$ rpki-client -vvf rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft File: 2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft (raw, json) Hash identifier: rM6hMXf2+H8G4UWL8bFwT18WZnx0RvCEX4ghzKJQeMA= Subject key identifier: FC:4C:BD:BF:94:79:52:E2:D7:B4:E6:92:C2:EB:A1:75:14:3A:D5:8F Authority key identifier: D9:6B:F5:6A:B6:3F:AE:F0:16:9C:0D:29:D6:4A:54:78:1C:06:B2:E4 Certificate issuer: /CN=A91487B2/serialNumber=D96BF56AB63FAEF0169C0D29D64A54781C06B2E4 Certificate serial: 0486 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft Manifest number: 0485 Signing time: Wed 05 Nov 2025 00:08:41 +0000 Manifest this update: Wed 05 Nov 2025 00:08:40 +0000 Manifest next update: Wed 12 Nov 2025 00:08:40 +0000 Files and hashes: 1: 2Wv1arY_rvAWnA0p1kpUeBwGsuQ.crl (hash: +NY0WEQINmxrg1EmjoLpVFtxSQ89yxW43CpORsyH5Vs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.crl rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1158 (0x486) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91487B2, serialNumber=D96BF56AB63FAEF0169C0D29D64A54781C06B2E4 Validity Not Before: Nov 5 00:08:40 2025 GMT Not After : Nov 12 00:08:40 2025 GMT Subject: CN=690a9588-c439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:4f:3c:dd:04:7f:c5:36:8d:94:74:91:af:7f: 4c:bd:25:8e:99:76:a5:7b:cc:d4:79:c5:ef:8e:8b: 44:a1:2c:c6:9b:7b:c1:86:30:26:ba:da:58:a5:4d: 7c:1b:8e:45:96:22:5e:91:2b:4e:23:c6:f8:80:e9: 16:7c:9b:1e:7e:01:11:31:e4:5e:a5:c8:7e:d6:6d: b8:05:41:78:d1:13:3e:c3:1b:ff:9d:f1:f2:46:60: f2:2d:b0:17:17:cd:e7:54:16:07:4f:e5:c8:c5:8d: 37:78:cb:88:02:31:df:4c:30:99:a1:8a:16:e2:0c: e2:d7:25:ce:60:0e:80:c6:d7:de:a2:31:b3:12:98: 3e:e8:ca:24:76:56:74:a5:23:e9:ea:0e:69:be:34: b3:1c:b5:77:9d:5f:b5:ff:b2:08:d6:49:67:fe:cb: c8:9f:fa:5c:eb:c5:aa:05:55:dc:fb:01:d0:18:1a: e4:e4:fe:21:e3:dc:59:a1:a5:77:c1:2f:a2:83:41: b8:b7:91:4a:8d:4a:cd:f0:31:73:67:52:32:73:42: 39:a9:b9:1d:a6:91:33:27:5d:45:30:94:6c:a8:4c: ad:b1:34:05:e3:48:8d:fe:2e:43:fd:28:7b:42:18: 4b:15:7b:45:b6:48:4e:08:85:30:51:4e:fa:35:fe: 65:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:4C:BD:BF:94:79:52:E2:D7:B4:E6:92:C2:EB:A1:75:14:3A:D5:8F X509v3 Authority Key Identifier: keyid:D9:6B:F5:6A:B6:3F:AE:F0:16:9C:0D:29:D6:4A:54:78:1C:06:B2:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91487B2/746DB6F25D6511ECBB40D135C4F9AE02/2Wv1arY_rvAWnA0p1kpUeBwGsuQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:be:2b:fc:d5:80:0f:a9:ee:d8:50:91:3a:54:1b:81:d5:26: 