$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json) Hash identifier: ykT8x6b1FRzM94v9+OjXx5bhsWMb4NF+xdLFjLnL+Vo= Subject key identifier: 08:F8:E1:0A:CA:80:06:37:3A:23:19:86:EA:E2:0F:9C:79:71:F5:FE Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: 023F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft Manifest number: 0239 Signing time: Wed 05 Nov 2025 01:57:48 +0000 Manifest this update: Wed 05 Nov 2025 01:57:48 +0000 Manifest next update: Wed 12 Nov 2025 01:57:48 +0000 Files and hashes: 1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: 7PVVBPipfF7z8H7jd1XcB2tbvDqJiQjIZhM2r3wGPY8=) 2: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: EH2CgKpJsudgq4d5ghs/SJTUKeHCisdiJwkRQRkot80=) 3: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: Js88dwnU0hyC4RLKD1NQ44jyQxJzu0X07dqPCT3Ukh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 575 (0x23f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255, serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: Nov 5 01:57:48 2025 GMT Not After : Nov 12 01:57:48 2025 GMT Subject: CN=690aaf1c-6f1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ef:86:0b:30:15:f7:da:fa:68:2d:13:34:bc: 99:ad:4b:54:d1:01:1e:bd:47:09:23:5e:31:4f:b9: 42:e8:9a:31:54:b7:5a:7d:80:2b:ac:cf:33:15:79: 91:de:55:21:50:ac:4c:2b:fb:d7:30:a6:8a:a6:0f: bf:45:cc:42:34:7a:01:18:da:7d:d9:db:6d:fb:31: b5:3c:fd:af:25:3b:d0:08:37:38:39:f2:e4:85:3b: d1:b7:05:96:e3:e0:97:17:79:82:aa:00:02:51:f9: 40:ac:d9:e6:60:ad:29:47:93:6c:38:81:16:42:cd: ea:62:69:5d:bd:b6:a3:58:05:36:fc:43:26:7f:24: b5:09:b7:10:65:18:95:5a:bd:ed:cc:ca:8a:52:f5: 1f:bb:0d:1c:2e:09:4b:59:56:3f:2f:ac:45:4b:8e: cd:3f:dd:58:50:c4:98:0b:36:e0:90:b4:bb:72:81: f1:95:34:bd:e9:ad:e2:22:98:aa:40:d6:e2:a9:cc: cd:55:ef:48:57:3d:f0:7f:73:06:fd:a4:95:f8:ae: 1b:42:2a:ac:c6:09:d8:82:43:01:e7:0b:42:c1:2d: c9:b2:09:48:13:a7:ea:8d:29:a3:b2:e7:4b:54:0a: 68:80:b7:e3:2d:34:bd:c1:4f:15:ff:8d:38:ba:78: f2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:F8:E1:0A:CA:80:06:37:3A:23:19:86:EA:E2:0F:9C:79:71:F5:FE X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:b4:f1:2f:84:38:86:e0:4e:df:22:79:74:67:95:52:25:29: 11:31:53:2b:7b:17:97:11:0a:76:f1:4e:49:06:86:27:6f:60: 3f:ff:0d:86:ec:05:00:76:ad:90:c3:32:8a:cb:99:9c:a0:7f: 0c:b7:43:94:6d:f3:e6:5a:16:65:52:03:e8:07:92:33:53:a4: 60:5b:bd:74:a3:70:be:cb:7a:fc:54:ab:86:d0:0c:e6:be:09: 48:b0:12:d7:16:09:92:e5:0e:2e:a4:78:8b:e9:5f:8d:8e:d8: 5b:1f:9f:2a:36:d1:ba:90:e5:36:d9:7d:05:b5:80:f2:14:4d: 36:2f:4b:69:d1:ec:f5:93:86:2a:4a:b7:29:24:5a:5e:e0:ed: 77:07:5a:5c:81:34:d0:53:d3:3b:07:bc:9f:9b:78:dd:21:ca: 58:33:7f:0b:43:cc:01:b3:39:3b:aa:ae:ea:8e:ff:e5:d8:23: 7c:89:6e:a9:33:1e:f9:13:05:55:5d:fe:da:12:b1:29:60:57: 5c:fd:bc:99:36:ab:dc:fd:5b:a5:6d:e4:62:95:b6:45:0c:6d: a8:f3:df:be:70:e8:1d:47:f3:98:25:33:a2:d6:90:74:8a:24: 43:ee:63:02:12:b4:d9:b5:33:11:77:62:f9:b3:d6:4a:b3:a4: 91:ed:46:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjUxMTA1MDE1NzQ4WhcNMjUxMTEyMDE1NzQ4WjAYMRYwFAYD VQQDEw02OTBhYWYxYy02ZjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwO+GCzAV99r6aC0TNLyZrUtU0QEevUcJI14xT7lC6JoxVLdafYArrM8zFXmR 3lUhUKxMK/vXMKaKpg+/RcxCNHoBGNp92dtt+zG1PP2vJTvQCDc4OfLkhTvRtwWW 4+CXF3mCqgACUflArNnmYK0pR5NsOIEWQs3qYmldvbajWAU2/EMmfyS1CbcQZRiV Wr3tzMqKUvUfuw0cLglLWVY/L6xFS47NP91YUMSYCzbgkLS7coHxlTS96a3iIpiq QNbiqczNVe9IVz3wf3MG/aSV+K4bQiqsxgnYgkMB5wtCwS3JsglIE6fqjSmjsudL VApogLfjLTS9wU8V/404unjy6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAj44QrK gAY3OiMZhuriD5x5cfX+MB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjI1NS85MTYyMDg0QzUwNzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRB SXhzc1N4TklHLUVWQUszSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBtPEvhDiG4E7fInl0Z5VSJSkRMVMrexeXEQp28U5JBoYnb2A//w2G 7AUAdq2QwzKKy5mcoH8Mt0OUbfPmWhZlUgPoB5IzU6RgW710o3C+y3r8VKuG0Azm vglIsBLXFgmS5Q4upHiL6V+NjthbH58qNtG6kOU22X0FtYDyFE02L0tp0ez1k4Yq SrcpJFpe4O13B1pcgTTQU9M7B7yfm3jdIcpYM38LQ8wBszk7qq7qjv/l2CN8iW6p Mx75EwVVXf7aErEpYFdc/byZNqvc/VulbeRilbZFDG2o89++cOgdR/OYJTOi1pB0 iiRD7mMCErTZtTMRd2L5s9ZKs6SR7UZN -----END CERTIFICATE-----Generated at Wed Nov 5 19:29:39 2025 by rpki-client