$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft File: 2iwTK47FBxr425BJG63bwPCntEU.mft (raw, json) Hash identifier: zt/75zMgk+9U5LsEiyS56PWmPgl5WNMfW7/iM1SwQJI= Subject key identifier: DA:A3:86:45:F9:83:2E:96:31:F5:41:D8:4C:9D:55:E7:3F:A8:9C:9D Authority key identifier: DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 Certificate issuer: /CN=A91534B8/serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Certificate serial: 02D2 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft Manifest number: 02D2 Signing time: Sun 19 Oct 2025 03:31:23 +0000 Manifest this update: Sun 19 Oct 2025 03:31:22 +0000 Manifest next update: Sun 26 Oct 2025 03:31:22 +0000 Files and hashes: 1: 2iwTK47FBxr425BJG63bwPCntEU.crl (hash: lBFAXyhnwl01SrJbf/vyQ+yWOC1Sh3SiQUt11DV5D4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 722 (0x2d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Validity Not Before: Oct 19 03:31:22 2025 GMT Not After : Oct 26 03:31:22 2025 GMT Subject: CN=68f45b8b-231b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:fb:c1:51:31:a3:90:35:e2:2f:f6:cc:4b:5b: 9a:ba:63:ad:ce:de:3a:3f:59:30:f5:86:06:1a:f4: ba:05:9e:3f:cc:15:aa:25:ca:8a:fb:60:c7:7e:4e: ea:a9:ad:f3:64:4e:4a:05:25:37:5e:d5:16:fb:00: 46:8c:0e:c8:51:ce:f9:54:3b:a9:64:17:07:c2:02: 38:d8:52:b2:2a:63:06:ab:b4:ac:1a:b5:cc:57:73: eb:f5:41:65:89:c5:da:5a:98:98:dc:f9:05:df:36: 4f:37:20:b6:f7:8e:dc:46:d4:f1:3a:f0:7f:4c:8b: 8a:c2:ef:53:c5:8b:2d:32:c2:7c:1f:2a:eb:52:ca: c3:48:33:69:dc:4b:62:9d:1d:02:38:81:51:3f:88: 1e:8a:ea:f9:bf:0d:ba:f5:65:0f:98:8e:1f:5f:13: ce:df:94:51:dd:9c:06:a7:18:a6:e2:2b:91:8e:cb: bf:32:aa:f4:e1:d5:32:3c:64:48:48:65:82:ea:0d: 6e:2c:7e:1c:df:3c:b1:2b:5e:3d:c0:3b:4b:fe:12: 3e:03:2b:05:c2:e7:34:1f:72:46:90:05:27:a0:c0: 4e:7d:70:89:8b:6e:d1:3c:6f:c6:6f:3d:00:33:19: c2:e3:72:da:33:e2:bd:ac:91:fb:3e:99:25:b6:14: fe:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:A3:86:45:F9:83:2E:96:31:F5:41:D8:4C:9D:55:E7:3F:A8:9C:9D X509v3 Authority Key Identifier: keyid:DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:0a:4e:29:47:64:2e:e5:10:f5:2b:b2:a7:4b:b4:37:f3:b1: 03:f7:cb:2b:3d:d6:40:40:bb:85:86:30:19:2f:f3:a3:5d:07: 0a:81:76:de:0c:b3:b4:a0:82:4c:14:ec:8a:b5:ea:2d:af:d4: b4:f9:2d:ca:4b:e5:3b:f2:f2:e1:94:7a:5f:49:a2:7f:71:72: 98:ef:58:07:56:f0:59:81:ff:27:a5:5f:c7:dc:b7:c2:b6:5b: 2b:f6:3b:d1:e2:d9:d0:e9:fb:4e:71:92:f1:de:5b:8b:38:fa: cd:b1:0d:bc:55:b5:cf:51:a6:4e:ea:6a:dc:ad:48:ae:04:37: 26:4b:e6:12:44:01:8b:b5:a5:0d:bf:15:95:d0:5a:61:3e:20: 72:67:51:5d:7e:6d:9e:38:bf:02:f5:7e:e5:b6:d5:dc:64:9f: cf:dd:7e:8e:19:cb:d3:34:d4:c3:29:98:ab:b6:58:78:03:4e: a9:0c:fd:78:21:46:f3:3a:bc:76:f8:89:f9:18:39:40:cf:42: e6:8f:22:0c:b8:3b:4a:d2:47:2d:dc:02:75:3e:b7:48:d9:94: 4a:45:45:d0:80:ec:fd:6d:a7:d2:e7:e3:66:96:c0:3d:17:1e: e7:cb:7f:3d:da:d6:8a:39:40:c6:a7:4f:8f:d8:10:92:c1:38: b1:38:97:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERBMkMxMzJCOEVDNTA3MUFGOERCOTA0OTFCQUREQkMw RjBBN0I0NDUwHhcNMjUxMDE5MDMzMTIyWhcNMjUxMDI2MDMzMTIyWjAYMRYwFAYD VQQDEw02OGY0NWI4Yi0yMzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4PvBUTGjkDXiL/bMS1uaumOtzt46P1kw9YYGGvS6BZ4/zBWqJcqK+2DHfk7q qa3zZE5KBSU3XtUW+wBGjA7IUc75VDupZBcHwgI42FKyKmMGq7SsGrXMV3Pr9UFl icXaWpiY3PkF3zZPNyC2947cRtTxOvB/TIuKwu9TxYstMsJ8HyrrUsrDSDNp3Eti nR0COIFRP4geiur5vw269WUPmI4fXxPO35RR3ZwGpxim4iuRjsu/Mqr04dUyPGRI SGWC6g1uLH4c3zyxK149wDtL/hI+AysFwuc0H3JGkAUnoMBOfXCJi27RPG/Gbz0A MxnC43LaM+K9rJH7PpklthT+MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNqjhkX5 gy6WMfVB2EydVec/qJydMB8GA1UdIwQYMBaAFNosEyuOxQca+NuQSRut28Dwp7RF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85NjY1OTk3RTA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4cjQyNUJKRzYzYndQQ250 RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzJpd1RLNDdGQnhyNDI1QkpHNjNid1BDbnRFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85NjY1OTk3RTA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4 cjQyNUJKRzYzYndQQ250RVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOCk4pR2Qu5RD1K7KnS7Q387ED98srPdZAQLuFhjAZL/OjXQcKgXbe DLO0oIJMFOyKteotr9S0+S3KS+U78vLhlHpfSaJ/cXKY71gHVvBZgf8npV/H3LfC tlsr9jvR4tnQ6ftOcZLx3luLOPrNsQ28VbXPUaZO6mrcrUiuBDcmS+YSRAGLtaUN vxWV0FphPiByZ1Fdfm2eOL8C9X7lttXcZJ/P3X6OGcvTNNTDKZirtlh4A06pDP14 IUbzOrx2+In5GDlAz0LmjyIMuDtK0kct3AJ1PrdI2ZRKRUXQgOz9bafS5+NmlsA9 Fx7ny3892taKOUDGp0+P2BCSwTixOJdP -----END CERTIFICATE-----Generated at Mon Oct 20 16:17:43 2025 by rpki-client