$ rpki-client -vvf rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft File: 2kdUAUEh0yaH2X05LZBgSagU_MM.mft (raw, json) Hash identifier: p2QzljG2vJMxz5CDu7WZ2AfKv233u07D6V5+yIpbtS8= Subject key identifier: FA:AC:83:A5:86:49:31:39:BA:94:EA:23:54:BB:30:10:14:F2:40:EA Authority key identifier: DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3 Certificate issuer: /CN=A91777A6/serialNumber=DA4754014121D32687D97D392D906049A814FCC3 Certificate serial: 028E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft Manifest number: 0289 Signing time: Sun 19 Oct 2025 03:49:33 +0000 Manifest this update: Sun 19 Oct 2025 03:49:33 +0000 Manifest next update: Sun 26 Oct 2025 03:49:33 +0000 Files and hashes: 1: 2kdUAUEh0yaH2X05LZBgSagU_MM.crl (hash: DYFaJx4mueI20bAIUEsP+BQSAK0TodD230MEKZRuAMA=) 2: 930770F4244C11ED95AA5569C4F9AE02.roa (hash: ULGKwEOFyOrsmtR9RLcNHZ1T/UHrIBp7ZTGPrjal32s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:49:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 654 (0x28e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777A6, serialNumber=DA4754014121D32687D97D392D906049A814FCC3 Validity Not Before: Oct 19 03:49:33 2025 GMT Not After : Oct 26 03:49:33 2025 GMT Subject: CN=68f45fcd-3fe6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:72:d8:c3:03:85:c3:e9:47:4f:47:6b:1b:f7: 9c:d8:e9:ac:40:71:9b:8e:20:58:fa:5e:d7:8a:01: 51:7a:b7:9a:87:66:08:3a:f4:6c:67:79:cd:07:02: f2:71:fa:d9:3a:7a:13:15:41:e4:43:15:ee:37:7b: ff:d1:ba:68:f0:c0:10:a0:23:83:46:e6:f5:9c:df: d4:8c:2b:2a:73:10:83:02:3a:c8:de:55:6f:56:5b: 15:67:1a:45:92:6c:73:95:37:32:8e:f2:73:56:1a: c6:ab:aa:64:53:fc:ac:41:df:73:07:6d:ee:73:e5: ff:79:dd:5e:bf:be:10:be:4c:5e:7f:a1:ed:25:df: 75:e5:43:07:6a:77:f1:4b:44:d3:cd:2b:f8:fc:cb: 33:51:c7:d5:89:09:6a:51:0b:9b:c4:ec:c9:51:5b: 3a:52:53:86:b3:38:53:1e:ec:4c:d3:fc:e8:b5:41: 3a:7f:cf:e9:8a:ed:ec:79:4b:87:c5:35:26:30:19: e1:55:db:27:10:0b:af:d1:f4:df:7b:8f:d0:3b:32: 6b:9d:cd:bf:01:6c:3b:7e:d6:95:d7:70:c4:cd:37: 37:cc:75:f4:0d:4d:a4:97:d0:3d:f2:d3:fd:9c:8b: ad:bb:50:2b:34:60:d4:4b:3b:b2:ca:45:39:35:3d: 8d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:AC:83:A5:86:49:31:39:BA:94:EA:23:54:BB:30:10:14:F2:40:EA X509v3 Authority Key Identifier: keyid:DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:a2:51:f3:dd:a3:10:5b:d5:53:19:4f:2f:e4:e7:ec:6c:b6: 