$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: eomxWH7rTJBmMnxXGmJ65KpoSc706UhPVqu/mgRvSvM= Subject key identifier: E3:79:80:BF:56:9F:4A:EE:D7:38:5A:98:3C:93:76:53:7F:1A:15:18 Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 01D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 01D1 Signing time: Sun 19 Oct 2025 05:17:45 +0000 Manifest this update: Sun 19 Oct 2025 05:17:44 +0000 Manifest next update: Sun 26 Oct 2025 05:17:44 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: LcM72poabKUFFdGUhTmUPDLRhN0YQZb1fFNkhOFdpqs=) 2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: HkCOmQRPg+yDDZPtodRzZcHCpOQoTEGcVWS7eV1BiSA=) 3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: 4Vu2iECkKD+oqedLfhjWXd7CHOWEQhszvHID7EwF+IE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Oct 19 05:17:44 2025 GMT Not After : Oct 26 05:17:44 2025 GMT Subject: CN=68f47479-ddd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ef:13:e9:56:e2:ea:0b:c5:cc:3d:f7:06:95: 4a:0a:02:c3:30:48:5e:c3:c7:be:0b:6f:5c:03:84: 4c:06:f1:c4:20:c0:e1:a1:92:03:26:33:b3:cf:24: aa:55:55:c0:60:31:de:4e:1e:8b:da:32:28:fb:aa: 72:01:1b:36:9d:8a:71:72:13:e6:96:5e:25:dc:f0: 8f:99:a3:75:4e:49:2b:7f:53:4d:07:51:fc:11:bc: 25:99:24:0f:df:75:a3:21:d4:9c:53:a3:d7:82:44: fa:73:66:38:74:44:f2:f8:3e:45:df:29:0b:7c:82: b0:cc:27:08:5b:fb:e3:df:ef:99:35:92:f0:de:3b: d2:d2:16:28:18:81:be:c3:a0:9e:25:0a:6f:ce:14: 0a:ef:e3:f7:c8:ab:af:c6:99:56:b2:d4:e8:c5:04: 33:33:2a:6c:5a:ba:2a:32:6d:23:20:a2:0d:68:b0: fa:0c:0c:5d:56:d6:3f:ac:6c:ed:61:0a:3a:f2:c1: 58:0c:78:04:96:4b:fc:c3:20:79:ff:6f:c3:2f:e0: f6:55:3f:89:7c:12:df:47:a0:de:1c:79:c5:62:4b: 12:a8:a8:8f:1b:5a:bb:b5:51:7f:61:40:61:02:ba: 46:52:d5:72:43:87:a8:ad:fe:5b:ae:77:a4:7a:64: b6:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:79:80:BF:56:9F:4A:EE:D7:38:5A:98:3C:93:76:53:7F:1A:15:18 X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:19:2b:cd:ca:e0:be:d2:f8:c0:02:a9:00:ef:56:20:20:7d: 3e:84:e3:6c:58:85:0e:c6:f9:09:5f:da:6b:1e:f9:91:2b:ff: e8:7d:f9:3c:07:0b:ef:4f:93:9a:f5:e2:0d:15:18:2b:82:00: e1:6e:24:44:d2:6f:cc:aa:40:39:9e:40:87:f5:ef:55:7f:9e: 33:6f:05:1c:1c:27:8a:ef:bd:5e:cc:0e:ef:10:d7:fb:91:62: 74:fb:b7:54:8b:b6:21:97:74:ae:86:c5:77:42:cc:ed:ea:95: 04:8e:86:f6:44:bf:32:5a:7f:6c:21:43:df:70:14:a4:ea:39: 2c:0e:34:99:7e:e0:7f:2d:93:53:be:40:99:9c:c0:c4:23:ef: 94:99:a2:c2:57:ba:f6:ca:21:32:71:0a:8d:5c:95:f9:a4:7f: 0a:26:de:4c:2c:a0:bd:c9:a1:89:75:0f:09:14:6f:6a:62:3b: aa:9d:93:b4:8b:4a:d1:56:b9:26:cb:af:f4:d5:a0:c0:cb:76: 44:49:78:91:3e:1a:bc:a8:9b:77:1b:ac:b6:c5:b4:a7:d3:4a: 28:c5:6e:78:12:d8:57:98:56:7f:fd:f6:9b:0c:49:0b:b2:70: 79:86:ce:27:56:a0:51:c4:14:82:1c:e6:99:52:c7:f9:95:a4: 1e:2e:14:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjUxMDE5MDUxNzQ0WhcNMjUxMDI2MDUxNzQ0WjAYMRYwFAYD VQQDEw02OGY0NzQ3OS1kZGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+8T6Vbi6gvFzD33BpVKCgLDMEhew8e+C29cA4RMBvHEIMDhoZIDJjOzzySq VVXAYDHeTh6L2jIo+6pyARs2nYpxchPmll4l3PCPmaN1Tkkrf1NNB1H8EbwlmSQP 33WjIdScU6PXgkT6c2Y4dETy+D5F3ykLfIKwzCcIW/vj3++ZNZLw3jvS0hYoGIG+ w6CeJQpvzhQK7+P3yKuvxplWstToxQQzMypsWroqMm0jIKINaLD6DAxdVtY/rGzt YQo68sFYDHgElkv8wyB5/2/DL+D2VT+JfBLfR6DeHHnFYksSqKiPG1q7tVF/YUBh ArpGUtVyQ4eorf5brnekemS2fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFON5gL9W n0ru1zhamDyTdlN/GhUYMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzGSvNyuC+0vjAAqkA71YgIH0+hONsWIUOxvkJX9prHvmRK//offk8 BwvvT5Oa9eINFRgrggDhbiRE0m/MqkA5nkCH9e9Vf54zbwUcHCeK771ezA7vENf7 kWJ0+7dUi7Yhl3SuhsV3Qszt6pUEjob2RL8yWn9sIUPfcBSk6jksDjSZfuB/LZNT vkCZnMDEI++UmaLCV7r2yiEycQqNXJX5pH8KJt5MLKC9yaGJdQ8JFG9qYjuqnZO0 i0rRVrkmy6/01aDAy3ZESXiRPhq8qJt3G6y2xbSn00ooxW54EthXmFZ//fabDEkL snB5hs4nVqBRxBSCHOaZUsf5laQeLhTT -----END CERTIFICATE-----Generated at Mon Oct 20 17:56:17 2025 by rpki-client