$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft File: 2j9P_11GRonTiYj1-yL2VVCz7_g.mft (raw, json) Hash identifier: 2yBTi13SlnyFWy9JuoVQqVJYWaIrVwbUl1KSbfu2qMA= Subject key identifier: 32:71:B2:98:E9:B7:40:7F:96:65:28:41:5C:DA:C4:19:15:F8:06:5B Authority key identifier: DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 Certificate issuer: /CN=A91A3FFF/serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Certificate serial: 04C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft Manifest number: 04B6 Signing time: Sun 02 Nov 2025 23:52:34 +0000 Manifest this update: Sun 02 Nov 2025 23:52:33 +0000 Manifest next update: Sun 09 Nov 2025 23:52:33 +0000 Files and hashes: 1: 2j9P_11GRonTiYj1-yL2VVCz7_g.crl (hash: 3rAktxTiua8phjVC8+0+65ME7hvh6UFR3R6gK/7VpsY=) 2: 952AA4424DAF11EC86ED5273C4F9AE02.roa (hash: fmx4saivVaXmJUd4gXwiDyRFQMYRCvCqBBRUJpcv/Fk=) 3: AC63C4A4A62E11ECBDD6843FC4F9AE02.roa (hash: P1PBDp8Fe8uxDGasJiZSyCCWpfZTEWdvREcVTBxnWew=) 4: 75426BC6A8C511EC8F560C42C4F9AE02.roa (hash: Cgk1td49WwT1khDdvURu+IhFlLE5qwMRGXtWMjdRcM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:52:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1221 (0x4c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3FFF, serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Validity Not Before: Nov 2 23:52:33 2025 GMT Not After : Nov 9 23:52:33 2025 GMT Subject: CN=6907eec1-3304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ad:f2:74:4a:0f:6c:18:a6:2e:b7:31:ba:4a: 2c:92:a1:88:f8:93:bd:22:61:77:2e:8b:88:43:de: 8a:44:2a:c3:ba:32:aa:e7:84:06:75:74:06:25:fa: bf:7d:10:90:39:89:1b:9f:eb:31:80:4f:cc:12:03: 74:7e:59:42:76:71:6f:78:12:c4:41:cd:cf:66:6b: 2b:73:52:39:35:48:ba:7d:ba:da:26:73:5e:41:44: 24:c5:49:43:47:65:d0:aa:60:fa:b7:cc:7d:cf:4b: 29:e9:7b:d4:94:e0:65:a6:4c:b1:1c:c2:46:f2:ee: 83:c2:4b:90:19:36:65:31:4d:f1:db:f5:02:06:d9: 31:bf:ce:56:67:a1:fb:fb:ac:d5:99:ce:d4:92:39: 8a:ca:6f:2a:83:3c:b9:24:7b:21:e0:16:98:b1:3d: bf:ae:89:50:c3:19:d2:b8:72:06:7a:b2:c5:c2:fa: 39:70:59:2b:1e:ff:4f:f5:fc:cd:79:d6:9c:99:e6: 79:cd:cf:6e:43:e6:7c:f2:90:46:d0:60:6e:96:ca: 74:6e:22:c6:ca:7b:17:c1:4f:c9:ec:dc:2f:cb:25: 47:32:16:2d:b3:de:82:af:8a:b1:79:d8:aa:52:da: 5b:e2:97:99:0c:cd:c0:d4:2e:82:88:45:79:d9:b9: 72:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:71:B2:98:E9:B7:40:7F:96:65:28:41:5C:DA:C4:19:15:F8:06:5B X509v3 Authority Key Identifier: