$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft File: 2DkrDZFbmsH00jv5hBlxQG-2GsY.mft (raw, json) Hash identifier: mB1kcfXLXai7RjNTE2WkVsMQzANSlupMTavV3cUa6Kk= Subject key identifier: 07:67:09:9D:A8:08:AD:20:B9:A8:82:58:3D:89:2F:26:19:A0:66:3D Authority key identifier: D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 Certificate issuer: /CN=A9196DE5/serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Certificate serial: 09DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft Manifest number: 09C8 Signing time: Sun 02 Nov 2025 19:57:41 +0000 Manifest this update: Sun 02 Nov 2025 19:57:40 +0000 Manifest next update: Sun 09 Nov 2025 19:57:40 +0000 Files and hashes: 1: 2DkrDZFbmsH00jv5hBlxQG-2GsY.crl (hash: Ux8IYLZrmM8kNZnzI5AFjz+cEJ1sCbt27s6HUCfKH4g=) 2: 013B99DA986011F08FA4AB86C4F9AE02.roa (hash: HLqIoqQkySmNyWMIIry9IC33bxoaZanVi9jRVr97ewk=) 3: 08DD8180943211F09FC84074C4F9AE02.roa (hash: ip3SdK5nq+g35LDrzaKyacLzhVoTKoCaldxrPYYErIY=) 4: F03B784A8FEE11F0806DDB0BC4F9AE02.roa (hash: 0bU0l2z71DMFioEY89rJULUsuIwY2Qp7S5WbtYEHca4=) 5: 92B2469A90D411F09BC0A564C4F9AE02.roa (hash: TURUoK0EqdJvH1Sny3sw0728lsP1RbLjnRY1UT/NZtA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:57:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2527 (0x9df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DE5, serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Validity Not Before: Nov 2 19:57:40 2025 GMT Not After : Nov 9 19:57:40 2025 GMT Subject: CN=6907b7b4-a834 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:97:7c:92:98:0a:e4:14:62:91:a1:26:6d:37: 64:00:35:fd:e0:ce:f0:52:d3:20:2d:f7:e6:fa:af: cb:89:bb:f5:4c:9c:0c:af:6e:a9:aa:bd:fa:69:0f: 9f:dc:e6:f3:cf:3b:ed:71:e3:57:2d:e8:f5:ac:c3: 2d:b1:fd:86:94:fd:2b:f2:2c:a6:a8:cd:d7:f0:04: 20:56:8f:22:f2:17:eb:73:79:e0:9a:3d:3a:62:e1: ef:49:c0:55:49:19:64:a6:dd:89:7b:c3:e8:9c:e0: d1:00:a1:db:75:7a:3b:70:33:0c:2e:81:a1:23:08: 86:cd:56:8e:8f:a4:e2:2d:e2:00:84:57:c1:73:61: cc:5d:19:9d:85:be:d3:f8:67:ae:0d:ac:2f:45:6b: 5f:76:85:77:bc:04:16:58:88:25:3c:6a:9a:61:08: 85:1e:79:5c:5a:bd:59:1f:1b:83:df:78:a9:05:b8: 3d:17:08:28:84:3f:4d:5c:f3:4b:50:54:07:4a:5f: b3:2f:4e:6e:24:56:d9:65:ee:9d:bf:d5:9d:c9:08: 8d:bb:f7:ca:09:27:c1:da:b6:24:1b:b1:42:9d:7e: 41:74:fa:d4:d2:93:db:46:5f:30:e0:07:2b:62:08: e7:36:ee:6c:a8:eb:90:f1:16:d9:4f:d9:72:42:4a: fb:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:67:09:9D:A8:08:AD:20:B9:A8:82:58:3D:89:2F:26:19:A0:66:3D