$ rpki-client -vvf rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft File: 2h2yzTH0VPaVYdhmXck--BLzl7A.mft (raw, json) Hash identifier: +VBHNW5uzAtsexfdlruKYyjof4S66nOtNBv47z/Qprk= Subject key identifier: B1:15:1D:A4:6D:97:DC:E4:84:C4:8A:60:1A:7F:45:06:3C:BA:B0:B4 Authority key identifier: DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 Certificate issuer: /CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Certificate serial: 0180 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft Manifest number: 0176 Signing time: Mon 03 Nov 2025 03:48:49 +0000 Manifest this update: Mon 03 Nov 2025 03:48:49 +0000 Manifest next update: Mon 10 Nov 2025 03:48:48 +0000 Files and hashes: 1: 2h2yzTH0VPaVYdhmXck--BLzl7A.crl (hash: 7paFud0ffGWtJv99lSjXHPMD6ra/PR6zI3Yukzzn1Yo=) 2: 730B201A81E911EEAEFE7735C4F9AE02.roa (hash: s0CFqQaJE4zfLQbz4CeHwWhJkg8L6CDsaxGgDdisTeI=) 3: 4317395081E611EE9EFE132BC4F9AE02.roa (hash: tQp/nzqfCovKInVuREO99dY4qu3efR3x/X9HpDvqlY0=) 4: E71AB92A7F7D11EE8C183162C4F9AE02.roa (hash: Dsh7pIT1SQfv6ivkNmsm2ZCHRytBDFAmEgjeRNzC7do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:48:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 384 (0x180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A7CA, serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Validity Not Before: Nov 3 03:48:49 2025 GMT Not After : Nov 10 03:48:48 2025 GMT Subject: CN=69082621-e103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:b3:23:6e:d2:e0:6e:3d:eb:3a:ff:27:ac:dc: 55:76:f1:1c:50:a1:03:f0:9f:04:17:08:37:c4:72: 43:57:39:f2:06:54:21:df:78:b0:13:3c:16:c5:3b: e5:9b:e0:f9:db:e6:bc:3e:45:b8:20:e9:94:14:85: 6c:88:fd:57:cd:95:ce:ca:21:6e:f5:12:a3:81:5c: b6:af:4c:bb:bd:a4:0e:5c:30:c2:ee:3b:c2:66:2b: f7:80:c6:11:e2:78:fb:16:f7:b4:99:48:ca:a7:1c: 8f:7a:e6:cc:90:64:7e:1b:2e:ad:67:2c:4e:b6:37: 7a:c9:a4:79:be:28:8e:54:f9:51:cc:f8:d0:7c:83: 8b:50:1d:9a:33:ac:7e:ef:5a:77:be:f9:00:89:a3: 78:26:e7:5f:1f:92:62:64:93:f2:69:d1:ad:28:11: 6d:7a:94:f6:f9:f3:54:83:f2:17:8a:ce:2d:f9:88: 97:4b:c8:0c:ed:f0:c1:28:0b:cd:fa:3f:25:eb:fd: 5b:e2:59:32:ec:d6:1e:a3:3a:b9:f7:ab:91:72:a1: 8b:2e:92:9d:14:f1:58:7d:2b:c9:26:79:65:aa:27: 2a:9d:70:d3:23:f2:53:0f:fa:4c:30:28:d4:76:55: d5:ff:f4:90:7e:38:4a:7a:75:80:72:f1:2e:64:d1: ef:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:15:1D:A4:6D:97:DC:E4:84:C4:8A:60:1A:7F:45:06:3C:BA:B0:B4 X509v3 Authority Key Identifier: