$ rpki-client -vvf rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft File: 2en59z7k9bHN8XYsLfODKVCja30.mft (raw, json) Hash identifier: O7E4JD0HpfObw1+weKoXZl5W7uZuvk80Kql1gelSZTo= Subject key identifier: A1:48:DD:31:3D:AD:D3:91:89:24:8D:04:7C:51:0A:16:5B:EC:2D:F5 Authority key identifier: D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D Certificate issuer: /CN=A91AACB2/serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Certificate serial: 34E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft Manifest number: 34DB Signing time: Sun 02 Nov 2025 14:58:09 +0000 Manifest this update: Sun 02 Nov 2025 14:58:08 +0000 Manifest next update: Sun 09 Nov 2025 14:58:08 +0000 Files and hashes: 1: 2en59z7k9bHN8XYsLfODKVCja30.crl (hash: uqdXXNxbvCEuEuZPB9/f7vJGAFTCXFSz2rKRMkgE5es=) 2: 76B5C744B45E11EAB71DF94AC4F9AE02.roa (hash: RzsyMG8grNRl/TU/HKZlXJ7ZiLnl0fu14E8Z0lJpa0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:58:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13537 (0x34e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AACB2, serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Validity Not Before: Nov 2 14:58:08 2025 GMT Not After : Nov 9 14:58:08 2025 GMT Subject: CN=69077180-55a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ac:a0:bd:90:68:f5:e7:6b:b4:db:31:03:2d: e8:9b:e9:83:9c:20:39:5a:4f:9b:ef:ea:00:4c:39: 3b:4f:93:e5:42:ac:ba:94:7f:17:7e:de:82:05:dc: ab:0a:6e:2c:68:a5:6a:4e:96:9f:b5:1b:fd:78:b4: a6:0c:98:00:86:34:86:ea:93:e5:90:e2:b4:37:ec: 85:51:21:b3:72:86:f5:98:5f:51:d4:b0:2c:c7:f0: 02:51:01:3c:f2:f6:03:94:71:22:d3:bf:8e:16:fd: 70:b4:4a:10:e9:b4:cb:85:60:fd:79:79:30:7f:7f: aa:f4:67:61:ef:cf:d5:33:13:6e:eb:31:17:61:e8: 7d:8a:ee:b5:b6:6a:1c:76:7a:0c:2f:2b:6d:be:78: 01:38:a8:12:0d:41:ee:ad:bc:5c:43:f9:28:22:2d: 61:02:f4:c0:27:5f:5b:25:b6:22:27:75:3a:3e:c3: ce:a5:38:95:b4:2b:7a:38:54:72:59:b9:0f:7a:b0: b8:33:b9:cd:0d:2e:c5:b4:ef:5d:88:cf:c6:7d:d7: 6d:c7:cd:90:b5:21:23:aa:75:ee:19:ac:e4:9a:0e: 24:8d:95:2d:c1:84:01:42:d4:0d:ae:b0:aa:99:96: 2e:5b:3c:99:e4:8f:d0:90:70:9d:32:fc:b8:58:0f: d4:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:48:DD:31:3D:AD:D3:91:89:24:8D:04:7C:51:0A:16:5B:EC:2D:F5 X509v3 Authority Key Identifier: keyid:D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:5b:fc:b2:7d:8c:ed:1e:4d:03:c0:f0:1e:31:19:26:bb:0c: 44:49:5d:59:08:9f:37:78:b6:69:40:79:55:ea:2b:60:3b:cb: fb:0c:92:65:4f:2d:9a:17:1d:d3:9b:3e:11:5d:c7:b6:fa:72: 32:f3:2b:01:f5:a0:6e:16:5c:8d:97:00:be:94:e0:6f:e5:24: 13:18:77:9f:12:83:10:97:e0:ef:70:57:a0:c5:9f:80:9e:71: 04:19:22:20:2a:2d:e6:d4:bc:cb:e8:22:1d:4a:76:c6:b5:22: 81:6d:19:d9:ee:2e:64:98:e8:cf:90:59:7d:67:03:6b:77:04: a8:8b:22:c0:25:b7:cf:9e:07:69:90:c8:18:30:2b:da:37:76: ca:1f:78:3c:9c:d9:76:50:90:79:37:3d:e5:f8:e2:2d:f2:77: 16:4b:97:aa:bb:40:89:ab:12:22:a5:ad:d9:bd:f1:8b:4a:4d: a4:5d:bf:b9:d0:19:2a:7f:5b:07:eb:0a:41:7d:1a:82:43:52: 8c:78:92:dd:7b:6c:50:4e:b8:52:4b:a8:bc:2d:63:c4:e7:dd: 0f:18:d9:09:95:94:36:6c:92:dd:b5:12:fe:7c:25:52:65:d4: 48:87:2a:aa:f3:10:f1:c6:6a:66:2f:78:5e:bf:95:9a:91:1c: c2:d6:b1:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDQjIxMTAvBgNVBAUTKEQ5RTlGOUY3M0VFNEY1QjFDREYxNzYyQzJERjM4MzI5 NTBBMzZCN0QwHhcNMjUxMTAyMTQ1ODA4WhcNMjUxMTA5MTQ1ODA4WjAYMRYwFAYD VQQDEw02OTA3NzE4MC01NWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaygvZBo9edrtNsxAy3om+mDnCA5Wk+b7+oATDk7T5PlQqy6lH8Xft6CBdyr Cm4saKVqTpaftRv9eLSmDJgAhjSG6pPlkOK0N+yFUSGzcob1mF9R1LAsx/ACUQE8 8vYDlHEi07+OFv1wtEoQ6bTLhWD9eXkwf3+q9Gdh78/VMxNu6zEXYeh9iu61tmoc dnoMLyttvngBOKgSDUHurbxcQ/koIi1hAvTAJ19bJbYiJ3U6PsPOpTiVtCt6OFRy WbkPerC4M7nNDS7FtO9diM/Gfddtx82QtSEjqnXuGazkmg4kjZUtwYQBQtQNrrCq mZYuWzyZ5I/QkHCdMvy4WA/UwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKFI3TE9 rdORiSSNBHxRChZb7C31MB8GA1UdIwQYMBaAFNnp+fc+5PWxzfF2LC3zgylQo2t9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUNCMi8zN0Q1QTNERTFE OUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azliSE44WFlzTGZPREtWQ2ph MzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJlbjU5ejdrOWJITjhYWXNMZk9ES1ZDamEzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUNCMi8zN0Q1QTNERTFEOUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azli SE44WFlzTGZPREtWQ2phMzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtW/yyfYztHk0DwPAeMRkmuwxESV1ZCJ83eLZpQHlV6itgO8v7DJJl Ty2aFx3Tmz4RXce2+nIy8ysB9aBuFlyNlwC+lOBv5SQTGHefEoMQl+DvcFegxZ+A nnEEGSIgKi3m1LzL6CIdSnbGtSKBbRnZ7i5kmOjPkFl9ZwNrdwSoiyLAJbfPngdp kMgYMCvaN3bKH3g8nNl2UJB5Nz3l+OIt8ncWS5equ0CJqxIipa3ZvfGLSk2kXb+5 0Bkqf1sH6wpBfRqCQ1KMeJLde2xQTrhSS6i8LWPE590PGNkJlZQ2bJLdtRL+fCVS ZdRIhyqq8xDxxmpmL3hev5WakRzC1rEO -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:39 2025 by rpki-client