$ rpki-client -vvf rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft File: n2T-UJklN_sLQOUvnPrDEMonGRg.mft (raw, json) Hash identifier: 2BzuTfdfJGaVvt2sPqmjQqSzwaWkCC5Y5aAVXzituuw= Subject key identifier: 96:53:3E:2B:69:29:5F:08:24:51:97:71:5E:8B:67:A7:2F:A8:E8:3D Authority key identifier: 9F:64:FE:50:99:25:37:FB:0B:40:E5:2F:9C:FA:C3:10:CA:27:19:18 Certificate issuer: /CN=A91A57F8/serialNumber=9F64FE50992537FB0B40E52F9CFAC310CA271918 Certificate serial: 023F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft Manifest number: 022E Signing time: Wed 05 Nov 2025 02:35:46 +0000 Manifest this update: Wed 05 Nov 2025 02:35:46 +0000 Manifest next update: Wed 12 Nov 2025 02:35:46 +0000 Files and hashes: 1: n2T-UJklN_sLQOUvnPrDEMonGRg.crl (hash: z433NOf7/bW3bfH5l/TtLuIwcxuWWO8QOjCgdgeowEc=) 2: A508D320BBC711ED8DF23C40C4F9AE02.roa (hash: qkRYuAT6UAGXsy4Gp/LpKypt/tBfT+73f11tCNpfSwM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.crl rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:35:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 575 (0x23f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A57F8, serialNumber=9F64FE50992537FB0B40E52F9CFAC310CA271918 Validity Not Before: Nov 5 02:35:46 2025 GMT Not After : Nov 12 02:35:46 2025 GMT Subject: CN=690ab802-139b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:2a:06:e5:e9:ee:ac:1f:54:f3:3f:9f:ba:c1: 34:b5:d2:11:31:dc:4e:cc:be:de:8c:cf:80:ca:d4: 41:fb:5e:bc:7d:ca:20:33:47:0f:3e:af:59:e5:1c: 34:5c:58:0b:5c:af:c5:be:44:df:f4:60:94:08:de: c4:02:25:c0:21:c3:f1:f6:7b:d2:9f:25:5e:e4:d6: 68:df:bd:28:2e:1d:40:23:17:70:47:7d:46:e9:82: 54:18:dc:8a:d4:6d:4f:4e:dc:69:60:ad:58:aa:3b: 6e:9e:6e:72:e6:e9:c4:45:e5:d2:d7:8c:45:4f:06: 27:eb:49:10:bc:6f:f8:2c:ae:eb:55:3b:fb:ff:4d: 23:a9:89:83:cf:1a:8b:24:c8:ed:bc:22:06:e5:f7: e1:17:c9:a0:ac:af:60:8a:4a:6d:19:f9:02:dd:8d: 36:7d:4e:fd:17:6e:6a:06:86:da:4a:77:05:9e:c2: a8:4c:f9:00:f9:8d:4c:57:4d:b7:e1:1c:d7:71:bf: bf:61:90:9d:86:52:72:6d:be:0d:c8:f3:2b:53:b0: a8:ee:bc:cd:5f:4c:18:12:a3:7c:0c:30:c9:43:64: 2d:3b:9c:bb:b7:74:20:f7:e2:ff:67:c6:c1:74:8d: fe:81:14:ce:88:9a:55:43:63:b7:41:c5:d0:f6:4f: 93:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:53:3E:2B:69:29:5F:08:24:51:97:71:5E:8B:67:A7:2F:A8:E8:3D X509v3 Authority Key Identifier: keyid:9F:64:FE:50:99:25:37:FB:0B:40:E5:2F:9C:FA:C3:10:CA:27:19:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:b4:23:6e:49:84:12:82:d2:1e:de:ff:32:86:d4:61:4b:de: 