$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: oIgItLHrgSgwPVI+3WLo+vHhr+LQxM04Ac8aa51UosE= Subject key identifier: 80:09:ED:EC:77:60:D6:62:62:66:DF:A7:65:12:CE:C2:91:FB:EF:1A Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 1425 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 1405 Signing time: Sat 18 Oct 2025 15:36:56 +0000 Manifest this update: Sat 18 Oct 2025 15:36:55 +0000 Manifest next update: Sat 25 Oct 2025 15:36:55 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: x+wDTzRBQD3/xdW17quWq1D6rM8Xp5i2V/k+dzVwvig=) 2: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: rJt9UQ2CbATtEyHk+VO1E6DMoo3w2GSd/mE//3ZqYZU=) 3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: wPO6Es53IcJapHpeuB8nxOotI3FCiSmj/GNfyH8fyQs=) 4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: Fya/3MhXvM2udSwM4AtG4GxQbuG8VOpcoReRz0Tvy8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5157 (0x1425) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Oct 18 15:36:55 2025 GMT Not After : Oct 25 15:36:55 2025 GMT Subject: CN=68f3b417-cf5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2d:ca:db:34:ea:32:e0:db:9d:d6:2a:7f:44: 2d:23:72:9a:f2:42:55:a1:f4:20:6c:b5:fa:fb:88: 46:95:49:e5:37:7e:f3:bf:64:20:09:84:11:79:6a: 5d:0f:e0:45:0e:52:f2:f9:c3:be:f1:27:02:c5:4e: 41:53:da:eb:63:b5:9c:45:98:7e:4f:ff:49:a3:c2: e2:e5:d9:a6:f6:05:e5:27:95:9b:de:85:91:92:14: 2a:46:ef:a5:31:c0:60:55:b3:1a:7c:2f:5b:35:d6: 89:6d:a9:34:d7:01:e4:5c:8e:13:8a:28:ad:69:a9: 69:95:34:72:fc:2f:84:ce:98:51:01:59:99:87:62: 92:5f:44:8a:d1:a6:b2:27:2d:a5:af:60:dd:28:b9: 1e:a9:57:eb:b2:89:d0:3b:44:e0:2a:71:8a:9e:eb: f0:3c:2b:74:72:43:92:4c:d8:40:96:50:74:36:10: 33:26:5c:aa:0d:82:70:cb:2c:d2:b6:6d:57:09:92: fd:8d:2b:f0:2b:48:dd:29:be:69:61:f5:bd:c1:e8: cf:b1:76:7b:78:20:3f:86:69:36:8c:79:fb:da:5f: 6c:ac:01:ca:31:ae:40:f9:58:39:f4:87:ca:16:93: c4:d6:05:b5:a0:db:11:7b:00:c2:e5:09:94:47:10: 90:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:09:ED:EC:77:60:D6:62:62:66:DF:A7:65:12:CE:C2:91:FB:EF:1A X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:0f:f6:ea:64:c6:17:4b:fa:3b:6f:4b:fe:d1:04:46:82:f6: 6d:b7:f6:9f:6c:d6:3e:c7:8c:b3:e5:b3:62:df:4b:61:94:73: 04:09:57:f9:b8:fa:84:6a:ae:b7:7e:f1:9a:e0:f6:49:13:0e: cd:b2:ca:dd:e8:4e:b7:5b:c0:25:89:10:38:91:c4:72:0e:69: af:98:8a:63:21:f8:fa:ba:18:42:0b:55:eb:d5:ff:7a:2f:ef: 7a:0f:75:30:f3:97:8c:ea:37:39:55:2a:8b:30:f6:a3:74:86: b6:be:2f:52:4d:91:b6:ba:96:32:f9:ca:7a:cf:7d:78:fd:17: 0f:70:fc:a2:6c:2e:ec:72:64:78:c8:e1:70:ab:f6:68:ef:64: 40:63:3b:46:46:09:59:8e:b3:0a:e6:c7:c9:c2:52:da:7a:7b: 93:e5:d5:73:a1:bd:b3:43:f9:d1:d6:bc:fc:50:24:f8:de:b5: 74:db:e4:42:01:d7:12:2d:ac:ec:24:b6:aa:f8:3f:af:10:f0: ef:e5:a6:d9:5a:36:ad:f8:52:ec:dc:95:f9:94:da:2f:d2:9e: 02:86:f8:72:82:55:f1:a5:10:56:05:21:9e:9b:19:38:79:32: c2:68:d0:2c:55:d9:6d:05:9a:7a:44:6c:b6:98:23:d9:db:d0: ef:8c:f5:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjUxMDE4MTUzNjU1WhcNMjUxMDI1MTUzNjU1WjAYMRYwFAYD VQQDEw02OGYzYjQxNy1jZjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxS3K2zTqMuDbndYqf0QtI3Ka8kJVofQgbLX6+4hGlUnlN37zv2QgCYQReWpd D+BFDlLy+cO+8ScCxU5BU9rrY7WcRZh+T/9Jo8Li5dmm9gXlJ5Wb3oWRkhQqRu+l McBgVbMafC9bNdaJbak01wHkXI4TiiitaalplTRy/C+EzphRAVmZh2KSX0SK0aay Jy2lr2DdKLkeqVfrsonQO0TgKnGKnuvwPCt0ckOSTNhAllB0NhAzJlyqDYJwyyzS tm1XCZL9jSvwK0jdKb5pYfW9wejPsXZ7eCA/hmk2jHn72l9srAHKMa5A+Vg59IfK FpPE1gW1oNsRewDC5QmURxCQaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIAJ7ex3 YNZiYmbfp2USzsKR++8aMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGD/bqZMYXS/o7b0v+0QRGgvZtt/afbNY+x4yz5bNi30thlHMECVf5 uPqEaq63fvGa4PZJEw7Nssrd6E63W8AliRA4kcRyDmmvmIpjIfj6uhhCC1Xr1f96 L+96D3Uw85eM6jc5VSqLMPajdIa2vi9STZG2upYy+cp6z314/RcPcPyibC7scmR4 yOFwq/Zo72RAYztGRglZjrMK5sfJwlLaenuT5dVzob2zQ/nR1rz8UCT43rV02+RC AdcSLazsJLaq+D+vEPDv5abZWjat+FLs3JX5lNov0p4ChvhyglXxpRBWBSGemxk4 eTLCaNAsVdltBZp6RGy2mCPZ29DvjPV+ -----END CERTIFICATE-----Generated at Mon Oct 20 16:17:39 2025 by rpki-client