$ rpki-client -vvf rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft File: 2kObzwPK_LW-ftCuezKPafiMGys.mft (raw, json) Hash identifier: 4JfEkgXk3RsNrTRnSPSwD8AZ+c0z9gGVF4a6nB4vrXw= Subject key identifier: 45:7A:97:14:DB:2D:B0:F8:10:9A:8F:24:02:F2:A4:34:34:FD:79:A5 Authority key identifier: DA:43:9B:CF:03:CA:FC:B5:BE:7E:D0:AE:7B:32:8F:69:F8:8C:1B:2B Certificate issuer: /CN=A9188EB6/serialNumber=DA439BCF03CAFCB5BE7ED0AE7B328F69F88C1B2B Certificate serial: 04D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kObzwPK_LW-ftCuezKPafiMGys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft Manifest number: 04D2 Signing time: Sun 02 Nov 2025 23:46:25 +0000 Manifest this update: Sun 02 Nov 2025 23:46:25 +0000 Manifest next update: Sun 09 Nov 2025 23:46:25 +0000 Files and hashes: 1: 2kObzwPK_LW-ftCuezKPafiMGys.crl (hash: bBtLHsxnlB+kWS994G0/WvSsDzxR4Rik7RNAtvMYB7U=) 2: E9E440F2411511ECBC2FB20BC4F9AE02.roa (hash: oCq0GS/e8jzWI+qfCm+Q9EBQNv1mP52MN9gsJPInZfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.crl rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kObzwPK_LW-ftCuezKPafiMGys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:46:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1239 (0x4d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188EB6, serialNumber=DA439BCF03CAFCB5BE7ED0AE7B328F69F88C1B2B Validity Not Before: Nov 2 23:46:25 2025 GMT Not After : Nov 9 23:46:25 2025 GMT Subject: CN=6907ed51-ba0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:10:7a:31:2a:28:02:19:e7:aa:b7:8e:01:18: df:2e:7a:d1:4f:b7:17:c2:86:f6:74:83:9e:b2:6b: 19:36:c6:d1:92:69:8d:8d:e5:73:07:22:6b:1a:ee: 55:c6:47:57:eb:41:5e:cb:6f:83:f6:7c:36:41:8c: df:66:af:99:00:30:df:8f:24:01:6d:95:e8:c5:9a: a3:11:16:6e:3f:21:35:7f:0c:95:5c:6c:e7:7f:e6: 7f:36:48:eb:a4:df:f0:bd:f8:ef:cc:d2:2e:94:da: 8f:90:c9:15:e0:16:ea:75:81:28:fc:ad:c2:e5:2d: 2d:52:4e:0d:a8:bc:41:96:19:1c:a4:ef:1b:07:9f: 7e:7f:19:3d:00:cc:05:80:ad:7e:a3:0c:94:e9:71: 40:44:dc:20:fc:83:a8:a3:f3:6b:69:cf:b9:9b:d7: c4:85:0f:b1:1d:02:63:dc:76:d5:cf:1b:b0:d9:c2: 81:70:55:dd:c0:bf:1b:0c:91:e6:0b:4b:27:ca:d0: 98:db:68:c8:dc:c5:f5:a7:09:c9:12:b3:c4:e7:34: a7:69:42:f4:97:f8:68:9f:62:74:0a:6a:06:31:72: 2c:81:49:a6:d9:9c:f8:3d:91:c3:f0:78:49:6e:f6: 1d:da:ab:f9:e5:f7:ea:7b:7e:bf:d3:4a:68:21:0d: d1:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:7A:97:14:DB:2D:B0:F8:10:9A:8F:24:02:F2:A4:34:34:FD:79:A5 X509v3 Authority Key Identifier: