$ rpki-client -vvf rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft File: 2leiQgcEcAjXOmXWgiSke5oD2qo.mft (raw, json) Hash identifier: 6SzyjolkgIxpfJ7tQY2OzxJtWtotPU0t+agOqWEWvHU= Subject key identifier: 75:66:6E:46:9F:78:12:62:FF:1B:97:AC:3C:08:D4:41:57:9D:C8:D5 Authority key identifier: DA:57:A2:42:07:04:70:08:D7:3A:65:D6:82:24:A4:7B:9A:03:DA:AA Certificate issuer: /CN=A914573E/serialNumber=DA57A24207047008D73A65D68224A47B9A03DAAA Certificate serial: 0662 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft Manifest number: 065B Signing time: Sun 02 Nov 2025 22:37:15 +0000 Manifest this update: Sun 02 Nov 2025 22:37:15 +0000 Manifest next update: Sun 09 Nov 2025 22:37:15 +0000 Files and hashes: 1: 2leiQgcEcAjXOmXWgiSke5oD2qo.crl (hash: cHMxhorPf2140L7xJk00IL5y8q3GvzqWtJvd34HNpkI=) 2: B67E0BB4A5A511EB94C0DE0FC4F9AE02.roa (hash: abFPv422MLo42yfuvK6GPVX4x/zkpsuvBFUhQvjbtGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.crl rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:37:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1634 (0x662) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914573E, serialNumber=DA57A24207047008D73A65D68224A47B9A03DAAA Validity Not Before: Nov 2 22:37:15 2025 GMT Not After : Nov 9 22:37:15 2025 GMT Subject: CN=6907dd1b-fa9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:20:d1:bd:43:07:b7:fb:9a:c4:fe:05:ba:7d: ec:47:ba:b6:e4:22:af:09:88:f6:00:ca:ce:13:31: a8:5f:25:36:ea:9a:a3:78:2b:79:d5:28:83:7c:a1: 36:91:9d:d7:02:79:53:f7:d1:01:80:5c:3d:88:b0: 5d:f6:b8:06:53:f4:3c:9a:f6:86:de:1d:16:f4:8b: e0:9a:c6:37:cc:4e:59:db:b4:55:57:ae:cf:12:1a: df:f9:59:f0:ff:1f:76:f3:d9:b1:28:2e:fd:b5:79: 5e:ed:8b:3f:35:9e:59:41:f0:8d:7a:9f:e2:1f:fa: 8c:74:b6:c5:05:6f:4c:fe:aa:a2:9c:4c:83:0b:ca: 33:4e:68:78:27:15:6b:48:41:fc:a5:a7:fa:c0:4b: 90:a3:32:1e:47:07:e7:aa:90:49:9d:bd:94:ba:0a: 38:56:15:8a:1e:f4:ad:79:07:2f:14:1d:52:8a:5e: d1:77:29:8b:ff:f7:79:99:1c:e9:7a:03:19:c0:97: 9b:66:90:37:f0:6f:a1:4e:30:97:ea:82:87:c7:2f: f7:b4:21:02:d2:09:61:7a:0b:18:52:20:aa:9a:64: 76:bc:ce:fb:0e:ce:fb:d2:7d:f5:8a:27:da:5d:7c: 00:1e:ec:78:2f:fb:65:17:11:65:18:0d:7c:92:65: 06:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:66:6E:46:9F:78:12:62:FF:1B:97:AC:3C:08:D4:41:57:9D:C8:D5 X509v3 Authority Key Identifier: keyid:DA:57:A2:42:07:04:70:08:D7:3A:65:D6:82:24:A4:7B:9A:03:DA:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:35:d6:8d:30:ba:b5:95:7b:a8:da:d4:3c:1a:96:18:16:3e: 