$ rpki-client -vvf rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft File: 2RBlAbU10PfK1XyOenR8oGnQTVk.mft (raw, json) Hash identifier: AcRbQrndXwCzwcPhMqYj4zn3AsAqO8HY+A8cekzYKsU= Subject key identifier: F8:E1:3C:67:4B:13:46:B0:EA:0D:D0:B4:D8:CA:7D:94:DB:DC:26:C3 Authority key identifier: D9:10:65:01:B5:35:D0:F7:CA:D5:7C:8E:7A:74:7C:A0:69:D0:4D:59 Certificate issuer: /CN=A916FACB/serialNumber=D9106501B535D0F7CAD57C8E7A747CA069D04D59 Certificate serial: 0405 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft Manifest number: 0401 Signing time: Mon 03 Nov 2025 00:24:27 +0000 Manifest this update: Mon 03 Nov 2025 00:24:26 +0000 Manifest next update: Mon 10 Nov 2025 00:24:26 +0000 Files and hashes: 1: 2RBlAbU10PfK1XyOenR8oGnQTVk.crl (hash: z+SgCWYWWZYuIDH0RJwm/1SNlZCISslaIRduttoK8wM=) 2: 97D35382924311EC927C972FC4F9AE02.roa (hash: F5cT4m4LGvhZopgIl7MS1o33/eaQaKX2bSwBB1GnJYA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.crl rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:24:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1029 (0x405) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FACB, serialNumber=D9106501B535D0F7CAD57C8E7A747CA069D04D59 Validity Not Before: Nov 3 00:24:26 2025 GMT Not After : Nov 10 00:24:26 2025 GMT Subject: CN=6907f63a-db3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:1c:85:87:fe:41:0f:e3:e7:2f:c7:d5:ae:21: e2:0e:f1:8b:dc:26:24:bf:f1:1e:59:82:26:0a:b6: a1:18:fb:99:2f:ae:b1:c1:88:ee:ed:0d:5b:75:d7: 51:64:61:a4:22:b3:b1:42:cd:cd:a7:ed:65:e2:65: 92:aa:6a:80:41:7f:e2:c7:0b:a3:a3:02:6f:cd:4f: 08:54:22:67:2f:f4:81:52:68:df:08:34:47:24:d0: da:9b:c0:92:45:7a:0d:fc:57:df:ee:c4:91:9a:5e: 63:2d:c1:a3:7c:dc:46:a9:98:8f:1c:ee:f7:06:44: 93:45:62:f4:dc:af:73:80:52:93:55:bb:b7:29:34: 39:8d:33:a3:af:63:b4:7b:dd:44:20:39:64:6e:5a: 8a:7d:11:95:9b:18:e6:5c:9f:4a:fa:bd:a1:3b:5c: 5d:19:02:f4:67:e4:e5:5a:2c:92:d1:0a:2e:2d:13: fe:a2:39:ed:62:d6:e3:d2:94:d2:3a:81:29:55:db: 7c:ab:ce:37:ce:cc:36:04:a1:6f:66:f7:f4:19:6b: 58:ad:f7:fb:7e:4e:c8:fa:89:e8:1f:94:b5:20:62: 4d:e2:7b:e0:9a:55:81:12:8f:9d:1c:dc:61:33:ae: ff:c9:3a:a2:5e:86:4d:05:f0:83:50:1b:03:91:12: 3a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:E1:3C:67:4B:13:46:B0:EA:0D:D0:B4:D8:CA:7D:94:DB:DC:26:C3 X509v3 Authority Key Identifier: keyid:D9:10:65:01:B5:35:D0:F7:CA:D5:7C:8E:7A:74:7C:A0:69:D0:4D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:2b:61:34:ca:14:5b:4f:d7:f7:92:74:0c:8f:18:eb:5b:80: a3:27:6e:b0:ac:bf:e8:14:bc:0c:6f:3b:99:d4:90:13:cf:7d: b2:8c:64:66:2c:57:7b:d6:71:2a:01:1c:01:c0:95:9f:e2:a8: 84:9d:90:de:55:53:c1:5f:4b:9d:06:b3:73:f8:64:ea:25:9b: 3f:de:8f:5c:af:6e:ad:8a:ad:91:d9:90:73:8d:05:ce:0e:a6: 8f:49:35:6e:aa:f1:10:bc:22:3a:d9:63:39:87:cf:a6:49:fe: 64:a2:9b:d0:41:d5:51:02:fa:a8:62:88:77:80:32:ed:43:8e: fd:6a:96:63:29:d9:23:19:d2:de:28:3a:d9:f7:95:1d:32:65: f2:7f:49:da:9f:b8:9d:ec:c1:18:66:c4:61:36:d8:d2:37:9c: c2:9b:12:5c:aa:ed:1b:f1:b4:80:21:f7:81:ea:44:02:75:64: 90:c3:bf:b5:50:a6:ad:5d:66:c3:1a:eb:82:5c:57:74:36:6a: a2:9c:a7:39:a8:52:50:2d:f3:13:19:7f:83:1d:6d:aa:90:16: 04:35:04:46:5e:f5:d8:2f:40:c9:0b:72:b3:ec:13:2a:3d:92: 54:94:04:69:03:6e:1e:3c:fd:30:20:25:6d:3a:05:36:bc:b6: 95:67:35:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBQ0IxMTAvBgNVBAUTKEQ5MTA2NTAxQjUzNUQwRjdDQUQ1N0M4RTdBNzQ3Q0Ew NjlEMDRENTkwHhcNMjUxMTAzMDAyNDI2WhcNMjUxMTEwMDAyNDI2WjAYMRYwFAYD VQQDEw02OTA3ZjYzYS1kYjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlRyFh/5BD+PnL8fVriHiDvGL3CYkv/EeWYImCrahGPuZL66xwYju7Q1bdddR ZGGkIrOxQs3Np+1l4mWSqmqAQX/ixwujowJvzU8IVCJnL/SBUmjfCDRHJNDam8CS RXoN/Fff7sSRml5jLcGjfNxGqZiPHO73BkSTRWL03K9zgFKTVbu3KTQ5jTOjr2O0 e91EIDlkblqKfRGVmxjmXJ9K+r2hO1xdGQL0Z+TlWiyS0QouLRP+ojntYtbj0pTS OoEpVdt8q843zsw2BKFvZvf0GWtYrff7fk7I+onoH5S1IGJN4nvgmlWBEo+dHNxh M67/yTqiXoZNBfCDUBsDkRI6zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjhPGdL E0aw6g3QtNjKfZTb3CbDMB8GA1UdIwQYMBaAFNkQZQG1NdD3ytV8jnp0fKBp0E1Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkFDQi9GNTU5OEQwODky NDAxMUVDQkVENERBMkNDNEY5QUUwMi8yUkJsQWJVMTBQZksxWHlPZW5SOG9HblFU VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJSQmxBYlUxMFBmSzFYeU9lblI4b0duUVRWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkFDQi9GNTU5OEQwODkyNDAxMUVDQkVENERBMkNDNEY5QUUwMi8yUkJsQWJVMTBQ ZksxWHlPZW5SOG9HblFUVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5K2E0yhRbT9f3knQMjxjrW4CjJ26wrL/oFLwMbzuZ1JATz32yjGRm LFd71nEqARwBwJWf4qiEnZDeVVPBX0udBrNz+GTqJZs/3o9cr26tiq2R2ZBzjQXO DqaPSTVuqvEQvCI62WM5h8+mSf5kopvQQdVRAvqoYoh3gDLtQ479apZjKdkjGdLe KDrZ95UdMmXyf0nan7id7MEYZsRhNtjSN5zCmxJcqu0b8bSAIfeB6kQCdWSQw7+1 UKatXWbDGuuCXFd0NmqinKc5qFJQLfMTGX+DHW2qkBYENQRGXvXYL0DJC3Kz7BMq PZJUlARpA24ePP0wICVtOgU2vLaVZzVH -----END CERTIFICATE-----Generated at Tue Nov 4 07:22:45 2025 by rpki-client