$ rpki-client -vvf rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft File: 2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft (raw, json) Hash identifier: fuohXWl25QbKxjZkca2gGteJo6+3sbLCkeDSI4uIdh4= Subject key identifier: 22:20:EE:98:62:7B:BC:1C:E1:CE:E5:CC:E5:CA:2D:87:68:93:7F:F0 Authority key identifier: DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62 Certificate issuer: /CN=A916D687/serialNumber=DABB169D9E9D77E6576C018101252CB0B4857F62 Certificate serial: 098B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft Manifest number: 0982 Signing time: Sun 02 Nov 2025 20:02:31 +0000 Manifest this update: Sun 02 Nov 2025 20:02:30 +0000 Manifest next update: Sun 09 Nov 2025 20:02:30 +0000 Files and hashes: 1: 2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl (hash: Me/33S3pOos6HlwOE0gaUbnva6hW59DlVxplpKY4XLU=) 2: 33CDE41E5A4711EFA5ED8487C4F9AE02.roa (hash: 4ExF2O2Frz9RSsUL7YBwRkgASJlP9BcJdkByxRonGSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2443 (0x98b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D687, serialNumber=DABB169D9E9D77E6576C018101252CB0B4857F62 Validity Not Before: Nov 2 20:02:30 2025 GMT Not After : Nov 9 20:02:30 2025 GMT Subject: CN=6907b8d7-2c46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:28:d1:0d:9c:f4:da:2f:a9:21:0d:82:2d:b4: 86:cc:a0:c5:89:79:a6:f4:ab:cc:0e:13:d5:7d:35: 85:d7:f8:8f:8f:c5:3a:e3:b4:ce:c6:fd:e8:53:3f: 37:4d:6f:72:58:c1:5a:8b:e2:3e:10:82:97:ce:c1: 76:15:dd:0c:a7:fd:52:44:10:91:86:dd:23:54:04: 21:79:8a:45:ea:d4:4f:db:3d:92:fd:41:7d:d1:d5: 13:fa:ca:e9:e6:2a:70:a4:3b:ee:3e:16:a6:ca:dc: 24:46:53:f8:28:b1:ee:d7:66:f7:d9:54:69:c5:0f: 54:5a:d7:da:23:6a:9b:04:4b:41:dc:c2:09:a5:8a: 90:dd:28:82:3a:e6:87:16:31:25:24:2d:46:a0:bf: e0:ca:f5:17:43:f4:1d:80:52:b5:07:20:51:72:7a: cd:17:fd:87:fd:56:d8:7a:d5:de:42:d9:55:cd:31: ab:df:c9:35:49:17:fa:41:2d:80:e1:16:11:63:20: 76:7b:45:d8:86:2f:f7:7e:b1:fa:44:91:be:2f:35: a6:cc:f3:02:d7:38:8a:af:2a:14:29:c2:d5:66:ec: 3b:7b:be:9b:cc:70:5b:68:73:d1:0f:96:24:57:6c: 78:58:8f:f2:64:b7:2c:97:85:ef:6e:45:99:2c:5e: 2e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:20:EE:98:62:7B:BC:1C:E1:CE:E5:CC:E5:CA:2D:87:68:93:7F:F0 X509v3 Authority Key Identifier: keyid:DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:92:e6:a1:96:c4:8e:f9:5c:eb:18:f2:78:08:d8:a0:26:fc: ca:8c:be:7e:8e:bb:a2:fb:b6:fc:dd:5e:71:c7:63:5e:07:ba: a8:79:d4:5a:bb:84:b9:33:98:d1:5c:da:bb:3f:ef:95:bb:bd: b4:4b:5a:a7:3a:61:13:7b:d9:9c:b3:8e:45:4f:dc:c0:7c:d0: d6:e2:79:8a:e6:7c:29:c6:c9:31:78:36:8b:5a:b4:de:e8:4a: 16:cb:5c:c8:db:84:58:4a:53:d0:ee:33:cc:47:04:5b:e7:9a: 13:8c:43:72:f1:2e:9c:5e:0a:ec:f8:69:ff:8a:7f:cf:a8:15: c4:e3:b5:e9:df:ce:3e:95:48:d7:f9:85:72:c3:74:38:57:ee: f5:b7:48:d3:df:53:21:8c:5c:9d:d2:ae:fb:4f:39:c8:53:9c: 31:b7:8e:f4:50:28:a5:42:a8:9e:0d:c9:7b:b8:08:77:a0:60: e3:f8:31:d0:97:4d:a3:6f:bf:49:f5:ee:ab:6c:2b:69:12:0c: 2c:2e:b3:be:59:b3:70:d8:35:89:97:4f:c3:17:ca:45:8a:61: 54:e6:ed:ca:f7:88:b8:14:32:d7:72:58:94:0f:c1:5a:d0:84: cf:d7:2b:f8:b9:c1:41:6a:a6:51:2c:9e:7c:b3:59:55:73:e7: f7:cb:f1:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ2ODcxMTAvBgNVBAUTKERBQkIxNjlEOUU5RDc3RTY1NzZDMDE4MTAxMjUyQ0Iw QjQ4NTdGNjIwHhcNMjUxMTAyMjAwMjMwWhcNMjUxMTA5MjAwMjMwWjAYMRYwFAYD VQQDEw02OTA3YjhkNy0yYzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSjRDZz02i+pIQ2CLbSGzKDFiXmm9KvMDhPVfTWF1/iPj8U647TOxv3oUz83 TW9yWMFai+I+EIKXzsF2Fd0Mp/1SRBCRht0jVAQheYpF6tRP2z2S/UF90dUT+srp 5ipwpDvuPhamytwkRlP4KLHu12b32VRpxQ9UWtfaI2qbBEtB3MIJpYqQ3SiCOuaH FjElJC1GoL/gyvUXQ/QdgFK1ByBRcnrNF/2H/VbYetXeQtlVzTGr38k1SRf6QS2A 4RYRYyB2e0XYhi/3frH6RJG+LzWmzPMC1ziKryoUKcLVZuw7e76bzHBbaHPRD5Yk V2x4WI/yZLcsl4XvbkWZLF4u7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCIg7phi e7wc4c7lzOXKLYdok3/wMB8GA1UdIwQYMBaAFNq7Fp2enXfmV2wBgQElLLC0hX9i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDY4Ny83NkI0M0I2NDlG NDUxMUVBOUU1MjM1NjNDNEY5QUUwMi8ycnNXblo2ZGQtWlhiQUdCQVNVc3NMU0Zm MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyc1duWjZkZC1aWGJBR0JBU1Vzc0xTRmYySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDY4Ny83NkI0M0I2NDlGNDUxMUVBOUU1MjM1NjNDNEY5QUUwMi8ycnNXblo2ZGQt WlhiQUdCQVNVc3NMU0ZmMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1kuahlsSO+VzrGPJ4CNigJvzKjL5+jrui+7b83V5xx2NeB7qoedRa u4S5M5jRXNq7P++Vu720S1qnOmETe9mcs45FT9zAfNDW4nmK5nwpxskxeDaLWrTe 6EoWy1zI24RYSlPQ7jPMRwRb55oTjENy8S6cXgrs+Gn/in/PqBXE47Xp384+lUjX +YVyw3Q4V+71t0jT31MhjFyd0q77TznIU5wxt470UCilQqieDcl7uAh3oGDj+DHQ l02jb79J9e6rbCtpEgwsLrO+WbNw2DWJl0/DF8pFimFU5u3K94i4FDLXcliUD8Fa 0ITP1yv4ucFBaqZRLJ58s1lVc+f3y/FY -----END CERTIFICATE-----Generated at Mon Nov 3 18:08:22 2025 by rpki-client