$ rpki-client -vvf rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft File: r2oY2zoHHvGMylvos1Qz31RPD7I.mft (raw, json) Hash identifier: B68xv1mN5it2SDo4CuldUcGsxW2qou3E/SW4/1kNNQ4= Subject key identifier: E8:2C:FF:52:C7:10:F2:4F:9E:64:42:66:47:E9:DC:84:27:8E:0B:FE Authority key identifier: AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 Certificate issuer: /CN=A918E20E/serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Certificate serial: 0C10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft Manifest number: 0C09 Signing time: Tue 04 Nov 2025 18:53:31 +0000 Manifest this update: Tue 04 Nov 2025 18:53:30 +0000 Manifest next update: Tue 11 Nov 2025 18:53:30 +0000 Files and hashes: 1: r2oY2zoHHvGMylvos1Qz31RPD7I.crl (hash: Fn1ml8KkP3gt4pAnx9z5uQoDoofECIud/yThZELybp0=) 2: BFA3B5F81FC911EA8CF04E61C4F9AE02.roa (hash: GOn5I83uJZSyXlxS2nqYANbi3ziYR8hFxpWIpKnwdbc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3088 (0xc10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E20E, serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Validity Not Before: Nov 4 18:53:30 2025 GMT Not After : Nov 11 18:53:30 2025 GMT Subject: CN=690a4bab-2ea8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:37:ef:78:ef:9b:52:cf:a6:49:8b:fc:50:94: 1d:7c:fb:bd:9c:9d:f5:11:40:bd:7c:08:b7:64:06: d7:f6:39:08:96:6e:9b:63:95:f5:85:e7:e4:96:11: b0:b3:1e:8d:18:5e:a8:e5:99:ab:ed:91:98:bf:f6: b4:4e:ef:31:1f:3d:2d:5b:2f:38:d8:f2:e5:ee:b3: 59:e9:fd:4f:cf:2d:64:df:97:4e:31:9d:f5:8c:16: 37:c1:f7:ad:08:17:cb:54:87:c1:1b:66:5e:78:c3: 2d:88:5e:ac:5d:2b:0b:0b:7c:96:53:86:68:7d:6a: d3:84:4f:f5:a4:70:6d:4b:7e:22:ee:a5:a1:03:21: 71:b4:5d:2a:f5:79:cf:22:ca:09:89:ee:53:1c:eb: 1a:57:20:7d:a8:3a:32:0e:53:ab:89:eb:17:a3:cf: 1a:c1:6a:0f:b5:0d:12:60:4a:d0:71:3f:3e:bd:88: a2:6d:eb:fe:64:d3:da:65:ec:d8:92:0f:8c:f6:90: d0:f5:e4:0d:90:24:fd:1a:ee:da:09:dd:61:31:fc: 52:95:8d:85:cc:2c:2c:a3:c2:9e:38:49:3c:4e:b3: 14:c4:87:95:b7:a9:d5:38:05:e6:fd:05:62:44:6e: 01:98:30:06:bb:2d:06:09:ed:cf:5b:65:11:97:bf: 4d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:2C:FF:52:C7:10:F2:4F:9E:64:42:66:47:E9:DC:84:27:8E:0B:FE X509v3 Authority Key Identifier: keyid:AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:15:1c:45:64:9a:e0:93:3a:0f:9e:32:a1:46:92:7e:54:bc: f5:1c:90:a1:76:a8:42:5b:f7:9d:b0:c4:97:5f:a1:95:47:d9: b9:2a:c8:d9:52:4a:00:3d:87:81:a7:80:02:0e:9b:eb:0d:e3: 7b:7e:76:c7:33:57:6e:b0:96:ab:6b:08:ad:7e:4c:5b:df:18: 2d:f6:89:32:00:55:07:77:a8:62:16:ba:2d:66:de:01:e3:56: 09:6c:cc:61:03:25:a4:c4:af:e9:ea:e3:22:57:0d:60:2a:49: d6:cc:8a:a4:45:5f:d0:59:01:f3:a3:b1:af:f2:14:e4:9d:02: 6a:21:9f:b1:5d:ea:36:ff:73:1e:88:d0:50:b6:a7:2a:ca:a7: 34:3f:3e:e8:44:48:be:5b:3b:cd:17:bb:a9:a1:8a:45:f5:9e: 98:7a:82:e7:1d:07:5c:61:2c:7e:c5:21:55:5e:68:d7:23:7b: 4d:36:8c:08:74:07:06:e7:76:a9:74:d6:34:70:f8:f0:bd:16: 0a:56:a3:58:ec:12:cd:93:2b:ec:3d:95:71:00:4f:e3:48:ed: 1b:65:10:73:38:68:c3:eb:1f:de:75:90:e0:e5:68:bb:e3:1f: f6:91:cd:e4:b9:49:23:5f:3c:3e:4b:13:98:ab:89:02:39:e6: ac:66:7f:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyMEUxMTAvBgNVBAUTKEFGNkExOERCM0EwNzFFRjE4Q0NBNUJFOEIzNTQzM0RG NTQ0RjBGQjIwHhcNMjUxMTA0MTg1MzMwWhcNMjUxMTExMTg1MzMwWjAYMRYwFAYD VQQDEw02OTBhNGJhYi0yZWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDfveO+bUs+mSYv8UJQdfPu9nJ31EUC9fAi3ZAbX9jkIlm6bY5X1hefklhGw sx6NGF6o5Zmr7ZGYv/a0Tu8xHz0tWy842PLl7rNZ6f1Pzy1k35dOMZ31jBY3wfet CBfLVIfBG2ZeeMMtiF6sXSsLC3yWU4ZofWrThE/1pHBtS34i7qWhAyFxtF0q9XnP IsoJie5THOsaVyB9qDoyDlOriesXo88awWoPtQ0SYErQcT8+vYiibev+ZNPaZezY kg+M9pDQ9eQNkCT9Gu7aCd1hMfxSlY2FzCwso8KeOEk8TrMUxIeVt6nVOAXm/QVi RG4BmDAGuy0GCe3PW2URl79NywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOgs/1LH EPJPnmRCZkfp3IQnjgv+MB8GA1UdIwQYMBaAFK9qGNs6Bx7xjMpb6LNUM99UTw+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTIwRS8yM0FBRDk4RTFG QzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2R015bHZvczFRejMxUlBE N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Iyb1kyem9ISHZHTXlsdm9zMVF6MzFSUEQ3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTIwRS8yM0FBRDk4RTFGQzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2 R015bHZvczFRejMxUlBEN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPFRxFZJrgkzoPnjKhRpJ+VLz1HJChdqhCW/edsMSXX6GVR9m5KsjZ UkoAPYeBp4ACDpvrDeN7fnbHM1dusJarawitfkxb3xgt9okyAFUHd6hiFrotZt4B 41YJbMxhAyWkxK/p6uMiVw1gKknWzIqkRV/QWQHzo7Gv8hTknQJqIZ+xXeo2/3Me iNBQtqcqyqc0Pz7oREi+WzvNF7upoYpF9Z6YeoLnHQdcYSx+xSFVXmjXI3tNNowI dAcG53apdNY0cPjwvRYKVqNY7BLNkyvsPZVxAE/jSO0bZRBzOGjD6x/edZDg5Wi7 4x/2kc3kuUkjXzw+SxOYq4kCOeasZn9a -----END CERTIFICATE-----Generated at Wed Nov 5 19:50:09 2025 by rpki-client