$ rpki-client -vvf rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft File: 2HXmPHNQjdifas3MBgFEoIwIZtw.mft (raw, json) Hash identifier: +Tldwnh347IrAkSjRGSwmBTlU+lObJvy+zZP/ZEymWk= Subject key identifier: 6D:B3:31:39:B4:93:3C:D7:51:CF:E4:BF:B1:5C:AA:32:68:F9:7C:41 Authority key identifier: D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC Certificate issuer: /CN=A914E950/serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Certificate serial: 0413 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft Manifest number: 040E Signing time: Wed 05 Nov 2025 00:29:47 +0000 Manifest this update: Wed 05 Nov 2025 00:29:46 +0000 Manifest next update: Wed 12 Nov 2025 00:29:46 +0000 Files and hashes: 1: 2HXmPHNQjdifas3MBgFEoIwIZtw.crl (hash: F/nlZM810bnvyMgDB2rJkTImGkRraM5UtmDBz6anyWA=) 2: 6199B5668DE011ECB9F9C06EC4F9AE02.roa (hash: FDWt9q3QAp1ofI7rrAESMwGQ2CDqFlVea3/sU3p0ycs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:29:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1043 (0x413) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E950, serialNumber=D875E63C73508DD89F6ACDCC060144A08C0866DC Validity Not Before: Nov 5 00:29:46 2025 GMT Not After : Nov 12 00:29:46 2025 GMT Subject: CN=690a9a7b-f114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ca:07:dc:98:78:91:b3:7e:9d:ac:66:bb:df: 34:45:c5:57:29:45:22:56:3f:b3:fb:a1:18:a7:c8: 3b:5e:66:dd:2f:cd:a9:2a:f0:5d:4a:7b:9f:08:30: 32:9b:9c:3f:4a:68:00:ad:cc:8a:0f:ec:a5:65:4a: 3a:19:93:a6:17:6e:25:b5:4f:5f:58:0b:fa:71:6e: 2e:f2:d2:8d:40:6f:ae:d2:e6:2d:6e:b2:af:b4:c9: 27:af:76:60:89:52:0d:63:3e:cf:63:bc:0b:f4:c6: c7:1c:0c:07:59:05:e8:f9:10:48:c9:f0:6a:e5:51: f8:7b:d8:56:4b:5f:24:fb:c5:2a:29:31:68:8d:07: 66:7a:0f:fd:86:69:d1:97:63:90:2f:fa:a2:86:49: ed:45:1c:ee:4b:d2:fe:ac:93:43:15:5b:d4:e8:33: 8a:3d:67:ea:8c:2f:0b:f4:d0:26:7b:45:c3:bb:15: 96:e0:fb:98:50:18:11:2e:61:d0:b4:24:a9:29:b1: bc:cb:6d:87:df:ea:cc:18:68:a3:5d:5b:06:e3:ba: a1:12:12:e9:d8:48:55:1f:46:87:32:89:53:b8:62: 81:1c:bf:c8:af:6e:54:4c:e7:bd:69:aa:99:51:92: fe:de:73:f0:60:83:d5:0f:35:a2:c9:49:db:ad:35: ae:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:B3:31:39:B4:93:3C:D7:51:CF:E4:BF:B1:5C:AA:32:68:F9:7C:41 X509v3 Authority Key Identifier: keyid:D8:75:E6:3C:73:50:8D:D8:9F:6A:CD:CC:06:01:44:A0:8C:08:66:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2HXmPHNQjdifas3MBgFEoIwIZtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E950/CBF06F308DDC11ECA1400C69C4F9AE02/2HXmPHNQjdifas3MBgFEoIwIZtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:3f:11:51:c2:e4:08:80:24:52:0f:c0:a3:98:86:ff:f5:a1: c5:bf:69:f8:93:c6:59:36:01:d3:4d:bc:c2:99:51:1f:0b:9e: 05:61:27:e2:ab:c6:64:8b:80:52:aa:a9:c5:ea:38:21:be:fe: dc:40:73:2f:7e:a2:66:a8:f4:6b:a5:42:fe:01:15:1a:6c:a1: c0:c4:f9:81:ad:6d:79:ec:be:4b:18:fe:0b:d7:5c:9b:09:44: 79:01:da:6f:75:fc:cc:c7:e3:a7:da:ff:3e:36:ff:aa:7f:4b: 8d:27:71:66:b2:3d:c4:01:ad:e6:ec:3b:06:c3:02:a1:24:48: a2:82:e2:5c:43:b5:61:2a:fc:d3:23:61:0d:7b:e2:3a:0f:ec: 94:49:61:03:9d:25:fc:66:91:83:a9:52:e1:13:03:ef:c9:66: bb:1d:a2:74:fd:29:f7:5c:7a:e2:1e:da:9b:7a:e3:9b:83:bd: 0e:02:e0:06:4c:4f:e0:52:50:32:78:bd:db:a1:f9:b6:0c:38: 6b:26:2a:4a:80:03:0c:83:42:9e:18:11:78:3c:0d:bb:05:3f: cf:8d:d2:5b:be:da:44:42:89:ea:fe:a3:9c:df:1f:bf:e6:77: 6d:9d:62:63:3d:74:eb:1d:d0:c0:fa:42:25:38:a1:9d:5c:17: 98:1d:4d:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5NTAxMTAvBgNVBAUTKEQ4NzVFNjNDNzM1MDhERDg5RjZBQ0RDQzA2MDE0NEEw OEMwODY2REMwHhcNMjUxMTA1MDAyOTQ2WhcNMjUxMTEyMDAyOTQ2WjAYMRYwFAYD VQQDEw02OTBhOWE3Yi1mMTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApsoH3Jh4kbN+naxmu980RcVXKUUiVj+z+6EYp8g7XmbdL82pKvBdSnufCDAy m5w/SmgArcyKD+ylZUo6GZOmF24ltU9fWAv6cW4u8tKNQG+u0uYtbrKvtMknr3Zg iVINYz7PY7wL9MbHHAwHWQXo+RBIyfBq5VH4e9hWS18k+8UqKTFojQdmeg/9hmnR l2OQL/qihkntRRzuS9L+rJNDFVvU6DOKPWfqjC8L9NAme0XDuxWW4PuYUBgRLmHQ tCSpKbG8y22H3+rMGGijXVsG47qhEhLp2EhVH0aHMolTuGKBHL/Ir25UTOe9aaqZ UZL+3nPwYIPVDzWiyUnbrTWu9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2zMTm0 kzzXUc/kv7FcqjJo+XxBMB8GA1UdIwQYMBaAFNh15jxzUI3Yn2rNzAYBRKCMCGbc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTk1MC9DQkYwNkYzMDhE REMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpkaWZhczNNQmdGRW9Jd0la dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJIWG1QSE5RamRpZmFzM01CZ0ZFb0l3SVp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTk1MC9DQkYwNkYzMDhEREMxMUVDQTE0MDBDNjlDNEY5QUUwMi8ySFhtUEhOUWpk aWZhczNNQmdGRW9Jd0ladHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIPxFRwuQIgCRSD8CjmIb/9aHFv2n4k8ZZNgHTTbzCmVEfC54FYSfi q8Zki4BSqqnF6jghvv7cQHMvfqJmqPRrpUL+ARUabKHAxPmBrW157L5LGP4L11yb CUR5AdpvdfzMx+On2v8+Nv+qf0uNJ3Fmsj3EAa3m7DsGwwKhJEiiguJcQ7VhKvzT I2ENe+I6D+yUSWEDnSX8ZpGDqVLhEwPvyWa7HaJ0/Sn3XHriHtqbeuObg70OAuAG TE/gUlAyeL3bofm2DDhrJipKgAMMg0KeGBF4PA27BT/PjdJbvtpEQonq/qOc3x+/ 5ndtnWJjPXTrHdDA+kIlOKGdXBeYHU3D -----END CERTIFICATE-----Generated at Wed Nov 5 23:47:22 2025 by rpki-client