X509v3 Authority Key Identifier: keyid:D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:e8:08:ca:2d:e2:b8:8f:ba:be:1a:4c:d2:0d:47:4e:db:49: 14:03:1d:fc:c3:31:ea:f9:5c:ec:e3:b1:2c:47:b5:a2:fd:7f: 31:5f:9a:cd:78:a0:7c:e9:8c:3f:7d:58:8a:42:ce:ea:2a:d0: fc:f7:8a:ae:12:60:5c:c1:03:54:77:04:4a:66:38:d1:77:2a: 94:30:b7:77:82:a6:ed:60:10:bc:32:f4:30:8f:dc:8a:02:fe: 37:41:97:89:e3:13:cc:fa:6c:5b:e9:c0:22:88:2a:13:fe:ce: 26:f4:e6:e8:b7:08:98:5c:9a:4a:af:1c:02:ec:01:3f:40:d8: 21:0c:60:2b:54:8a:1c:5c:24:01:ee:fa:91:3d:d2:4e:54:b0: 9c:1a:91:c4:6c:c3:0e:40:cb:e1:17:fc:b6:3f:8a:e6:fd:ed: cd:5f:05:7d:c2:a3:31:81:96:86:1f:ac:7a:e7:21:2a:c4:84: 1c:c5:2d:73:ca:67:47:5d:9d:b2:d9:d6:0e:c8:a0:12:c6:64: b6:5b:c0:20:0f:04:c2:44:95:ee:22:50:de:61:76:a5:dd:37: 34:48:33:48:40:df:21:11:8c:25:03:57:2a:35:99:c3:9d:cc: ca:a9:1d:b6:f4:56:97:ce:1c:97:11:1b:5d:6d:ce:32:42:40: 03:b1:04:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZERTUxMTAvBgNVBAUTKEQ4MzkyQjBEOTE1QjlBQzFGNEQyM0JGOTg0MTk3MTQw NkZCNjFBQzYwHhcNMjUxMTAyMTk1NzQwWhcNMjUxMTA5MTk1NzQwWjAYMRYwFAYD VQQDEw02OTA3YjdiNC1hODM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6pd8kpgK5BRikaEmbTdkADX94M7wUtMgLffm+q/Libv1TJwMr26pqr36aQ+f 3ObzzzvtceNXLej1rMMtsf2GlP0r8iymqM3X8AQgVo8i8hfrc3ngmj06YuHvScBV SRlkpt2Je8PonODRAKHbdXo7cDMMLoGhIwiGzVaOj6TiLeIAhFfBc2HMXRmdhb7T +GeuDawvRWtfdoV3vAQWWIglPGqaYQiFHnlcWr1ZHxuD33ipBbg9FwgohD9NXPNL UFQHSl+zL05uJFbZZe6dv9WdyQiNu/fKCSfB2rYkG7FCnX5BdPrU0pPbRl8w4Acr YgjnNu5sqOuQ8RbZT9lyQkr70wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAdnCZ2o CK0guaiCWD2JLyYZoGY9MB8GA1UdIwQYMBaAFNg5Kw2RW5rB9NI7+YQZcUBvthrG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkRFNS83MkM1QTlDQzk0 MzAxMUVBQkQ3NUY5ODNDNEY5QUUwMi8yRGtyRFpGYm1zSDAwanY1aEJseFFHLTJH c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJEa3JEWkZibXNIMDBqdjVoQmx4UUctMkdzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkRFNS83MkM1QTlDQzk0MzAxMUVBQkQ3NUY5ODNDNEY5QUUwMi8yRGtyRFpGYm1z SDAwanY1aEJseFFHLTJHc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBx6AjKLeK4j7q+GkzSDUdO20kUAx38wzHq+Vzs47EsR7Wi/X8xX5rN eKB86Yw/fViKQs7qKtD894quEmBcwQNUdwRKZjjRdyqUMLd3gqbtYBC8MvQwj9yK Av43QZeJ4xPM+mxb6cAiiCoT/s4m9ObotwiYXJpKrxwC7AE/QNghDGArVIocXCQB 7vqRPdJOVLCcGpHEbMMOQMvhF/y2P4rm/e3NXwV9wqMxgZaGH6x65yEqxIQcxS1z ymdHXZ2y2dYOyKASxmS2W8AgDwTCRJXuIlDeYXal3Tc0SDNIQN8hEYwlA1cqNZnD nczKqR229FaXzhyXERtdbc4yQkADsQSb -----END CERTIFICATE-----Generated at Mon Nov 3 16:00:52 2025 by rpki-client