$ rpki-client -vvf rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft File: 2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft (raw, json) Hash identifier: XPg0cekX4kgKe/BnxYRYOoAHUayO1micL7dRu2aP2Oc= Subject key identifier: 27:F7:90:FD:8C:75:D5:65:4D:04:66:80:77:8F:AF:38:EE:6C:AF:E6 Authority key identifier: DB:03:27:14:43:E7:5D:6D:19:50:50:ED:C8:B6:13:ED:5F:FB:D8:38 Certificate issuer: /CN=A91889B6/serialNumber=DB03271443E75D6D195050EDC8B613ED5FFBD838 Certificate serial: 34D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft Manifest number: 34D3 Signing time: Wed 22 Oct 2025 14:54:26 +0000 Manifest this update: Wed 22 Oct 2025 14:54:25 +0000 Manifest next update: Wed 29 Oct 2025 14:54:25 +0000 Files and hashes: 1: 2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl (hash: jFhZyIMe5Q6hjQHDdJQJF3XqbI7W6hOsQIU0Y4iHEFk=) 2: 10E0F1884D0C11EE81002274C4F9AE02.roa (hash: OUXfbXIv2KGUcMt1yzZeYDgmZBLfK/Afrx3klkuMb44=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 14:54:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13526 (0x34d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91889B6, serialNumber=DB03271443E75D6D195050EDC8B613ED5FFBD838 Validity Not Before: Oct 22 14:54:25 2025 GMT Not After : Oct 29 14:54:25 2025 GMT Subject: CN=68f8f021-4619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0e:6b:2b:38:8e:8c:6c:7d:5b:55:bb:9b:c9: fc:36:ab:77:c5:77:16:ee:ae:2c:65:2b:00:5f:e3: d7:30:be:ff:f4:d8:ea:d7:e7:bf:a4:59:38:89:b8: a0:da:27:68:37:c5:ea:65:40:a0:34:1c:d9:92:02: 34:5c:4d:e7:59:7e:4f:1b:a5:e7:f3:e4:e7:fb:13: 66:35:00:07:38:9c:db:3c:bf:89:7e:ba:c7:93:10: 7e:53:a5:e5:c2:d6:d0:60:51:6b:40:02:dc:ca:d9: 95:df:98:95:de:e9:d2:62:d9:a5:13:66:9f:68:c1: 9c:aa:b7:0a:74:cd:5a:61:46:24:4a:85:d2:31:8b: aa:e5:aa:f4:56:e7:77:14:62:5e:95:a7:b9:23:8e: 9e:42:13:7b:6e:2a:34:59:cd:da:3a:b4:c5:7b:25: 7a:77:65:8c:75:14:ae:e2:e8:30:6d:d1:fe:a8:0a: a7:1f:51:64:15:75:88:1e:04:18:f9:43:69:cc:10: a0:88:6c:a0:51:36:85:a7:02:5e:c4:56:80:ab:2c: 6a:03:b3:94:af:86:1c:53:a6:82:99:8a:4c:af:59: 62:f9:97:c0:eb:f6:dd:f9:83:94:d9:82:1b:97:96: e0:b4:74:04:42:10:05:52:af:f4:71:3b:6a:fe:1a: ee:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:F7:90:FD:8C:75:D5:65:4D:04:66:80:77:8F:AF:38:EE:6C:AF:E6 X509v3 Authority Key Identifier: keyid:DB:03:27:14:43:E7:5D:6D:19:50:50:ED:C8:B6:13:ED:5F:FB:D8:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91889B6/39AA0A021D9611E2A6548E7E08B02CD2/2wMnFEPnXW0ZUFDtyLYT7V_72Dg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:8e:fb:75:65:02:2a:b4:73:c6:fe:ab:f5:3e:a8:05:cd:f5: 