keyid:DA:43:9B:CF:03:CA:FC:B5:BE:7E:D0:AE:7B:32:8F:69:F8:8C:1B:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kObzwPK_LW-ftCuezKPafiMGys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188EB6/3EBF479A411411EC8EA96D0BC4F9AE02/2kObzwPK_LW-ftCuezKPafiMGys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:be:4c:18:c3:60:b3:f7:cf:ea:b5:ec:bf:ae:c6:ba:c3:77: 0e:e5:53:f7:3e:84:05:4b:fa:d9:e0:ae:95:d5:bd:62:9b:ce: cd:84:5b:71:a1:f6:94:19:77:d1:4d:39:91:8e:78:bf:f9:68: 35:9a:1f:52:f0:b8:27:55:b8:e1:72:72:ca:50:11:a0:72:2a: 5e:de:5a:2c:cb:25:cd:b2:33:04:2c:8c:88:48:97:05:ec:68: ee:39:8b:bb:a9:73:bb:45:3c:46:d9:bd:8b:05:88:99:d0:8d: 87:c0:41:12:1d:cc:e6:a8:4c:ed:63:59:5f:15:a5:65:00:75: d8:41:58:dd:9a:1c:f4:0b:aa:66:d8:15:4d:f5:c6:4e:39:14: 2d:9e:bf:56:6c:fd:7f:e1:03:a7:3f:08:7b:9c:06:94:a5:6c: a5:bf:ca:77:26:b1:ad:31:d7:53:77:f5:d4:9b:56:db:85:fe: 5f:73:e8:26:7a:d1:05:e9:f7:3c:89:3c:69:58:6f:22:5c:33: 3b:55:99:c0:83:8b:50:0b:c2:d2:3c:ce:6c:e9:af:3b:dc:b0: 4b:a9:9e:05:d0:72:80:d1:a5:87:8e:ba:31:ea:89:c8:f2:a6: eb:76:30:f5:b4:13:68:20:e5:37:0e:b2:42:08:70:eb:0d:7d: d1:47:52:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhFQjYxMTAvBgNVBAUTKERBNDM5QkNGMDNDQUZDQjVCRTdFRDBBRTdCMzI4RjY5 Rjg4QzFCMkIwHhcNMjUxMTAyMjM0NjI1WhcNMjUxMTA5MjM0NjI1WjAYMRYwFAYD VQQDEw02OTA3ZWQ1MS1iYTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6xB6MSooAhnnqreOARjfLnrRT7cXwob2dIOesmsZNsbRkmmNjeVzByJrGu5V xkdX60Fey2+D9nw2QYzfZq+ZADDfjyQBbZXoxZqjERZuPyE1fwyVXGznf+Z/Nkjr pN/wvfjvzNIulNqPkMkV4BbqdYEo/K3C5S0tUk4NqLxBlhkcpO8bB59+fxk9AMwF gK1+owyU6XFARNwg/IOoo/Nrac+5m9fEhQ+xHQJj3HbVzxuw2cKBcFXdwL8bDJHm C0snytCY22jI3MX1pwnJErPE5zSnaUL0l/hon2J0CmoGMXIsgUmm2Zz4PZHD8HhJ bvYd2qv55ffqe36/00poIQ3RlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEV6lxTb LbD4EJqPJALypDQ0/XmlMB8GA1UdIwQYMBaAFNpDm88Dyvy1vn7Qrnsyj2n4jBsr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEVCNi8zRUJGNDc5QTQx MTQxMUVDOEVBOTZEMEJDNEY5QUUwMi8ya09iendQS19MVy1mdEN1ZXpLUGFmaU1H eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrT2J6d1BLX0xXLWZ0Q3VlektQYWZpTUd5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEVCNi8zRUJGNDc5QTQxMTQxMUVDOEVBOTZEMEJDNEY5QUUwMi8ya09iendQS19M Vy1mdEN1ZXpLUGFmaU1HeXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1vkwYw2Cz98/qtey/rsa6w3cO5VP3PoQFS/rZ4K6V1b1im87NhFtx ofaUGXfRTTmRjni/+Wg1mh9S8LgnVbjhcnLKUBGgcipe3losyyXNsjMELIyISJcF 7GjuOYu7qXO7RTxG2b2LBYiZ0I2HwEESHczmqEztY1lfFaVlAHXYQVjdmhz0C6pm 2BVN9cZOORQtnr9WbP1/4QOnPwh7nAaUpWylv8p3JrGtMddTd/XUm1bbhf5fc+gm etEF6fc8iTxpWG8iXDM7VZnAg4tQC8LSPM5s6a873LBLqZ4F0HKA0aWHjrox6onI 8qbrdjD1tBNoIOU3DrJCCHDrDX3RR1K8 -----END CERTIFICATE-----Generated at Tue Nov 4 16:31:33 2025 by rpki-client