$ rpki-client -vvf rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft File: C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft (raw, json) Hash identifier: BkGgfIyCp0mEI3sLk9JKJ6j0YltpyRJaflNerVSMdNU= Subject key identifier: 95:22:0A:BC:F2:AE:23:97:F8:20:D9:BD:06:51:4C:91:13:46:4F:CA Authority key identifier: 0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 Certificate issuer: /CN=A91892EB/serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Certificate serial: 0635 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft Manifest number: 0617 Signing time: Wed 22 Oct 2025 23:55:30 +0000 Manifest this update: Wed 22 Oct 2025 23:55:30 +0000 Manifest next update: Wed 29 Oct 2025 23:55:30 +0000 Files and hashes: 1: C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl (hash: QSDAjvZkxywgb7zj7HDWCf8lXbg/8Kn/6rTAZbCdH8k=) 2: 4FF7919CA3AE11F08498344CC4F9AE02.roa (hash: AWiL7Ku+LhuTzw8yYOes8DFZCiFrs+UOfXRiEC5RaE4=) 3: F4DC3C2AC59211EBAA9C5B7BC4F9AE02.roa (hash: JjwRM28UWpqUpm8V4jbamMbdEhJ8x26HdODuQra73JI=) 4: 1DE394187C2F11F0902A5A0CC4F9AE02.roa (hash: R8MAXcI9/yvxzT89z1WDBO8OZ5lHOE8A6WUOtaaft6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 23:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1589 (0x635) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91892EB, serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Validity Not Before: Oct 22 23:55:30 2025 GMT Not After : Oct 29 23:55:30 2025 GMT Subject: CN=68f96ef2-6b1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:2a:52:62:12:22:ca:42:49:1a:4f:85:aa:4d: bd:c5:62:0d:35:ae:66:b7:9a:90:23:1f:fa:7b:49: 9c:85:37:36:ea:46:7d:57:1e:4a:06:1d:c7:71:dc: 3f:2a:8e:5e:ad:14:05:c7:4d:aa:f8:10:68:3c:8c: 10:4d:74:3a:0d:2a:2c:81:60:3a:5d:9c:6a:75:8c: 53:59:b1:7f:95:4a:63:8d:40:2e:fa:44:e7:d1:5d: c4:34:14:9a:0e:78:c1:84:d3:4a:7b:65:fa:b2:ef: 2b:1d:3a:5e:1c:28:e8:0f:d8:9e:9d:e5:a6:54:f3: 34:51:02:d5:27:be:12:96:6a:81:e5:ee:0c:e2:ab: 2e:75:52:82:d9:2d:be:dc:0f:ac:e8:21:e0:e6:9b: 49:4c:a6:ca:d4:16:b4:fd:82:d4:cb:15:db:e1:42: a5:82:d1:67:6c:d0:e4:0c:31:33:d7:e5:c5:8f:e3: a9:d4:45:24:29:12:2a:bb:c3:21:77:77:2e:bd:2d: ae:64:ad:bb:bf:64:10:08:c8:06:01:71:28:ff:84: bd:4f:dc:17:82:21:f0:f0:7b:fc:8c:23:52:5d:81: 16:74:a2:16:31:2e:c2:fc:36:02:8b:11:a0:d2:40: a5:bc:73:33:e4:9e:0b:3d:f8:b2:98:29:6f:58:b5: af:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:22:0A:BC:F2:AE:23:97:F8:20:D9:BD:06:51:4C:91:13:46:4F:CA X509v3 Authority Key