$ rpki-client -vvf rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft File: 2VYp3mJDm7AepHisFcom6ZWpeGQ.mft (raw, json) Hash identifier: vb0979mMuLRYThT22ajNVl5TIwpkzqdSsoNJIcXiCQw= Subject key identifier: D9:87:45:7E:EF:CA:2C:92:E7:90:02:F5:73:BF:D9:B4:28:54:ED:DA Authority key identifier: D9:56:29:DE:62:43:9B:B0:1E:A4:78:AC:15:CA:26:E9:95:A9:78:64 Certificate issuer: /CN=A913854D/serialNumber=D95629DE62439BB01EA478AC15CA26E995A97864 Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft Manifest number: A3 Signing time: Wed 05 Nov 2025 06:29:15 +0000 Manifest this update: Wed 05 Nov 2025 06:29:14 +0000 Manifest next update: Wed 12 Nov 2025 06:29:14 +0000 Files and hashes: 1: 2VYp3mJDm7AepHisFcom6ZWpeGQ.crl (hash: bCMwgmimDnXQbdDeAgW5SI5BFwpHbByIgAtAzNMx0HE=) 2: A999E39EC36C11EFAF838D35C4F9AE02.roa (hash: 1KvDgGWuLyFCN6s+q1kiM6VlBFYXCDfUfEerU6uXVoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.crl rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:29:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913854D, serialNumber=D95629DE62439BB01EA478AC15CA26E995A97864 Validity Not Before: Nov 5 06:29:14 2025 GMT Not After : Nov 12 06:29:14 2025 GMT Subject: CN=690aeebb-bc99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:98:e1:1d:5d:f2:a6:84:96:a0:1f:99:27:b4: 23:39:8b:30:3d:b7:23:5d:6d:5c:33:2d:b1:44:41: c3:e2:63:7b:05:2f:f6:01:7c:30:06:e5:94:f9:0d: 32:8d:a7:82:86:42:d0:62:7b:cf:a1:3c:bf:2e:af: d5:6d:e0:27:ab:f4:08:8b:30:40:a9:54:0d:47:95: 24:de:1d:00:36:e1:af:f2:a5:b9:96:20:4f:61:ce: 46:ab:3e:10:5a:26:ca:9f:ef:b8:44:ad:b4:59:a9: 62:b0:5c:54:47:ce:cb:c2:bb:fe:33:37:2a:82:33: e8:d4:2f:8f:78:46:e2:18:7c:6c:ab:59:77:f9:71: cc:df:18:45:44:15:c4:f6:4b:e7:92:e9:ae:ae:b4: 26:20:aa:89:20:fb:c5:c9:6f:10:87:94:73:b7:1a: b8:0f:bb:af:e6:26:9f:a3:e7:14:3f:7e:f6:c2:47: 21:d9:1f:72:a3:52:e2:0c:06:d5:8b:d9:e0:bd:19: 23:98:8b:d0:13:c0:a2:e0:36:89:42:d7:bf:cc:ba: 87:f0:57:62:71:ba:5e:bd:b7:60:59:2e:52:bb:36: 89:7b:15:57:de:64:87:39:b7:df:b7:2b:46:4b:bd: e8:c2:43:ee:3c:40:f2:8e:45:5b:4a:17:d2:5b:ac: c4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:87:45:7E:EF:CA:2C:92:E7:90:02:F5:73:BF:D9:B4:28:54:ED:DA X509v3 Authority Key Identifier: keyid:D9:56:29:DE:62:43:9B:B0:1E:A4:78:AC:15:CA:26:E9:95:A9:78:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:19:80:40:81:22:8c:5a:6d:14:9c:85:ca:d9:9b:e1:ab:c5: