$ rpki-client -vvf rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft File: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft (raw, json) Hash identifier: nDLZcE/lCFbXKAv1xWPYkA/tYRIeaKr/pvBi8ogkUQI= Subject key identifier: BA:27:E7:03:0B:A3:E5:0C:FC:36:BB:4A:86:DF:07:40:A4:3A:92:F6 Authority key identifier: D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F Certificate issuer: /CN=A91758EC/serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft Manifest number: 35 Signing time: Sun 19 Oct 2025 11:10:19 +0000 Manifest this update: Sun 19 Oct 2025 11:10:18 +0000 Manifest next update: Sun 26 Oct 2025 11:10:18 +0000 Files and hashes: 1: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl (hash: QtyUeoqweVTFwGFb3B3FmTJzVpugBf2mZbudFubN/WU=) 2: 9DA6D1866E1C11F0B7ED1D84C4F9AE02.roa (hash: Ab7z11j/JWV2srLlnZVUsiX2l5YoRDQg2qGXrcUnimg=) 3: 312F0E7E6E1C11F0AB99F682C4F9AE02.roa (hash: TPTw4itouUrT3zWp67Qh/kFVGTIQgN0gjeYV7fEtXi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:10:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758EC, serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Validity Not Before: Oct 19 11:10:18 2025 GMT Not After : Oct 26 11:10:18 2025 GMT Subject: CN=68f4c71b-01aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9b:62:3d:c3:10:f1:8b:53:3e:5a:6b:f4:b5: 72:45:83:aa:41:b1:e6:fc:4e:13:1f:15:63:f4:2a: 28:8a:d9:e9:6d:88:74:9a:18:57:d0:d5:e4:cd:e8: cb:08:5b:bc:8b:b3:0a:8b:5b:ae:78:0f:fb:6b:a5: ec:b4:dc:fe:c8:c1:aa:1c:36:c1:6a:4a:e4:0f:32: e8:14:31:b9:c6:13:bf:53:c6:4a:c9:1f:45:6e:00: 22:65:7f:50:0d:3b:4f:e7:ac:51:34:18:ee:7f:b0: 94:7a:fb:7d:c9:38:69:01:b1:55:90:8c:0b:71:bf: 11:e4:8c:46:73:6c:b3:17:d2:49:29:09:1e:2a:a3: 2a:46:80:22:14:62:11:01:33:d0:bc:84:44:6b:ea: 45:2b:36:a0:8d:fb:df:3a:87:42:2d:da:dc:f3:c9: 75:40:39:e9:4d:e6:5a:98:69:f8:54:38:c0:f4:0f: 48:ee:e4:68:1c:0f:2a:03:11:f1:23:47:95:b9:26: 65:a2:d5:94:09:dd:2c:90:6b:49:93:d2:52:90:bb: 98:66:a1:e2:bc:3b:f7:7f:dd:81:96:5d:5c:49:6a: f9:ea:bf:94:c7:06:75:36:c4:2c:37:3d:c8:6a:0a: b9:7b:a9:a8:88:7f:9d:fb:35:6e:38:01:c5:58:87: 06:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:27:E7:03:0B:A3:E5:0C:FC:36:BB:4A:86:DF:07:40:A4:3A:92:F6 X509v3 Authority Key Identifier: keyid:D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:9b:22:d4:61:6e:e7:1c:6c:b6:e3:50:cd:b4:76:d2:38:d5: 