladHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGziVH2LSS4Tytyzr16WNJppDkbgEaSZ4uZiTsysbBHsEGmcoVdWC+ xAcpFf1ddQ15G16kQlUnVlKb0dMGL7LRGiUprShcuibb1WLUkERvMopaRKoxpYBG Aa9qdjh0LrOGC1ZHxXo7jm7PujZjYZs/soLJF7o2Vr2lLA0JGNb86NlYB9umRMOV fB3sxjUnrvE90KiOyaNKjrJJf1ZAvDdxcZwRZaBF6M+NAjVVVn81Xzl4IlgEkGEE 8zWOcaigfZNPT+rbB/BFY2pHCKFeMBGms0+X1hgRVTLADQs8FJVMlZJqfwW/VbOr 6GOzJRRJh7BIJ37Pxtbi/j9sPP88fVU/ -----END CERTIFICATE-----Generated at Fri Sep 19 00:39:05 2025 by rpki-client