$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft File: 2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft (raw, json) Hash identifier: K7R+Eud5ZXUzj03VYxshn9W/FOYQ0fZe0S5u8H3dq+s= Subject key identifier: D2:14:97:9A:44:95:5A:DD:B1:A3:BC:C3:88:BC:38:01:35:00:41:94 Authority key identifier: D9:C5:D8:2A:BD:30:FD:D2:0F:A9:CA:F3:D1:ED:86:7D:B0:76:95:6B Certificate issuer: /CN=A91A5A57/serialNumber=D9C5D82ABD30FDD20FA9CAF3D1ED867DB076956B Certificate serial: EC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft Manifest number: EA Signing time: Wed 05 Nov 2025 05:30:46 +0000 Manifest this update: Wed 05 Nov 2025 05:30:45 +0000 Manifest next update: Wed 12 Nov 2025 05:30:45 +0000 Files and hashes: 1: 2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl (hash: VWh3K43IOr/wK1v5PZ5WjIgMyDWZPqwKA1vai7X+4W4=) 2: F6382C7A56EC11EF85879C50C4F9AE02.roa (hash: yG8pJzZvCKmicDw0dwhTP12v3DvDJugGeiv6wIDOe9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:30:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5A57, serialNumber=D9C5D82ABD30FDD20FA9CAF3D1ED867DB076956B Validity Not Before: Nov 5 05:30:45 2025 GMT Not After : Nov 12 05:30:45 2025 GMT Subject: CN=690ae105-4ff4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:78:e4:8d:14:28:28:f2:7f:a2:d7:2b:4c:af: 90:6a:51:66:95:11:7b:f1:35:20:d7:98:28:25:07: b2:97:ad:7e:60:b9:e3:22:29:37:6c:1f:7e:29:4d: c2:ac:3b:c1:0d:c7:07:70:57:27:a1:37:7c:2f:33: 1c:0a:fe:cf:63:37:6f:a1:c9:ce:73:04:83:5a:ea: 84:a8:6f:a8:26:8c:f5:a7:1e:10:cb:f8:79:4d:13: 0b:54:9b:5f:17:e8:6d:52:e6:98:37:aa:61:da:1d: a3:c6:bf:6f:9c:a9:6b:4b:f4:72:5d:76:c1:8e:87: ff:58:30:22:f3:dd:88:ba:26:4c:d0:47:e5:de:cf: e1:da:3a:75:fa:db:0b:ca:bd:d3:ff:9e:c7:69:05: 5b:21:32:43:b6:ca:97:bd:5c:eb:20:60:dc:e1:d4: 0b:6d:8a:29:b2:d7:6e:14:c4:80:6b:b8:45:64:a0: 05:f2:ba:ad:02:3f:a7:d1:71:7a:3c:09:f4:68:5a: 1b:14:61:83:0f:e0:bb:d4:71:bc:7f:b5:7f:45:15: f2:b7:ce:3f:fb:51:35:e7:1d:cb:10:d5:5d:45:53: 37:3f:48:fe:b3:17:a9:1c:9e:e5:92:7f:e8:9b:cd: 1b:02:cc:5c:8e:3f:21:4f:8e:56:1a:83:17:a6:f1: 01:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:14:97:9A:44:95:5A:DD:B1:A3:BC:C3:88:BC:38:01:35:00:41:94 X509v3 Authority Key Identifier: keyid:D9:C5:D8:2A:BD:30:FD:D2:0F:A9:CA:F3:D1:ED:86:7D:B0:76:95:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:9c:5f:e0:65:d7:b1:47:27:0d:35:de:ec:fe:90:dd:72:61: 