00:da:3b:51:c8:11:3a:7b:47:05:65:a1:d7:4b:c9:da:20:cf: 59:93:5b:24:0f:02:48:f6:3b:d7:53:a5:ec:ba:2b:76:d2:0f: 58:c0:b1:40:97:e2:05:94:4b:79:aa:66:bb:af:e5:d7:d7:db: 78:c9:2f:d0:dd:6a:f6:b8:3c:97:ed:d8:32:12:26:44:d2:0c: 11:1c:45:8c:42:4d:8d:23:1d:91:9e:11:a0:18:8e:1f:49:95: 64:6f:d0:7d:e1:10:e7:09:0c:ad:f4:34:56:b6:ef:a1:58:dc: 39:8b:1b:58:7d:a2:a1:83:35:08:fa:1f:ca:57:6b:b8:d3:ec: d1:c1:51:02:19:a8:aa:96:d2:e3:80:b9:25:a0:85:9c:63:7f: 91:a5:62:13:f7:4d:82:25:62:1c:33:17:96:12:3e:8e:5f:4e: c2:41:ed:92:9f:f8:24:eb:f1:e5:85:4b:64:69:19:2e:11:5c: ae:63:52:90:b2:98:36:86:cc:5e:69:44:fd:f5:5b:4d:b8:9d: f8:eb:6c:d2:8e:2c:0b:52:77:9f:3a:5b:4c:97:61:00:ac:24: 9d:fc:0e:25:73:65:d6:87:f2:42:ad:6e:8d:8f:c1:b1:4e:00: 58:9c:10:a2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NThFQzExMC8GA1UEBRMoRDgyN0I2ODQzRUI3RjZCOUYwRUQ1RjJGRjcyMzQ0QTUy QzA0QjQ5RjAeFw0yNTEwMTkxMTEwMThaFw0yNTEwMjYxMTEwMThaMBgxFjAUBgNV BAMTDTY4ZjRjNzFiLTAxYWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzm2I9wxDxi1M+Wmv0tXJFg6pBseb8ThMfFWP0KiiK2eltiHSaGFfQ1eTN6MsI W7yLswqLW654D/trpey03P7IwaocNsFqSuQPMugUMbnGE79TxkrJH0VuACJlf1AN O0/nrFE0GO5/sJR6+33JOGkBsVWQjAtxvxHkjEZzbLMX0kkpCR4qoypGgCIUYhEB M9C8hERr6kUrNqCN+986h0It2tzzyXVAOelN5lqYafhUOMD0D0ju5GgcDyoDEfEj R5W5JmWi1ZQJ3SyQa0mT0lKQu5hmoeK8O/d/3YGWXVxJavnqv5THBnU2xCw3Pchq Crl7qaiIf537NW44AcVYhwavAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuifnAwuj 5Qz8NrtKht8HQKQ6kvYwHwYDVR0jBBgwFoAU2Ce2hD639rnw7V8v9yNEpSwEtJ8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1OEVDLzZCRjg2Qjg0NjYz MDExRjBCOURDNEU2NEM0RjlBRTAyLzJDZTJoRDYzOXJudzdWOHY5eU5FcFN3RXRK OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMkNlMmhENjM5cm53N1Y4djl5TkVwU3dFdEo4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 OEVDLzZCRjg2Qjg0NjYzMDExRjBCOURDNEU2NEM0RjlBRTAyLzJDZTJoRDYzOXJu dzdWOHY5eU5FcFN3RXRKOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALCbItRhbuccbLbjUM20dtI41QDaO1HIETp7RwVloddLydogz1mTWyQP Akj2O9dTpey6K3bSD1jAsUCX4gWUS3mqZruv5dfX23jJL9Ddava4PJft2DISJkTS DBEcRYxCTY0jHZGeEaAYjh9JlWRv0H3hEOcJDK30NFa276FY3DmLG1h9oqGDNQj6 H8pXa7jT7NHBUQIZqKqW0uOAuSWghZxjf5GlYhP3TYIlYhwzF5YSPo5fTsJB7ZKf +CTr8eWFS2RpGS4RXK5jUpCymDaGzF5pRP31W024nfjrbNKOLAtSd586W0yXYQCs JJ38DiVzZdaH8kKtbo2PwbFOAFicEKI= -----END CERTIFICATE-----Generated at Mon Oct 20 21:01:17 2025 by rpki-client