$ rpki-client -vvf rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft File: r2oY2zoHHvGMylvos1Qz31RPD7I.mft (raw, json) Hash identifier: 9OCdr7EGqJky0ZlHJlmNqehzUaxgAkxSF7SotG1UvuQ= Subject key identifier: 97:06:E4:00:EC:89:47:29:70:04:C5:00:8E:60:93:78:7F:88:00:67 Authority key identifier: AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 Certificate issuer: /CN=A918E20E/serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Certificate serial: 0C0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft Manifest number: 0C08 Signing time: Sun 02 Nov 2025 18:46:21 +0000 Manifest this update: Sun 02 Nov 2025 18:46:21 +0000 Manifest next update: Sun 09 Nov 2025 18:46:20 +0000 Files and hashes: 1: r2oY2zoHHvGMylvos1Qz31RPD7I.crl (hash: 2VAcRjhBzLsHVST8ayixTS0bmHzMjOpSGzPeUwoXljc=) 2: BFA3B5F81FC911EA8CF04E61C4F9AE02.roa (hash: GOn5I83uJZSyXlxS2nqYANbi3ziYR8hFxpWIpKnwdbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:46:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3087 (0xc0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E20E, serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Validity Not Before: Nov 2 18:46:21 2025 GMT Not After : Nov 9 18:46:20 2025 GMT Subject: CN=6907a6fd-a02c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:46:cf:85:e1:2d:dc:36:95:16:c0:10:9a:a7: 21:2b:78:d4:51:7b:97:fb:54:d5:31:67:e5:6a:c0: 0d:8d:3c:40:57:57:fb:35:77:f0:24:03:4c:08:da: da:25:e3:60:2c:28:0f:fc:e5:39:29:58:db:37:45: 43:a8:18:b1:74:c9:a0:7c:a1:02:1b:c6:ad:4a:ad: 12:85:2c:ee:b6:ce:81:b5:30:b1:85:60:29:e7:1a: 00:51:10:94:02:21:46:b6:b8:d0:eb:3a:31:2c:04: de:ff:ed:35:2a:d1:65:5e:42:eb:e8:59:1a:68:82: 5f:6b:d2:3a:94:0f:e9:62:22:9d:29:81:c4:08:2c: 6c:05:30:75:89:7d:75:bd:9e:17:1f:1e:7b:35:6d: 9e:34:2b:08:2f:d1:0e:6a:7d:39:70:6d:c7:54:8e: 6d:29:aa:15:9d:ff:55:7d:64:20:b2:cf:d6:b9:87: cd:0e:04:ee:3c:44:e9:65:df:8e:07:8b:35:ed:ff: c2:70:88:f8:c1:a2:1f:45:bb:e6:de:12:88:1d:8a: 1e:a8:5a:ca:23:43:2f:1a:e2:12:f1:a4:d9:03:b8: e9:a7:f5:68:a4:81:11:44:3b:85:1a:37:9f:1f:ba: 5d:ef:7e:32:18:82:6f:14:38:3d:dd:30:f3:c9:d6: da:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:06:E4:00:EC:89:47:29:70:04:C5:00:8E:60:93:78:7F:88:00:67 X509v3 Authority Key Identifier: keyid:AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:13:64:b2:85:53:ff:35:70:35:60:82:f5:62:d6:82:9c:4f: 91:5a:47:31:d4:04:d2:0b:e4:38:80:2d:bc:d4:3b:f9:16:73: ee:1d:2e:64:26:88:ed:ba:68:ea:30:82:6e:3c:81:95:6b:27: d5:eb:bd:cf:6e:72:03:61:0c:0c:2a:9c:ce:23:bf:53:54:10: 4e:26:b4:76:8f:42:38:8f:37:f1:7c:fb:01:8c:72:de:da:cb: 67:98:14:39:71:c0:86:6b:11:b0:5d:85:f4:d8:cc:e5:58:8c: a7:75:d7:8b:f2:87:f3:59:fb:f5:cc:c2:fa:13:55:0f:ed:7a: 92:4f:51:a1:e1:9f:2f:d5:e8:ea:32:b9:67:88:33:3a:0e:c4: 31:fd:44:07:5f:66:bd:33:56:9f:31:67:1c:67:48:7b:81:c8: 3f:30:28:96:fd:67:54:23:17:c5:2a:5a:d5:97:86:b8:87:a1: 7a:b6:c7:ac:80:65:04:a3:c6:3e:29:5f:13:f6:18:9a:1b:4b: ce:ce:a3:52:77:91:c7:bd:94:ff:9a:b4:63:78:f1:57:20:05: 2a:0a:47:2e:cf:65:ca:b7:82:54:d7:be:81:21:6c:b9:3b:b6: 79:30:46:25:b3:8d:12:7a:0e:71:06:fe:15:e8:f9:b3:c8:d2: 11:2a:ea:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyMEUxMTAvBgNVBAUTKEFGNkExOERCM0EwNzFFRjE4Q0NBNUJFOEIzNTQzM0RG NTQ0RjBGQjIwHhcNMjUxMTAyMTg0NjIxWhcNMjUxMTA5MTg0NjIwWjAYMRYwFAYD VQQDEw02OTA3YTZmZC1hMDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEbPheEt3DaVFsAQmqchK3jUUXuX+1TVMWflasANjTxAV1f7NXfwJANMCNra JeNgLCgP/OU5KVjbN0VDqBixdMmgfKECG8atSq0ShSzuts6BtTCxhWAp5xoAURCU AiFGtrjQ6zoxLATe/+01KtFlXkLr6FkaaIJfa9I6lA/pYiKdKYHECCxsBTB1iX11 vZ4XHx57NW2eNCsIL9EOan05cG3HVI5tKaoVnf9VfWQgss/WuYfNDgTuPETpZd+O B4s17f/CcIj4waIfRbvm3hKIHYoeqFrKI0MvGuIS8aTZA7jpp/VopIERRDuFGjef H7pd734yGIJvFDg93TDzydbaJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJcG5ADs iUcpcATFAI5gk3h/iABnMB8GA1UdIwQYMBaAFK9qGNs6Bx7xjMpb6LNUM99UTw+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTIwRS8yM0FBRDk4RTFG QzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2R015bHZvczFRejMxUlBE N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Iyb1kyem9ISHZHTXlsdm9zMVF6MzFSUEQ3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTIwRS8yM0FBRDk4RTFGQzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2 R015bHZvczFRejMxUlBEN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYE2SyhVP/NXA1YIL1YtaCnE+RWkcx1ATSC+Q4gC281Dv5FnPuHS5k JojtumjqMIJuPIGVayfV673PbnIDYQwMKpzOI79TVBBOJrR2j0I4jzfxfPsBjHLe 2stnmBQ5ccCGaxGwXYX02MzlWIynddeL8ofzWfv1zML6E1UP7XqST1Gh4Z8v1ejq MrlniDM6DsQx/UQHX2a9M1afMWccZ0h7gcg/MCiW/WdUIxfFKlrVl4a4h6F6tses gGUEo8Y+KV8T9hiaG0vOzqNSd5HHvZT/mrRjePFXIAUqCkcuz2XKt4JU176BIWy5 O7Z5MEYls40Seg5xBv4V6PmzyNIRKuq1 -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:26 2025 by rpki-client