$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft File: r2ctqMXR1sgNUGF4yefLdE9uOOY.mft (raw, json) Hash identifier: P7r6bLBSkQp3d8Ad8WAyRZyi4jOSoRvZUNNWiHPJbJQ= Subject key identifier: 10:A7:AA:58:BD:64:BC:BB:18:2E:BC:3D:62:40:58:32:C8:8A:B2:24 Authority key identifier: AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 Certificate issuer: /CN=A91A6F2D/serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft Manifest number: AB Signing time: Sun 19 Oct 2025 00:25:02 +0000 Manifest this update: Sun 19 Oct 2025 00:25:02 +0000 Manifest next update: Sun 26 Oct 2025 00:25:02 +0000 Files and hashes: 1: r2ctqMXR1sgNUGF4yefLdE9uOOY.crl (hash: rNoVebScMZYR2OAulyU2rdZjuyM23/eBTnVddVhpDyI=) 2: FBE0AB56AC6511EFAEAA8A3CC4F9AE02.roa (hash: 05N/6Qhw5iJe1Qr/JCmwvRl4veGMACl1Zh2wsIyWrXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:25:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F2D, serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Validity Not Before: Oct 19 00:25:02 2025 GMT Not After : Oct 26 00:25:02 2025 GMT Subject: CN=68f42fde-28bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f5:d7:80:42:ee:3b:e1:9c:95:8e:ca:81:3a: e4:14:c9:74:bb:6f:54:c5:21:7b:c8:3d:1f:5b:08: 01:52:e2:8b:76:3d:eb:64:2b:fb:cd:40:b6:63:04: b2:c6:1b:05:be:89:e1:ee:51:64:a7:b7:9b:7f:e4: a3:23:c6:2a:69:b5:92:76:53:8c:f3:2d:d5:61:8d: d9:be:36:3a:30:ef:ca:76:31:e8:b8:3b:f2:cb:67: 91:43:9b:36:b3:7c:68:31:b1:8c:1e:2f:bb:7f:a4: 6b:76:b3:95:4f:31:85:20:31:d1:10:6a:7d:05:cc: a0:cc:33:45:58:bd:15:e3:11:55:4e:33:d4:d0:65: 43:7e:c2:01:ab:be:6d:af:83:d0:f1:f1:0f:ed:34: 4f:f7:ae:44:e3:8e:3c:78:c8:a0:55:d4:16:41:98: f9:e0:be:31:c5:d1:51:b9:8c:93:71:bf:85:85:06: 57:80:a9:4b:ce:60:c6:1b:d2:2a:17:a6:e7:71:db: ef:59:d9:71:be:3e:5f:ab:31:24:f5:67:18:c6:50: b4:de:97:e7:76:35:61:a3:ca:c4:f5:f7:3a:b8:6e: c7:d5:a9:2c:95:69:9a:4d:08:53:37:52:4b:26:63: 81:6d:92:f9:a7:5e:95:15:fa:d3:57:44:eb:b1:4b: d4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:A7:AA:58:BD:64:BC:BB:18:2E:BC:3D:62:40:58:32:C8:8A:B2:24 X509v3 Authority Key Identifier: keyid:AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:22:ae:73:2e:b5:de:fa:2c:ab:99:9f:09:06:bb:8f:7e:64: 5e:2f:60:7b:ee:04:8e:73:d4:73:48:43:a2:4b:cb:5a:5a:74: b9:d0:d2:27:9b:10:de:14:cf:4a:4c:99:f4:35:43:37:09:86: b6:08:7a:dc:e2:be:12:31:79:72:27:a5:3e:61:f4:fb:d0:20: 43:26:b9:73:36:aa:1e:d4:e8:78:3f:8c:ee:f9:6b:ab:88:64: 2e:d8:d6:20:25:f3:89:49:e2:f3:5d:5c:cd:20:d6:81:f0:4f: ba:58:28:9f:ef:9a:3f:72:6b:f3:d2:fd:3e:d5:ec:8b:15:ea: 4b:f9:10:f2:d5:bf:a1:01:90:6d:cb:d2:5c:cc:54:2f:cc:88: ab:14:27:77:cd:ca:8f:88:c5:30:c2:76:e9:e2:4d:ce:3a:47: 88:87:f3:73:36:3e:fe:52:5a:2b:1e:c1:ad:41:c3:a7:45:b5: bd:c4:ea:cb:99:be:bf:d0:9f:ba:24:01:4d:85:43:3b:da:b1: 3e:6c:91:fb:c3:cd:fc:ba:12:23:f6:b1:16:ca:3e:3e:32:02: 40:56:25:a6:c9:db:a3:9f:38:9e:7f:ef:90:0e:c6:55:56:b7: ae:2b:09:5e:7a:22:fd:75:77:a3:be:62:97:27:a9:6a:8b:d6: 90:61:d5:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGMkQxMTAvBgNVBAUTKEFGNjcyREE4QzVEMUQ2QzgwRDUwNjE3OEM5RTdDQjc0 NEY2RTM4RTYwHhcNMjUxMDE5MDAyNTAyWhcNMjUxMDI2MDAyNTAyWjAYMRYwFAYD VQQDEw02OGY0MmZkZS0yOGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfXXgELuO+GclY7KgTrkFMl0u29UxSF7yD0fWwgBUuKLdj3rZCv7zUC2YwSy xhsFvonh7lFkp7ebf+SjI8YqabWSdlOM8y3VYY3ZvjY6MO/KdjHouDvyy2eRQ5s2 s3xoMbGMHi+7f6RrdrOVTzGFIDHREGp9BcygzDNFWL0V4xFVTjPU0GVDfsIBq75t r4PQ8fEP7TRP965E4448eMigVdQWQZj54L4xxdFRuYyTcb+FhQZXgKlLzmDGG9Iq F6bncdvvWdlxvj5fqzEk9WcYxlC03pfndjVho8rE9fc6uG7H1akslWmaTQhTN1JL JmOBbZL5p16VFfrTV0TrsUvUowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBCnqli9 ZLy7GC68PWJAWDLIirIkMB8GA1UdIwQYMBaAFK9nLajF0dbIDVBheMnny3RPbjjm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkYyRC82RjgyMTE3OEFC ODgxMUVGODBDNzVBNzRDNEY5QUUwMi9yMmN0cU1YUjFzZ05VR0Y0eWVmTGRFOXVP T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3IyY3RxTVhSMXNnTlVHRjR5ZWZMZEU5dU9PWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkYyRC82RjgyMTE3OEFCODgxMUVGODBDNzVBNzRDNEY5QUUwMi9yMmN0cU1YUjFz Z05VR0Y0eWVmTGRFOXVPT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHIq5zLrXe+iyrmZ8JBruPfmReL2B77gSOc9RzSEOiS8taWnS50NIn mxDeFM9KTJn0NUM3CYa2CHrc4r4SMXlyJ6U+YfT70CBDJrlzNqoe1Oh4P4zu+Wur iGQu2NYgJfOJSeLzXVzNINaB8E+6WCif75o/cmvz0v0+1eyLFepL+RDy1b+hAZBt y9JczFQvzIirFCd3zcqPiMUwwnbp4k3OOkeIh/NzNj7+UlorHsGtQcOnRbW9xOrL mb6/0J+6JAFNhUM72rE+bJH7w838uhIj9rEWyj4+MgJAViWmydujnzief++QDsZV VreuKwleeiL9dXejvmKXJ6lqi9aQYdU9 -----END CERTIFICATE-----Generated at Mon Oct 20 17:08:29 2025 by rpki-client