5f:a7:9a:6a:de:17:54:c6:33:a2:1c:df:37:44:a0:0f:77:9d: 5b:cd:b5:7e:33:ae:e0:fd:35:fa:4b:58:40:45:25:b5:71:41: 5f:8e:06:3a:1a:ff:75:b4:26:53:c4:a4:a8:e2:cf:cd:ed:58: 38:01:06:e3:06:bc:60:7e:1a:f9:13:b2:69:8d:6c:43:cd:d7: 31:c4:3f:6c:15:ad:6f:33:5b:fa:5d:bc:50:1c:66:d0:e7:c2: d7:a4:80:63:89:8c:a4:90:3c:a4:49:44:9d:cf:5f:44:bc:5d: b4:89:f3:51:03:ba:e0:87:a3:55:df:f1:f5:0e:ca:7b:71:19: 13:9b:e5:46:e6:ab:0a:22:0c:15:75:9b:13:ca:8b:4d:42:0b: c6:1a:82:70:25:e6:c1:e3:a7:35:60:3e:f9:f5:14:28:45:b9: 96:0e:12:ba:9c:3d:bd:19:86:43:c9:b1:3d:1b:c4:1d:16:dc: ca:86:13:ca:5d:ff:55:ef:5f:2e:19:41:ab:d1:e0:b2:15:b6: 9b:76:85:77:f3:28:9c:10:7a:e4:7d:50:9c:d1:94:f3:58:32: 5f:ea:64:fb:7b:08:dc:2a:d2:ca:a7:d4:ac:e8:2a:77:b8:f1: 61:f9:b0:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg5QjYxMTAvBgNVBAUTKERCMDMyNzE0NDNFNzVENkQxOTUwNTBFREM4QjYxM0VE NUZGQkQ4MzgwHhcNMjUxMDIyMTQ1NDI1WhcNMjUxMDI5MTQ1NDI1WjAYMRYwFAYD VQQDEw02OGY4ZjAyMS00NjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvA5rKziOjGx9W1W7m8n8Nqt3xXcW7q4sZSsAX+PXML7/9Njq1+e/pFk4ibig 2idoN8XqZUCgNBzZkgI0XE3nWX5PG6Xn8+Tn+xNmNQAHOJzbPL+JfrrHkxB+U6Xl wtbQYFFrQALcytmV35iV3unSYtmlE2afaMGcqrcKdM1aYUYkSoXSMYuq5ar0Vud3 FGJelae5I46eQhN7bio0Wc3aOrTFeyV6d2WMdRSu4ugwbdH+qAqnH1FkFXWIHgQY +UNpzBCgiGygUTaFpwJexFaAqyxqA7OUr4YcU6aCmYpMr1li+ZfA6/bd+YOU2YIb l5bgtHQEQhAFUq/0cTtq/hruAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCf3kP2M ddVlTQRmgHePrzjubK/mMB8GA1UdIwQYMBaAFNsDJxRD511tGVBQ7ci2E+1f+9g4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODlCNi8zOUFBMEEwMjFE OTYxMUUyQTY1NDhFN0UwOEIwMkNEMi8yd01uRkVQblhXMFpVRkR0eUxZVDdWXzcy RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ3TW5GRVBuWFcwWlVGRHR5TFlUN1ZfNzJEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODlCNi8zOUFBMEEwMjFEOTYxMUUyQTY1NDhFN0UwOEIwMkNEMi8yd01uRkVQblhX MFpVRkR0eUxZVDdWXzcyRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9jvt1ZQIqtHPG/qv1PqgFzfVfp5pq3hdUxjOiHN83RKAPd51bzbV+ M67g/TX6S1hARSW1cUFfjgY6Gv91tCZTxKSo4s/N7Vg4AQbjBrxgfhr5E7JpjWxD zdcxxD9sFa1vM1v6XbxQHGbQ58LXpIBjiYykkDykSUSdz19EvF20ifNRA7rgh6NV 3/H1Dsp7cRkTm+VG5qsKIgwVdZsTyotNQgvGGoJwJebB46c1YD759RQoRbmWDhK6 nD29GYZDybE9G8QdFtzKhhPKXf9V718uGUGr0eCyFbabdoV38yicEHrkfVCc0ZTz WDJf6mT7ewjcKtLKp9Ss6Cp3uPFh+bBS -----END CERTIFICATE-----Generated at Thu Oct 23 20:32:24 2025 by rpki-client