$ rpki-client -vvf rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft File: 2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft (raw, json) Hash identifier: KeGlPM0iiPzGTSxRjYJh3Af5lcJc0m/nsM6iQQ1ha0Q= Subject key identifier: DA:F8:62:5F:0A:ED:61:FF:D2:38:E8:0C:CE:0E:44:C9:9A:41:6B:9A Authority key identifier: DA:EF:A5:43:58:F4:BC:C0:D8:47:CC:6D:C9:CA:F7:8B:C5:E0:99:6E Certificate issuer: /CN=A915FA96/serialNumber=DAEFA54358F4BCC0D847CC6DC9CAF78BC5E0996E Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft Manifest number: AB Signing time: Mon 03 Nov 2025 06:12:28 +0000 Manifest this update: Mon 03 Nov 2025 06:12:27 +0000 Manifest next update: Mon 10 Nov 2025 06:12:27 +0000 Files and hashes: 1: 2u-lQ1j0vMDYR8xtycr3i8XgmW4.crl (hash: 65QQ9TNr6XFhS/WaIURJvPNjcNIm+nJ2LJ5tAfFFeis=) 2: 50B93FA8B5EE11EF9AC9D812C4F9AE02.roa (hash: 7AoMz8H6zHHdV8IPpxWlOn2xVFqVFr83q+XexoYNuOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.crl rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:12:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FA96, serialNumber=DAEFA54358F4BCC0D847CC6DC9CAF78BC5E0996E Validity Not Before: Nov 3 06:12:27 2025 GMT Not After : Nov 10 06:12:27 2025 GMT Subject: CN=690847cc-f360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f7:28:0c:77:40:2e:2e:5a:7c:38:48:0e:13: fa:db:67:2a:e6:98:16:33:c0:5a:0a:85:55:42:9b: e6:11:d9:e8:51:a0:ce:f9:af:99:a0:cd:2d:88:ae: 05:3a:d3:fb:cf:1f:00:25:4f:65:65:48:9c:4a:a5: 03:1c:d7:aa:8b:db:a2:6e:9a:84:33:08:88:38:a3: ab:b8:e1:f4:b5:f9:95:e1:26:56:a7:dc:25:91:2e: 52:84:27:25:93:c1:97:e4:10:ac:1f:40:42:d4:7c: 0d:e9:d5:84:d8:1a:3e:3d:7a:5c:d1:a4:2e:8d:f6: 82:49:d6:e0:1a:58:68:6e:a3:42:09:e3:b7:b2:ad: 5b:b4:26:b0:53:4c:65:da:f4:1a:77:62:6c:20:77: 06:0d:28:bc:50:7b:7b:2b:cd:9f:99:8e:60:e5:15: 2b:33:f6:53:90:b4:63:78:1e:7d:82:a9:59:a2:d2: ac:96:42:a0:39:5f:db:c7:1c:df:f5:da:a1:fd:e3: 75:f6:9b:2a:3e:4e:fc:1c:03:2f:d6:97:27:ee:45: 8a:57:6a:c4:fd:32:99:ae:38:ce:4c:4a:9b:09:11: 75:52:29:9a:28:50:ea:12:4f:fd:b9:82:ac:b6:9c: 61:08:10:1a:ce:2e:fc:b8:3c:91:b7:bb:ff:6e:54: 88:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:F8:62:5F:0A:ED:61:FF:D2:38:E8:0C:CE:0E:44:C9:9A:41:6B:9A X509v3 Authority Key Identifier: keyid:DA:EF:A5:43:58:F4:BC:C0:D8:47:CC:6D:C9:CA:F7:8B:C5:E0:99:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:10:04:7b:7e:38:73:74:2c:e0:e5:6a:6b:8a:df:d4:5d:d9: