$ rpki-client -vvf rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft File: C2HEdIlppE_IPIiCoCV50NWSO2E.mft (raw, json) Hash identifier: gJ7HsnJtD4sqeXVcN5tseAJu7dhRn3wd83SChgTJBBE= Subject key identifier: 02:E7:9D:03:42:B9:E0:44:F3:2E:BF:2E:6F:4F:74:02:0D:C0:4B:C0 Authority key identifier: 0B:61:C4:74:89:69:A4:4F:C8:3C:88:82:A0:25:79:D0:D5:92:3B:61 Certificate issuer: /CN=A917B092/serialNumber=0B61C4748969A44FC83C8882A02579D0D5923B61 Certificate serial: 01F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2HEdIlppE_IPIiCoCV50NWSO2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft Manifest number: 01E5 Signing time: Thu 23 Oct 2025 04:25:48 +0000 Manifest this update: Thu 23 Oct 2025 04:25:48 +0000 Manifest next update: Thu 30 Oct 2025 04:25:48 +0000 Files and hashes: 1: C2HEdIlppE_IPIiCoCV50NWSO2E.crl (hash: PMnaLa0iMNzEqEpUCduCZytxaCeRQ3XZLyFPJMoGhqo=) 2: 9816AE202ED111EF9B668069C4F9AE02.roa (hash: yNjhdAnLRCwNWiJ1nMJfINPCaK225vWnJCXkmet4kyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.crl rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2HEdIlppE_IPIiCoCV50NWSO2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 04:25:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B092, serialNumber=0B61C4748969A44FC83C8882A02579D0D5923B61 Validity Not Before: Oct 23 04:25:48 2025 GMT Not After : Oct 30 04:25:48 2025 GMT Subject: CN=68f9ae4c-09fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a7:5b:27:f0:98:1d:a4:00:30:aa:4c:e6:ac: 66:c3:da:fa:3b:cb:a1:ab:ad:00:9f:2f:26:de:c7: 4a:77:e6:d4:dc:eb:34:6c:c8:a7:0f:e4:26:9c:ed: 6b:7f:5b:76:10:8e:c2:15:22:1c:1d:f8:84:b2:6c: a4:bd:52:44:82:41:5a:9d:61:36:96:57:d6:68:f6: fb:05:67:97:0f:88:99:73:eb:35:b3:c6:a2:8f:b3: a8:84:da:c4:7a:1d:fa:6e:b0:57:8d:0b:cf:31:c1: e4:c3:02:f2:fc:63:1e:4d:43:60:64:08:ce:58:24: fe:10:13:22:5d:5c:95:6b:d3:a1:5e:91:79:9d:c1: ec:84:a7:7c:12:28:df:78:8a:c6:f8:f4:c1:24:3d: 0a:06:b4:9d:fe:eb:05:17:cd:aa:17:70:6b:a1:ef: 19:ed:e0:8a:a5:2a:6e:26:79:a8:9a:70:fc:16:0f: d5:91:64:75:5a:f3:1c:c4:2e:76:e9:3e:8d:74:c9: d6:13:f4:ff:47:8d:cc:4b:d5:2a:eb:e7:56:3c:59: 01:a9:29:01:8e:8f:b5:7f:29:39:54:d0:ec:28:ad: 9f:31:b6:f3:2a:05:09:9a:2a:53:fb:fe:f1:b9:ad: 19:f7:a7:e4:e8:67:61:50:50:42:43:37:29:cc:2c: fe:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:E7:9D:03:42:B9:E0:44:F3:2E:BF:2E:6F:4F:74:02:0D:C0:4B:C0 X509v3 Authority Key Identifier: keyid:0B:61:C4:74:89:69:A4:4F:C8:3C:88:82:A0:25:79:D0:D5:92:3B:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2HEdIlppE_IPIiCoCV50NWSO2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:b2:5d:0f:74:01:ec:55:69:3e:15:19:aa:a1:5a:39:25:98: d8:5b:a9:9b:79:69:a3:3f:e6:27:3d:cf:72:b0:c8:8d:0a:b7: 56:64:87:49:6b:e3:dd:02:a4:e4:f9:3b:87:a5:ed:43:ca:a9: f1:29:e1:18:4d:e2:a9:f2:d2:08:9a:59:5e:06:bc:40:c0:1f: aa:13:3f:03:33:b1:d2:fd:a9:a5:95:8f:b6:44:ff:5a:f8:3e: d8:f6:20:41:5c:76:69:a7:44:f8:50:74:ce:d3:ef:71:85:32: 11:b5:28:30:90:1a:3e:0e:af:c1:51:eb:a0:6a:aa:ac:78:07: 46:3d:a7:81:97:80:a5:51:69:52:53:63:84:6d:47:76:84:2b: e9:26:9a:f1:7e:7b:2d:d6:e5:dc:8a:76:ab:11:5c:9c:41:b9: dd:dc:16:62:c4:75:a4:6f:8b:a6:af:58:73:b8:3a:b2:87:61: a2:c7:15:ab:90:9e:36:1e:2e:e9:12:54:69:b4:50:98:b0:63: 57:b2:0b:50:a9:ea:cf:bf:35:c9:63:16:ba:0c:e6:68:59:e6: 85:76:3f:dd:48:3b:46:cd:72:61:d4:36:1c:47:3e:ab:ba:c2: 6b:24:38:de:b2:5c:33:ac:74:71:e9:64:31:a1:4c:e4:5a:2a: 44:58:2f:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IwOTIxMTAvBgNVBAUTKDBCNjFDNDc0ODk2OUE0NEZDODNDODg4MkEwMjU3OUQw RDU5MjNCNjEwHhcNMjUxMDIzMDQyNTQ4WhcNMjUxMDMwMDQyNTQ4WjAYMRYwFAYD VQQDEw02OGY5YWU0Yy0wOWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqdbJ/CYHaQAMKpM5qxmw9r6O8uhq60Any8m3sdKd+bU3Os0bMinD+QmnO1r f1t2EI7CFSIcHfiEsmykvVJEgkFanWE2llfWaPb7BWeXD4iZc+s1s8aij7OohNrE eh36brBXjQvPMcHkwwLy/GMeTUNgZAjOWCT+EBMiXVyVa9OhXpF5ncHshKd8Eijf eIrG+PTBJD0KBrSd/usFF82qF3Broe8Z7eCKpSpuJnmomnD8Fg/VkWR1WvMcxC52 6T6NdMnWE/T/R43MS9Uq6+dWPFkBqSkBjo+1fyk5VNDsKK2fMbbzKgUJmipT+/7x ua0Z96fk6GdhUFBCQzcpzCz+AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALnnQNC ueBE8y6/Lm9PdAINwEvAMB8GA1UdIwQYMBaAFAthxHSJaaRPyDyIgqAledDVkjth MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjA5Mi8yODIzMDk5NkVF MjMxMUVEQkFCRTJBNURDNEY5QUUwMi9DMkhFZElscHBFX0lQSWlDb0NWNTBOV1NP MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MySEVkSWxwcEVfSVBJaUNvQ1Y1ME5XU08yRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjA5Mi8yODIzMDk5NkVFMjMxMUVEQkFCRTJBNURDNEY5QUUwMi9DMkhFZElscHBF X0lQSWlDb0NWNTBOV1NPMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcsl0PdAHsVWk+FRmqoVo5JZjYW6mbeWmjP+YnPc9ysMiNCrdWZIdJ a+PdAqTk+TuHpe1DyqnxKeEYTeKp8tIImlleBrxAwB+qEz8DM7HS/amllY+2RP9a +D7Y9iBBXHZpp0T4UHTO0+9xhTIRtSgwkBo+Dq/BUeugaqqseAdGPaeBl4ClUWlS U2OEbUd2hCvpJprxfnst1uXcinarEVycQbnd3BZixHWkb4umr1hzuDqyh2GixxWr kJ42Hi7pElRptFCYsGNXsgtQqerPvzXJYxa6DOZoWeaFdj/dSDtGzXJh1DYcRz6r usJrJDjeslwzrHRx6WQxoUzkWipEWC9t -----END CERTIFICATE-----Generated at Sat Oct 25 01:20:09 2025 by rpki-client