$ rpki-client -vvf rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft File: 2h2yzTH0VPaVYdhmXck--BLzl7A.mft (raw, json) Hash identifier: UNMFzOXAFX+7FYEp8fU40S+wvaoonUDWclmVXh0ulRY= Subject key identifier: A1:39:64:3F:A3:00:B2:ED:0B:16:05:E6:B9:C4:1A:D0:74:8F:C0:69 Authority key identifier: DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 Certificate issuer: /CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Certificate serial: 017C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft Manifest number: 0172 Signing time: Mon 27 Oct 2025 05:45:33 +0000 Manifest this update: Mon 27 Oct 2025 05:45:33 +0000 Manifest next update: Mon 03 Nov 2025 05:45:33 +0000 Files and hashes: 1: 2h2yzTH0VPaVYdhmXck--BLzl7A.crl (hash: wpQ9NN7yp56O25Pj897WiDWmk25VR8iBHRnQduF0qAs=) 2: 730B201A81E911EEAEFE7735C4F9AE02.roa (hash: s0CFqQaJE4zfLQbz4CeHwWhJkg8L6CDsaxGgDdisTeI=) 3: 4317395081E611EE9EFE132BC4F9AE02.roa (hash: tQp/nzqfCovKInVuREO99dY4qu3efR3x/X9HpDvqlY0=) 4: E71AB92A7F7D11EE8C183162C4F9AE02.roa (hash: Dsh7pIT1SQfv6ivkNmsm2ZCHRytBDFAmEgjeRNzC7do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 05:45:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A7CA, serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Validity Not Before: Oct 27 05:45:33 2025 GMT Not After : Nov 3 05:45:33 2025 GMT Subject: CN=68ff06fd-48ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:83:ea:cc:70:45:79:0b:97:db:e8:bc:da:fa: d7:d1:0e:c5:0e:66:6b:1a:7e:52:0f:b3:38:93:8a: 78:de:72:b6:1c:0a:8d:ef:65:cd:d9:90:aa:da:0c: 33:7b:8f:82:42:34:3e:06:2b:02:4a:d9:4b:50:65: ab:57:16:1f:04:7a:69:7a:83:7a:3d:ca:d0:35:fc: 8f:0d:72:90:92:13:21:15:6a:ed:56:62:d5:64:32: 20:51:02:ac:c0:13:f8:7e:3d:62:e3:0f:b8:9d:08: 18:83:aa:ad:66:5d:41:5f:69:fa:45:80:e9:41:fa: b9:4b:f4:ae:ea:b2:56:14:7a:76:3d:36:ee:6b:ae: 35:e4:d0:ce:c0:54:63:2d:51:3e:40:a4:24:52:48: 65:24:13:fb:97:8b:84:23:3d:bf:80:a7:a5:45:71: 14:b3:4d:69:83:cf:d4:18:20:72:c5:80:8e:4d:23: 84:57:d2:78:f4:50:05:95:b2:d6:38:17:54:a3:0f: be:e0:da:59:91:73:2c:14:72:08:47:95:42:fa:74: e7:bd:0d:d9:aa:af:05:a3:7a:49:bc:31:26:94:6e: ca:f8:40:39:4e:20:ba:33:70:a0:c2:c6:54:b5:9a: 04:8f:5b:8f:a6:7a:4a:7f:da:52:e7:bf:c7:79:f5: a7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:39:64:3F:A3:00:B2:ED:0B:16:05:E6:B9:C4:1A:D0:74:8F:C0:69 X509v3 Authority Key Identifier: keyid:DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:ae:4f:44:c6:f1:09:23:0a:cf:3f:d0:cf:5d:91:a0:05:96: cf:21:27:0f:c9:a2:dd:1e:c9:ff:d4:18:a7:b3:93:61:02:9d: f8:07:f1:0b:85:5b:c2:2b:e4:0b:73:b2:d2:81:ed:c3:28:3c: a9:4e:67:29:74:31:7a:70:86:3f:42:df:27:11:bd:97:5c:bc: 53:9c:9b:0e:ca:8d:91:78:3e:9d:16:01:9f:39:fc:fa:00:dc: c5:30:aa:0e:75:38:b1:da:2c:9f:49:f4:ee:d7:30:94:8b:fb: 7b:d3:cb:d1:a4:d3:14:69:19:b2:44:86:1c:0f:d6:dd:aa:e2: 93:de:9b:ae:bb:0a:65:bc:59:1e:a3:3c:89:31:12:2c:69:e5: 4e:e7:62:07:5c:a5:58:ad:42:77:5a:f3:0a:e7:85:fb:dc:19: 3b:44:5f:fb:60:3a:88:e3:e5:e6:09:07:7a:c6:98:28:e6:5a: 45:a1:f3:0b:69:ed:98:6e:ae:bf:5e:56:9e:ea:3c:ae:49:46: 52:4c:13:cd:1c:ff:ad:14:58:69:6b:cc:c4:d4:90:44:77:0d: c2:a1:58:97:29:d3:40:f5:e4:3c:43:1b:f7:4a:2c:00:8c:17: d6:11:18:bf:d2:f7:d0:7b:42:16:c6:41:af:0f:7f:b4:67:1a: 0f:b5:9e:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3Q0ExMTAvBgNVBAUTKERBMURCMkNEMzFGNDU0RjY5NTYxRDg2NjVEQzkzRUY4 MTJGMzk3QjAwHhcNMjUxMDI3MDU0NTMzWhcNMjUxMTAzMDU0NTMzWjAYMRYwFAYD VQQDEw02OGZmMDZmZC00OGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8IPqzHBFeQuX2+i82vrX0Q7FDmZrGn5SD7M4k4p43nK2HAqN72XN2ZCq2gwz e4+CQjQ+BisCStlLUGWrVxYfBHppeoN6PcrQNfyPDXKQkhMhFWrtVmLVZDIgUQKs wBP4fj1i4w+4nQgYg6qtZl1BX2n6RYDpQfq5S/Su6rJWFHp2PTbua6415NDOwFRj LVE+QKQkUkhlJBP7l4uEIz2/gKelRXEUs01pg8/UGCByxYCOTSOEV9J49FAFlbLW OBdUow++4NpZkXMsFHIIR5VC+nTnvQ3Zqq8Fo3pJvDEmlG7K+EA5TiC6M3CgwsZU tZoEj1uPpnpKf9pS57/HefWnDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKE5ZD+j ALLtCxYF5rnEGtB0j8BpMB8GA1UdIwQYMBaAFNodss0x9FT2lWHYZl3JPvgS85ew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTdDQS80Q0Y3RjE1ODdF QjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQYVZZZGhtWGNrLS1CTHps N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJoMnl6VEgwVlBhVllkaG1YY2stLUJMemw3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTdDQS80Q0Y3RjE1ODdFQjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQ YVZZZGhtWGNrLS1CTHpsN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOrk9ExvEJIwrPP9DPXZGgBZbPIScPyaLdHsn/1Bins5NhAp34B/EL hVvCK+QLc7LSge3DKDypTmcpdDF6cIY/Qt8nEb2XXLxTnJsOyo2ReD6dFgGfOfz6 ANzFMKoOdTix2iyfSfTu1zCUi/t708vRpNMUaRmyRIYcD9bdquKT3puuuwplvFke ozyJMRIsaeVO52IHXKVYrUJ3WvMK54X73Bk7RF/7YDqI4+XmCQd6xpgo5lpFofML ae2Ybq6/Xlae6jyuSUZSTBPNHP+tFFhpa8zE1JBEdw3CoViXKdNA9eQ8Qxv3SiwA jBfWERi/0vfQe0IWxkGvD3+0ZxoPtZ5j -----END CERTIFICATE-----Generated at Mon Oct 27 09:22:50 2025 by rpki-client