$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft File: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft (raw, json) Hash identifier: EFEqDhrQngLrF2PgGfFQq6Sq54UXZbgDbtG+Yc4RDM8= Subject key identifier: E2:D4:7A:26:B3:26:DE:0D:59:66:61:61:F0:4D:1A:31:B6:74:B7:5C Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Certificate serial: 0CB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft Manifest number: 1E11 Signing time: Sat 18 Oct 2025 17:46:31 +0000 Manifest this update: Sat 18 Oct 2025 17:46:30 +0000 Manifest next update: Sat 25 Oct 2025 17:46:30 +0000 Files and hashes: 1: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl (hash: bOxShryJTOemfcu6OenwUYKokucdAh/P/XD35h68ljM=) 2: CE3C7EF66FEB11EB91967864C4F9AE02.roa (hash: Ecj4wTVjyUbe05JmkTHE3iJeDcHJFhB138/thNFleyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:46:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3252 (0xcb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0, serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Validity Not Before: Oct 18 17:46:30 2025 GMT Not After : Oct 25 17:46:30 2025 GMT Subject: CN=68f3d277-9967 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:18:c5:48:7c:1a:97:02:2f:7d:08:a2:26:bb: 5c:0d:6a:57:af:29:22:87:4d:c6:d2:6e:6e:2a:42: b5:fb:38:8c:9a:30:a7:76:5b:90:2e:15:7b:0b:27: 13:53:4d:8c:09:84:58:74:f6:3d:2f:82:24:3f:01: e3:38:a8:e4:73:d6:e4:3b:5f:17:2c:45:3a:a1:4c: 17:18:c6:46:9b:f1:46:1a:80:24:9c:7c:f1:a0:6b: 66:00:5f:33:79:f7:5d:a1:7a:32:d9:5e:f8:be:22: 2e:5d:90:31:e0:c7:f5:e2:a1:06:4d:0d:d1:5c:22: 64:7d:e5:d1:91:ce:36:ba:ef:48:0a:16:5d:dc:bb: fc:13:91:92:9a:c2:4a:6c:14:b6:86:7e:69:00:e4: f1:29:0a:87:53:94:ae:81:e6:4e:6a:d4:bd:cd:aa: 5d:0a:1f:51:93:f1:e2:3c:62:47:b6:bc:34:72:b7: 35:b9:09:a5:9f:8a:5d:16:f4:f9:52:57:b1:73:12: 3e:0a:88:37:f9:3a:51:64:39:89:1f:4b:18:24:14: 5a:f8:2c:e6:b9:4c:e2:02:d6:ee:77:58:87:46:23: 96:fd:6b:a6:36:cb:dc:3e:80:a8:a9:a2:1e:d1:0b: cd:d7:0d:54:3d:bf:51:2c:04:2b:94:01:a7:ac:f8: 6f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:D4:7A:26:B3:26:DE:0D:59:66:61:61:F0:4D:1A:31:B6:74:B7:5C X509v3 Authority Key Identifier: keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:1b:b8:ef:9f:09:17:39:23:97:5b:b2:74:97:6e:02:4a:45: ce:ef:14:30:a9:6a:1a:54:6b:83:e8:6e:63:df:e1:c9:b6:27: a8:73:39:43:f7:64:0a:b0:c6:48:86:8a:c5:00:ea:2a:b9:01: ef:2c:e9:61:6d:f6:41:70:63:a0:d2:6f:1d:b9:69:e4:81:33: 8a:05:08:f8:a9:b0:dd:76:ca:dc:62:c9:7a:f0:03:97:64:0e: a7:34:87:fb:6e:6a:7d:83:97:cd:de:8b:67:fc:c4:c4:58:97: 89:34:fa:70:d4:d6:8b:0c:a4:0c:16:a7:13:c7:bd:f2:8e:03: 91:45:1a:33:97:73:f1:91:8c:b2:21:02:ba:b9:01:73:71:f2: 3f:6b:05:11:cc:20:de:60:5f:95:2e:c1:13:95:11:6d:b5:cb: e0:f7:97:d5:ac:7a:55:bf:aa:fe:dd:e0:3a:bc:cd:fa:47:c3: 53:6f:36:0c:9a:b8:ee:ac:0d:b6:e8:63:d9:78:dc:cc:b1:63: b1:4f:31:e3:58:18:1a:77:67:65:bc:e9:30:61:ea:5b:aa:be: f1:47:19:ea:2c:c6:b6:1f:b2:1e:67:51:1a:54:2c:d6:69:fe: 13:33:65:19:9b:a4:ce:ae:d9:18:39:d4:2c:62:48:30:65:59: 72:e8:40:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG REE4NEMwN0EwHhcNMjUxMDE4MTc0NjMwWhcNMjUxMDI1MTc0NjMwWjAYMRYwFAYD VQQDEw02OGYzZDI3Ny05OTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxjFSHwalwIvfQiiJrtcDWpXrykih03G0m5uKkK1+ziMmjCndluQLhV7CycT U02MCYRYdPY9L4IkPwHjOKjkc9bkO18XLEU6oUwXGMZGm/FGGoAknHzxoGtmAF8z efddoXoy2V74viIuXZAx4Mf14qEGTQ3RXCJkfeXRkc42uu9IChZd3Lv8E5GSmsJK bBS2hn5pAOTxKQqHU5SugeZOatS9zapdCh9Rk/HiPGJHtrw0crc1uQmln4pdFvT5 UlexcxI+Cog3+TpRZDmJH0sYJBRa+CzmuUziAtbud1iHRiOW/WumNsvcPoCoqaIe 0QvN1w1UPb9RLAQrlAGnrPhvCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLUeiaz Jt4NWWZhYfBNGjG2dLdcMB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3 SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlh NVVPRmNVam1NMUw5cUV3SG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtG7jvnwkXOSOXW7J0l24CSkXO7xQwqWoaVGuD6G5j3+HJtieoczlD 92QKsMZIhorFAOoquQHvLOlhbfZBcGOg0m8duWnkgTOKBQj4qbDddsrcYsl68AOX ZA6nNIf7bmp9g5fN3otn/MTEWJeJNPpw1NaLDKQMFqcTx73yjgORRRozl3PxkYyy IQK6uQFzcfI/awURzCDeYF+VLsETlRFttcvg95fVrHpVv6r+3eA6vM36R8NTbzYM mrjurA226GPZeNzMsWOxTzHjWBgad2dlvOkwYepbqr7xRxnqLMa2H7IeZ1EaVCzW af4TM2UZm6TOrtkYOdQsYkgwZVly6EB8 -----END CERTIFICATE-----Generated at Mon Oct 20 09:40:57 2025 by rpki-client