$ rpki-client -vvf rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft File: 2fpCBt8OmUfNUB39UlsuRmlv1EI.mft (raw, json) Hash identifier: LAfxVp4frvUFoKM5wDzRUr3bu17/o5NSfMZ7HGNjDbc= Subject key identifier: 71:41:69:8A:4A:07:E9:4B:94:3C:14:B7:0F:14:FA:B9:14:A7:11:16 Authority key identifier: D9:FA:42:06:DF:0E:99:47:CD:50:1D:FD:52:5B:2E:46:69:6F:D4:42 Certificate issuer: /CN=A911D40B/serialNumber=D9FA4206DF0E9947CD501DFD525B2E46696FD442 Certificate serial: 016E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft Manifest number: 016B Signing time: Mon 03 Nov 2025 03:54:50 +0000 Manifest this update: Mon 03 Nov 2025 03:54:50 +0000 Manifest next update: Mon 10 Nov 2025 03:54:50 +0000 Files and hashes: 1: 2fpCBt8OmUfNUB39UlsuRmlv1EI.crl (hash: 76CAVw0yiOEYk6SosT3y2KiyUwduslUi6WFxjnDLQTQ=) 2: 91BCF5D08E0811EE91C7BD62C4F9AE02.roa (hash: 16O4tOIwTKe9KyjFOBLZvUGIgda/sT358bnVtxfjCnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.crl rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:54:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 366 (0x16e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D40B, serialNumber=D9FA4206DF0E9947CD501DFD525B2E46696FD442 Validity Not Before: Nov 3 03:54:50 2025 GMT Not After : Nov 10 03:54:50 2025 GMT Subject: CN=6908278a-6837 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:92:47:e6:07:a4:78:de:eb:0c:fa:bd:e5:0f: c8:ed:80:3e:c6:54:3b:89:c6:06:d7:cc:77:41:d4: 81:45:d6:c5:a4:25:0f:8b:0f:d7:bf:84:06:a7:12: 49:46:57:db:9d:aa:e2:85:99:88:9a:9e:ec:13:cc: ba:6d:e5:04:2d:3a:88:2c:09:8b:e5:87:f6:4c:92: e8:ac:8f:af:31:81:7e:78:d4:2c:43:85:f5:46:e0: 93:c4:74:34:59:ba:65:d9:07:ac:9d:1e:1f:06:56: a4:58:d8:7c:ca:d1:56:0a:ee:d9:14:24:26:91:c8: 04:f6:b5:71:7f:9e:cd:9e:af:6f:0e:d9:ce:2e:c8: 1f:63:68:fd:d5:b5:28:71:41:0d:94:ab:31:40:f9: 2a:e7:9a:c3:d6:1e:3c:d7:f6:86:eb:6d:53:66:de: d9:1a:f1:b8:2b:de:4b:af:8a:bb:55:86:9a:05:27: 35:40:72:2a:ba:68:07:e0:2d:7e:75:be:26:18:91: 9d:60:14:82:9e:8d:84:4a:1c:5b:6d:1f:74:77:8a: e1:bc:1a:a8:67:1d:83:4f:5e:81:4b:1e:85:44:33: b3:c0:e1:1c:d4:5b:d9:f4:3b:ee:72:e8:79:5d:79: 98:38:a2:6c:21:15:8d:c7:01:a1:dd:ce:9f:cb:0b: 37:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:41:69:8A:4A:07:E9:4B:94:3C:14:B7:0F:14:FA:B9:14:A7:11:16 X509v3 Authority Key Identifier: keyid:D9:FA:42:06:DF:0E:99:47:CD:50:1D:FD:52:5B:2E:46:69:6F:D4:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:a4:45:b8:41:2d:37:a2:9b:84:67:ff:ef:57:ba:3e:c6:1b: 