$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft File: R2e2k72EYu6vqD2egDydKGtiHcg.mft (raw, json) Hash identifier: fCrvdvDcC7YC5mewGn97OTYcEzH+RpzQJx63F7THD7U= Subject key identifier: A7:8B:15:4D:B5:E3:8A:E6:1C:1B:C9:4F:1E:6E:65:DC:D7:64:DD:9D Authority key identifier: 47:67:B6:93:BD:84:62:EE:AF:A8:3D:9E:80:3C:9D:28:6B:62:1D:C8 Certificate issuer: /CN=A91F9B6C/serialNumber=4767B693BD8462EEAFA83D9E803C9D286B621DC8 Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft Manifest number: 79 Signing time: Sun 19 Oct 2025 10:08:24 +0000 Manifest this update: Sun 19 Oct 2025 10:08:24 +0000 Manifest next update: Sun 26 Oct 2025 10:08:24 +0000 Files and hashes: 1: R2e2k72EYu6vqD2egDydKGtiHcg.crl (hash: l4gRb1vE8edAAq5DHOOjzfcWe/HKjj7XI7gp204jMFs=) 2: 3D60B6FCFA5E11EFB84AF068C4F9AE02.roa (hash: yLFkoGvAUsdVN5oxAs3J8MXs+0h1YiH2nhkES11B0AE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.crl rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:08:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9B6C, serialNumber=4767B693BD8462EEAFA83D9E803C9D286B621DC8 Validity Not Before: Oct 19 10:08:24 2025 GMT Not After : Oct 26 10:08:24 2025 GMT Subject: CN=68f4b898-186a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:70:e5:6c:05:73:29:44:b5:8c:f6:d9:83:98: e0:3f:1f:fc:27:2b:a0:6f:9c:f8:9d:13:2c:33:f3: 3d:be:59:8c:cf:66:20:50:9e:c5:ae:0c:ee:e4:bd: 6a:e8:b8:e1:40:20:89:4f:4e:53:1b:7a:72:de:6b: e2:51:28:a7:7d:1b:4f:9f:dd:01:7d:a0:4f:c1:cb: 44:f1:79:b2:00:af:5f:6f:f2:89:df:d9:a8:cd:17: 68:a1:43:f4:41:0f:f6:72:47:dd:1d:dc:8d:b1:db: 45:db:2a:a8:38:dd:89:7e:73:ed:c8:c3:d6:f7:99: 1c:b2:f4:e3:05:83:64:a2:f0:eb:09:11:2e:b1:2e: 26:ee:53:fc:0b:b6:3a:71:a6:50:eb:b7:90:6b:c2: 60:44:99:3a:98:f0:a0:98:dc:74:d4:ea:0c:95:95: 17:c6:5b:a9:50:f4:b7:c7:f2:18:35:42:29:d1:8f: c5:d7:ea:10:a1:b7:c2:dd:e0:46:e1:5b:11:26:59: 44:41:f7:e3:ec:cd:67:a9:fd:c6:65:38:96:87:c2: f7:eb:ca:08:80:54:37:e0:13:74:b3:dd:da:17:7a: 2e:70:c1:79:55:1f:0d:c9:9a:eb:71:eb:b6:b3:d2: 04:c4:d8:22:73:9e:f3:28:a2:c9:d2:96:eb:68:d7: 7e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:8B:15:4D:B5:E3:8A:E6:1C:1B:C9:4F:1E:6E:65:DC:D7:64:DD:9D X509v3 Authority Key Identifier: keyid:47:67:B6:93:BD:84:62:EE:AF:A8:3D:9E:80:3C:9D:28:6B:62:1D:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:be:a1:b8:de:e2:0b:c2:b8:3c:c7:c8:98:94:f2:05:56:bd: 