$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft File: 2QDd8konYiv5ZDdX7byv-u4yHDc.mft (raw, json) Hash identifier: WqMhNNE7LMWyeH1aSgcxga8+YtBUwtQHj4iXMFdBY+4= Subject key identifier: 53:92:F9:10:BA:48:AC:2E:B4:47:DF:00:C9:96:90:C3:92:F3:5A:6E Authority key identifier: D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 Certificate issuer: /CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Certificate serial: 0EAF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft Manifest number: 0E94 Signing time: Sat 18 Oct 2025 18:21:10 +0000 Manifest this update: Sat 18 Oct 2025 18:21:09 +0000 Manifest next update: Sat 25 Oct 2025 18:21:09 +0000 Files and hashes: 1: 2QDd8konYiv5ZDdX7byv-u4yHDc.crl (hash: JQ3BaLPbF6wgms2JAfxC/8mjVeTlEFMJgIW2OeB1yEA=) 2: A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa (hash: k08HrzQA4orJaDMpNJ4cYiGD96bVzWAF2REZWm3ObQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:21:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3759 (0xeaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7773, serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Validity Not Before: Oct 18 18:21:09 2025 GMT Not After : Oct 25 18:21:09 2025 GMT Subject: CN=68f3da96-3bc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:46:d7:c2:0f:91:c1:60:7c:0f:0e:c6:62:ab: 0c:fe:5a:dd:03:96:cd:c1:bd:5e:bf:15:7b:29:f4: 3d:a5:1d:63:35:3d:30:1e:83:4d:71:bd:5b:90:1c: 64:0b:20:4a:ad:6f:db:3b:d0:d3:55:6d:96:d7:95: 85:26:a9:45:d2:bb:97:d8:2d:d8:cb:86:41:d3:44: 83:1c:4d:a5:5d:83:7e:29:2e:ec:6d:04:5f:2d:f4: ff:1e:ac:88:0a:5a:15:e4:ed:fe:79:eb:22:1b:2c: 62:ce:13:a4:8b:9e:74:b4:c9:78:62:da:2e:71:ef: 3c:99:c8:f6:ce:53:3e:fe:4f:36:27:18:6f:de:4b: 22:ae:90:48:a1:9d:dd:01:dd:c8:1a:72:c0:ca:21: d3:fe:a2:27:45:47:3c:55:57:7f:50:8c:4c:99:3a: 67:75:5d:01:10:49:c3:44:39:a4:9f:97:7a:92:e6: 66:69:30:2f:d5:ef:fd:d8:a0:fb:9d:b3:96:91:bf: d0:3b:b6:ea:27:b4:cc:6c:14:a4:4a:03:2a:57:1e: 50:48:fd:b9:87:b0:5a:75:b8:1c:e5:e8:c0:8b:9f: 9c:83:b0:8a:9a:f1:99:4e:01:ba:ed:a0:80:4d:5a: 4a:c7:21:12:9d:98:1f:7e:45:fb:fa:e4:74:65:e8: 96:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:92:F9:10:BA:48:AC:2E:B4:47:DF:00:C9:96:90:C3:92:F3:5A:6E X509v3 Authority Key Identifier: keyid:D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:00:1f:63:f2:53:52:a6:af:41:3c:5e:a8:3c:e9:58:2f:d7: 70:51:92:27:13:5b:eb:3f:b6:bb:4e:6f:d0:05:98:a0:79:93: 92:00:4f:06:8a:c2:67:46:24:fc:13:7f:bd:f6:f1:b7:f1:d3: 6e:f7:9e:69:a3:1b:d0:16:20:b4:1f:0a:27:24:d3:fb:56:05: 98:d2:57:51:5f:e2:8c:f6:bb:5c:0e:89:50:ff:dc:b8:ef:5f: 16:e0:40:6b:55:08:56:90:ed:75:4d:ff:18:1e:ed:0e:bb:18: e5:61:2c:3c:86:ed:b9:80:b1:56:88:20:d6:b3:3a:6b:35:e3: 24:b3:64:c9:de:cd:3d:1a:a7:25:f9:9a:61:cd:47:57:2e:3c: c4:81:b1:c3:ec:93:f0:d2:d7:38:3f:08:45:71:2a:03:9f:8d: b7:87:f4:2f:c6:34:13:21:57:84:76:dc:ff:9f:2d:68:6f:79: ee:41:b8:13:98:b2:1d:e1:08:6a:4c:e5:eb:18:ef:18:45:4b: aa:a0:96:36:aa:6a:29:38:ab:17:f0:54:8f:0e:1b:36:a3:18: 80:57:f8:76:86:b5:10:1d:34:6c:1e:99:c6:e0:e8:24:eb:07: 57:e9:a3:80:d6:02:0b:5b:cf:e2:37:cf:dd:10:88:e9:d4:b3: 3a:8e:af:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3NzMxMTAvBgNVBAUTKEQ5MDBEREYyNEEyNzYyMkJGOTY0Mzc1N0VEQkNBRkZB RUUzMjFDMzcwHhcNMjUxMDE4MTgyMTA5WhcNMjUxMDI1MTgyMTA5WjAYMRYwFAYD VQQDEw02OGYzZGE5Ni0zYmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEbXwg+RwWB8Dw7GYqsM/lrdA5bNwb1evxV7KfQ9pR1jNT0wHoNNcb1bkBxk CyBKrW/bO9DTVW2W15WFJqlF0ruX2C3Yy4ZB00SDHE2lXYN+KS7sbQRfLfT/HqyI CloV5O3+eesiGyxizhOki550tMl4Ytouce88mcj2zlM+/k82Jxhv3ksirpBIoZ3d Ad3IGnLAyiHT/qInRUc8VVd/UIxMmTpndV0BEEnDRDmkn5d6kuZmaTAv1e/92KD7 nbOWkb/QO7bqJ7TMbBSkSgMqVx5QSP25h7Badbgc5ejAi5+cg7CKmvGZTgG67aCA TVpKxyESnZgffkX7+uR0ZeiWBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOS+RC6 SKwutEffAMmWkMOS81puMB8GA1UdIwQYMBaAFNkA3fJKJ2Ir+WQ3V+28r/ruMhw3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc3My9BRDMyMjM3Q0Ey RTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllpdjVaRGRYN2J5di11NHlI RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRRGQ4a29uWWl2NVpEZFg3Ynl2LXU0eUhEYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc3My9BRDMyMjM3Q0EyRTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllp djVaRGRYN2J5di11NHlIRGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVAB9j8lNSpq9BPF6oPOlYL9dwUZInE1vrP7a7Tm/QBZigeZOSAE8G isJnRiT8E3+99vG38dNu955poxvQFiC0HwonJNP7VgWY0ldRX+KM9rtcDolQ/9y4 718W4EBrVQhWkO11Tf8YHu0OuxjlYSw8hu25gLFWiCDWszprNeMks2TJ3s09Gqcl +ZphzUdXLjzEgbHD7JPw0tc4PwhFcSoDn423h/QvxjQTIVeEdtz/ny1ob3nuQbgT mLId4QhqTOXrGO8YRUuqoJY2qmopOKsX8FSPDhs2oxiAV/h2hrUQHTRsHpnG4Ogk 6wdX6aOA1gILW8/iN8/dEIjp1LM6jq/4 -----END CERTIFICATE-----Generated at Mon Oct 20 17:13:12 2025 by rpki-client