0c:39:c9:a9:cd:9f:9a:10:4a:1c:8e:ec:11:43:41:72:22:aa: 3f:5b:7d:cd:de:6f:ef:bf:56:ae:62:b7:6c:2b:7d:84:5b:0f: 1c:d2:9b:ee:82:5f:3a:f9:c9:7f:28:a3:a4:fa:38:74:dc:03: c5:0f:1f:c5:26:9a:35:43:87:1b:7f:1d:de:f2:1e:4f:b0:c8: 05:43:30:1c:b7:0e:6c:0a:50:28:e7:73:17:bb:a5:3f:f7:1e: 41:1f:a8:f8:0f:0f:84:0f:1b:87:05:ad:9b:87:4e:25:87:ad: 14:6a:cb:37:7a:ed:e8:35:62:ac:15:35:63:f5:27:98:78:6e: 02:32:be:45:87:37:a9:f7:b2:a0:24:e7:75:f5:e6:d1:7d:6d: 05:67:c5:f1:2b:65:8e:6d:8b:db:fd:a0:23:2f:cc:35:ff:ea: ce:85:16:a8:00:00:ce:1f:ab:9f:57:52:f7:aa:32:c4:3f:fa: fa:e4:bf:94:2a:af:aa:dc:40:a3:79:de:85:52:57:b5:7e:9b: 8b:35:6f:66:d1:c3:10:65:19:f3:34:2a:12:3b:d7:91:eb:0f: 5b:a3:28:3c:84:d7:6c:30:d6:40:43:4d:6e:74:4c:29:38:d5: a1:47:a2:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU3RjgxMTAvBgNVBAUTKDlGNjRGRTUwOTkyNTM3RkIwQjQwRTUyRjlDRkFDMzEw Q0EyNzE5MTgwHhcNMjUxMTA1MDIzNTQ2WhcNMjUxMTEyMDIzNTQ2WjAYMRYwFAYD VQQDEw02OTBhYjgwMi0xMzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnioG5enurB9U8z+fusE0tdIRMdxOzL7ejM+AytRB+168fcogM0cPPq9Z5Rw0 XFgLXK/FvkTf9GCUCN7EAiXAIcPx9nvSnyVe5NZo370oLh1AIxdwR31G6YJUGNyK 1G1PTtxpYK1Yqjtunm5y5unEReXS14xFTwYn60kQvG/4LK7rVTv7/00jqYmDzxqL JMjtvCIG5ffhF8mgrK9gikptGfkC3Y02fU79F25qBobaSncFnsKoTPkA+Y1MV023 4RzXcb+/YZCdhlJybb4NyPMrU7Co7rzNX0wYEqN8DDDJQ2QtO5y7t3Qg9+L/Z8bB dI3+gRTOiJpVQ2O3QcXQ9k+T5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJZTPitp KV8IJFGXcV6LZ6cvqOg9MB8GA1UdIwQYMBaAFJ9k/lCZJTf7C0DlL5z6wxDKJxkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTdGOC8zNDUwOTQwMEI5 NzUxMUVEODA0MERFMjJDNEY5QUUwMi9uMlQtVUprbE5fc0xRT1V2blByREVNb25H UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL24yVC1VSmtsTl9zTFFPVXZuUHJERU1vbkdSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTdGOC8zNDUwOTQwMEI5NzUxMUVEODA0MERFMjJDNEY5QUUwMi9uMlQtVUprbE5f c0xRT1V2blByREVNb25HUmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAftCNuSYQSgtIe3v8yhtRhS94MOcmpzZ+aEEocjuwRQ0FyIqo/W33N 3m/vv1auYrdsK32EWw8c0pvugl86+cl/KKOk+jh03APFDx/FJpo1Q4cbfx3e8h5P sMgFQzActw5sClAo53MXu6U/9x5BH6j4Dw+EDxuHBa2bh04lh60Uass3eu3oNWKs FTVj9SeYeG4CMr5Fhzep97KgJOd19ebRfW0FZ8XxK2WObYvb/aAjL8w1/+rOhRao AADOH6ufV1L3qjLEP/r65L+UKq+q3ECjed6FUle1fpuLNW9m0cMQZRnzNCoSO9eR 6w9boyg8hNdsMNZAQ01udEwpONWhR6Kn -----END CERTIFICATE-----Generated at Wed Nov 5 19:32:36 2025 by rpki-client