$ rpki-client -vvf rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft File: 2xy4SFQGnkPKG3JdQuprqbU5gVs.mft (raw, json) Hash identifier: RzfBAedJvfMZAnfiQbd4vB3U7pijt0zh3/tFHBts+S0= Subject key identifier: 49:77:93:63:05:7F:03:B8:F2:B8:70:BD:5C:6A:93:BE:C2:90:8E:67 Authority key identifier: DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B Certificate issuer: /CN=A918F88D/serialNumber=DB1CB84854069E43CA1B725D42EA6BA9B539815B Certificate serial: 0CEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft Manifest number: 0CD4 Signing time: Tue 04 Nov 2025 18:18:44 +0000 Manifest this update: Tue 04 Nov 2025 18:18:43 +0000 Manifest next update: Tue 11 Nov 2025 18:18:43 +0000 Files and hashes: 1: 2xy4SFQGnkPKG3JdQuprqbU5gVs.crl (hash: E8vMNaZWL1vxRN1hE4kk36wWlwox1vHhSrzVhYNq2m0=) 2: 55903190A67E11F0BBF9853FC4F9AE02.roa (hash: AdYW9GJhci7LYEDyJ6XwBJoZPBWZtoWOpqlz3zLpEms=) 3: 18F7410671F311ECBA5DA710C4F9AE02.roa (hash: tIg3kB0f/wtqp+Q6ik7/n7dKrrQEFLMxhaaJzHV4nr8=) 4: BC36A3E8A67E11F0A35CBF40C4F9AE02.roa (hash: Zy1Cr+ByTtuPlrpGjoVSDT6QhmmfCIHpbLzangTlT68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3308 (0xcec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F88D, serialNumber=DB1CB84854069E43CA1B725D42EA6BA9B539815B Validity Not Before: Nov 4 18:18:43 2025 GMT Not After : Nov 11 18:18:43 2025 GMT Subject: CN=690a4383-3328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b5:85:46:49:24:18:60:cd:e7:a8:03:d8:41: aa:1e:a3:ec:7a:0f:21:b8:e7:47:fc:22:60:68:29: 64:f8:f8:72:95:fb:af:f3:fc:0a:b9:33:bc:7e:63: 40:4b:ce:30:96:ff:20:40:22:45:f3:0c:0a:c9:38: 9d:d2:f4:87:89:2f:ed:cf:3e:09:80:7e:31:6b:ce: 2c:49:52:70:70:28:13:28:92:e3:22:0d:41:a7:9a: 00:27:80:db:9e:29:da:5d:d2:43:6a:19:49:48:1a: c3:6f:9c:89:20:0a:19:6a:8e:2b:0b:b9:ae:8d:67: e1:bc:1d:84:9f:fe:39:7d:6d:06:74:0e:93:58:d5: 62:9d:38:84:5e:da:db:42:50:d8:1a:41:0e:69:f5: b5:fb:9b:2e:a2:c5:1f:3e:b9:7c:12:77:e1:51:63: 50:9b:bd:d2:37:1e:3d:b6:12:fb:ab:ab:c4:cd:71: f8:e8:4b:df:c5:6b:5d:ad:17:16:d4:2b:77:e5:6a: 3f:3e:db:a5:d8:52:26:b4:23:d9:5b:33:3e:93:cb: 35:57:df:1d:31:d2:ea:df:fd:65:61:50:4d:a6:7a: 1e:66:53:c2:7c:89:67:f2:d9:62:31:3c:d6:5e:7e: fe:12:fd:7e:65:1d:d6:a8:34:14:69:76:3b:81:49: 25:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:77:93:63:05:7F:03:B8:F2:B8:70:BD:5C:6A:93:BE:C2:90:8E:67 X509v3 Authority Key Identifier: keyid:DB:1C:B8:48:54:06:9E:43:CA:1B:72:5D:42:EA:6B:A9:B5:39:81:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xy4SFQGnkPKG3JdQuprqbU5gVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F88D/2A14BE08005A11EA8FDCA130C4F9AE02/2xy4SFQGnkPKG3JdQuprqbU5gVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:d5:fe:87:1d:00:18:63:7e:a2:95:64:9d:a6:70:19:89:17: 44:ea:df:bb:b3:8e:6f:bc:01:08:bf:5f:c9:b8:bf:df:83:fe: fb:64:9e:5d:cc:d1:a8:1e:da:9b:e4:76:c6:b2:a9:f0:95:ac: 75:56:6e:ee:a2:75:26:a7:81:25:c2:f1:16:77:4c:83:49:fa: 3a:f7:c4:3d:ee:ae:53:1a:24:7f:b2:ea:13:12:39:11:8a:2d: d0:93:c7:ba:ab:8a:7f:97:06:d3:6d:54:c7:35:02:8f:55:c3: 32:0d:6a:0c:80:e9:b7:64:78:b5:90:08:1c:a9:9e:f4:e3:f5: 23:64:52:cb:8f:92:b3:76:86:16:47:0f:18:0d:a7:21:4b:02: e4:a7:32:e5:93:13:48:21:f4:c9:f7:e3:ed:96:a7:6a:8c:4e: 69:49:39:8e:5b:bc:82:cc:b6:1c:b1:12:76:3c:73:04:32:0c: 5b:ef:69:91:0b:84:04:3f:11:de:88:2d:db:a9:d0:fe:a3:61: 28:3a:ec:ec:8d:99:fa:73:0c:b5:15:23:41:b9:4d:04:a9:42: 28:87:5d:37:14:df:f0:aa:07:a2:22:48:7c:9e:0a:95:60:b1: 47:74:75:bb:92:2c:70:8d:9c:75:56:f1:1d:83:d9:19:75:46: 68:9c:57:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY4OEQxMTAvBgNVBAUTKERCMUNCODQ4NTQwNjlFNDNDQTFCNzI1RDQyRUE2QkE5 QjUzOTgxNUIwHhcNMjUxMTA0MTgxODQzWhcNMjUxMTExMTgxODQzWjAYMRYwFAYD VQQDEw02OTBhNDM4My0zMzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7WFRkkkGGDN56gD2EGqHqPseg8huOdH/CJgaClk+Phylfuv8/wKuTO8fmNA S84wlv8gQCJF8wwKyTid0vSHiS/tzz4JgH4xa84sSVJwcCgTKJLjIg1Bp5oAJ4Db ninaXdJDahlJSBrDb5yJIAoZao4rC7mujWfhvB2En/45fW0GdA6TWNVinTiEXtrb QlDYGkEOafW1+5suosUfPrl8EnfhUWNQm73SNx49thL7q6vEzXH46EvfxWtdrRcW 1Ct35Wo/Ptul2FImtCPZWzM+k8s1V98dMdLq3/1lYVBNpnoeZlPCfIln8tliMTzW Xn7+Ev1+ZR3WqDQUaXY7gUkluwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEl3k2MF fwO48rhwvVxqk77CkI5nMB8GA1UdIwQYMBaAFNscuEhUBp5DyhtyXULqa6m1OYFb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjg4RC8yQTE0QkUwODAw NUExMUVBOEZEQ0ExMzBDNEY5QUUwMi8yeHk0U0ZRR25rUEtHM0pkUXVwcnFiVTVn VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ4eTRTRlFHbmtQS0czSmRRdXBycWJVNWdWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjg4RC8yQTE0QkUwODAwNUExMUVBOEZEQ0ExMzBDNEY5QUUwMi8yeHk0U0ZRR25r UEtHM0pkUXVwcnFiVTVnVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj1f6HHQAYY36ilWSdpnAZiRdE6t+7s45vvAEIv1/JuL/fg/77ZJ5d zNGoHtqb5HbGsqnwlax1Vm7uonUmp4ElwvEWd0yDSfo698Q97q5TGiR/suoTEjkR ii3Qk8e6q4p/lwbTbVTHNQKPVcMyDWoMgOm3ZHi1kAgcqZ704/UjZFLLj5KzdoYW Rw8YDachSwLkpzLlkxNIIfTJ9+PtlqdqjE5pSTmOW7yCzLYcsRJ2PHMEMgxb72mR C4QEPxHeiC3bqdD+o2EoOuzsjZn6cwy1FSNBuU0EqUIoh103FN/wqgeiIkh8ngqV YLFHdHW7kixwjZx1VvEdg9kZdUZonFeY -----END CERTIFICATE-----Generated at Wed Nov 5 05:15:32 2025 by rpki-client