$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft File: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft (raw, json) Hash identifier: LA8Sz45bxZghvGsavXCaAHdHMA5Y3ArGdGd592+MmAY= Subject key identifier: 3C:DF:3C:3B:F3:F3:CF:CE:DA:81:26:5B:1A:9E:FA:CF:8D:08:6A:8B Authority key identifier: D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 Certificate issuer: /CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Certificate serial: 0101 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft Manifest number: FE Signing time: Thu 06 Nov 2025 20:43:02 +0000 Manifest this update: Thu 06 Nov 2025 20:43:01 +0000 Manifest next update: Thu 13 Nov 2025 20:43:01 +0000 Files and hashes: 1: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl (hash: JzlFxbl3OwTEjhYyHYYe275tRs/ze9ZodwSqUO24LEo=) 2: 5A4723DA6F3C11EF8FD45F13C4F9AE02.roa (hash: nJrP5XyTG2U3goSrQUjPEnvTLR/1/bqUd5TtsJOT5YA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Nov 2025 20:43:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD, serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Validity Not Before: Nov 6 20:43:01 2025 GMT Not After : Nov 13 20:43:01 2025 GMT Subject: CN=690d0855-ae71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:51:5f:b5:7d:40:22:8f:32:10:b4:4c:ab:70: 63:63:7c:9c:6b:a9:8a:4c:b3:d3:1d:69:81:b5:88: f7:5c:76:a9:e9:10:bf:dd:20:4d:fe:e1:60:b2:ca: 4e:0e:3d:f7:4b:e9:00:f6:52:7e:74:30:9c:bc:a2: 54:17:4b:2e:6c:b6:5f:de:e7:9e:a4:89:44:12:ae: 65:96:fc:9e:6b:7d:b0:cd:f7:6c:c3:57:f3:b8:0a: 2e:c8:43:b8:74:02:3c:17:12:0f:a1:53:22:02:b1: 86:ee:41:2e:54:dd:b2:a3:3e:fb:f4:58:52:11:2a: df:28:e3:b9:bb:a2:bb:34:00:58:5b:70:a4:64:fb: 9b:a1:da:44:3a:4c:1c:ed:7c:c9:a8:f4:3b:56:59: e7:8d:5c:cc:31:c6:f0:2c:28:c2:10:2f:17:23:9d: ab:4a:ab:24:bb:60:66:85:de:c4:46:6d:3d:0d:18: 87:5e:55:52:ae:90:dc:c2:5f:86:84:77:f9:1e:1d: 44:25:fe:8b:da:20:5d:0c:bc:f4:fd:d2:b7:ae:b8: ff:96:31:96:49:ff:5a:45:64:5c:50:bf:26:9d:d2: 39:fb:19:f9:cd:40:e2:34:55:9c:db:7f:e9:e4:14: 84:35:d0:ca:bf:c9:9b:61:07:c0:87:10:d1:c7:d8: ef:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:DF:3C:3B:F3:F3:CF:CE:DA:81:26:5B:1A:9E:FA:CF:8D:08:6A:8B X509v3 Authority Key Identifier: keyid:D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:1c:1d:30:77:6c:50:c3:8f:4f:84:24:68:c1:7f:bd:43:8e: 14:8f:3b:aa:6d:8b:3a:aa:0e:0b:35:d1:66:78:d6:91:f1:e8: fb:0e:d6:24:99:97:54:33:fd:09:c7:a2:3d:b0:04:d1:21:cc: 93:f2:54:7c:71:9a:ae:a9:1a:f1:9a:24:0b:c7:54:26:69:2c: b0:e0:17:c7:95:32:60:95:46:af:3a:ac:94:2b:36:d8:85:90: 73:61:6a:e0:e5:5e:4f:4c:c1:e5:8c:95:df:82:ec:cc:35:da: ae:dc:fb:b1:66:7a:1c:3d:52:9d:ed:34:bf:48:54:56:eb:ad: 7f:d4:e2:ec:78:06:2c:64:e3:5f:9e:01:72:9c:1b:99:e5:84: 90:15:b5:bf:3d:78:37:30:b4:26:6c:c3:66:67:a1:9a:ba:d3: 6c:48:69:bc:67:39:b1:23:60:2d:a7:54:69:bf:8f:a6:4e:79: 48:95:eb:a2:28:ec:c9:37:69:2d:39:9f:3e:7a:a7:59:03:d8: 24:c7:de:5e:bd:c4:70:8e:3c:13:dd:52:77:24:8a:73:b5:49: 37:4f:97:e5:0e:3a:e9:d9:6f:02:04:2e:be:c9:0e:79:c8:08: 99:23:61:53:58:6a:b7:a9:76:77:c4:ab:8b:fd:4b:6f:b2:1e: d2:9b:0c:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEQ5NURBMTE3MTQxMjMwMEFCNTNCM0U0ODcwRjJGNDQx RjA2QzgxMjQwHhcNMjUxMTA2MjA0MzAxWhcNMjUxMTEzMjA0MzAxWjAYMRYwFAYD VQQDEw02OTBkMDg1NS1hZTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1lFftX1AIo8yELRMq3BjY3yca6mKTLPTHWmBtYj3XHap6RC/3SBN/uFgsspO Dj33S+kA9lJ+dDCcvKJUF0subLZf3ueepIlEEq5llvyea32wzfdsw1fzuAouyEO4 dAI8FxIPoVMiArGG7kEuVN2yoz779FhSESrfKOO5u6K7NABYW3CkZPubodpEOkwc 7XzJqPQ7VlnnjVzMMcbwLCjCEC8XI52rSqsku2Bmhd7ERm09DRiHXlVSrpDcwl+G hHf5Hh1EJf6L2iBdDLz0/dK3rrj/ljGWSf9aRWRcUL8mndI5+xn5zUDiNFWc23/p 5BSENdDKv8mbYQfAhxDRx9jvTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDzfPDvz 88/O2oEmWxqe+s+NCGqLMB8GA1UdIwQYMBaAFNldoRcUEjAKtTs+SHDy9EHwbIEk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC9FRjYzODNFMjNE OUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01BcTFPejVJY1BMMFFmQnNn U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJWMmhGeFFTTUFxMU96NUljUEwwUWZCc2dTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUVDRC9FRjYzODNFMjNEOUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01B cTFPejVJY1BMMFFmQnNnU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0HB0wd2xQw49PhCRowX+9Q44UjzuqbYs6qg4LNdFmeNaR8ej7DtYk mZdUM/0Jx6I9sATRIcyT8lR8cZquqRrxmiQLx1QmaSyw4BfHlTJglUavOqyUKzbY hZBzYWrg5V5PTMHljJXfguzMNdqu3PuxZnocPVKd7TS/SFRW661/1OLseAYsZONf ngFynBuZ5YSQFbW/PXg3MLQmbMNmZ6GautNsSGm8ZzmxI2Atp1Rpv4+mTnlIleui KOzJN2ktOZ8+eqdZA9gkx95evcRwjjwT3VJ3JIpztUk3T5flDjrp2W8CBC6+yQ55 yAiZI2FTWGq3qXZ3xKuL/Utvsh7Smwws -----END CERTIFICATE-----Generated at Fri Nov 7 14:25:50 2025 by rpki-client