7a:a5:f2:ed:dc:27:2a:c3:f9:d3:f7:dc:1a:ff:0f:4d:06:74: 96:e3:c4:bf:db:fa:c7:c7:bb:43:9a:e7:ac:90:c4:49:be:35: 79:9f:77:18:3b:1f:cd:89:04:2b:30:d2:59:3e:c5:9f:40:71: b4:61:67:7b:c1:5f:cf:10:5f:ef:b9:aa:43:ab:68:ed:91:dd: 90:af:28:11:ef:45:b9:bd:58:b4:25:04:99:d9:2e:e3:99:cb: e3:c2:1f:03:e3:bf:db:c6:87:85:df:a2:35:31:82:b7:38:c1: b0:b2:68:99:7c:1b:92:1e:9c:63:5e:b9:99:52:4d:d2:76:38: ca:6b:af:ad:1e:75:fc:28:3f:33:01:82:fb:28:73:93:9a:a1: d6:75:71:88:4f:98:37:42:04:8d:a9:d6:7a:ef:4f:51:22:93: f0:7c:0a:52:02:38:5b:19:97:d5:6f:ca:23:02:cd:77:26:77: e2:24:d0:be:94:d9:b8:2b:3f:e7:e2:91:18:77:5f:13:ad:de: e0:f7:f7:cf:d5:18:d9:dd:0a:8a:65:da:3d:c9:9a:ae:af:ca: da:25:ee:e3:88:0a:ee:a6:91:d1:d2:57:e6:4b:86:a3:02:0d: 54:57:b0:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ0MEIxMTAvBgNVBAUTKEQ5RkE0MjA2REYwRTk5NDdDRDUwMURGRDUyNUIyRTQ2 Njk2RkQ0NDIwHhcNMjUxMTAzMDM1NDUwWhcNMjUxMTEwMDM1NDUwWjAYMRYwFAYD VQQDEw02OTA4Mjc4YS02ODM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ZJH5gekeN7rDPq95Q/I7YA+xlQ7icYG18x3QdSBRdbFpCUPiw/Xv4QGpxJJ RlfbnarihZmImp7sE8y6beUELTqILAmL5Yf2TJLorI+vMYF+eNQsQ4X1RuCTxHQ0 Wbpl2QesnR4fBlakWNh8ytFWCu7ZFCQmkcgE9rVxf57Nnq9vDtnOLsgfY2j91bUo cUENlKsxQPkq55rD1h481/aG621TZt7ZGvG4K95Lr4q7VYaaBSc1QHIqumgH4C1+ db4mGJGdYBSCno2EShxbbR90d4rhvBqoZx2DT16BSx6FRDOzwOEc1FvZ9Dvucuh5 XXmYOKJsIRWNxwGh3c6fyws3EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFBaYpK B+lLlDwUtw8U+rkUpxEWMB8GA1UdIwQYMBaAFNn6QgbfDplHzVAd/VJbLkZpb9RC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDQwQi80NjI2QkIxQThF MDgxMUVFOUM5REU0NjFDNEY5QUUwMi8yZnBDQnQ4T21VZk5VQjM5VWxzdVJtbHYx RUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJmcENCdDhPbVVmTlVCMzlVbHN1Um1sdjFFSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDQwQi80NjI2QkIxQThFMDgxMUVFOUM5REU0NjFDNEY5QUUwMi8yZnBDQnQ4T21V Zk5VQjM5VWxzdVJtbHYxRUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrpEW4QS03opuEZ//vV7o+xht6pfLt3Ccqw/nT99wa/w9NBnSW48S/ 2/rHx7tDmueskMRJvjV5n3cYOx/NiQQrMNJZPsWfQHG0YWd7wV/PEF/vuapDq2jt kd2QrygR70W5vVi0JQSZ2S7jmcvjwh8D47/bxoeF36I1MYK3OMGwsmiZfBuSHpxj XrmZUk3SdjjKa6+tHnX8KD8zAYL7KHOTmqHWdXGIT5g3QgSNqdZ6709RIpPwfApS AjhbGZfVb8ojAs13JnfiJNC+lNm4Kz/n4pEYd18Trd7g9/fP1RjZ3QqKZdo9yZqu r8raJe7jiAruppHR0lfmS4ajAg1UV7Bo -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:02 2025 by rpki-client