$ rpki-client -vvf rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft File: 2kdUAUEh0yaH2X05LZBgSagU_MM.mft (raw, json) Hash identifier: NW7urFOStUjVEDma0rMKZ+4oJhbc9XfAVOz9BOQsOh8= Subject key identifier: AB:BE:39:36:40:40:F4:51:64:26:4E:6C:23:28:D0:92:95:BD:4B:88 Authority key identifier: DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3 Certificate issuer: /CN=A91777A6/serialNumber=DA4754014121D32687D97D392D906049A814FCC3 Certificate serial: 028F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft Manifest number: 028A Signing time: Thu 23 Oct 2025 03:02:30 +0000 Manifest this update: Thu 23 Oct 2025 03:02:29 +0000 Manifest next update: Thu 30 Oct 2025 03:02:29 +0000 Files and hashes: 1: 2kdUAUEh0yaH2X05LZBgSagU_MM.crl (hash: 3tmiYN/7HyIH44km+Ou8yws7AwJV1cKAGbBRq9z1/F8=) 2: 930770F4244C11ED95AA5569C4F9AE02.roa (hash: ULGKwEOFyOrsmtR9RLcNHZ1T/UHrIBp7ZTGPrjal32s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 03:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 655 (0x28f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777A6, serialNumber=DA4754014121D32687D97D392D906049A814FCC3 Validity Not Before: Oct 23 03:02:29 2025 GMT Not After : Oct 30 03:02:29 2025 GMT Subject: CN=68f99ac6-96f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7c:ca:b3:f8:92:77:2a:66:5f:df:70:b6:e2: 04:f0:0a:45:70:cd:7a:59:25:c9:d4:09:66:30:82: f9:8d:0b:d5:5d:1b:67:a0:15:0c:62:59:db:2b:57: e0:f3:b3:79:f8:a6:35:77:bf:a1:37:f6:41:29:75: cd:eb:51:ea:e8:2f:1f:63:1d:06:2e:de:64:13:2b: 84:09:f3:f2:43:4e:1c:f0:1b:96:a0:63:21:02:d0: 31:14:52:5c:4c:e2:11:6e:2f:45:e7:55:aa:a3:b3: cb:aa:05:a0:fe:2f:92:5b:47:f8:1e:81:55:04:92: 8b:4b:58:37:b9:14:06:c9:28:c6:27:1d:e6:c7:8e: 0e:e3:3b:bc:a7:ec:a0:a5:84:26:97:45:8f:2c:7f: ad:37:a6:2a:89:47:61:0f:9f:cb:e6:da:28:81:66: 69:90:3c:9d:bf:00:33:4e:f3:19:1c:26:93:71:22: 97:a5:e1:8d:df:b5:b9:a4:c1:be:f7:7e:65:fb:2e: 2c:4f:c1:1e:87:2e:57:ad:83:9f:0a:2d:43:a7:47: 5e:64:a1:3a:4a:dc:d9:bd:93:59:f0:55:31:aa:64: 5a:88:bf:c2:ed:da:89:d4:5e:0c:54:74:78:c3:ab: 22:71:0f:7e:6e:e8:c6:33:1d:2f:f2:fe:f9:1a:6b: 1e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:BE:39:36:40:40:F4:51:64:26:4E:6C:23:28:D0:92:95:BD:4B:88 X509v3 Authority Key Identifier: keyid:DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:e5:82:a2:d4:3c:86:02:91:c2:c8:c4:35:ce:ef:3a:46:b7: