$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft File: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft (raw, json) Hash identifier: UrDXNCBZ+eiN5XiYSomt/V6knR7ud0JaA8llF+uH5LU= Subject key identifier: 57:43:E2:01:7C:31:22:8C:FA:05:0C:CE:2C:71:A4:48:77:10:CC:2E Authority key identifier: D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D Certificate issuer: /CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft Manifest number: 0118 Signing time: Sun 19 Oct 2025 07:42:33 +0000 Manifest this update: Sun 19 Oct 2025 07:42:32 +0000 Manifest next update: Sun 26 Oct 2025 07:42:32 +0000 Files and hashes: 1: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl (hash: ozAr3igFIyQhgfNsf5MjoPkW52q89axS4BTUVaYrEck=) 2: B00A68E6014A11EFA8F03B5BC4F9AE02.roa (hash: F6IB2oLxhpfXXQwj/Kl3IJNncyOBKEOTP7G3C5XwQrk=) 3: E2037F8C019911EFAFFEEC5DC4F9AE02.roa (hash: yyKQJp3Cor943Y25Ya+6ME8Xl4xDZuaYL1jQZ9UiIZI=) 4: B0BE3042014A11EFA8F03B5BC4F9AE02.roa (hash: kGlkPBXGhK2HbK8wICTx12rG9bb9NpN/Iy7FI3DGEGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:42:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2B93, serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Validity Not Before: Oct 19 07:42:32 2025 GMT Not After : Oct 26 07:42:32 2025 GMT Subject: CN=68f49669-34e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:70:14:f9:bb:7a:6b:e3:18:33:cb:2e:6b:69: 49:dd:84:52:a9:b6:01:0d:b9:20:1a:a2:3a:fd:72: 26:ec:98:91:2c:d7:e3:f2:ed:3e:e8:9a:af:6b:f3: c1:76:09:cf:44:0f:4f:27:25:4c:12:a9:73:8c:45: e7:57:3e:3b:cc:e8:72:f1:66:12:09:eb:ae:aa:49: 0a:75:b1:f1:2b:a4:e9:06:5e:d0:51:28:d3:fe:ea: c0:29:bf:a7:00:2f:7e:b3:43:12:3c:ec:b3:b0:fb: 63:20:a3:1e:e9:07:f5:0b:6a:33:07:f1:77:d9:a7: 10:2c:4b:19:b3:d0:76:bb:d0:9f:13:f2:a7:1f:e3: 81:af:05:0b:ca:88:26:dc:84:2e:6f:e9:38:16:94: b0:3e:5d:cc:bc:c0:cb:d1:02:24:8d:bc:fe:d7:d8: d9:3f:55:5a:06:f3:e0:b4:38:78:70:6b:bf:16:55: 8d:ff:8e:2b:ee:ae:6c:b7:c2:b5:f9:0b:2b:20:69: 3f:2a:28:94:fc:1e:e4:e0:0f:9e:17:b7:0d:be:a9: 8d:aa:8a:a9:26:4e:e2:61:49:ed:ce:98:4a:87:06: 43:5b:11:37:a3:bc:a3:7b:bb:90:d7:06:d2:a4:06: 52:58:18:23:cb:42:79:3b:bb:e2:41:b0:e8:47:47: f6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:43:E2:01:7C:31:22:8C:FA:05:0C:CE:2C:71:A4:48:77:10:CC:2E X509v3 Authority Key Identifier: keyid:D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:7e:3f:76:06:fe:13:25:45:fa:4b:08:52:00:a4:84:bf:7d: 0d:67:e3:90:de:a3:4c:20:83:37:32:9e:9c:24:f9:fd:81:f6: ac:51:4e:b4:19:cf:47:f5:6f:98:70:34:df:6a:09:c8:fb:3d: 12:cb:e1:a8:e7:34:11:2c:17:28:0a:b2:0d:26:0a:9c:a9:38: ec:a8:2b:0d:27:99:48:83:c7:e7:9a:13:c5:58:cb:c0:76:70: 92:88:b0:f6:c1:c5:a6:5d:9a:1d:e7:39:d1:24:1a:96:80:97: 0c:ea:61:54:71:17:70:b4:e5:62:27:3e:1f:e2:47:fb:1e:88: 8e:6d:7e:bc:1d:75:05:f8:0f:78:0c:92:83:a6:98:65:49:08: 67:f2:e3:93:d9:cf:18:25:5f:c4:78:a4:be:4c:29:35:7d:6b: bd:31:0b:c5:f5:49:7e:4f:bc:1d:b5:5a:02:a5:c3:66:bb:79: af:4f:17:7b:94:e2:00:7b:1d:6b:39:1d:39:fd:2e:18:6c:63: c0:0e:11:c3:9e:7a:18:98:31:85:0e:b5:9a:d1:b7:5f:ed:bb: 0c:bc:13:d7:fb:d0:6a:5e:6e:d5:4b:fc:cc:05:24:ff:a5:c2: c9:92:c5:5d:b7:dc:a1:da:50:74:db:94:68:33:f1:f2:4f:3b: 3b:92:b8:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJCOTMxMTAvBgNVBAUTKEQ5RDY1RjdGMzYwOTBDNDAxQkNGMjBENEJDODBDNDNG MERDNTkzM0QwHhcNMjUxMDE5MDc0MjMyWhcNMjUxMDI2MDc0MjMyWjAYMRYwFAYD VQQDEw02OGY0OTY2OS0zNGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHAU+bt6a+MYM8sua2lJ3YRSqbYBDbkgGqI6/XIm7JiRLNfj8u0+6Jqva/PB dgnPRA9PJyVMEqlzjEXnVz47zOhy8WYSCeuuqkkKdbHxK6TpBl7QUSjT/urAKb+n AC9+s0MSPOyzsPtjIKMe6Qf1C2ozB/F32acQLEsZs9B2u9CfE/KnH+OBrwULyogm 3IQub+k4FpSwPl3MvMDL0QIkjbz+19jZP1VaBvPgtDh4cGu/FlWN/44r7q5st8K1 +QsrIGk/KiiU/B7k4A+eF7cNvqmNqoqpJk7iYUntzphKhwZDWxE3o7yje7uQ1wbS pAZSWBgjy0J5O7viQbDoR0f21QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFdD4gF8 MSKM+gUMzixxpEh3EMwuMB8GA1UdIwQYMBaAFNnWX382CQxAG88g1LyAxD8NxZM9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkI5My8zQUM4NzRFRTAx NDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRFQWJ6eURVdklERVB3M0Zr ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkWmZmellKREVBYnp5RFV2SURFUHczRmt6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkI5My8zQUM4NzRFRTAxNDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRF QWJ6eURVdklERVB3M0ZrejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAifj92Bv4TJUX6SwhSAKSEv30NZ+OQ3qNMIIM3Mp6cJPn9gfasUU60 Gc9H9W+YcDTfagnI+z0Sy+Go5zQRLBcoCrINJgqcqTjsqCsNJ5lIg8fnmhPFWMvA dnCSiLD2wcWmXZod5znRJBqWgJcM6mFUcRdwtOViJz4f4kf7HoiObX68HXUF+A94 DJKDpphlSQhn8uOT2c8YJV/EeKS+TCk1fWu9MQvF9Ul+T7wdtVoCpcNmu3mvTxd7 lOIAex1rOR05/S4YbGPADhHDnnoYmDGFDrWa0bdf7bsMvBPX+9BqXm7VS/zMBST/ pcLJksVdt9yh2lB025RoM/HyTzs7krgJ -----END CERTIFICATE-----Generated at Mon Oct 20 22:42:38 2025 by rpki-client