80:80:cf:95:06:94:54:85:1f:97:2e:48:43:64:df:d4:77:bc: c1:e5:44:84:9e:ba:d7:42:67:56:d6:c5:7d:ad:8a:f1:31:5e: 80:ee:6f:22:47:03:08:19:3a:1b:ec:e3:10:1a:2f:50:05:79: 93:31:02:54:a2:05:d2:66:0e:55:47:8d:a4:14:6d:3e:0b:eb: 10:66:15:50:54:80:0c:1e:5d:07:05:f4:c5:aa:b6:a1:22:22: 5c:6a:69:e1:eb:13:8d:97:33:b3:20:67:1a:f1:dd:8b:f2:c2: 70:ad:73:f6:4c:9a:74:f7:da:1d:35:a7:66:18:30:7a:26:a9: 69:16:0d:91:43:d5:9c:ff:32:6b:f0:83:4e:34:26:3c:98:63: 02:01:ef:ef:16:f5:40:df:4f:fa:90:e6:be:d1:55:b4:cf:6e: 55:cf:5d:28:59:68:fd:fa:2b:62:d3:7b:62:3d:b4:f5:b1:a2: 42:16:74:cd:13:b6:97:39:38:24:22:ee:ec:e1:14:e8:61:79: 0c:22:84:ff:19:2c:e2:dc:8a:d3:02:90:74:a8:7e:0a:39:f6: 46:8e:92:6a:f5:a8:d7:a3:df:29:35:15:e4:85:5a:90:7c:8c: 71:26:4e:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc3QTYxMTAvBgNVBAUTKERBNDc1NDAxNDEyMUQzMjY4N0Q5N0QzOTJEOTA2MDQ5 QTgxNEZDQzMwHhcNMjUxMDE5MDM0OTMzWhcNMjUxMDI2MDM0OTMzWjAYMRYwFAYD VQQDEw02OGY0NWZjZC0zZmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp3LYwwOFw+lHT0drG/ec2OmsQHGbjiBY+l7XigFRereah2YIOvRsZ3nNBwLy cfrZOnoTFUHkQxXuN3v/0bpo8MAQoCODRub1nN/UjCsqcxCDAjrI3lVvVlsVZxpF kmxzlTcyjvJzVhrGq6pkU/ysQd9zB23uc+X/ed1ev74Qvkxef6HtJd915UMHanfx S0TTzSv4/MszUcfViQlqUQubxOzJUVs6UlOGszhTHuxM0/zotUE6f8/piu3seUuH xTUmMBnhVdsnEAuv0fTfe4/QOzJrnc2/AWw7ftaV13DEzTc3zHX0DU2kl9A98tP9 nIutu1ArNGDUSzuyykU5NT2N7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPqsg6WG STE5upTqI1S7MBAU8kDqMB8GA1UdIwQYMBaAFNpHVAFBIdMmh9l9OS2QYEmoFPzD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzdBNi9DOEE3OTlEMjI0 NDcxMUVEQjE2NTUwNTNDNEY5QUUwMi8ya2RVQVVFaDB5YUgyWDA1TFpCZ1NhZ1Vf TU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrZFVBVUVoMHlhSDJYMDVMWkJnU2FnVV9NTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzdBNi9DOEE3OTlEMjI0NDcxMUVEQjE2NTUwNTNDNEY5QUUwMi8ya2RVQVVFaDB5 YUgyWDA1TFpCZ1NhZ1VfTU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNolHz3aMQW9VTGU8v5OfsbLaAgM+VBpRUhR+XLkhDZN/Ud7zB5USE nrrXQmdW1sV9rYrxMV6A7m8iRwMIGTob7OMQGi9QBXmTMQJUogXSZg5VR42kFG0+ C+sQZhVQVIAMHl0HBfTFqrahIiJcamnh6xONlzOzIGca8d2L8sJwrXP2TJp099od NadmGDB6JqlpFg2RQ9Wc/zJr8INONCY8mGMCAe/vFvVA30/6kOa+0VW0z25Vz10o WWj9+iti03tiPbT1saJCFnTNE7aXOTgkIu7s4RToYXkMIoT/GSzi3IrTApB0qH4K OfZGjpJq9ajXo98pNRXkhVqQfIxxJk7i -----END CERTIFICATE-----Generated at Mon Oct 20 13:11:01 2025 by rpki-client