7e:67:48:b4:75:19:65:42:a4:76:f6:ec:6a:86:d9:d7:d0:fd: 5c:bf:61:37:82:d7:d6:6d:88:0b:a0:a2:10:2b:9d:47:3a:70: 3e:b4:50:3f:36:42:40:c8:b1:1d:84:ca:c7:d1:17:cc:39:5a: a1:b8:69:19:52:08:9e:b0:01:03:6f:6c:f1:8e:7d:0b:51:ae: 20:68:fa:e8:26:d3:f0:ab:ee:e6:27:2a:dc:e3:20:cd:b4:90: cd:1a:49:61:0e:c5:25:75:30:97:6d:e3:1c:4a:f3:19:aa:41: 00:70:97:53:84:2c:88:45:c5:a1:1a:a5:3a:91:69:e6:e1:08: 71:0c:68:ea:32:cf:da:73:b6:aa:f3:4f:be:68:2f:69:fe:39: 1b:58:57:f1:bd:fa:a4:a0:bb:68:a4:cd:c4:4e:80:51:06:d8: db:22:75:e9:07:25:80:d6:8d:96:8c:1a:98:a8:82:c7:59:c5: ef:79:fa:ae:b4:f7:bc:52:64:6a:37:da:f0:57:65:bc:df:da: 6e:2f:3d:fd:77:f1:0c:e3:20:99:70:6f:bb:79:ae:fe:79:41: 30:e4:e4:0e:c3:bd:44:48:d2:01:25:d9:8e:e1:c6:6a:cb:d3: 06:95:75:37 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG OUI2QzExMC8GA1UEBRMoNDc2N0I2OTNCRDg0NjJFRUFGQTgzRDlFODAzQzlEMjg2 QjYyMURDODAeFw0yNTEwMTkxMDA4MjRaFw0yNTEwMjYxMDA4MjRaMBgxFjAUBgNV BAMTDTY4ZjRiODk4LTE4NmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCacOVsBXMpRLWM9tmDmOA/H/wnK6BvnPidEywz8z2+WYzPZiBQnsWuDO7kvWro uOFAIIlPTlMbenLea+JRKKd9G0+f3QF9oE/By0TxebIAr19v8onf2ajNF2ihQ/RB D/ZyR90d3I2x20XbKqg43Yl+c+3Iw9b3mRyy9OMFg2Si8OsJES6xLibuU/wLtjpx plDrt5BrwmBEmTqY8KCY3HTU6gyVlRfGW6lQ9LfH8hg1QinRj8XX6hCht8Ld4Ebh WxEmWURB9+PszWep/cZlOJaHwvfrygiAVDfgE3Sz3doXei5wwXlVHw3Jmutx67az 0gTE2CJznvMoosnSluto134JAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUp4sVTbXj iuYcG8lPHm5l3Ndk3Z0wHwYDVR0jBBgwFoAUR2e2k72EYu6vqD2egDydKGtiHcgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5QjZDL0Q3REIwQTA4RkE1 RDExRUZBRTM3NEQ2OEM0RjlBRTAyL1IyZTJrNzJFWXU2dnFEMmVnRHlkS0d0aUhj Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUjJlMms3MkVZdTZ2cUQyZWdEeWRLR3RpSGNnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5 QjZDL0Q3REIwQTA4RkE1RDExRUZBRTM3NEQ2OEM0RjlBRTAyL1IyZTJrNzJFWXU2 dnFEMmVnRHlkS0d0aUhjZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJS+obje4gvCuDzHyJiU8gVWvX5nSLR1GWVCpHb27GqG2dfQ/Vy/YTeC 19ZtiAugohArnUc6cD60UD82QkDIsR2EysfRF8w5WqG4aRlSCJ6wAQNvbPGOfQtR riBo+ugm0/Cr7uYnKtzjIM20kM0aSWEOxSV1MJdt4xxK8xmqQQBwl1OELIhFxaEa pTqRaebhCHEMaOoyz9pztqrzT75oL2n+ORtYV/G9+qSgu2ikzcROgFEG2NsidekH JYDWjZaMGpiogsdZxe95+q6097xSZGo32vBXZbzf2m4vPf138QzjIJlwb7t5rv55 QTDk5A7DvURI0gEl2Y7hxmrL0waVdTc= -----END CERTIFICATE-----Generated at Mon Oct 20 04:50:14 2025 by rpki-client