01:ae:56:ae:71:df:56:f4:a9:ca:e2:7d:00:b3:28:55:74:44: 46:18:4f:2c:b6:90:2c:37:43:9e:c2:c8:c2:ba:54:44:d2:9d: 92:7e:e3:82:be:52:67:d5:03:de:6e:a3:58:5a:f1:05:fc:85: 16:fd:65:1e:7e:92:a2:93:18:38:87:42:6c:31:46:a7:08:ca: c5:76:4c:73:b2:82:24:3a:c1:b4:44:16:3d:14:19:f1:be:89: b8:cc:cd:2e:eb:3f:12:ff:97:ac:6a:71:8d:6b:b5:79:60:f3: 62:e7:43:4e:f5:77:3e:6d:12:c2:ac:4c:b6:91:67:fd:6a:8b: 1f:aa:62:e6:57:f0:57:3e:9a:9f:3f:e0:86:f3:ca:a8:0b:22: 16:99:30:cd:27:fe:dc:a0:5d:e4:02:34:67:52:9a:4e:92:96: ba:7a:95:41:35:e8:cc:47:e8:89:ee:72:66:2e:da:b1:d6:8a: f3:a9:08:84:59:a7:97:a1:de:08:3d:a9:a0:ff:b7:10:9d:c3: a4:70:e7:4f:24:ec:a4:6b:cd:f9:d2:47:59:34:6d:02:94:56: a4:e4:bd:a8:f8:34:94:f1:02:7b:c1:1a:a0:72:4d:4f:40:dc: 10:52:bf:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg3QjIxMTAvBgNVBAUTKEQ5NkJGNTZBQjYzRkFFRjAxNjlDMEQyOUQ2NEE1NDc4 MUMwNkIyRTQwHhcNMjUxMTA1MDAwODQwWhcNMjUxMTEyMDAwODQwWjAYMRYwFAYD VQQDEw02OTBhOTU4OC1jNDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn0883QR/xTaNlHSRr39MvSWOmXale8zUecXvjotEoSzGm3vBhjAmutpYpU18 G45FliJekStOI8b4gOkWfJsefgERMeRepch+1m24BUF40RM+wxv/nfHyRmDyLbAX F83nVBYHT+XIxY03eMuIAjHfTDCZoYoW4gzi1yXOYA6AxtfeojGzEpg+6MokdlZ0 pSPp6g5pvjSzHLV3nV+1/7II1kln/svIn/pc68WqBVXc+wHQGBrk5P4h49xZoaV3 wS+ig0G4t5FKjUrN8DFzZ1Iyc0I5qbkdppEzJ11FMJRsqEytsTQF40iN/i5D/Sh7 QhhLFXtFtkhOCIUwUU76Nf5l+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxMvb+U eVLi17TmksLroXUUOtWPMB8GA1UdIwQYMBaAFNlr9Wq2P67wFpwNKdZKVHgcBrLk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODdCMi83NDZEQjZGMjVE NjUxMUVDQkI0MEQxMzVDNEY5QUUwMi8yV3YxYXJZX3J2QVduQTBwMWtwVWVCd0dz dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXdjFhcllfcnZBV25BMHAxa3BVZUJ3R3N1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODdCMi83NDZEQjZGMjVENjUxMUVDQkI0MEQxMzVDNEY5QUUwMi8yV3YxYXJZX3J2 QVduQTBwMWtwVWVCd0dzdVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDviv81YAPqe7YUJE6VBuB1SYBrlaucd9W9KnK4n0AsyhVdERGGE8s tpAsN0OewsjCulRE0p2SfuOCvlJn1QPebqNYWvEF/IUW/WUefpKikxg4h0JsMUan CMrFdkxzsoIkOsG0RBY9FBnxvom4zM0u6z8S/5esanGNa7V5YPNi50NO9Xc+bRLC rEy2kWf9aosfqmLmV/BXPpqfP+CG88qoCyIWmTDNJ/7coF3kAjRnUppOkpa6epVB NejMR+iJ7nJmLtqx1orzqQiEWaeXod4IPamg/7cQncOkcOdPJOyka8350kdZNG0C lFak5L2o+DSU8QJ7wRqgck1PQNwQUr9p -----END CERTIFICATE-----Generated at Wed Nov 5 13:29:38 2025 by rpki-client