Identifier: keyid:0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:45:a7:13:74:76:72:6a:62:7c:2b:d2:d0:86:f1:cd:20:44: 7b:f0:dc:7f:80:95:58:6a:83:8c:3c:8b:46:27:c5:ae:d8:72: 9d:3e:a4:4d:89:31:b0:27:6b:04:02:a4:1e:17:84:33:e5:92: 3b:49:76:dd:d7:4f:69:9e:e0:69:63:3e:49:99:25:82:34:d0: 4e:05:a1:0b:9b:02:9d:2c:4d:40:47:40:03:98:7a:d6:0a:c2: 67:77:c7:54:93:87:4d:92:dd:45:17:93:c1:57:55:8b:3b:d1: 28:b2:0a:cd:d7:6b:33:8b:eb:0d:e9:b5:b2:da:a1:92:29:2c: 84:8e:7d:26:97:98:a5:dd:42:d9:45:33:48:46:3b:6e:8d:b6: 23:00:f8:cd:2d:e3:2a:9c:7a:f9:0b:a3:87:2d:d4:5b:4d:f9: 92:b3:25:74:a1:ad:b5:c0:4b:93:1b:25:29:d2:be:a3:7b:67: 3f:19:26:a3:cc:1e:8f:08:6a:ce:09:19:78:71:4c:a3:fd:14: 98:e8:7f:f5:d3:9c:ea:6e:d2:10:c5:b5:ea:79:22:af:99:2f: 27:67:5a:f2:67:79:ee:44:a6:57:36:80:f0:7c:7b:c3:06:f7: 87:19:cf:a9:f2:47:84:dd:13:b0:2e:5d:bd:b3:b9:db:01:b2: c5:04:ea:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyRUIxMTAvBgNVBAUTKDBCNkNERjNGQUNDNjgwQjc4NjkyNkRFMTM5RjFFMEY2 NzQ0NDA2NTQwHhcNMjUxMDIyMjM1NTMwWhcNMjUxMDI5MjM1NTMwWjAYMRYwFAYD VQQDEw02OGY5NmVmMi02YjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9ipSYhIiykJJGk+Fqk29xWINNa5mt5qQIx/6e0mchTc26kZ9Vx5KBh3Hcdw/ Ko5erRQFx02q+BBoPIwQTXQ6DSosgWA6XZxqdYxTWbF/lUpjjUAu+kTn0V3ENBSa DnjBhNNKe2X6su8rHTpeHCjoD9ieneWmVPM0UQLVJ74SlmqB5e4M4qsudVKC2S2+ 3A+s6CHg5ptJTKbK1Ba0/YLUyxXb4UKlgtFnbNDkDDEz1+XFj+Op1EUkKRIqu8Mh d3cuvS2uZK27v2QQCMgGAXEo/4S9T9wXgiHw8Hv8jCNSXYEWdKIWMS7C/DYCixGg 0kClvHMz5J4LPfiymClvWLWvHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJUiCrzy riOX+CDZvQZRTJETRk/KMB8GA1UdIwQYMBaAFAts3z+sxoC3hpJt4Tnx4PZ0RAZU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTJFQi9GRDAwODFERUM1 NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dMZUdrbTNoT2ZIZzluUkVC bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyemZQNnpHZ0xlR2ttM2hPZkhnOW5SRUJsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTJFQi9GRDAwODFERUM1NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dM ZUdrbTNoT2ZIZzluUkVCbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpRacTdHZyamJ8K9LQhvHNIER78Nx/gJVYaoOMPItGJ8Wu2HKdPqRN iTGwJ2sEAqQeF4Qz5ZI7SXbd109pnuBpYz5JmSWCNNBOBaELmwKdLE1AR0ADmHrW CsJnd8dUk4dNkt1FF5PBV1WLO9EosgrN12szi+sN6bWy2qGSKSyEjn0ml5il3ULZ RTNIRjtujbYjAPjNLeMqnHr5C6OHLdRbTfmSsyV0oa21wEuTGyUp0r6je2c/GSaj zB6PCGrOCRl4cUyj/RSY6H/105zqbtIQxbXqeSKvmS8nZ1ryZ3nuRKZXNoDwfHvD BveHGc+p8keE3ROwLl29s7nbAbLFBOp7 -----END CERTIFICATE-----Generated at Fri Oct 24 09:07:32 2025 by rpki-client