$ rpki-client -vvf rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft File: 2xinykRiG1ZTwgBDlHaz8qOAhT4.mft (raw, json) Hash identifier: 78SQXUJ73Jp5BWLlhxtEjQXZ/otdH1Y1ntc9pJQ1EsU= Subject key identifier: DE:14:E5:D7:4F:FD:3C:84:8D:41:A6:DD:FB:30:1C:60:95:10:D8:3C Authority key identifier: DB:18:A7:CA:44:62:1B:56:53:C2:00:43:94:76:B3:F2:A3:80:85:3E Certificate issuer: /CN=A918C774/serialNumber=DB18A7CA44621B5653C200439476B3F2A380853E Certificate serial: 34E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xinykRiG1ZTwgBDlHaz8qOAhT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft Manifest number: 34DC Signing time: Sun 02 Nov 2025 14:54:28 +0000 Manifest this update: Sun 02 Nov 2025 14:54:28 +0000 Manifest next update: Sun 09 Nov 2025 14:54:28 +0000 Files and hashes: 1: 2xinykRiG1ZTwgBDlHaz8qOAhT4.crl (hash: 6fdxx253LMP0Ku9O4LgmGxbtUvZe3XLWuQwc6F4YS6s=) 2: 0458A9A409FB11EA8742F60AC4F9AE02.roa (hash: mHUNvL3zJnpmbPqxHDIgKHTL5AEKLo79So94ufeiHA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.crl rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xinykRiG1ZTwgBDlHaz8qOAhT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:54:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13539 (0x34e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C774, serialNumber=DB18A7CA44621B5653C200439476B3F2A380853E Validity Not Before: Nov 2 14:54:28 2025 GMT Not After : Nov 9 14:54:28 2025 GMT Subject: CN=690770a4-4718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:cc:64:88:72:4c:51:3d:73:e5:41:36:ab:bb: e6:ca:df:ea:18:72:a1:14:f7:29:f9:22:b4:a0:15: 8d:22:62:ee:c3:e5:16:fa:14:8e:dc:54:3b:8c:89: a2:ad:92:37:7f:5c:04:10:b0:55:cb:f7:ef:15:cd: 0b:da:3d:64:e0:10:dc:a5:6c:36:f6:1c:9d:5c:0e: 06:a7:d7:55:03:b0:ad:45:55:c7:76:52:fd:4a:6c: 10:63:4a:5b:21:84:4d:71:5b:e9:9b:e0:46:5d:71: ee:d0:38:8b:e6:59:0c:b7:50:07:13:7f:32:1e:ad: 06:86:5e:72:ea:3f:fc:f5:55:63:76:59:5f:df:86: da:84:d6:e1:50:29:bb:62:1f:59:0e:04:e4:7c:49: 60:20:70:c9:be:e9:c9:dc:0b:6c:76:0b:8f:94:72: f9:9d:5b:95:77:b1:62:e3:34:24:4e:ae:2f:6b:42: 62:a5:82:e3:04:2c:bc:5f:3d:40:c4:3f:11:fb:8e: ee:f4:c5:7b:23:09:4a:d6:48:b0:9a:3c:91:16:36: 09:a8:fc:41:2c:e4:eb:b4:9a:f6:1b:84:10:11:8f: 2b:5c:55:d4:24:bc:50:06:cc:9b:20:55:9e:ce:bf: 6e:42:06:b2:5f:c2:fd:1b:aa:ad:48:21:c9:c0:bc: 2c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:14:E5:D7:4F:FD:3C:84:8D:41:A6:DD:FB:30:1C:60:95:10:D8:3C X509v3 Authority Key Identifier: