$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft File: D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft (raw, json) Hash identifier: 0ViThaV3irjlnK0nTf2Ar4wJB5dBqpeEJWZRpDQDsV8= Subject key identifier: 4D:E8:D4:24:D5:5C:15:E9:E5:94:CD:8F:73:91:9E:9D:80:36:24:4D Authority key identifier: 0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 Certificate issuer: /CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Certificate serial: 021E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft Manifest number: 0211 Signing time: Sat 25 Oct 2025 05:38:08 +0000 Manifest this update: Sat 25 Oct 2025 05:38:07 +0000 Manifest next update: Sat 01 Nov 2025 05:38:07 +0000 Files and hashes: 1: D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl (hash: /Au2s/6ngX/82IXgkblHmb9Mav1Sxl8eTCTHiEH8vJk=) 2: BC72661A972911ED8CBCA476C4F9AE02.roa (hash: 50hi2vNUebBRUz8ceA03XMTbcW3zeli1X+BmJSriA30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 05:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 542 (0x21e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C68, serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Validity Not Before: Oct 25 05:38:07 2025 GMT Not After : Nov 1 05:38:07 2025 GMT Subject: CN=68fc6240-9b29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a9:04:16:32:4d:90:f0:ff:68:d7:4e:77:05: f4:73:26:49:78:26:47:64:e2:e3:07:77:60:d9:1c: ee:4f:28:4f:58:e3:8c:ee:e0:14:b7:80:36:fa:e6: fe:27:c4:e6:7b:1b:15:65:c1:5c:e9:b6:a5:fc:3b: 34:12:f5:b8:7c:1f:66:67:af:a9:e6:ce:f9:7c:9b: 50:aa:35:89:37:b1:c6:79:82:38:b7:18:56:c5:7c: 5e:81:11:06:b2:49:05:9b:55:ed:47:cc:87:2f:6e: 21:4a:eb:cd:04:4b:72:ae:94:57:b0:54:a8:2b:b5: 7f:bf:c7:2f:a7:83:ff:19:5b:57:16:92:35:65:39: bd:57:9b:18:46:67:3a:d6:6d:c2:a2:a2:59:18:8d: 6c:0c:a7:d1:af:a4:87:86:2d:e2:7a:11:c3:76:d9: 82:48:94:bd:4a:1f:46:9d:e2:f8:92:2d:de:58:c2: 7f:ec:7e:ce:6f:85:7f:16:91:33:0f:27:d0:aa:89: c8:f3:43:f3:5e:a7:fb:c3:b0:ae:1b:34:c7:1b:67: ef:6a:fb:10:5b:0a:81:19:a5:1b:be:94:f6:2b:bc: 88:2e:c4:96:04:ba:30:75:35:25:3a:c4:42:76:61: b2:68:49:4e:6c:c8:1b:44:a6:fb:50:43:03:14:d9: bc:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:E8:D4:24:D5:5C:15:E9:E5:94:CD:8F:73:91:9E:9D:80:36:24:4D X509v3 Authority Key Identifier: keyid:0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:d8:32:89:60:2f:79:f5:d0:4f:a6:df:f8:ab:50:f6:ea:7a: 29:dc:ff:8b:0e:10:ed:33:05:fb:c6:10:dd:ab:85:7c:21:65: 41:1e:1c:92:cb:e0:13:f7:c2:46:e2:4a:a1:00:c2:59:53:23: 2f:79:e5:a8:19:40:bb:e0:93:92:6c:a7:81:05:8b:34:59:ae: 0c:e9:82:20:20:e4:ec:71:d3:b3:e9:c4:8a:f9:9d:9c:92:cb: 4a:de:7b:f1:e7:fb:f8:e6:ba:8d:2a:6a:b4:9f:8d:c5:f6:f3: b2:25:da:54:f9:d6:f0:0d:23:db:bb:78:39:e9:fe:a0:c2:9d: 2a:2e:21:0a:d6:fb:5e:aa:8f:92:b6:8c:15:f8:81:d7:42:66: 45:4f:89:e7:27:6e:d5:cd:f5:b2:36:7f:7c:c4:0a:fd:6e:af: 7e:dd:a1:b8:83:ef:54:c1:19:75:f8:7d:97:4d:7f:22:c6:e9: 62:02:d9:87:19:e6:d6:50:61:06:0f:39:07:b4:76:2e:29:3c: 9e:ce:3a:04:bf:4a:ea:6f:d5:3c:1d:31:63:9a:db:14:6f:ad: 8f:9c:01:1b:d1:64:3f:63:99:b7:bc:83:4d:c9:59:15:8a:5b: 9c:22:cc:b8:92:5d:8a:42:4c:51:1a:3c:7c:36:92:d2:ef:81: ff:8d:c4:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNjgxMTAvBgNVBAUTKDBGNjI2QTMyNjRENkZFQ0NDQkZFQjJEOTlCMURCRjhB RkZFQzNCMzQwHhcNMjUxMDI1MDUzODA3WhcNMjUxMTAxMDUzODA3WjAYMRYwFAYD VQQDEw02OGZjNjI0MC05YjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqkEFjJNkPD/aNdOdwX0cyZJeCZHZOLjB3dg2RzuTyhPWOOM7uAUt4A2+ub+ J8TmexsVZcFc6bal/Ds0EvW4fB9mZ6+p5s75fJtQqjWJN7HGeYI4txhWxXxegREG skkFm1XtR8yHL24hSuvNBEtyrpRXsFSoK7V/v8cvp4P/GVtXFpI1ZTm9V5sYRmc6 1m3CoqJZGI1sDKfRr6SHhi3iehHDdtmCSJS9Sh9GneL4ki3eWMJ/7H7Ob4V/FpEz DyfQqonI80PzXqf7w7CuGzTHG2fvavsQWwqBGaUbvpT2K7yILsSWBLowdTUlOsRC dmGyaElObMgbRKb7UEMDFNm8BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE3o1CTV XBXp5ZTNj3ORnp2ANiRNMB8GA1UdIwQYMBaAFA9iajJk1v7My/6y2Zsdv4r/7Ds0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M2OC80MjM5ODZGNjk3 MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19zekxfckxabXgyX2l2X3NP elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QySnFNbVRXX3N6TF9yTFpteDJfaXZfc096US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M2OC80MjM5ODZGNjk3MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19z ekxfckxabXgyX2l2X3NPelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG2DKJYC959dBPpt/4q1D26nop3P+LDhDtMwX7xhDdq4V8IWVBHhyS y+AT98JG4kqhAMJZUyMveeWoGUC74JOSbKeBBYs0Wa4M6YIgIOTscdOz6cSK+Z2c kstK3nvx5/v45rqNKmq0n43F9vOyJdpU+dbwDSPbu3g56f6gwp0qLiEK1vteqo+S towV+IHXQmZFT4nnJ27VzfWyNn98xAr9bq9+3aG4g+9UwRl1+H2XTX8ixuliAtmH GebWUGEGDzkHtHYuKTyezjoEv0rqb9U8HTFjmtsUb62PnAEb0WQ/Y5m3vINNyVkV ilucIsy4kl2KQkxRGjx8NpLS74H/jcS/ -----END CERTIFICATE-----Generated at Sun Oct 26 06:19:05 2025 by rpki-client