$ rpki-client -vvf rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft File: 2xinykRiG1ZTwgBDlHaz8qOAhT4.mft (raw, json) Hash identifier: e3dXA5+Xo4mR/WajwrKg7DcG1oe7UReO9QlK5WkMHJw= Subject key identifier: AF:0B:44:A5:E5:48:57:1B:18:01:F2:F6:A7:3F:18:49:D1:BE:9F:E7 Authority key identifier: DB:18:A7:CA:44:62:1B:56:53:C2:00:43:94:76:B3:F2:A3:80:85:3E Certificate issuer: /CN=A918C774/serialNumber=DB18A7CA44621B5653C200439476B3F2A380853E Certificate serial: 34CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xinykRiG1ZTwgBDlHaz8qOAhT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft Manifest number: 34C5 Signing time: Thu 18 Sep 2025 14:57:13 +0000 Manifest this update: Thu 18 Sep 2025 14:57:13 +0000 Manifest next update: Thu 25 Sep 2025 14:57:13 +0000 Files and hashes: 1: 2xinykRiG1ZTwgBDlHaz8qOAhT4.crl (hash: KkWApDtON74nyigF1csLcGIcio+TOGzsp6IMsCsLvj8=) 2: 0458A9A409FB11EA8742F60AC4F9AE02.roa (hash: mHUNvL3zJnpmbPqxHDIgKHTL5AEKLo79So94ufeiHA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.crl rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xinykRiG1ZTwgBDlHaz8qOAhT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 14:57:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13516 (0x34cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C774, serialNumber=DB18A7CA44621B5653C200439476B3F2A380853E Validity Not Before: Sep 18 14:57:13 2025 GMT Not After : Sep 25 14:57:13 2025 GMT Subject: CN=68cc1dc9-bd58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a3:07:50:72:fe:81:d4:74:05:cf:13:f2:7e: 9d:23:29:f5:64:66:4d:62:47:f8:63:6d:a8:b2:82: c8:a3:71:fe:51:ea:bc:6f:21:24:42:b9:ec:e0:c0: 59:d6:bd:62:41:4c:13:3c:59:8e:d7:b8:55:b5:5a: ba:52:6d:4c:c6:35:03:6d:8d:fe:16:c9:bd:c4:98: 05:82:0c:b5:ce:5d:b2:f2:af:4a:2a:28:25:b9:fb: 04:f0:1a:38:76:0c:5e:e1:90:c1:b6:de:41:10:20: 76:9f:34:7a:f0:f3:85:9a:3a:b0:0f:25:4c:e3:7f: 6f:88:8c:38:d2:ba:78:85:e3:8c:aa:7f:19:3f:c8: d2:c2:90:40:51:59:ba:da:8f:2a:18:12:87:2d:3b: af:b4:cc:3b:71:16:0d:e4:fd:38:e1:6b:ac:e1:23: c4:b7:38:aa:d8:89:8b:b4:b2:58:28:d5:cf:c0:20: 34:23:2a:c3:b8:90:29:1d:23:15:eb:8e:5b:89:49: 8f:ec:7e:ad:f7:47:d0:b9:8e:85:78:2c:fc:5b:d3: 4d:f6:10:96:31:f6:be:1b:49:02:c6:29:e9:10:b1: 90:58:00:40:05:ff:da:0a:4f:16:c5:55:17:ca:e9: d8:8b:29:79:3e:32:c9:ec:94:45:29:e9:70:d9:e9: ea:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:0B:44:A5:E5:48:57:1B:18:01:F2:F6:A7:3F:18:49:D1:BE:9F:E7 X509v3 Authority Key Identifier: keyid:DB:18:A7:CA:44:62:1B:56:53:C2:00:43:94:76:B3:F2:A3:80:85:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xinykRiG1ZTwgBDlHaz8qOAhT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:12:c8:22:e0:f3:c7:ff:a7:87:2d:53:da:db:12:2f:30:cf: 78:20:1d:8e:29:36:ce:fb:d8:ae:9a:12:10:07:e4:b5:3d:70: 2c:0c:bf:ce:40:6c:af:11:6c:0c:90:d4:df:4a:2e:16:28:1b: a7:41:6b:75:b5:4b:b3:5a:43:a4:bd:af:81:91:02:c8:63:78: 96:a0:00:0a:fb:8c:4c:a8:07:1c:2b:99:cf:71:3d:de:99:c1: 9b:6c:06:b2:47:11:fa:55:33:be:8a:65:e7:70:a4:9c:3d:99: 7b:3a:ea:72:95:60:3b:b8:21:44:f2:1f:9c:23:cb:3b:08:ab: c7:4c:06:6d:a7:35:53:7e:37:15:39:51:67:a7:ca:03:3f:b2: b9:96:e6:9b:aa:84:a8:8b:b3:d5:75:ec:9b:e1:14:34:2c:55: f8:5d:1c:ae:f4:85:42:3c:10:c0:54:3f:9a:c2:1a:25:13:fe: 90:01:4c:71:84:80:3f:b2:c8:1f:75:ee:a2:a0:18:ed:51:39: 0f:d3:26:43:d3:dc:d9:4c:93:5f:04:4d:16:76:86:1e:50:00: 8d:9e:51:4c:66:31:af:e7:f3:90:ae:1b:68:ec:ea:99:bc:93: a6:ab:cf:f2:3d:8c:21:c3:32:5e:94:61:84:d1:7a:16:a7:63: 41:ee:58:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM3NzQxMTAvBgNVBAUTKERCMThBN0NBNDQ2MjFCNTY1M0MyMDA0Mzk0NzZCM0Yy QTM4MDg1M0UwHhcNMjUwOTE4MTQ1NzEzWhcNMjUwOTI1MTQ1NzEzWjAYMRYwFAYD VQQDEw02OGNjMWRjOS1iZDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6MHUHL+gdR0Bc8T8n6dIyn1ZGZNYkf4Y22osoLIo3H+Ueq8byEkQrns4MBZ 1r1iQUwTPFmO17hVtVq6Um1MxjUDbY3+Fsm9xJgFggy1zl2y8q9KKiglufsE8Bo4 dgxe4ZDBtt5BECB2nzR68POFmjqwDyVM439viIw40rp4heOMqn8ZP8jSwpBAUVm6 2o8qGBKHLTuvtMw7cRYN5P044Wus4SPEtziq2ImLtLJYKNXPwCA0IyrDuJApHSMV 645biUmP7H6t90fQuY6FeCz8W9NN9hCWMfa+G0kCxinpELGQWABABf/aCk8WxVUX yunYiyl5PjLJ7JRFKelw2enqtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK8LRKXl SFcbGAHy9qc/GEnRvp/nMB8GA1UdIwQYMBaAFNsYp8pEYhtWU8IAQ5R2s/KjgIU+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Qzc3NC81Nzk4ODdCNjFE OTkxMUUyOUUyRjA5ODQwOEIwMkNEMi8yeGlueWtSaUcxWlR3Z0JEbEhhejhxT0Fo VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ4aW55a1JpRzFaVHdnQkRsSGF6OHFPQWhUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Qzc3NC81Nzk4ODdCNjFEOTkxMUUyOUUyRjA5ODQwOEIwMkNEMi8yeGlueWtSaUcx WlR3Z0JEbEhhejhxT0FoVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoEsgi4PPH/6eHLVPa2xIvMM94IB2OKTbO+9iumhIQB+S1PXAsDL/O QGyvEWwMkNTfSi4WKBunQWt1tUuzWkOkva+BkQLIY3iWoAAK+4xMqAccK5nPcT3e mcGbbAayRxH6VTO+imXncKScPZl7OupylWA7uCFE8h+cI8s7CKvHTAZtpzVTfjcV OVFnp8oDP7K5luabqoSoi7PVdeyb4RQ0LFX4XRyu9IVCPBDAVD+awholE/6QAUxx hIA/ssgfde6ioBjtUTkP0yZD09zZTJNfBE0WdoYeUACNnlFMZjGv5/OQrhto7OqZ vJOmq8/yPYwhwzJelGGE0XoWp2NB7lhc -----END CERTIFICATE-----Generated at Thu Sep 18 19:13:22 2025 by rpki-client