keyid:DB:18:A7:CA:44:62:1B:56:53:C2:00:43:94:76:B3:F2:A3:80:85:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xinykRiG1ZTwgBDlHaz8qOAhT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:62:97:2e:4d:67:91:fe:8e:f9:28:91:5a:21:96:f8:b6:fb: 98:24:d6:e5:0f:65:4c:df:a7:8c:16:1a:a8:eb:cb:6f:99:97: fc:8b:40:69:3b:a9:aa:32:f3:e1:30:c5:34:94:03:25:54:85: 0e:57:2a:28:f0:62:6b:3e:c9:b1:22:f7:b6:82:30:21:9f:12: 5e:a5:54:4c:79:47:1e:ff:ce:a2:7f:20:4c:79:d8:60:4a:12: 64:9e:5b:8a:d9:1c:5c:0d:a8:e0:1e:b4:01:31:48:02:5e:94: 3c:ab:66:9a:29:cd:04:13:f8:8d:f8:c4:52:0c:2f:13:7c:23: e7:7e:c2:21:ad:7c:4d:67:2f:f6:69:19:ab:82:fe:a8:48:ef: 17:b8:70:44:56:0c:c4:38:f9:6b:9e:7b:9a:2a:2f:ac:89:9f: 1a:76:ab:bc:40:60:f4:75:aa:ec:58:a8:22:9a:01:61:47:2a: 65:f3:00:02:65:ac:bc:a3:b0:ae:f7:2b:13:7b:78:70:38:bf: 89:b7:aa:18:c6:59:fd:be:54:88:59:95:59:b5:91:bc:bc:07: 7d:b5:c3:2a:9c:60:1c:79:80:d0:a4:56:a6:c1:a7:22:69:df: ec:33:6b:40:ab:66:ab:82:79:8e:e0:70:3e:cf:54:6f:aa:77: e4:cc:79:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM3NzQxMTAvBgNVBAUTKERCMThBN0NBNDQ2MjFCNTY1M0MyMDA0Mzk0NzZCM0Yy QTM4MDg1M0UwHhcNMjUxMTAyMTQ1NDI4WhcNMjUxMTA5MTQ1NDI4WjAYMRYwFAYD VQQDEw02OTA3NzBhNC00NzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxsxkiHJMUT1z5UE2q7vmyt/qGHKhFPcp+SK0oBWNImLuw+UW+hSO3FQ7jImi rZI3f1wEELBVy/fvFc0L2j1k4BDcpWw29hydXA4Gp9dVA7CtRVXHdlL9SmwQY0pb IYRNcVvpm+BGXXHu0DiL5lkMt1AHE38yHq0Ghl5y6j/89VVjdllf34bahNbhUCm7 Yh9ZDgTkfElgIHDJvunJ3AtsdguPlHL5nVuVd7Fi4zQkTq4va0JipYLjBCy8Xz1A xD8R+47u9MV7IwlK1kiwmjyRFjYJqPxBLOTrtJr2G4QQEY8rXFXUJLxQBsybIFWe zr9uQgayX8L9G6qtSCHJwLwsrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN4U5ddP /TyEjUGm3fswHGCVENg8MB8GA1UdIwQYMBaAFNsYp8pEYhtWU8IAQ5R2s/KjgIU+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Qzc3NC81Nzk4ODdCNjFE OTkxMUUyOUUyRjA5ODQwOEIwMkNEMi8yeGlueWtSaUcxWlR3Z0JEbEhhejhxT0Fo VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ4aW55a1JpRzFaVHdnQkRsSGF6OHFPQWhUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Qzc3NC81Nzk4ODdCNjFEOTkxMUUyOUUyRjA5ODQwOEIwMkNEMi8yeGlueWtSaUcx WlR3Z0JEbEhhejhxT0FoVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeYpcuTWeR/o75KJFaIZb4tvuYJNblD2VM36eMFhqo68tvmZf8i0Bp O6mqMvPhMMU0lAMlVIUOVyoo8GJrPsmxIve2gjAhnxJepVRMeUce/86ifyBMedhg ShJknluK2RxcDajgHrQBMUgCXpQ8q2aaKc0EE/iN+MRSDC8TfCPnfsIhrXxNZy/2 aRmrgv6oSO8XuHBEVgzEOPlrnnuaKi+siZ8adqu8QGD0darsWKgimgFhRypl8wAC Zay8o7Cu9ysTe3hwOL+Jt6oYxln9vlSIWZVZtZG8vAd9tcMqnGAceYDQpFamwaci ad/sM2tAq2argnmO4HA+z1RvqnfkzHna -----END CERTIFICATE-----Generated at Tue Nov 4 07:21:12 2025 by rpki-client