76:c1:bd:09:f0:fd:72:eb:78:a1:48:38:f8:0a:33:df:ff:20: 9e:08:ca:4c:68:2a:1f:db:35:a0:61:76:2a:ec:f2:70:db:55: d4:c2:38:3d:0e:b2:11:31:cf:37:bc:59:91:e3:f5:21:d2:39: 65:04:2f:6b:4b:e5:89:fc:c1:fb:2d:81:97:79:e9:d7:df:4c: 12:40:74:9a:e5:bd:eb:aa:2a:14:50:cd:1f:f0:2a:f8:6f:85: 57:52:3d:4d:dd:aa:ba:8e:c2:5e:7c:4c:35:be:69:40:84:bc: a2:1b:35:d1:d9:29:c7:07:cd:d4:db:59:d4:7b:ea:3e:69:d0: a2:a2:a3:fe:a3:ae:3e:f4:38:3e:c8:4a:df:a8:f1:97:6e:42: 0b:35:a0:20:08:11:05:bc:77:64:25:90:62:87:a0:80:23:b4: dd:db:a0:bd:e1:a9:b8:61:04:f7:a6:05:a2:9c:57:c5:ad:55: ef:c8:e2:31:b7:69:39:10:36:b9:f4:e7:94:39:f7:53:54:fd: 4d:f7:ad:4b:54:7b:cc:1d:fd:44:45:31:0c:8d:4d:90:20:0c: 02:55:32:86:77:52:dd:94:35:94:fe:28:d3:ad:ea:07:62:fb: a6:c2:c5:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU3M0UxMTAvBgNVBAUTKERBNTdBMjQyMDcwNDcwMDhENzNBNjVENjgyMjRBNDdC OUEwM0RBQUEwHhcNMjUxMTAyMjIzNzE1WhcNMjUxMTA5MjIzNzE1WjAYMRYwFAYD VQQDEw02OTA3ZGQxYi1mYTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCDRvUMHt/uaxP4Fun3sR7q25CKvCYj2AMrOEzGoXyU26pqjeCt51SiDfKE2 kZ3XAnlT99EBgFw9iLBd9rgGU/Q8mvaG3h0W9IvgmsY3zE5Z27RVV67PEhrf+Vnw /x9289mxKC79tXle7Ys/NZ5ZQfCNep/iH/qMdLbFBW9M/qqinEyDC8ozTmh4JxVr SEH8paf6wEuQozIeRwfnqpBJnb2Uugo4VhWKHvSteQcvFB1Sil7RdymL//d5mRzp egMZwJebZpA38G+hTjCX6oKHxy/3tCEC0glhegsYUiCqmmR2vM77Ds770n31iifa XXwAHux4L/tlFxFlGA18kmUGPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVmbkaf eBJi/xuXrDwI1EFXncjVMB8GA1UdIwQYMBaAFNpXokIHBHAI1zpl1oIkpHuaA9qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTczRS82NzY4OTc4RUE1 QTQxMUVCOThDMzI5MEZDNEY5QUUwMi8ybGVpUWdjRWNBalhPbVhXZ2lTa2U1b0Qy cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZWlRZ2NFY0FqWE9tWFdnaVNrZTVvRDJxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTczRS82NzY4OTc4RUE1QTQxMUVCOThDMzI5MEZDNEY5QUUwMi8ybGVpUWdjRWNB alhPbVhXZ2lTa2U1b0QycW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJNdaNMLq1lXuo2tQ8GpYYFj52wb0J8P1y63ihSDj4CjPf/yCeCMpM aCof2zWgYXYq7PJw21XUwjg9DrIRMc83vFmR4/Uh0jllBC9rS+WJ/MH7LYGXeenX 30wSQHSa5b3rqioUUM0f8Cr4b4VXUj1N3aq6jsJefEw1vmlAhLyiGzXR2SnHB83U 21nUe+o+adCioqP+o64+9Dg+yErfqPGXbkILNaAgCBEFvHdkJZBih6CAI7Td26C9 4am4YQT3pgWinFfFrVXvyOIxt2k5EDa59OeUOfdTVP1N961LVHvMHf1ERTEMjU2Q IAwCVTKGd1LdlDWU/ijTreoHYvumwsVA -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:53 2025 by rpki-client