$ rpki-client -vvf rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft File: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft (raw, json) Hash identifier: zyZGkpJt7gx7Q37lpAc80Fy8PVuYp7OoHzuy5nUh4/U= Subject key identifier: 62:4F:81:AB:86:27:12:CD:C7:AA:D7:F0:09:53:F4:47:F4:58:2E:29 Authority key identifier: D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F Certificate issuer: /CN=A91758EC/serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Certificate serial: 38 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft Manifest number: 34 Signing time: Fri 17 Oct 2025 11:25:26 +0000 Manifest this update: Fri 17 Oct 2025 11:25:25 +0000 Manifest next update: Fri 24 Oct 2025 11:25:25 +0000 Files and hashes: 1: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl (hash: V4m2cy08GFNPIQx+lO+KhnbOYjGFrqVofxbAHj2nh/k=) 2: 9DA6D1866E1C11F0B7ED1D84C4F9AE02.roa (hash: Ab7z11j/JWV2srLlnZVUsiX2l5YoRDQg2qGXrcUnimg=) 3: 312F0E7E6E1C11F0AB99F682C4F9AE02.roa (hash: TPTw4itouUrT3zWp67Qh/kFVGTIQgN0gjeYV7fEtXi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 11:25:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758EC, serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Validity Not Before: Oct 17 11:25:25 2025 GMT Not After : Oct 24 11:25:25 2025 GMT Subject: CN=68f227a6-3896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8e:bb:b6:d3:76:32:67:bd:bf:ba:86:0b:11: db:1b:5b:bd:48:3e:e7:c1:33:27:19:99:4e:c3:0b: 3a:35:ff:33:a4:70:5a:66:47:91:cf:01:d9:10:8a: b2:7f:51:0d:38:c8:a6:49:a6:c5:21:a2:f2:98:0c: 43:98:3f:b2:37:71:ba:06:a2:5a:4b:63:b6:88:69: 99:fa:28:97:e8:36:02:ad:79:0d:9e:52:df:c6:ae: 4d:98:15:01:f5:65:1d:ae:12:d1:fd:1f:c9:f8:53: 95:c4:91:3c:32:08:c0:f1:16:9b:96:3e:97:7b:32: 01:57:0a:47:a1:df:55:41:9e:84:95:3f:1f:01:db: 9d:9e:60:b6:22:5b:f1:34:dd:f2:c2:4a:20:81:5a: 4e:25:82:2c:5f:f2:04:2b:50:6c:6a:79:87:a1:48: 24:b1:0f:80:3b:c6:84:43:b7:bd:e8:4b:8b:20:c4: 68:42:ad:d8:c5:13:81:4d:ca:11:a0:d2:b3:c1:da: 8e:3e:1f:ef:94:72:5a:e9:0b:a3:be:0a:eb:8a:6b: d7:98:45:ab:11:5d:73:94:cb:71:59:1d:36:23:f8: df:a3:ff:6c:38:33:f7:97:bb:7b:a9:72:0c:a8:84: 49:b0:c4:68:3c:e6:a9:4f:6f:93:d8:ac:ad:6d:53: cd:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:4F:81:AB:86:27:12:CD:C7:AA:D7:F0:09:53:F4:47:F4:58:2E:29 X509v3 Authority Key Identifier: keyid:D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:13:27:1f:55:3c:0a:9c:97:a7:82:8f:2d:b3:0f:81:d8:8d: a6:4e:32:c7:75:a2:65:bc:24:df:ff:e8:7d:ed:6b:32:bd:dd: 70:fa:57:85:7f:ae:3f:3e:c6:77:95:cd:60:12:a8:df:f3:fb: 2d:fa:d7:a7:70:6e:bc:2b:fb:b4:1f:c2:64:01:00:9b:12:30: 38:c3:d3:19:eb:24:a4:80:53:41:6a:ee:bb:9c:85:13:d5:2b: 70:ce:6a:5e:36:89:cd:63:27:2d:47:54:69:9e:f4:97:9f:c4: fb:71:80:7e:8a:66:ce:d3:49:93:79:89:e6:51:b1:2f:45:c2: 1f:1f:c8:ad:df:52:04:87:82:2f:52:3d:6f:e3:d6:7f:26:b1: 86:b1:1a:53:18:ce:80:b2:30:5f:fe:f6:77:32:72:bb:6c:1c: 8d:76:f3:1c:a1:d2:fe:1a:59:60:e8:88:01:32:3e:17:32:49: 58:48:54:ee:18:0f:e1:f8:96:c5:fb:44:a5:be:0d:2b:fd:b8: 96:a6:69:20:b7:a9:3f:e4:d1:4c:a7:7a:b9:01:1e:48:c9:75: be:80:93:0f:f5:08:ac:cc:80:74:50:97:9f:44:4d:86:6f:b0: 18:9a:07:f7:e0:3e:3c:db:2f:16:77:70:6e:5d:07:19:5f:0e: ff:e1:f3:3b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NThFQzExMC8GA1UEBRMoRDgyN0I2ODQzRUI3RjZCOUYwRUQ1RjJGRjcyMzQ0QTUy QzA0QjQ5RjAeFw0yNTEwMTcxMTI1MjVaFw0yNTEwMjQxMTI1MjVaMBgxFjAUBgNV BAMTDTY4ZjIyN2E2LTM4OTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAjru203YyZ72/uoYLEdsbW71IPufBMycZmU7DCzo1/zOkcFpmR5HPAdkQirJ/ UQ04yKZJpsUhovKYDEOYP7I3cboGolpLY7aIaZn6KJfoNgKteQ2eUt/Grk2YFQH1 ZR2uEtH9H8n4U5XEkTwyCMDxFpuWPpd7MgFXCkeh31VBnoSVPx8B252eYLYiW/E0 3fLCSiCBWk4lgixf8gQrUGxqeYehSCSxD4A7xoRDt73oS4sgxGhCrdjFE4FNyhGg 0rPB2o4+H++UclrpC6O+CuuKa9eYRasRXXOUy3FZHTYj+N+j/2w4M/eXu3upcgyo hEmwxGg85qlPb5PYrK1tU83VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYk+Bq4Yn Es3HqtfwCVP0R/RYLikwHwYDVR0jBBgwFoAU2Ce2hD639rnw7V8v9yNEpSwEtJ8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1OEVDLzZCRjg2Qjg0NjYz MDExRjBCOURDNEU2NEM0RjlBRTAyLzJDZTJoRDYzOXJudzdWOHY5eU5FcFN3RXRK OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMkNlMmhENjM5cm53N1Y4djl5TkVwU3dFdEo4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 OEVDLzZCRjg2Qjg0NjYzMDExRjBCOURDNEU2NEM0RjlBRTAyLzJDZTJoRDYzOXJu dzdWOHY5eU5FcFN3RXRKOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFsTJx9VPAqcl6eCjy2zD4HYjaZOMsd1omW8JN//6H3tazK93XD6V4V/ rj8+xneVzWASqN/z+y3616dwbrwr+7QfwmQBAJsSMDjD0xnrJKSAU0Fq7ruchRPV K3DOal42ic1jJy1HVGme9JefxPtxgH6KZs7TSZN5ieZRsS9Fwh8fyK3fUgSHgi9S PW/j1n8msYaxGlMYzoCyMF/+9ncycrtsHI128xyh0v4aWWDoiAEyPhcySVhIVO4Y D+H4lsX7RKW+DSv9uJamaSC3qT/k0UynerkBHkjJdb6Akw/1CKzMgHRQl59ETYZv sBiaB/fgPjzbLxZ3cG5dBxlfDv/h8zs= -----END CERTIFICATE-----Generated at Sat Oct 18 23:39:01 2025 by rpki-client