71:2d:ca:d7:99:be:0c:d8:4d:11:b6:0f:ce:be:d0:59:69:a6: 8a:e1:e5:b6:2b:51:97:f8:6e:fa:8d:dc:c6:6f:22:d8:e6:40: dc:7f:e9:16:59:6c:3d:95:d4:ef:1c:fc:f1:8e:e6:5e:df:d2: 8e:a3:49:a1:dc:f8:34:cc:71:d5:99:36:0e:73:f4:48:51:2a: dc:27:f6:97:5d:3b:08:34:85:da:f1:15:42:36:92:27:9d:a0: 80:8a:53:79:84:a6:23:35:ad:c1:57:c9:4c:2c:c7:4c:b7:81: c5:f5:5a:e5:6c:54:fb:ba:1f:de:8f:ce:0f:3c:3a:1f:7b:fb: 98:be:b7:4c:29:84:de:f9:ad:90:c4:2b:90:99:d7:1c:07:e9: b3:84:ef:45:18:6d:a8:11:a8:20:ba:f9:81:33:5e:7d:d6:d4: 46:24:96:49:aa:e1:ed:65:cc:53:ad:8e:7c:a6:53:94:af:38: 48:f9:72:ed:24:31:5f:70:75:25:ec:04:59:14:69:e3:8b:33: 3c:18:01:4b:48:d9:0d:a9:57:ab:3d:4c:73:e3:06:95:2f:2a: 0a:70:9a:af:3b:15:65:78:08:67:4a:ca:23:a9:36:89:ca:60: 78:7a:75:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVBNTcxMTAvBgNVBAUTKEQ5QzVEODJBQkQzMEZERDIwRkE5Q0FGM0QxRUQ4NjdE QjA3Njk1NkIwHhcNMjUxMTA1MDUzMDQ1WhcNMjUxMTEyMDUzMDQ1WjAYMRYwFAYD VQQDEw02OTBhZTEwNS00ZmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynjkjRQoKPJ/otcrTK+QalFmlRF78TUg15goJQeyl61+YLnjIik3bB9+KU3C rDvBDccHcFcnoTd8LzMcCv7PYzdvocnOcwSDWuqEqG+oJoz1px4Qy/h5TRMLVJtf F+htUuaYN6ph2h2jxr9vnKlrS/RyXXbBjof/WDAi892IuiZM0Efl3s/h2jp1+tsL yr3T/57HaQVbITJDtsqXvVzrIGDc4dQLbYopstduFMSAa7hFZKAF8rqtAj+n0XF6 PAn0aFobFGGDD+C71HG8f7V/RRXyt84/+1E15x3LENVdRVM3P0j+sxepHJ7lkn/o m80bAsxcjj8hT45WGoMXpvEBLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNIUl5pE lVrdsaO8w4i8OAE1AEGUMB8GA1UdIwQYMBaAFNnF2Cq9MP3SD6nK89Hthn2wdpVr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUE1Ny82RTc0ODMxMDU2 RUMxMUVGOEEwQ0IyNEZDNEY5QUUwMi8yY1hZS3Iwd19kSVBxY3J6MGUyR2ZiQjJs V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJjWFlLcjB3X2RJUHFjcnowZTJHZmJCMmxXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUE1Ny82RTc0ODMxMDU2RUMxMUVGOEEwQ0IyNEZDNEY5QUUwMi8yY1hZS3Iwd19k SVBxY3J6MGUyR2ZiQjJsV3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAanF/gZdexRycNNd7s/pDdcmFxLcrXmb4M2E0Rtg/OvtBZaaaK4eW2 K1GX+G76jdzGbyLY5kDcf+kWWWw9ldTvHPzxjuZe39KOo0mh3Pg0zHHVmTYOc/RI USrcJ/aXXTsINIXa8RVCNpInnaCAilN5hKYjNa3BV8lMLMdMt4HF9VrlbFT7uh/e j84PPDofe/uYvrdMKYTe+a2QxCuQmdccB+mzhO9FGG2oEagguvmBM1591tRGJJZJ quHtZcxTrY58plOUrzhI+XLtJDFfcHUl7ARZFGnjizM8GAFLSNkNqVerPUxz4waV LyoKcJqvOxVleAhnSsojqTaJymB4enVY -----END CERTIFICATE-----Generated at Wed Nov 5 18:26:51 2025 by rpki-client