$ rpki-client -vvf rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft File: 2kcELjdqlHP8Dt_IRFc53RMorg4.mft (raw, json) Hash identifier: ALpdlquolOuJP8njqfGeJOzpMNxjnygYgMStHge64yg= Subject key identifier: F1:21:23:18:8C:32:30:21:B8:DC:01:DF:23:57:48:CA:88:CE:2B:3A Authority key identifier: DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E Certificate issuer: /CN=A9191DF4/serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Certificate serial: 0E5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft Manifest number: 0E41 Signing time: Sun 02 Nov 2025 17:49:05 +0000 Manifest this update: Sun 02 Nov 2025 17:49:04 +0000 Manifest next update: Sun 09 Nov 2025 17:49:04 +0000 Files and hashes: 1: 2kcELjdqlHP8Dt_IRFc53RMorg4.crl (hash: 3nffxmj0x25/xrT/LxFci8qdipaXCGvk2FjdDJI2iXw=) 2: B5D4A156598B11EC82C8685CC4F9AE02.roa (hash: 4QYUWAD8mV7goqY2eyB8OTjIn05Ok4IHRMJOhxEL9Q0=) 3: B922DB22E84211EA918B8F09C4F9AE02.roa (hash: WrORF911HLcFuZdH0HRCb0Ilepojo6I2DwL+ZjMpcO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:49:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3674 (0xe5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191DF4, serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Validity Not Before: Nov 2 17:49:04 2025 GMT Not After : Nov 9 17:49:04 2025 GMT Subject: CN=69079991-e72a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:1b:d3:82:52:cb:11:f5:8c:5b:39:dd:9d:74: c5:f9:48:3f:75:d5:2a:c0:00:ff:5e:5d:da:12:8c: b8:ed:1a:ed:c8:fe:9a:3a:e8:c0:2b:10:a4:50:47: 22:6a:f8:bf:b8:b2:f5:3e:23:ce:b0:fc:90:83:7b: f8:42:40:76:65:e3:de:51:bb:ab:96:7a:b4:80:40: 73:ae:20:aa:99:e4:e5:84:f9:4d:e5:34:96:95:80: 33:3e:69:e7:0d:fb:d5:a6:67:e3:e7:82:02:9b:97: 29:f0:9c:50:dc:c3:a7:8f:ec:dd:8f:08:3a:da:3b: 95:72:02:fc:9b:74:f7:72:a6:3a:cd:33:59:6e:1e: 6d:24:85:6b:7f:35:bf:48:2a:cf:8d:f2:f4:b6:2d: 43:45:27:9e:30:0c:b7:89:fd:33:3a:96:ce:5e:b0: 42:04:2a:38:cf:4a:c1:d0:1c:fb:b1:a6:3d:46:44: 8d:e2:dc:53:d2:89:b2:06:fc:61:d8:58:54:2c:53: 1b:7f:dd:4a:38:c4:ff:3f:62:72:4f:be:51:d9:c2: a8:01:00:0f:f5:4a:58:89:65:15:75:03:3b:f3:40: d5:90:bd:f2:91:3a:65:9d:89:b9:aa:e6:1e:7e:35: 9f:49:89:e7:74:94:ef:22:64:09:8d:d8:f8:ea:23: f1:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:21:23:18:8C:32:30:21:B8:DC:01:DF:23:57:48:CA:88:CE:2B:3A X509v3 Authority Key Identifier: keyid:DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:30:74:b8:3d:c6:0c:7c:18:fa:0f:47:42:0d:7e:d9:1d:0b: c5:a6:3d:72:24:1b:96:f3:9f:65:06:d1:31:c0:bd:cf:9a:49: 67:e6:00:3b:60:2d:ad:dc:17:5f:58:39:19:d8:9d:a9:ce:09: 1b:3e:f3:4d:c8:f9:d1:d1:e4:e0:d0:6a:e1:ca:29:29:b2:8e: d0:25:dd:2a:c0:4e:6d:0f:a4:66:bf:32:c1:81:3b:f4:17:2e: 93:29:3d:92:8a:f1:8c:f5:57:20:a1:64:e5:55:e9:f9:aa:5f: 49:24:29:c7:64:3c:3e:b4:c3:51:33:8f:fc:6e:e8:73:9a:cb: b8:3e:1a:76:77:df:5a:97:1e:fa:6c:5a:3a:a6:d7:00:f9:c7: 68:bc:25:9f:fc:6d:f0:1d:73:d8:12:35:9c:e3:24:fa:40:f6: 26:98:90:74:77:90:9f:e4:4b:b5:0f:a6:65:48:5b:02:ac:b4: fe:88:c5:ed:92:e2:18:be:3c:11:40:08:46:5e:f7:3d:c9:0e: 64:b6:59:45:84:22:7a:3a:fb:69:ac:f1:98:62:a7:38:e0:68: b5:3c:12:19:45:91:cb:f4:7f:6c:9e:a1:2e:93:80:17:0b:c5: 5c:4f:bc:e0:78:d2:65:cc:61:8d:fc:9a:46:4c:df:65:a8:d1: 4e:dd:04:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFERjQxMTAvBgNVBAUTKERBNDcwNDJFMzc2QTk0NzNGQzBFREZDODQ0NTczOURE MTMyOEFFMEUwHhcNMjUxMTAyMTc0OTA0WhcNMjUxMTA5MTc0OTA0WjAYMRYwFAYD VQQDEw02OTA3OTk5MS1lNzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5hvTglLLEfWMWzndnXTF+Ug/ddUqwAD/Xl3aEoy47RrtyP6aOujAKxCkUEci avi/uLL1PiPOsPyQg3v4QkB2ZePeUburlnq0gEBzriCqmeTlhPlN5TSWlYAzPmnn DfvVpmfj54ICm5cp8JxQ3MOnj+zdjwg62juVcgL8m3T3cqY6zTNZbh5tJIVrfzW/ SCrPjfL0ti1DRSeeMAy3if0zOpbOXrBCBCo4z0rB0Bz7saY9RkSN4txT0omyBvxh 2FhULFMbf91KOMT/P2JyT75R2cKoAQAP9UpYiWUVdQM780DVkL3ykTplnYm5quYe fjWfSYnndJTvImQJjdj46iPx1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPEhIxiM MjAhuNwB3yNXSMqIzis6MB8GA1UdIwQYMBaAFNpHBC43apRz/A7fyERXOd0TKK4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MURGNC9GNDFEMUMxOEIz OEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxIUDhEdF9JUkZjNTNSTW9y ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY0VMamRxbEhQOER0X0lSRmM1M1JNb3JnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MURGNC9GNDFEMUMxOEIzOEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxI UDhEdF9JUkZjNTNSTW9yZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLMHS4PcYMfBj6D0dCDX7ZHQvFpj1yJBuW859lBtExwL3Pmkln5gA7 YC2t3BdfWDkZ2J2pzgkbPvNNyPnR0eTg0Grhyikpso7QJd0qwE5tD6RmvzLBgTv0 Fy6TKT2SivGM9VcgoWTlVen5ql9JJCnHZDw+tMNRM4/8buhzmsu4Php2d99alx76 bFo6ptcA+cdovCWf/G3wHXPYEjWc4yT6QPYmmJB0d5Cf5Eu1D6ZlSFsCrLT+iMXt kuIYvjwRQAhGXvc9yQ5ktllFhCJ6OvtprPGYYqc44Gi1PBIZRZHL9H9snqEuk4AX C8VcT7zgeNJlzGGN/JpGTN9lqNFO3QQ8 -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:28 2025 by rpki-client