$ rpki-client -vvf rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft File: 2en59z7k9bHN8XYsLfODKVCja30.mft (raw, json) Hash identifier: xz0rDzrTkomP0ZhPFIIhQz7qrtJj0xqmfe5VmOcO0Qk= Subject key identifier: 8B:5C:0F:60:94:B7:59:78:23:4C:E3:46:BD:29:D9:4A:2F:AE:09:85 Authority key identifier: D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D Certificate issuer: /CN=A91AACB2/serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Certificate serial: 34D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft Manifest number: 34D3 Signing time: Sat 18 Oct 2025 15:05:23 +0000 Manifest this update: Sat 18 Oct 2025 15:05:22 +0000 Manifest next update: Sat 25 Oct 2025 15:05:22 +0000 Files and hashes: 1: 2en59z7k9bHN8XYsLfODKVCja30.crl (hash: fYpOaUJDJsCGdAeGvaaXGi8N7Tpw+iogY/VgkfuyNWE=) 2: 76B5C744B45E11EAB71DF94AC4F9AE02.roa (hash: RzsyMG8grNRl/TU/HKZlXJ7ZiLnl0fu14E8Z0lJpa0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:05:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13529 (0x34d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AACB2, serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Validity Not Before: Oct 18 15:05:22 2025 GMT Not After : Oct 25 15:05:22 2025 GMT Subject: CN=68f3acb3-e3b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f4:6c:74:9a:98:38:dd:23:3b:0c:52:d5:07: a0:b9:58:54:a3:d8:7f:78:95:49:18:3b:79:82:ac: b3:06:88:cf:50:48:2a:99:a2:9b:c4:c4:a4:bd:70: 20:36:22:45:7a:31:6e:4e:d0:36:ef:f3:1c:62:ee: 57:e5:73:52:a9:7a:57:f3:ed:d9:25:9c:dd:7a:df: 6c:57:47:f1:4d:8c:d4:2e:4f:8f:78:c2:26:24:c1: 3b:fd:02:5b:30:c0:bc:89:b5:a6:53:c5:4e:ca:4f: d0:8d:ab:35:25:d2:4b:89:11:e3:6c:73:39:5a:57: db:9c:84:26:b1:b3:d8:cf:e7:a1:b7:39:0a:71:8b: ae:46:97:c1:de:5a:e5:61:1a:55:40:fa:50:92:f7: 81:ef:1d:d3:8a:9c:65:99:7a:0e:ef:6e:a3:89:61: 6c:76:3f:8f:bd:5d:18:23:a0:b4:51:f0:d4:77:30: 21:fa:ba:61:18:88:f6:aa:e0:ab:76:46:26:4b:ab: 50:64:4e:9b:75:35:50:88:c5:85:ab:80:0b:be:13: c2:27:70:49:9d:1c:1b:f9:c2:ca:2a:d8:8d:77:35: 20:d7:29:ad:2e:8a:26:69:dc:81:20:a7:54:84:18: fd:95:69:00:40:66:26:ca:f9:8e:18:c9:73:31:58: 3a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:5C:0F:60:94:B7:59:78:23:4C:E3:46:BD:29:D9:4A:2F:AE:09:85 X509v3 Authority Key Identifier: keyid:D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:7b:4f:e5:d6:23:24:64:ed:d7:b1:96:0d:99:7f:3f:9e:8a: b7:64:dd:05:38:26:fd:a0:dd:ef:67:88:d9:df:32:5d:32:df: 3b:60:09:0b:38:00:a2:f6:2a:1c:a9:d6:53:ab:e0:03:0a:71: c0:40:13:c4:71:1d:70:ff:c5:f3:3b:32:8b:8c:6a:a2:16:91: 1c:2b:82:8c:ba:15:61:d9:3f:16:b9:77:a4:f9:6d:eb:ab:de: fb:ee:2a:f6:ca:8f:18:ef:50:b0:43:24:63:5f:4b:20:d4:5d: 7e:f9:f1:87:1b:75:2f:31:3f:69:cc:10:2b:b7:12:7b:ec:f4: 2d:c3:3d:f1:b1:85:0a:24:eb:19:88:a6:95:0d:3f:72:16:38: 1c:a2:58:ae:cc:97:81:81:eb:9e:7e:5d:d5:5b:3f:47:6b:8f: e7:34:d9:d9:e2:d2:bc:74:69:9c:59:bd:80:89:86:16:5f:51: 35:18:d8:c6:d1:37:8f:67:5a:45:6c:c9:11:5f:7b:18:cb:28: 11:ea:75:02:5c:c2:ed:5d:d9:fd:06:5c:94:82:3a:c7:5f:0e: 81:27:24:dd:63:af:df:6a:36:63:38:b3:d5:6c:0e:b5:ef:f1: 0d:3a:ba:75:fe:63:99:13:05:99:68:49:33:86:c1:5e:7f:6f: c6:4c:84:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDQjIxMTAvBgNVBAUTKEQ5RTlGOUY3M0VFNEY1QjFDREYxNzYyQzJERjM4MzI5 NTBBMzZCN0QwHhcNMjUxMDE4MTUwNTIyWhcNMjUxMDI1MTUwNTIyWjAYMRYwFAYD VQQDEw02OGYzYWNiMy1lM2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfRsdJqYON0jOwxS1QeguVhUo9h/eJVJGDt5gqyzBojPUEgqmaKbxMSkvXAg NiJFejFuTtA27/McYu5X5XNSqXpX8+3ZJZzdet9sV0fxTYzULk+PeMImJME7/QJb MMC8ibWmU8VOyk/Qjas1JdJLiRHjbHM5WlfbnIQmsbPYz+ehtzkKcYuuRpfB3lrl YRpVQPpQkveB7x3TipxlmXoO726jiWFsdj+PvV0YI6C0UfDUdzAh+rphGIj2quCr dkYmS6tQZE6bdTVQiMWFq4ALvhPCJ3BJnRwb+cLKKtiNdzUg1ymtLoomadyBIKdU hBj9lWkAQGYmyvmOGMlzMVg6cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItcD2CU t1l4I0zjRr0p2UovrgmFMB8GA1UdIwQYMBaAFNnp+fc+5PWxzfF2LC3zgylQo2t9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUNCMi8zN0Q1QTNERTFE OUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azliSE44WFlzTGZPREtWQ2ph MzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJlbjU5ejdrOWJITjhYWXNMZk9ES1ZDamEzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUNCMi8zN0Q1QTNERTFEOUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azli SE44WFlzTGZPREtWQ2phMzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXe0/l1iMkZO3XsZYNmX8/noq3ZN0FOCb9oN3vZ4jZ3zJdMt87YAkL OACi9iocqdZTq+ADCnHAQBPEcR1w/8XzOzKLjGqiFpEcK4KMuhVh2T8WuXek+W3r q9777ir2yo8Y71CwQyRjX0sg1F1++fGHG3UvMT9pzBArtxJ77PQtwz3xsYUKJOsZ iKaVDT9yFjgcoliuzJeBgeuefl3VWz9Ha4/nNNnZ4tK8dGmcWb2AiYYWX1E1GNjG 0TePZ1pFbMkRX3sYyygR6nUCXMLtXdn9BlyUgjrHXw6BJyTdY6/fajZjOLPVbA61 7/ENOrp1/mOZEwWZaEkzhsFef2/GTISC -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:21 2025 by rpki-client