$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft File: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft (raw, json) Hash identifier: uu9D6kSW2bzjAHk85fKBTp6RgcvS2gp2kpC7BTGunBk= Subject key identifier: 3B:1C:5E:44:77:55:67:C0:01:38:76:91:06:2C:48:00:0C:66:6D:2E Authority key identifier: D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 Certificate issuer: /CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Certificate serial: 0100 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft Manifest number: FD Signing time: Tue 04 Nov 2025 23:24:38 +0000 Manifest this update: Tue 04 Nov 2025 23:24:37 +0000 Manifest next update: Tue 11 Nov 2025 23:24:37 +0000 Files and hashes: 1: 2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl (hash: BKSh2HhIio2NjrwywzrATeIAGYnvSSf8F9G6uvpDDgI=) 2: 5A4723DA6F3C11EF8FD45F13C4F9AE02.roa (hash: nJrP5XyTG2U3goSrQUjPEnvTLR/1/bqUd5TtsJOT5YA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:24:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD, serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Validity Not Before: Nov 4 23:24:37 2025 GMT Not After : Nov 11 23:24:37 2025 GMT Subject: CN=690a8b36-972e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:55:5c:fc:84:14:74:a5:5f:69:27:51:87:ab: d5:40:d3:cf:bf:60:93:5b:5c:3c:cd:92:cb:e1:f0: 7e:d7:f3:28:95:5a:e3:3d:f0:80:3b:c8:da:2b:3b: d4:06:67:de:98:4e:3f:f7:73:c0:bf:be:c3:b1:f0: 17:a0:05:34:97:e9:fd:1b:80:aa:e6:03:56:e0:3e: 20:e8:bd:26:93:4a:6a:e4:55:a0:06:76:a1:5c:ff: da:a2:99:d4:72:3c:bd:15:4e:13:ca:9a:d5:c7:6a: 4c:13:09:26:ba:86:84:d9:91:5e:a4:02:fe:27:06: c7:1b:4b:67:1f:75:c1:83:88:1d:7a:4f:2c:9b:c2: e2:e6:b5:a1:20:fa:a8:d2:90:2c:f7:68:22:8b:43: c0:f2:c0:40:99:3d:0a:f7:b2:c3:5b:8c:d2:4b:2c: 5c:1a:9d:5c:dc:48:cf:f6:60:9d:cf:8e:34:ba:ed: f8:62:02:0c:bf:fb:0d:c9:a9:1b:cc:8c:82:31:50: fb:05:44:6d:9f:3d:0d:de:84:3d:e5:a3:7e:d4:27: 15:dc:d4:b7:84:19:c5:ea:f7:79:81:32:66:e7:45: c8:12:88:5d:e5:e6:c4:b2:31:52:f4:d8:6b:6e:47: 23:ed:f8:3d:ff:7b:16:78:21:5d:bc:f0:8b:95:7a: d9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:1C:5E:44:77:55:67:C0:01:38:76:91:06:2C:48:00:0C:66:6D:2E X509v3 Authority Key Identifier: keyid:D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:f9:b5:1f:ad:d7:c2:c0:d2:2f:9d:94:c7:04:57:7f:2f:63: 18:0a:ed:91:1d:3f:55:43:67:32:f4:8c:7a:9a:a8:25:2e:b3: d9:e7:d1:4f:0d:7d:75:35:f4:eb:a8:57:8e:65:6e:0c:0f:9c: e7:23:85:db:01:1f:7e:31:d3:ae:6b:33:4d:d5:4c:ed:d0:4d: 9c:d7:96:01:19:4c:ac:62:af:eb:02:e1:e2:a7:d1:2d:51:d2: 6f:db:17:9c:5b:6d:a3:d6:c4:22:cf:84:85:b6:2a:43:90:d1: e8:36:db:13:52:7f:1b:17:3e:b0:06:43:78:86:76:27:7c:a3: 8e:b7:22:e8:b7:90:56:8c:5f:a0:d3:bf:b5:b4:f9:92:c4:2e: 71:1a:db:2f:25:0f:29:de:92:21:e8:52:b2:78:1f:07:33:00: 3b:c2:f3:be:0c:98:ee:1e:56:3c:ed:98:18:80:75:4f:4d:08: bd:0c:f1:f7:70:01:34:5e:0b:38:41:53:c8:3c:57:e1:b1:ed: 70:ef:33:9d:8b:ff:55:5a:68:05:c1:9a:e2:cd:3c:d4:41:d5: 15:b6:52:6e:04:89:cd:cb:ee:44:6d:61:96:84:be:30:ed:41: 2d:29:a7:66:95:fe:da:5c:93:b7:6e:70:a1:9b:47:c5:5d:44: c2:55:98:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEQ5NURBMTE3MTQxMjMwMEFCNTNCM0U0ODcwRjJGNDQx RjA2QzgxMjQwHhcNMjUxMTA0MjMyNDM3WhcNMjUxMTExMjMyNDM3WjAYMRYwFAYD VQQDEw02OTBhOGIzNi05NzJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylVc/IQUdKVfaSdRh6vVQNPPv2CTW1w8zZLL4fB+1/MolVrjPfCAO8jaKzvU BmfemE4/93PAv77DsfAXoAU0l+n9G4Cq5gNW4D4g6L0mk0pq5FWgBnahXP/aopnU cjy9FU4TyprVx2pMEwkmuoaE2ZFepAL+JwbHG0tnH3XBg4gdek8sm8Li5rWhIPqo 0pAs92gii0PA8sBAmT0K97LDW4zSSyxcGp1c3EjP9mCdz440uu34YgIMv/sNyakb zIyCMVD7BURtnz0N3oQ95aN+1CcV3NS3hBnF6vd5gTJm50XIEohd5ebEsjFS9Nhr bkcj7fg9/3sWeCFdvPCLlXrZ0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDscXkR3 VWfAATh2kQYsSAAMZm0uMB8GA1UdIwQYMBaAFNldoRcUEjAKtTs+SHDy9EHwbIEk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC9FRjYzODNFMjNE OUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01BcTFPejVJY1BMMFFmQnNn U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJWMmhGeFFTTUFxMU96NUljUEwwUWZCc2dTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUVDRC9FRjYzODNFMjNEOUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01B cTFPejVJY1BMMFFmQnNnU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0+bUfrdfCwNIvnZTHBFd/L2MYCu2RHT9VQ2cy9Ix6mqglLrPZ59FP DX11NfTrqFeOZW4MD5znI4XbAR9+MdOuazNN1Uzt0E2c15YBGUysYq/rAuHip9Et UdJv2xecW22j1sQiz4SFtipDkNHoNtsTUn8bFz6wBkN4hnYnfKOOtyLot5BWjF+g 07+1tPmSxC5xGtsvJQ8p3pIh6FKyeB8HMwA7wvO+DJjuHlY87ZgYgHVPTQi9DPH3 cAE0Xgs4QVPIPFfhse1w7zOdi/9VWmgFwZrizTzUQdUVtlJuBInNy+5EbWGWhL4w 7UEtKadmlf7aXJO3bnChm0fFXUTCVZjo -----END CERTIFICATE-----Generated at Wed Nov 5 05:13:39 2025 by rpki-client