$ rpki-client -vvf rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft File: 2CWolzNYl8B-dpODimvyAnZYDwM.mft (raw, json) Hash identifier: pBfxOVO715zoXX9BxJLulHWGJTTn2/hQdkCn2pPg6lk= Subject key identifier: B6:11:4F:27:6B:A6:45:4C:4E:C9:2B:3C:25:89:2B:35:47:66:2C:AC Authority key identifier: D8:25:A8:97:33:58:97:C0:7E:76:93:83:8A:6B:F2:02:76:58:0F:03 Certificate issuer: /CN=A9199DE2/serialNumber=D825A897335897C07E7693838A6BF20276580F03 Certificate serial: 0657 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CWolzNYl8B-dpODimvyAnZYDwM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft Manifest number: 064C Signing time: Tue 04 Nov 2025 22:46:10 +0000 Manifest this update: Tue 04 Nov 2025 22:46:09 +0000 Manifest next update: Tue 11 Nov 2025 22:46:09 +0000 Files and hashes: 1: 2CWolzNYl8B-dpODimvyAnZYDwM.crl (hash: BvM+zEs2jwm6Sa1MAAOdMmwwDRSVhHAsv0l7+5MqWso=) 2: E6ECE6E6104C11EC9074E586C4F9AE02.roa (hash: 77Yfn2zZf59rOT/IVF3xBzYxwVSoxkPTednWePSlyc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.crl rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CWolzNYl8B-dpODimvyAnZYDwM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:46:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1623 (0x657) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199DE2, serialNumber=D825A897335897C07E7693838A6BF20276580F03 Validity Not Before: Nov 4 22:46:09 2025 GMT Not After : Nov 11 22:46:09 2025 GMT Subject: CN=690a8232-89d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b5:d0:a0:55:7a:17:dd:71:a3:04:38:c1:d7: aa:86:20:f4:60:69:45:4d:e2:e7:78:21:48:fc:0c: 82:19:04:54:cd:c3:9d:4b:5e:ef:7a:07:c7:2f:7c: b2:57:1f:3e:f6:1c:ea:45:8b:f6:9d:7c:70:27:c4: 70:f0:9a:7e:ac:14:aa:f1:e9:a2:48:ce:0c:9c:57: f0:e5:ec:2f:c8:34:32:92:24:f5:5d:5c:65:4b:29: fc:0b:ec:f0:ed:1c:60:85:a2:5e:1e:1f:ad:ab:66: c3:77:b7:bf:b2:13:69:3d:60:90:98:cf:f8:54:42: a1:7b:13:fe:5a:9a:06:ac:de:4b:34:a8:21:6b:a3: db:1d:80:87:58:96:02:f6:c5:0c:4d:83:af:6f:25: 36:0c:a5:68:78:d7:9c:e0:b2:3c:d3:e0:bc:54:07: 63:2a:e9:4b:cc:96:0a:77:bc:ed:12:e9:e5:f5:8b: 4a:de:2f:cd:6a:85:35:1d:51:54:3c:98:2d:ce:af: 8d:19:48:05:dc:9c:ae:bf:b4:51:39:b3:e4:ec:2c: 2e:85:c0:a4:e2:1d:52:29:28:82:c6:ee:e8:2d:fc: 29:8e:53:be:85:8f:ef:82:39:7c:f8:41:d6:ef:b4: e8:ff:7d:43:9a:45:50:fe:25:6f:04:d8:d5:c3:ba: 49:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:11:4F:27:6B:A6:45:4C:4E:C9:2B:3C:25:89:2B:35:47:66:2C:AC X509v3 Authority Key Identifier: keyid:D8:25:A8:97:33:58:97:C0:7E:76:93:83:8A:6B:F2:02:76:58:0F:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CWolzNYl8B-dpODimvyAnZYDwM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:4c:9d:f4:f6:a6:cd:cf:81:fb:01:19:d4:db:a0:e2:41:4b: ac:b3:86:ef:e7:82:8f:06:c5:41:f7:cb:68:9e:c6:99:7d:35: d9:71:f0:ca:e1:0e:c8:2b:72:18:6e:d6:ef:2c:bd:ec:36:83: a2:32:e4:69:66:e5:78:ee:56:18:6e:e6:39:3d:ee:ca:bb:44: 2e:27:f1:81:40:aa:68:8d:b5:85:1d:f6:3a:1a:67:55:b8:5b: e0:28:83:c6:56:17:02:3b:62:e0:82:c8:1c:db:94:bb:f3:27: 02:95:6c:89:f8:cf:6b:a5:e4:6c:9a:88:c7:ef:73:12:a7:c9: da:f9:55:0c:14:37:9a:9b:2f:36:dc:f3:79:9e:59:4f:9c:08: d1:8b:65:6f:c0:a6:5f:96:de:d2:45:aa:3a:2a:3e:bc:d1:3e: 53:2b:f2:c6:f3:77:e9:e9:48:d7:8e:f1:1b:48:40:b5:f9:31: 7e:c5:fb:4c:c1:f7:50:e2:1c:31:99:d7:2c:c3:54:0c:0b:e3: b9:db:ca:2d:c3:f6:c0:2e:e7:a1:e7:22:2f:28:8c:dd:44:a2: 76:e1:9b:9f:85:66:f4:2e:b6:4d:42:45:e3:14:df:91:13:28: 96:5e:91:b6:6c:ab:c9:5c:ff:16:cc:a7:6b:f4:39:6a:76:dc: bf:d6:9a:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlERTIxMTAvBgNVBAUTKEQ4MjVBODk3MzM1ODk3QzA3RTc2OTM4MzhBNkJGMjAy NzY1ODBGMDMwHhcNMjUxMTA0MjI0NjA5WhcNMjUxMTExMjI0NjA5WjAYMRYwFAYD VQQDEw02OTBhODIzMi04OWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1LXQoFV6F91xowQ4wdeqhiD0YGlFTeLneCFI/AyCGQRUzcOdS17vegfHL3yy Vx8+9hzqRYv2nXxwJ8Rw8Jp+rBSq8emiSM4MnFfw5ewvyDQykiT1XVxlSyn8C+zw 7RxghaJeHh+tq2bDd7e/shNpPWCQmM/4VEKhexP+WpoGrN5LNKgha6PbHYCHWJYC 9sUMTYOvbyU2DKVoeNec4LI80+C8VAdjKulLzJYKd7ztEunl9YtK3i/NaoU1HVFU PJgtzq+NGUgF3Jyuv7RRObPk7CwuhcCk4h1SKSiCxu7oLfwpjlO+hY/vgjl8+EHW 77To/31DmkVQ/iVvBNjVw7pJLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLYRTydr pkVMTskrPCWJKzVHZiysMB8GA1UdIwQYMBaAFNglqJczWJfAfnaTg4pr8gJ2WA8D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OURFMi9BM0E1MjEwNkFF RDAxMUVCQkYzRkQ3NjNDNEY5QUUwMi8yQ1dvbHpOWWw4Qi1kcE9EaW12eUFuWllE d00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDV29sek5ZbDhCLWRwT0RpbXZ5QW5aWUR3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OURFMi9BM0E1MjEwNkFFRDAxMUVCQkYzRkQ3NjNDNEY5QUUwMi8yQ1dvbHpOWWw4 Qi1kcE9EaW12eUFuWllEd00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUTJ309qbNz4H7ARnU26DiQUuss4bv54KPBsVB98tonsaZfTXZcfDK 4Q7IK3IYbtbvLL3sNoOiMuRpZuV47lYYbuY5Pe7Ku0QuJ/GBQKpojbWFHfY6GmdV uFvgKIPGVhcCO2Lggsgc25S78ycClWyJ+M9rpeRsmojH73MSp8na+VUMFDeamy82 3PN5nllPnAjRi2VvwKZflt7SRao6Kj680T5TK/LG83fp6UjXjvEbSEC1+TF+xftM wfdQ4hwxmdcsw1QMC+O528otw/bALueh5yIvKIzdRKJ24ZufhWb0LrZNQkXjFN+R EyiWXpG2bKvJXP8WzKdr9Dlqdty/1ppX -----END CERTIFICATE-----Generated at Wed Nov 5 15:33:25 2025 by rpki-client