b8:59:d3:d4:13:f3:4b:a8:bc:67:72:2a:b7:10:f9:d8:43:e3: c2:31:72:fd:da:7a:74:aa:65:bb:4f:dc:de:67:01:3b:04:f1: c1:b9:78:67:62:f3:bd:94:8a:bc:4d:e3:96:c4:73:3d:d1:98: 7b:f0:70:8a:76:a0:75:94:99:75:54:ca:c1:d6:40:b1:8e:66: 83:5d:6b:d4:ba:7f:dd:35:fc:01:dc:ab:a8:86:f5:4f:0e:24: 1b:30:a4:9e:87:26:30:2c:7c:72:73:30:3a:58:e7:6f:60:72: 3c:0b:96:a4:25:2e:26:f1:8a:a1:b3:8e:9e:ac:f4:a0:12:2c: 65:d3:95:80:77:a2:38:c7:11:d9:6d:9e:5a:37:4c:87:76:8c: 22:1e:c6:7c:68:b8:e1:3a:ba:4b:6e:2d:be:94:76:9f:c9:df: 44:b2:13:b8:8c:68:fc:2b:16:e9:00:f8:f3:fc:37:c5:86:be: 20:3b:00:63:06:43:47:94:72:ce:7c:00:76:ef:7b:31:b9:47: 20:b3:a3:6f:9c:7d:ed:8d:13:d2:1c:6a:a0:d9:3c:82:f3:cd: ed:99:a1:5f:57:d3:a8:e8:0c:b2:a3:d1:b4:4d:6b:19:98:e6: 74:8e:68:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg1NEQxMTAvBgNVBAUTKEQ5NTYyOURFNjI0MzlCQjAxRUE0NzhBQzE1Q0EyNkU5 OTVBOTc4NjQwHhcNMjUxMTA1MDYyOTE0WhcNMjUxMTEyMDYyOTE0WjAYMRYwFAYD VQQDEw02OTBhZWViYi1iYzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5jhHV3ypoSWoB+ZJ7QjOYswPbcjXW1cMy2xREHD4mN7BS/2AXwwBuWU+Q0y jaeChkLQYnvPoTy/Lq/VbeAnq/QIizBAqVQNR5Uk3h0ANuGv8qW5liBPYc5Gqz4Q WibKn++4RK20WalisFxUR87Lwrv+MzcqgjPo1C+PeEbiGHxsq1l3+XHM3xhFRBXE 9kvnkumurrQmIKqJIPvFyW8Qh5Rztxq4D7uv5iafo+cUP372wkch2R9yo1LiDAbV i9ngvRkjmIvQE8Ci4DaJQte/zLqH8FdicbpevbdgWS5SuzaJexVX3mSHObfftytG S73owkPuPEDyjkVbShfSW6zEhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNmHRX7v yiyS55AC9XO/2bQoVO3aMB8GA1UdIwQYMBaAFNlWKd5iQ5uwHqR4rBXKJumVqXhk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODU0RC9FN0M4REQyRUMz NkIxMUVGQkNCQzVCMTZDNEY5QUUwMi8yVllwM21KRG03QWVwSGlzRmNvbTZaV3Bl R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJWWXAzbUpEbTdBZXBIaXNGY29tNlpXcGVHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODU0RC9FN0M4REQyRUMzNkIxMUVGQkNCQzVCMTZDNEY5QUUwMi8yVllwM21KRG03 QWVwSGlzRmNvbTZaV3BlR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3GYBAgSKMWm0UnIXK2Zvhq8W4WdPUE/NLqLxnciq3EPnYQ+PCMXL9 2np0qmW7T9zeZwE7BPHBuXhnYvO9lIq8TeOWxHM90Zh78HCKdqB1lJl1VMrB1kCx jmaDXWvUun/dNfwB3KuohvVPDiQbMKSehyYwLHxyczA6WOdvYHI8C5akJS4m8Yqh s46erPSgEixl05WAd6I4xxHZbZ5aN0yHdowiHsZ8aLjhOrpLbi2+lHafyd9EshO4 jGj8KxbpAPjz/DfFhr4gOwBjBkNHlHLOfAB273sxuUcgs6NvnH3tjRPSHGqg2TyC 883tmaFfV9Oo6Ayyo9G0TWsZmOZ0jmhe -----END CERTIFICATE-----Generated at Wed Nov 5 13:05:43 2025 by rpki-client