$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft File: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft (raw, json) Hash identifier: 8ktwitUGFtX58ZMSWRnjrtNHWbOT7p49widw1n6tX6A= Subject key identifier: 1F:A2:49:95:C9:8A:55:69:99:80:FD:AC:D1:57:A8:0C:8E:8A:33:7D Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft Manifest number: 0150 Signing time: Mon 27 Oct 2025 06:14:39 +0000 Manifest this update: Mon 27 Oct 2025 06:14:39 +0000 Manifest next update: Mon 03 Nov 2025 06:14:39 +0000 Files and hashes: 1: 2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl (hash: 4Oeyo1qZZStTB2EoZBK7LCsugW8Pfe6I7+cj5VqWck4=) 2: 2DCC0688B57211EEBB68526DC4F9AE02.roa (hash: 3pfVChkV7zELWja+oHQv3Km6INJzdWSQS1Y4XK0gQXg=) 3: 2E31B8FCB57211EEBB68526DC4F9AE02.roa (hash: sp0oN6M3b0vKQWiSIdTtVM/z4x+pZK5BNETB2TbgZ2E=) 4: 6F5F30B8B56111EE91C72951C4F9AE02.roa (hash: ipvSSCsuIB7+MwYDiVzzG4/g5ky54F8EF1XYBBpIM6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 06:14:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277, serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: Oct 27 06:14:39 2025 GMT Not After : Nov 3 06:14:39 2025 GMT Subject: CN=68ff0dcf-6574 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f7:e4:6c:4c:71:06:fd:f2:83:73:ee:b5:77: d8:52:70:6e:a3:62:07:b4:dd:1f:5e:26:00:6b:23: be:28:1c:d9:85:e5:53:7d:cc:c6:32:d1:57:d0:9c: c3:1f:d8:23:63:8c:fc:96:ad:a3:58:c8:8a:ee:12: 56:3e:93:c4:cb:56:6a:46:f4:1c:d3:0d:e4:f0:97: cd:3c:29:cc:e4:92:90:1c:a8:a8:cb:89:42:4c:d1: a2:2b:c3:3c:53:b0:4d:12:2e:93:29:b5:8d:74:5e: ad:a3:4b:60:9f:83:75:e7:a0:0d:7f:2b:b1:16:12: af:81:dd:ac:49:29:0c:6a:a2:62:0e:62:fe:af:f3: 3d:ee:2a:79:53:62:4e:d6:b5:31:cf:e4:71:a8:bd: b4:92:50:31:bf:ff:bc:dc:54:b6:f7:ff:5a:b6:fe: 1f:db:93:49:4e:55:42:4d:02:95:87:3c:d9:3b:96: f6:c0:c9:8f:83:62:35:0a:59:d7:b0:ad:45:66:8d: 8f:c7:78:2a:57:d4:e7:61:92:5b:f6:b0:a3:93:09: b1:00:1a:ff:ac:08:f9:39:38:1d:a7:3b:61:81:a2: 70:0c:03:91:7e:33:00:25:19:fa:7a:66:cd:d7:d7: 77:4b:78:c7:d5:6f:44:92:b5:8e:29:69:71:e6:9d: ed:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:A2:49:95:C9:8A:55:69:99:80:FD:AC:D1:57:A8:0C:8E:8A:33:7D X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:09:7f:fb:98:1a:7f:0a:71:82:7f:9d:9a:2d:cf:9f:f8:f1: ef:8a:fb:14:f1:16:b0:58:64:b8:bd:68:b2:b8:c5:17:50:c4: 6f:39:e5:f0:ae:50:5e:2b:e9:dc:9d:0c:8d:b7:b5:d8:fc:fc: 4a:05:6c:b4:9a:36:68:37:95:66:b2:7e:a6:ae:38:52:36:cd: 2a:e1:fc:ae:33:a4:e9:10:0a:26:c2:9f:fe:61:44:a5:98:6a: c0:47:32:64:cc:10:61:08:b4:6c:c8:3f:70:2e:05:e0:64:9f: 19:d9:18:85:1a:87:7b:19:3f:e5:8f:02:31:fb:2a:20:d0:a4: e2:8f:25:3e:ca:03:e7:d4:c3:25:34:e5:55:3a:65:29:0f:66: b6:68:f0:53:77:00:e4:bd:44:98:36:92:a3:fa:3e:55:02:c3: 75:df:6f:c7:81:16:ac:b6:96:89:05:db:58:ba:43:32:af:9d: 90:2b:31:0f:39:0f:c6:44:a8:eb:d7:95:f5:a6:c9:4b:0b:f9: 54:26:ef:c8:24:2a:0b:9c:2d:8f:73:94:24:3a:e6:5a:cc:3a: 87:27:9f:b1:fa:db:e5:58:41:55:0d:dd:95:5b:bf:35:db:9c: 62:98:45:0e:cc:01:4b:4f:3a:ee:29:e6:1e:ad:bf:45:e3:f9: 8a:72:1e:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyNzcxMTAvBgNVBAUTKEQ4M0I5M0UzMUU5Mzk5MzdEOENCMTVGRTM5Q0E1RTZF OEZFQUZBOUIwHhcNMjUxMDI3MDYxNDM5WhcNMjUxMTAzMDYxNDM5WjAYMRYwFAYD VQQDEw02OGZmMGRjZi02NTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PfkbExxBv3yg3PutXfYUnBuo2IHtN0fXiYAayO+KBzZheVTfczGMtFX0JzD H9gjY4z8lq2jWMiK7hJWPpPEy1ZqRvQc0w3k8JfNPCnM5JKQHKioy4lCTNGiK8M8 U7BNEi6TKbWNdF6to0tgn4N156ANfyuxFhKvgd2sSSkMaqJiDmL+r/M97ip5U2JO 1rUxz+RxqL20klAxv/+83FS29/9atv4f25NJTlVCTQKVhzzZO5b2wMmPg2I1ClnX sK1FZo2Px3gqV9TnYZJb9rCjkwmxABr/rAj5OTgdpzthgaJwDAORfjMAJRn6embN 19d3S3jH1W9EkrWOKWlx5p3tmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB+iSZXJ ilVpmYD9rNFXqAyOijN9MB8GA1UdIwQYMBaAFNg7k+Mek5k32MsV/jnKXm6P6vqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzI3Ny80M0E3RTg5NEI1 NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1UZll5eFgtT2NwZWJvX3Et cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzI3Ny80M0E3RTg5NEI1NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1U Zll5eFgtT2NwZWJvX3EtcHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoCX/7mBp/CnGCf52aLc+f+PHvivsU8RawWGS4vWiyuMUXUMRvOeXw rlBeK+ncnQyNt7XY/PxKBWy0mjZoN5Vmsn6mrjhSNs0q4fyuM6TpEAomwp/+YUSl mGrARzJkzBBhCLRsyD9wLgXgZJ8Z2RiFGod7GT/ljwIx+yog0KTijyU+ygPn1MMl NOVVOmUpD2a2aPBTdwDkvUSYNpKj+j5VAsN132/HgRastpaJBdtYukMyr52QKzEP OQ/GRKjr15X1pslLC/lUJu/IJCoLnC2Pc5QkOuZazDqHJ5+x+tvlWEFVDd2VW781 25ximEUOzAFLTzruKeYerb9F4/mKch4B -----END CERTIFICATE-----Generated at Tue Oct 28 13:43:17 2025 by rpki-client