dd:9c:dc:ed:12:eb:e8:da:3f:66:1d:a0:9d:01:1f:c2:ac:bf: 29:6f:03:17:b6:5f:91:9e:70:1d:a7:17:7e:3c:78:fe:94:76: 94:b6:bc:8c:6c:32:2a:ab:13:49:f9:21:16:57:8f:86:c7:20: 1b:49:cf:58:92:0c:78:12:2e:0e:07:a6:b1:b3:36:02:d9:7d: d3:97:d6:78:d8:7e:3c:df:d0:2a:0d:4e:ad:3e:88:06:ee:58: e6:60:9c:e8:9f:bb:47:ed:8d:05:09:af:2b:d8:d7:68:b1:81: f6:fb:0d:49:4d:cd:47:cb:3b:db:a2:2e:d0:a4:30:05:87:86: e6:b0:36:d0:bd:7b:92:92:16:67:c1:33:53:79:65:e3:29:f7: 87:42:af:bd:f2:78:65:3e:a2:33:e8:8b:f6:94:f7:66:90:6c: a9:98:05:c8:a8:b8:d4:09:b2:56:ad:aa:d6:b6:20:a7:ce:82: 7d:f6:1d:88:51:88:3b:e2:41:8c:4b:e6:a7:3d:dc:c8:73:83: 4d:6e:c7:f3:f5:ae:d9:50:db:46:2b:c2:06:d7:69:c3:0f:6a: d8:84:9a:9d:c4:14:f5:1c:1c:3f:cb:d4:61:9b:7a:69:3c:7f: b8:59:8f:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc3QTYxMTAvBgNVBAUTKERBNDc1NDAxNDEyMUQzMjY4N0Q5N0QzOTJEOTA2MDQ5 QTgxNEZDQzMwHhcNMjUxMDIzMDMwMjI5WhcNMjUxMDMwMDMwMjI5WjAYMRYwFAYD VQQDEw02OGY5OWFjNi05NmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXzKs/iSdypmX99wtuIE8ApFcM16WSXJ1AlmMIL5jQvVXRtnoBUMYlnbK1fg 87N5+KY1d7+hN/ZBKXXN61Hq6C8fYx0GLt5kEyuECfPyQ04c8BuWoGMhAtAxFFJc TOIRbi9F51Wqo7PLqgWg/i+SW0f4HoFVBJKLS1g3uRQGySjGJx3mx44O4zu8p+yg pYQml0WPLH+tN6YqiUdhD5/L5toogWZpkDydvwAzTvMZHCaTcSKXpeGN37W5pMG+ 935l+y4sT8Eehy5XrYOfCi1Dp0deZKE6StzZvZNZ8FUxqmRaiL/C7dqJ1F4MVHR4 w6sicQ9+bujGMx0v8v75GmseyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKu+OTZA QPRRZCZObCMo0JKVvUuIMB8GA1UdIwQYMBaAFNpHVAFBIdMmh9l9OS2QYEmoFPzD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzdBNi9DOEE3OTlEMjI0 NDcxMUVEQjE2NTUwNTNDNEY5QUUwMi8ya2RVQVVFaDB5YUgyWDA1TFpCZ1NhZ1Vf TU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrZFVBVUVoMHlhSDJYMDVMWkJnU2FnVV9NTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzdBNi9DOEE3OTlEMjI0NDcxMUVEQjE2NTUwNTNDNEY5QUUwMi8ya2RVQVVFaDB5 YUgyWDA1TFpCZ1NhZ1VfTU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBx5YKi1DyGApHCyMQ1zu86RrfdnNztEuvo2j9mHaCdAR/CrL8pbwMX tl+RnnAdpxd+PHj+lHaUtryMbDIqqxNJ+SEWV4+GxyAbSc9Ykgx4Ei4OB6axszYC 2X3Tl9Z42H4839AqDU6tPogG7ljmYJzon7tH7Y0FCa8r2NdosYH2+w1JTc1Hyzvb oi7QpDAFh4bmsDbQvXuSkhZnwTNTeWXjKfeHQq+98nhlPqIz6Iv2lPdmkGypmAXI qLjUCbJWrarWtiCnzoJ99h2IUYg74kGMS+anPdzIc4NNbsfz9a7ZUNtGK8IG12nD D2rYhJqdxBT1HBw/y9Rhm3ppPH+4WY9D -----END CERTIFICATE-----Generated at Fri Oct 24 09:53:42 2025 by rpki-client