a0:99:e7:e3:4a:41:02:f0:2d:4f:86:53:3e:f3:1f:4e:e4:15: 67:2a:c5:9d:07:0c:a7:63:41:2c:4c:46:f3:6d:66:9a:18:e0: 36:e7:ae:9b:c8:44:7e:59:c2:18:09:ec:48:ab:8e:dc:69:6d: 8c:4b:de:e9:78:b1:ca:e0:b5:23:d3:dd:9f:77:f1:64:fc:46: ac:59:9c:05:d2:7e:3f:61:dc:b2:bc:d5:71:71:3e:c9:b3:31: c3:37:06:5f:74:d7:b2:7f:42:ac:2d:b1:39:e7:61:25:14:de: 09:c7:61:e1:b5:d1:5f:40:d4:fa:16:71:a3:60:f5:81:d2:e8: 5d:e8:fb:2e:d7:fa:07:d9:8a:64:0a:f7:35:57:6c:d4:b6:dd: 93:8a:7f:23:8f:73:79:aa:08:e0:90:0b:53:1b:b4:91:08:ac: 02:84:81:48:86:c3:e8:b1:72:88:72:3a:4e:0e:74:f4:9c:33: ea:7a:ad:3f:aa:2b:65:7f:0f:1f:99:60:06:c3:2a:e7:72:dc: 59:e6:aa:de:30:ff:e3:ad:50:b9:28:d2:a3:f4:7e:d5:d4:c3: 53:de:34:47:d4:84:ea:ea:7e:44:32:ba:fd:79:5f:1a:72:49: 3c:24:ac:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBOTYxMTAvBgNVBAUTKERBRUZBNTQzNThGNEJDQzBEODQ3Q0M2REM5Q0FGNzhC QzVFMDk5NkUwHhcNMjUxMTAzMDYxMjI3WhcNMjUxMTEwMDYxMjI3WjAYMRYwFAYD VQQDEw02OTA4NDdjYy1mMzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPcoDHdALi5afDhIDhP622cq5pgWM8BaCoVVQpvmEdnoUaDO+a+ZoM0tiK4F OtP7zx8AJU9lZUicSqUDHNeqi9uibpqEMwiIOKOruOH0tfmV4SZWp9wlkS5ShCcl k8GX5BCsH0BC1HwN6dWE2Bo+PXpc0aQujfaCSdbgGlhobqNCCeO3sq1btCawU0xl 2vQad2JsIHcGDSi8UHt7K82fmY5g5RUrM/ZTkLRjeB59gqlZotKslkKgOV/bxxzf 9dqh/eN19psqPk78HAMv1pcn7kWKV2rE/TKZrjjOTEqbCRF1UimaKFDqEk/9uYKs tpxhCBAazi78uDyRt7v/blSIowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNr4Yl8K 7WH/0jjoDM4ORMmaQWuaMB8GA1UdIwQYMBaAFNrvpUNY9LzA2EfMbcnK94vF4Jlu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkE5Ni84QTM1MDkwQ0I1 RUQxMUVGOUQyMDY5MEVDNEY5QUUwMi8ydS1sUTFqMHZNRFlSOHh0eWNyM2k4WGdt VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ1LWxRMWowdk1EWVI4eHR5Y3IzaThYZ21XNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkE5Ni84QTM1MDkwQ0I1RUQxMUVGOUQyMDY5MEVDNEY5QUUwMi8ydS1sUTFqMHZN RFlSOHh0eWNyM2k4WGdtVzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8EAR7fjhzdCzg5Wprit/UXdmgmefjSkEC8C1PhlM+8x9O5BVnKsWd BwynY0EsTEbzbWaaGOA2566byER+WcIYCexIq47caW2MS97peLHK4LUj092fd/Fk /EasWZwF0n4/YdyyvNVxcT7JszHDNwZfdNeyf0KsLbE552ElFN4Jx2HhtdFfQNT6 FnGjYPWB0uhd6Psu1/oH2YpkCvc1V2zUtt2Tin8jj3N5qgjgkAtTG7SRCKwChIFI hsPosXKIcjpODnT0nDPqeq0/qitlfw8fmWAGwyrnctxZ5qreMP/jrVC5KNKj9H7V 1MNT3jRH1ITq6n5EMrr9eV8ackk8JKw4 -----END CERTIFICATE-----Generated at Tue Nov 4 12:09:27 2025 by rpki-client