keyid:DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:fb:ce:90:69:a7:ab:27:52:e6:ae:d2:c7:54:b0:ec:20:9b: f9:54:82:4d:2a:60:b9:9a:1c:ab:b4:53:0a:3c:15:ea:75:a7: 76:c9:a8:f5:97:08:4d:01:35:22:4d:ff:cf:b0:67:20:e6:f7: 9a:2d:e6:e3:d4:e8:be:1c:59:43:22:1e:59:9d:c2:af:e9:13: f5:5e:07:47:c1:77:85:18:d7:b8:78:f7:d0:50:dd:de:27:2b: a1:f2:4f:f4:49:21:60:63:fe:e2:24:1c:54:e0:31:99:c5:e9: e1:2f:24:9e:07:bb:44:00:72:51:15:78:52:61:8b:29:4e:61: 3a:5c:35:86:da:52:9f:5f:c9:00:8c:2d:a0:46:70:51:13:84: da:70:ce:cb:8c:70:7b:d1:21:10:0c:8d:77:f1:50:20:1d:5b: 77:cd:b9:cd:47:36:6b:3d:0d:ed:60:f5:48:e9:54:e2:49:01: b4:62:58:40:f2:74:ef:a3:9d:1d:b1:70:9b:93:4a:9a:7e:45: d1:d7:f4:71:e5:18:a5:4b:4a:76:91:60:15:a9:50:92:6b:80: 29:09:39:9a:c8:52:0c:67:96:66:88:31:ea:fe:d1:5c:ba:06: a3:5c:47:97:ea:f1:c9:cb:fc:cc:15:79:e8:72:d5:f0:cf:f0: eb:ff:b3:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3Q0ExMTAvBgNVBAUTKERBMURCMkNEMzFGNDU0RjY5NTYxRDg2NjVEQzkzRUY4 MTJGMzk3QjAwHhcNMjUxMTAzMDM0ODQ5WhcNMjUxMTEwMDM0ODQ4WjAYMRYwFAYD VQQDEw02OTA4MjYyMS1lMTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9bMjbtLgbj3rOv8nrNxVdvEcUKED8J8EFwg3xHJDVznyBlQh33iwEzwWxTvl m+D52+a8PkW4IOmUFIVsiP1XzZXOyiFu9RKjgVy2r0y7vaQOXDDC7jvCZiv3gMYR 4nj7Fve0mUjKpxyPeubMkGR+Gy6tZyxOtjd6yaR5viiOVPlRzPjQfIOLUB2aM6x+ 71p3vvkAiaN4JudfH5JiZJPyadGtKBFtepT2+fNUg/IXis4t+YiXS8gM7fDBKAvN +j8l6/1b4lky7NYeozq596uRcqGLLpKdFPFYfSvJJnllqicqnXDTI/JTD/pMMCjU dlXV//SQfjhKenWAcvEuZNHv9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLEVHaRt l9zkhMSKYBp/RQY8urC0MB8GA1UdIwQYMBaAFNodss0x9FT2lWHYZl3JPvgS85ew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTdDQS80Q0Y3RjE1ODdF QjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQYVZZZGhtWGNrLS1CTHps N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJoMnl6VEgwVlBhVllkaG1YY2stLUJMemw3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTdDQS80Q0Y3RjE1ODdFQjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQ YVZZZGhtWGNrLS1CTHpsN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAi+86QaaerJ1LmrtLHVLDsIJv5VIJNKmC5mhyrtFMKPBXqdad2yaj1 lwhNATUiTf/PsGcg5veaLebj1Oi+HFlDIh5ZncKv6RP1XgdHwXeFGNe4ePfQUN3e Jyuh8k/0SSFgY/7iJBxU4DGZxenhLySeB7tEAHJRFXhSYYspTmE6XDWG2lKfX8kA jC2gRnBRE4TacM7LjHB70SEQDI138VAgHVt3zbnNRzZrPQ3tYPVI6VTiSQG0YlhA 8nTvo50dsXCbk0qafkXR1/Rx5RilS0p2kWAVqVCSa4ApCTmayFIMZ5ZmiDHq/tFc ugajXEeX6vHJy/zMFXnoctXwz/Dr/7Ot -----END CERTIFICATE-----Generated at Tue Nov 4 02:14:58 2025 by rpki-client