$ rpki-client -vvf rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft File: 2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft (raw, json) Hash identifier: 5BofQ96qn5nJQZOkuZPwNoQ0aITctV3DJdKLxVbJ04U= Subject key identifier: F5:52:55:28:11:60:F6:71:13:E6:41:AE:5C:90:E0:B7:DF:CD:CE:E6 Authority key identifier: DB:EE:EB:C2:5A:7A:9B:9B:67:5A:04:E2:F4:21:EF:E4:6E:A7:25:20 Certificate issuer: /CN=A91A300F/serialNumber=DBEEEBC25A7A9B9B675A04E2F421EFE46EA72520 Certificate serial: 0488 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft Manifest number: 0482 Signing time: Sun 19 Oct 2025 01:57:05 +0000 Manifest this update: Sun 19 Oct 2025 01:57:05 +0000 Manifest next update: Sun 26 Oct 2025 01:57:05 +0000 Files and hashes: 1: 2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl (hash: DOYLO6SZi042s+9+QwpwL68yxlYzFYkiK9Rmza6otis=) 2: 90065F424DB511F0A1C8D30DC4F9AE02.roa (hash: wqkVYDxZ6HBCzKePRiH5zEB/9I/WLKOX58mvYx8PpGA=) 3: 9C2DE17A5D9311ECB2ABB63FC4F9AE02.roa (hash: XCMHw1WVIEMLU74HMo1cPz+oPVQmbB2z+VPLna5yZDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:57:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1160 (0x488) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A300F, serialNumber=DBEEEBC25A7A9B9B675A04E2F421EFE46EA72520 Validity Not Before: Oct 19 01:57:05 2025 GMT Not After : Oct 26 01:57:05 2025 GMT Subject: CN=68f44571-e536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:36:51:7a:9f:57:86:6f:0f:31:da:9d:be:51: 71:85:21:d9:5a:c5:7b:2f:cd:c8:b4:a3:38:85:82: f0:36:49:fd:d8:ee:53:bf:e9:89:e2:e6:c8:f2:b5: 55:f3:da:9d:16:3e:98:fc:a8:36:ee:2b:ff:40:ba: d2:96:a8:13:d2:8d:95:73:e5:dc:0d:a5:b1:44:2c: e3:15:e5:5e:44:01:a6:df:4d:83:8e:f4:8a:56:69: cd:ad:45:d5:d7:0a:bc:f6:f1:20:c4:76:fb:f5:d8: 46:15:2c:8b:3b:50:cb:ca:a9:a6:fb:32:6f:6a:9a: 96:9f:a8:3d:29:ea:c1:be:63:96:bb:85:5c:9c:8b: b8:28:93:3c:4a:06:86:19:c3:5d:26:4e:2f:cd:e7: 89:fc:b8:99:9e:0b:59:4f:31:96:0b:87:6e:41:dc: 22:5b:a6:b8:68:42:31:1a:d2:97:66:ca:65:e8:30: 75:84:fc:46:18:7c:e7:e0:c5:96:2e:f7:f8:64:fd: f0:b3:da:25:be:98:ca:b9:24:f7:58:57:bc:a3:d8: f2:ac:95:55:62:5f:79:57:59:b6:53:83:a2:f5:79: 75:60:9a:92:e5:0d:0e:a7:e6:8f:af:e8:f6:28:e7: aa:16:68:f8:0f:93:95:c6:b0:88:c5:bf:c7:ab:60: 68:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:52:55:28:11:60:F6:71:13:E6:41:AE:5C:90:E0:B7:DF:CD:CE:E6 X509v3 Authority Key Identifier: keyid:DB:EE:EB:C2:5A:7A:9B:9B:67:5A:04:E2:F4:21:EF:E4:6E:A7:25:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:03:63:85:33:05:4d:7d:e3:cd:89:99:1a:d1:c6:ec:0b:59: b0:20:70:11:6c:d9:7b:ff:b9:07:00:8b:04:0d:9f:34:25:47: 18:7e:2b:8f:ee:ef:e4:60:8f:b5:d5:31:7d:85:a5:bc:c9:4f: a1:d5:cc:b2:88:b5:d0:0e:90:ea:d7:31:e6:cf:0b:13:bb:12: 8c:d6:11:39:1c:a2:97:2a:f0:51:62:27:f6:da:7d:aa:14:69: c1:bd:65:81:26:4c:03:e7:02:ae:5c:ec:22:0f:b6:d5:5c:c3: 6f:68:03:5d:82:15:c6:35:e0:a9:2c:55:c9:3f:1f:6c:f7:20: 07:f8:a7:85:5c:05:c1:7e:bc:cb:2f:b8:6d:09:a4:8b:9b:2c: 97:d0:53:62:cc:0f:27:62:aa:55:87:5a:9b:c9:98:e1:e0:5e: 8b:f2:1d:a3:38:67:bf:c2:d2:d2:d4:b8:33:9c:87:ee:1c:f4: ec:b0:a9:fe:ba:10:98:ab:27:94:81:ed:d3:ef:d2:3e:75:32: 26:bd:41:0c:5e:dc:61:fe:63:08:fb:03:a7:60:7d:b9:72:99: d8:67:7f:b4:64:fa:13:3f:74:18:f2:e3:75:b6:0d:1f:2d:a2: c3:32:d8:4c:8c:a0:03:64:09:f0:56:57:56:b6:ce:4c:3d:b9: 9f:86:c1:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwMEYxMTAvBgNVBAUTKERCRUVFQkMyNUE3QTlCOUI2NzVBMDRFMkY0MjFFRkU0 NkVBNzI1MjAwHhcNMjUxMDE5MDE1NzA1WhcNMjUxMDI2MDE1NzA1WjAYMRYwFAYD VQQDEw02OGY0NDU3MS1lNTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyzZRep9Xhm8PMdqdvlFxhSHZWsV7L83ItKM4hYLwNkn92O5Tv+mJ4ubI8rVV 89qdFj6Y/Kg27iv/QLrSlqgT0o2Vc+XcDaWxRCzjFeVeRAGm302DjvSKVmnNrUXV 1wq89vEgxHb79dhGFSyLO1DLyqmm+zJvapqWn6g9KerBvmOWu4VcnIu4KJM8SgaG GcNdJk4vzeeJ/LiZngtZTzGWC4duQdwiW6a4aEIxGtKXZspl6DB1hPxGGHzn4MWW Lvf4ZP3ws9olvpjKuST3WFe8o9jyrJVVYl95V1m2U4Oi9Xl1YJqS5Q0Op+aPr+j2 KOeqFmj4D5OVxrCIxb/Hq2Bo5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVSVSgR YPZxE+ZBrlyQ4Lffzc7mMB8GA1UdIwQYMBaAFNvu68JaepubZ1oE4vQh7+RupyUg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzAwRi8xQUQ1QUY3NDVE OTExMUVDOUFGQjhEM0RDNEY5QUUwMi8yLTdyd2xwNm01dG5XZ1RpOUNIdjVHNm5K U0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItN3J3bHA2bTV0bldnVGk5Q0h2NUc2bkpTQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzAwRi8xQUQ1QUY3NDVEOTExMUVDOUFGQjhEM0RDNEY5QUUwMi8yLTdyd2xwNm01 dG5XZ1RpOUNIdjVHNm5KU0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMA2OFMwVNfePNiZka0cbsC1mwIHARbNl7/7kHAIsEDZ80JUcYfiuP 7u/kYI+11TF9haW8yU+h1cyyiLXQDpDq1zHmzwsTuxKM1hE5HKKXKvBRYif22n2q FGnBvWWBJkwD5wKuXOwiD7bVXMNvaANdghXGNeCpLFXJPx9s9yAH+KeFXAXBfrzL L7htCaSLmyyX0FNizA8nYqpVh1qbyZjh4F6L8h2jOGe/wtLS1LgznIfuHPTssKn+ uhCYqyeUge3T79I+dTImvUEMXtxh/mMI+wOnYH25cpnYZ3+0ZPoTP3QY8uN1tg0f LaLDMthMjKADZAnwVldWts5MPbmfhsGM -----END CERTIFICATE-----Generated at Mon Oct 20 04:08:26 2025 by rpki-client