$ rpki-client -vvf rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft File: 2UW2DwCc3xVcQp1Aha62z-BrzgA.mft (raw, json) Hash identifier: 8VGYXq/o0RpRFMmVhmb1iYZtTenmkbxtYSlk6fSWaT8= Subject key identifier: 80:99:F4:6C:9F:3F:89:D6:E6:E4:B2:AE:F2:03:72:94:66:F9:20:C0 Authority key identifier: D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 Certificate issuer: /CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Certificate serial: 0511 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft Manifest number: 0507 Signing time: Sun 02 Nov 2025 23:35:55 +0000 Manifest this update: Sun 02 Nov 2025 23:35:54 +0000 Manifest next update: Sun 09 Nov 2025 23:35:54 +0000 Files and hashes: 1: 2UW2DwCc3xVcQp1Aha62z-BrzgA.crl (hash: WFvjq3p8g92tFaOiGZyVG5uPFQykc5rwzbujF9bSsuc=) 2: AFAC764C2C1711EC817C5912C4F9AE02.roa (hash: 4OzF15EHWUJWQROMnU+Ow7V0ACuwuCPbuqKLd0rV0bw=) 3: AF22E83C2C1711EC817C5912C4F9AE02.roa (hash: HFOpeRCt7KhrBfeMokpcxjR3KWcuUKe5Td59DEe/ljE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:35:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1297 (0x511) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149CEF, serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Validity Not Before: Nov 2 23:35:54 2025 GMT Not After : Nov 9 23:35:54 2025 GMT Subject: CN=6907eada-7228 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:fc:a3:b7:1b:48:0f:bd:d4:a2:db:94:fe:27: e6:96:a4:9f:08:52:3d:1e:26:9f:65:fa:41:10:db: c7:a0:f1:57:ed:b3:fd:53:f6:59:ca:5d:5d:8b:b2: c2:49:50:54:a8:bc:18:07:b6:4f:5d:67:64:e4:54: 5a:cf:ca:a3:1d:d6:b7:87:45:22:d8:91:d7:a6:9c: 1d:f9:21:53:6f:6e:f5:a0:91:2c:9e:f1:80:6e:40: 35:9d:e6:5d:b3:38:4a:3f:02:0f:f4:b4:6d:d2:e4: 2b:97:09:da:07:92:50:ea:b5:61:ca:6f:1b:82:4c: 07:9b:be:81:99:05:45:cb:63:25:d2:db:f5:6c:a5: e8:66:ea:07:15:d5:cc:15:1c:f7:5d:33:40:41:5e: 50:6c:dd:04:f8:b9:c2:7b:b5:dc:a8:73:a7:b6:17: d0:a8:bb:4e:b8:52:a5:2b:60:49:85:33:d9:85:21: 83:4a:4a:b3:eb:e6:5f:df:d0:af:26:12:4b:5e:0e: 8a:5f:c8:34:a5:e5:db:93:87:6b:f4:01:eb:14:33: 95:72:c8:44:8c:01:67:2b:7e:5c:dd:ca:c2:47:6d: f8:32:b6:c0:67:96:f2:a5:17:3f:21:48:49:6c:b7: e4:5d:f1:15:9c:6c:c2:58:c4:00:a3:e5:f3:37:b2: 61:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:99:F4:6C:9F:3F:89:D6:E6:E4:B2:AE:F2:03:72:94:66:F9:20:C0 X509v3 Authority Key Identifier: keyid:D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:c1:ec:6c:fa:4f:7b:29:ab:50:fa:41:c0:d1:80:0c:8b:aa: 90:b3:b7:da:1c:36:6c:df:7d:a3:5d:bd:93:01:63:69:52:32: c9:de:7d:85:a2:f4:16:d7:d3:53:b6:16:ba:bf:36:c9:47:3c: b6:7b:c5:bc:15:fa:fe:09:c3:6b:06:ab:bf:f0:ba:e0:ba:a9: 7f:4f:ed:fa:39:2a:3b:42:07:65:cf:57:87:1b:54:2f:49:37: 9c:9d:7e:e0:59:65:18:74:89:58:5b:19:d5:de:b2:1d:60:06: 88:56:cb:56:86:ea:fd:cd:89:d2:78:e3:5e:ec:87:3d:c9:8d: 1a:5f:da:9e:df:15:f4:61:f6:aa:de:b4:13:ac:e0:69:33:8b: a3:21:cd:dc:e7:41:da:5a:69:b3:7f:c5:55:eb:5e:91:4b:1d: 41:1e:31:d5:e0:c7:37:50:e6:06:38:23:c9:8e:18:f6:8c:8a: ba:60:6f:9f:5d:98:07:c6:fa:09:cf:e8:ed:fd:e7:70:7e:9f: a4:c9:45:26:18:e6:a3:0b:b7:aa:a4:b3:df:eb:47:95:68:bd: 51:b0:be:15:d4:89:46:53:db:6a:ec:e7:f6:3f:b9:4e:2b:36: a3:d6:35:e4:80:73:52:54:36:a5:b6:ad:22:50:f1:49:2e:05: 32:5a:00:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDRUYxMTAvBgNVBAUTKEQ5NDVCNjBGMDA5Q0RGMTU1QzQyOUQ0MDg1QUVCNkNG RTA2QkNFMDAwHhcNMjUxMTAyMjMzNTU0WhcNMjUxMTA5MjMzNTU0WjAYMRYwFAYD VQQDEw02OTA3ZWFkYS03MjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6/yjtxtID73UotuU/ifmlqSfCFI9HiafZfpBENvHoPFX7bP9U/ZZyl1di7LC SVBUqLwYB7ZPXWdk5FRaz8qjHda3h0Ui2JHXppwd+SFTb271oJEsnvGAbkA1neZd szhKPwIP9LRt0uQrlwnaB5JQ6rVhym8bgkwHm76BmQVFy2Ml0tv1bKXoZuoHFdXM FRz3XTNAQV5QbN0E+LnCe7XcqHOnthfQqLtOuFKlK2BJhTPZhSGDSkqz6+Zf39Cv JhJLXg6KX8g0peXbk4dr9AHrFDOVcshEjAFnK35c3crCR234MrbAZ5bypRc/IUhJ bLfkXfEVnGzCWMQAo+XzN7JhfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFICZ9Gyf P4nW5uSyrvIDcpRm+SDAMB8GA1UdIwQYMBaAFNlFtg8AnN8VXEKdQIWuts/ga84A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUNFRi9DNDAxOUQyNDJD MTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4VmNRcDFBaGE2MnotQnJ6 Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJVVzJEd0NjM3hWY1FwMUFoYTYyei1CcnpnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUNFRi9DNDAxOUQyNDJDMTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4 VmNRcDFBaGE2MnotQnJ6Z0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWwexs+k97KatQ+kHA0YAMi6qQs7faHDZs332jXb2TAWNpUjLJ3n2F ovQW19NTtha6vzbJRzy2e8W8Ffr+CcNrBqu/8Lrguql/T+36OSo7Qgdlz1eHG1Qv STecnX7gWWUYdIlYWxnV3rIdYAaIVstWhur9zYnSeONe7Ic9yY0aX9qe3xX0Yfaq 3rQTrOBpM4ujIc3c50HaWmmzf8VV616RSx1BHjHV4Mc3UOYGOCPJjhj2jIq6YG+f XZgHxvoJz+jt/edwfp+kyUUmGOajC7eqpLPf60eVaL1RsL4V1IlGU9tq7Of2P7lO Kzaj1jXkgHNSVDaltq0iUPFJLgUyWgAF -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:36 2025 by rpki-client