$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft File: 2H4ClpVGrcVaesygjK2yh5vGmck.mft (raw, json) Hash identifier: W9BpilvDwJzBOMevoIv0T5wdAQuSQ9FOrEWXj35od+o= Subject key identifier: F2:14:CC:1C:47:8C:92:1C:BE:14:86:B8:92:77:15:2D:34:86:74:DB Authority key identifier: D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 Certificate issuer: /CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Certificate serial: 01D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft Manifest number: 01D2 Signing time: Mon 03 Nov 2025 02:48:05 +0000 Manifest this update: Mon 03 Nov 2025 02:48:04 +0000 Manifest next update: Mon 10 Nov 2025 02:48:04 +0000 Files and hashes: 1: 2H4ClpVGrcVaesygjK2yh5vGmck.crl (hash: +gXDHnstvcZsw/7sac+NcMtMxTFFpLrjAPomTbPruFg=) 2: A4B0D326F0A311ED99A1471CC4F9AE02.roa (hash: 0/Ic5iho+pqF4si9nqRdEW+r600hwTvuyP9trzSoxtE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:48:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B5F, serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Validity Not Before: Nov 3 02:48:04 2025 GMT Not After : Nov 10 02:48:04 2025 GMT Subject: CN=690817e5-5e16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:55:a4:e2:b7:70:80:f8:cf:94:91:ab:25:f5: f3:94:35:6a:61:a2:d2:5c:8d:cb:24:d6:dd:fa:52: 71:e8:ec:b2:08:b0:47:71:6e:b0:67:2f:5f:49:5e: b1:a8:2c:4e:1c:c2:3a:d1:15:9c:26:14:be:9e:0b: b5:c2:57:f3:10:66:56:5d:59:3c:b8:8b:e8:f1:5c: 23:ee:bc:e8:20:e0:d5:65:a2:7f:33:86:4d:51:26: 60:d3:bf:8d:f1:01:78:1b:8a:1f:24:a2:94:71:b4: 47:60:5e:c8:1d:37:f0:97:83:37:ab:47:81:8e:1a: 38:ef:61:9b:f5:6b:7c:d7:91:a1:a8:20:e9:b4:42: 61:56:46:9d:05:9c:10:58:46:46:03:fc:b5:7b:59: 73:9a:f6:73:1b:1d:25:c7:03:48:d8:7c:e9:f0:f8: 7e:61:90:20:6b:7c:e1:29:31:5a:99:83:0b:a6:b7: 9c:5e:c8:46:f7:0c:a0:14:5a:51:ed:fd:c2:4b:0f: 9f:ea:e7:dc:07:15:5e:3f:42:5b:37:04:57:97:30: 1b:01:81:42:c9:28:c4:80:65:f3:b1:f0:14:fe:df: 6e:01:c2:56:6c:98:0a:e4:c6:1e:f8:93:04:e4:04: 78:11:3a:49:83:3b:4c:7a:eb:96:13:5a:1a:a3:38: 0c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:14:CC:1C:47:8C:92:1C:BE:14:86:B8:92:77:15:2D:34:86:74:DB X509v3 Authority Key Identifier: keyid:D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:e7:94:4e:83:bf:c7:22:21:92:7e:fa:55:f3:30:55:05:e8: e1:dd:78:6e:df:89:fc:4d:4f:63:e6:4c:42:c9:94:11:04:d7: 58:ac:94:be:e4:54:84:e3:ea:91:8b:e5:bc:32:f9:2a:93:f5: 5b:2c:c9:79:11:b8:5e:e3:10:7f:81:c8:29:b3:85:bd:24:b6: d7:7c:b0:49:e8:d8:8e:f6:f8:f7:db:ef:74:02:05:c2:7d:51: a2:e2:26:9c:28:80:a2:f3:46:a3:ff:55:3c:74:b9:cb:94:0c: c2:52:e4:f6:26:f9:9e:7a:b7:4d:b5:81:15:3c:85:25:e6:d8: 2a:bf:af:a9:28:d3:91:48:e7:21:c5:f2:51:c1:26:b8:d7:62: ae:7b:d8:79:16:d5:c2:54:af:cf:6a:a6:ef:17:1f:c3:fc:67: b0:51:49:e5:5f:28:cd:5d:bf:09:d0:96:0f:ef:d1:d8:f1:05: fd:d5:16:43:b9:93:cc:59:bb:75:87:fd:b6:4b:6f:01:3d:f0: ff:16:51:3b:9a:4a:a5:18:18:49:34:ae:fc:61:78:b9:4e:83: a7:11:3c:1e:5d:7c:f5:2e:31:03:21:9e:61:fb:2d:df:94:85: c5:ec:52:ab:2b:ed:20:dc:d6:30:01:e0:f2:78:92:e4:15:7f: 06:cb:3e:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNUYxMTAvBgNVBAUTKEQ4N0UwMjk2OTU0NkFEQzU1QTdBQ0NBMDhDQURCMjg3 OUJDNjk5QzkwHhcNMjUxMTAzMDI0ODA0WhcNMjUxMTEwMDI0ODA0WjAYMRYwFAYD VQQDEw02OTA4MTdlNS01ZTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulWk4rdwgPjPlJGrJfXzlDVqYaLSXI3LJNbd+lJx6OyyCLBHcW6wZy9fSV6x qCxOHMI60RWcJhS+ngu1wlfzEGZWXVk8uIvo8Vwj7rzoIODVZaJ/M4ZNUSZg07+N 8QF4G4ofJKKUcbRHYF7IHTfwl4M3q0eBjho472Gb9Wt815GhqCDptEJhVkadBZwQ WEZGA/y1e1lzmvZzGx0lxwNI2Hzp8Ph+YZAga3zhKTFamYMLprecXshG9wygFFpR 7f3CSw+f6ufcBxVeP0JbNwRXlzAbAYFCySjEgGXzsfAU/t9uAcJWbJgK5MYe+JME 5AR4ETpJgztMeuuWE1oaozgMKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPIUzBxH jJIcvhSGuJJ3FS00hnTbMB8GA1UdIwQYMBaAFNh+ApaVRq3FWnrMoIytsoebxpnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI1Ri84RTQxODAyMEYw OUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3JjVmFlc3lnaksyeWg1dkdt Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJINENscFZHcmNWYWVzeWdqSzJ5aDV2R21jay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI1Ri84RTQxODAyMEYwOUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3Jj VmFlc3lnaksyeWg1dkdtY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB755ROg7/HIiGSfvpV8zBVBejh3Xhu34n8TU9j5kxCyZQRBNdYrJS+ 5FSE4+qRi+W8Mvkqk/VbLMl5Ebhe4xB/gcgps4W9JLbXfLBJ6NiO9vj32+90AgXC fVGi4iacKICi80aj/1U8dLnLlAzCUuT2JvmeerdNtYEVPIUl5tgqv6+pKNORSOch xfJRwSa412Kue9h5FtXCVK/PaqbvFx/D/GewUUnlXyjNXb8J0JYP79HY8QX91RZD uZPMWbt1h/22S28BPfD/FlE7mkqlGBhJNK78YXi5ToOnETweXXz1LjEDIZ5h+y3f lIXF7FKrK+0g3NYwAeDyeJLkFX8Gyz5Q -----END CERTIFICATE-----Generated at Tue Nov 4 07:23:35 2025 by rpki-client