keyid:DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:1f:a7:b7:f4:e2:ac:80:a6:2f:ea:61:17:cb:9b:16:3b:06: f3:c9:2a:c3:e0:8a:4d:08:f0:94:97:07:7d:fb:e2:90:48:64: 4f:e5:20:93:ae:ed:06:ed:0f:5d:44:4f:e7:3e:9b:2e:c9:18: 90:c9:2d:b8:c1:64:dc:29:fc:53:26:0f:c4:68:bd:ea:d6:3f: cd:fd:8a:69:e9:ac:ae:9d:f0:db:27:4b:7d:f5:2c:8e:cd:59: 66:3c:b4:ae:ea:7c:ea:8d:59:7c:a2:17:a9:58:90:24:4e:87: 38:39:58:cb:b0:05:17:68:1a:89:e5:d9:6d:c2:a4:8f:31:64: 4c:8b:ae:49:87:2d:09:ad:c5:b8:9e:86:61:b4:27:f0:e4:5c: 8b:20:4f:b3:c2:f7:5c:3e:6a:cf:c2:d5:c2:dc:79:fc:b9:14: f2:ce:90:dc:5b:26:cc:fa:cb:17:6a:56:60:b4:d6:aa:8a:be: 2d:9f:1b:b0:0a:fe:b3:e2:10:65:41:ee:86:57:bb:fa:9d:6a: 49:f1:14:77:b4:15:24:05:9a:a7:a5:1f:18:b4:5b:14:06:b7: ed:71:83:5e:69:89:40:2e:31:60:48:ef:67:2d:82:8c:e2:26: 20:65:d7:ce:14:90:53:5b:c1:4f:e7:13:f1:95:05:83:e6:c8: 55:85:41:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGRkYxMTAvBgNVBAUTKERBM0Y0RkZGNUQ0NjQ2ODlEMzg5ODhGNUZCMjJGNjU1 NTBCM0VGRjgwHhcNMjUxMTAyMjM1MjMzWhcNMjUxMTA5MjM1MjMzWjAYMRYwFAYD VQQDEw02OTA3ZWVjMS0zMzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxK3ydEoPbBimLrcxukoskqGI+JO9ImF3LouIQ96KRCrDujKq54QGdXQGJfq/ fRCQOYkbn+sxgE/MEgN0fllCdnFveBLEQc3PZmsrc1I5NUi6fbraJnNeQUQkxUlD R2XQqmD6t8x9z0sp6XvUlOBlpkyxHMJG8u6DwkuQGTZlMU3x2/UCBtkxv85WZ6H7 +6zVmc7UkjmKym8qgzy5JHsh4BaYsT2/rolQwxnSuHIGerLFwvo5cFkrHv9P9fzN edacmeZ5zc9uQ+Z88pBG0GBulsp0biLGynsXwU/J7NwvyyVHMhYts96Cr4qxediq Utpb4peZDM3A1C6CiEV52blyWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJxspjp t0B/lmUoQVzaxBkV+AZbMB8GA1UdIwQYMBaAFNo/T/9dRkaJ04mI9fsi9lVQs+/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0ZGRi84MkFEMzc3QTRE QUIxMUVDOTIxNEY1MjFDNEY5QUUwMi8yajlQXzExR1JvblRpWWoxLXlMMlZWQ3o3 X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJqOVBfMTFHUm9uVGlZajEteUwyVlZDejdfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0ZGRi84MkFEMzc3QTREQUIxMUVDOTIxNEY1MjFDNEY5QUUwMi8yajlQXzExR1Jv blRpWWoxLXlMMlZWQ3o3X2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyH6e39OKsgKYv6mEXy5sWOwbzySrD4IpNCPCUlwd9++KQSGRP5SCT ru0G7Q9dRE/nPpsuyRiQyS24wWTcKfxTJg/EaL3q1j/N/Ypp6ayunfDbJ0t99SyO zVlmPLSu6nzqjVl8ohepWJAkToc4OVjLsAUXaBqJ5dltwqSPMWRMi65Jhy0JrcW4 noZhtCfw5FyLIE+zwvdcPmrPwtXC3Hn8uRTyzpDcWybM+ssXalZgtNaqir4tnxuw Cv6z4hBlQe6GV7v6nWpJ8RR3tBUkBZqnpR8YtFsUBrftcYNeaYlALjFgSO9nLYKM 4iYgZdfOFJBTW8FP5xPxlQWD5shVhUFU -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:37 2025 by rpki-client