$ rpki-client -vvf rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/u2XjT0_eqStZoyVHozggimCJHgk.mft File: u2XjT0_eqStZoyVHozggimCJHgk.mft (raw, json) Hash identifier: w3KRKN2nXvM3ppwYSSckMzPZd2sJAAl7eDU/0CTtDFY= Subject key identifier: 7F:E2:D9:77:F5:74:42:EA:8C:E7:B4:14:14:2F:0D:87:D4:73:52:B0 Authority key identifier: BB:65:E3:4F:4F:DE:A9:2B:59:A3:25:47:A3:38:20:8A:60:89:1E:09 Certificate issuer: /CN=A917F224/serialNumber=BB65E34F4FDEA92B59A32547A338208A60891E09 Certificate serial: 0C13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u2XjT0_eqStZoyVHozggimCJHgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/u2XjT0_eqStZoyVHozggimCJHgk.mft Manifest number: 0C0A Signing time: Tue 04 Nov 2025 18:53:52 +0000 Manifest this update: Tue 04 Nov 2025 18:53:51 +0000 Manifest next update: Tue 11 Nov 2025 18:53:51 +0000 Files and hashes: 1: u2XjT0_eqStZoyVHozggimCJHgk.crl (hash: YFnHOIuAK39/fg3GjpX+2R9l1Mf7BxpfgeJ4bv2vfzs=) 2: A46E4EAC205911EAAB6ECF1FC4F9AE02.roa (hash: 6VuhUdY4wX4JtAdDLdZ6VRCxsSJ2dhl5mfVJFdysXwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/u2XjT0_eqStZoyVHozggimCJHgk.crl rsync://rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/u2XjT0_eqStZoyVHozggimCJHgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u2XjT0_eqStZoyVHozggimCJHgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:53:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3091 (0xc13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F224, serialNumber=BB65E34F4FDEA92B59A32547A338208A60891E09 Validity Not Before: Nov 4 18:53:51 2025 GMT Not After : Nov 11 18:53:51 2025 GMT Subject: CN=690a4bc0-2214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ae:9c:c3:4d:c6:ba:e1:48:5e:48:13:20:18: 3e:aa:ac:c9:45:94:98:b5:a4:04:8c:57:64:4a:dc: a6:65:a5:a7:9a:3a:e3:40:7d:c6:c9:2f:2a:eb:00: 33:8a:d6:06:f6:30:c8:df:95:c9:6e:e6:e9:74:f8: dc:a1:5b:d5:e1:70:c2:90:44:fc:ef:c5:03:e2:fd: a6:38:cc:36:ab:93:af:1a:20:37:bf:c1:1e:8c:09: 09:8e:e0:a4:ef:bd:13:58:c6:4d:63:16:14:ab:36: 28:c0:00:95:7c:8b:1a:1a:31:32:96:ef:82:9f:1a: c6:37:d0:99:e9:61:1d:61:8c:62:16:b7:d9:4e:70: 39:64:cd:a7:8c:69:08:f8:f2:fa:b7:01:cf:63:ee: 20:c2:a1:c7:28:48:37:98:23:23:b7:24:7d:9d:0a: e6:62:53:fc:77:be:13:8d:26:7a:53:a8:a8:0b:86: ff:ec:5d:ec:ef:76:f0:86:5e:6e:b0:2c:df:0f:50: da:2a:c5:77:34:e1:27:44:31:9d:96:a9:a8:b5:ed: f7:fd:b4:d6:99:6f:0d:20:1e:b7:4c:b0:b9:40:ac: f0:fd:d4:45:da:50:47:3b:53:1e:c1:ba:90:ae:21: af:62:a4:64:c8:00:fe:f9:a2:ef:a3:6c:c5:3a:0a: f0:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:E2:D9:77:F5:74:42:EA:8C:E7:B4:14:14:2F:0D:87:D4:73:52:B0 X509v3 Authority Key Identifier: keyid:BB:65:E3:4F:4F:DE:A9:2B:59:A3:25:47:A3:38:20:8A:60:89:1E:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/u2XjT0_eqStZoyVHozggimCJHgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u2XjT0_eqStZoyVHozggimCJHgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F224/6E9BA41A205811EAB717721BC4F9AE02/u2XjT0_eqStZoyVHozggimCJHgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:73:e4:1d:a8:aa:a0:aa:8e:9a:65:fb:7f:4b:ab:ed:c1:bc: 8f:77:4c:4a:bd:73:a9:e8:4f:a0:16:ed:fa:ba:f7:a4:35:72: 1e:f5:d0:ec:e3:97:4a:dd:b1:3b:eb:eb:38:a1:fa:c0:a4:6f: de:73:ec:4e:82:ec:e6:b0:04:a5:9b:ef:67:c9:68:38:23:8c: d6:cc:19:97:fb:72:c1:b9:c6:2e:0d:bb:e8:7a:ba:a1:4d:99: 21:1c:8a:e6:54:87:41:79:78:28:14:f1:ce:1a:ee:1f:bf:dd: 9e:a7:db:a3:68:8e:90:f4:00:a9:64:72:2a:05:bf:e6:f4:03: 13:44:c1:bf:3d:85:fd:32:37:f9:cc:ce:21:a4:5f:d5:24:a4: 5b:3e:81:2e:e5:e9:44:85:cd:5b:08:03:b7:76:d6:98:e2:31: 35:a1:c3:e1:4f:d4:0d:7f:ac:86:57:b3:f7:72:cf:92:94:c7: 27:1d:fb:05:39:27:e7:c1:3e:48:17:f0:56:65:f1:83:7f:d2: 16:67:4a:9f:9d:70:68:3d:aa:41:e8:41:f2:72:26:bd:3e:94: e7:71:8e:3b:83:07:8f:22:ef:10:6c:6a:53:f1:04:9d:0f:dc: 81:09:75:79:b7:25:b7:6b:b0:27:60:d3:2f:3c:59:f8:bf:4c: 77:9d:aa:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YyMjQxMTAvBgNVBAUTKEJCNjVFMzRGNEZERUE5MkI1OUEzMjU0N0EzMzgyMDhB NjA4OTFFMDkwHhcNMjUxMTA0MTg1MzUxWhcNMjUxMTExMTg1MzUxWjAYMRYwFAYD VQQDEw02OTBhNGJjMC0yMjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyq6cw03GuuFIXkgTIBg+qqzJRZSYtaQEjFdkStymZaWnmjrjQH3GyS8q6wAz itYG9jDI35XJbubpdPjcoVvV4XDCkET878UD4v2mOMw2q5OvGiA3v8EejAkJjuCk 770TWMZNYxYUqzYowACVfIsaGjEylu+CnxrGN9CZ6WEdYYxiFrfZTnA5ZM2njGkI +PL6twHPY+4gwqHHKEg3mCMjtyR9nQrmYlP8d74TjSZ6U6ioC4b/7F3s73bwhl5u sCzfD1DaKsV3NOEnRDGdlqmote33/bTWmW8NIB63TLC5QKzw/dRF2lBHO1MewbqQ riGvYqRkyAD++aLvo2zFOgrw0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/i2Xf1 dELqjOe0FBQvDYfUc1KwMB8GA1UdIwQYMBaAFLtl409P3qkrWaMlR6M4IIpgiR4J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjIyNC82RTlCQTQxQTIw NTgxMUVBQjcxNzcyMUJDNEY5QUUwMi91MlhqVDBfZXFTdFpveVZIb3pnZ2ltQ0pI Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UyWGpUMF9lcVN0Wm95VkhvemdnaW1DSkhnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjIyNC82RTlCQTQxQTIwNTgxMUVBQjcxNzcyMUJDNEY5QUUwMi91MlhqVDBfZXFT dFpveVZIb3pnZ2ltQ0pIZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCac+QdqKqgqo6aZft/S6vtwbyPd0xKvXOp6E+gFu36uvekNXIe9dDs 45dK3bE76+s4ofrApG/ec+xOguzmsASlm+9nyWg4I4zWzBmX+3LBucYuDbvoerqh TZkhHIrmVIdBeXgoFPHOGu4fv92ep9ujaI6Q9ACpZHIqBb/m9AMTRMG/PYX9Mjf5 zM4hpF/VJKRbPoEu5elEhc1bCAO3dtaY4jE1ocPhT9QNf6yGV7P3cs+SlMcnHfsF OSfnwT5IF/BWZfGDf9IWZ0qfnXBoPapB6EHycia9PpTncY47gwePIu8QbGpT8QSd D9yBCXV5tyW3a7AnYNMvPFn4v0x3naow -----END CERTIFICATE-----Generated at Wed Nov 5 12:05:33 2025 by rpki-client