$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft File: 2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft (raw, json) Hash identifier: TKGh9y8rMT20EXmimS3BTk0NIxT/LuC19yYuaDG+T6A= Subject key identifier: BD:3F:C9:E3:D6:BA:C5:9B:69:E1:C5:3D:06:AC:12:A8:17:46:14:1E Authority key identifier: DA:BF:B3:B5:9F:7D:71:6F:D5:2D:45:A7:41:AF:15:9A:F7:EA:F7:BA Certificate issuer: /CN=A91AEAE7/serialNumber=DABFB3B59F7D716FD52D45A741AF159AF7EAF7BA Certificate serial: 06AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft Manifest number: 068F Signing time: Fri 24 Oct 2025 23:55:47 +0000 Manifest this update: Fri 24 Oct 2025 23:55:46 +0000 Manifest next update: Fri 31 Oct 2025 23:55:46 +0000 Files and hashes: 1: 2r-ztZ99cW_VLUWnQa8Vmvfq97o.crl (hash: PMjk2wkYf5ZtAz5inKzEG80xioFbaQLI7mITM9Ir37k=) 2: 0A7BC528913611EBBD9B811AC4F9AE02.roa (hash: NzOCnKqg2qahRXEOik1xyZlxFZ3lrtlDe5hks5SrPJA=) 3: 09A1853E913611EBBD9B811AC4F9AE02.roa (hash: IqmyGbo6lE5IdQOfP9xw6QgI0Xcsu+xkWZJJhr6ZiRQ=) 4: 8A345D2891A111EB87E23C38C4F9AE02.roa (hash: lgtMLH6i/g97QEVVbiDk03F8pSWOlpowm/3LEp7TGhw=) 5: 08DCE5BC913611EBBD9B811AC4F9AE02.roa (hash: xoqWpk6kq9UDnJpAtKinOiTxbgS2kwe2RRE2npE/Mm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.crl rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 23:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1707 (0x6ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEAE7, serialNumber=DABFB3B59F7D716FD52D45A741AF159AF7EAF7BA Validity Not Before: Oct 24 23:55:46 2025 GMT Not After : Oct 31 23:55:46 2025 GMT Subject: CN=68fc1202-b856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:92:a3:df:7c:78:17:59:76:35:76:29:31:da: 82:b7:0f:bb:dc:e4:3d:93:f2:da:88:54:59:7a:3e: 70:e6:b9:1b:a4:d9:bc:92:0f:55:a6:f5:e4:75:8b: 8c:38:71:5c:c6:38:14:e3:a4:8c:46:62:98:e4:02: fa:9e:06:48:a4:f7:8e:83:35:b5:e6:6e:5c:2c:e9: 0f:9f:e0:fe:85:91:08:a0:08:de:58:ce:96:6e:eb: eb:d8:00:7a:85:e3:62:f8:e6:ab:d5:de:01:55:54: 2b:65:00:d2:58:de:10:03:a4:84:dd:0a:1f:53:f2: d6:b4:7f:8b:e4:e1:0a:a0:d4:3b:32:e4:28:82:7a: 6e:f7:5a:74:15:a4:39:c5:90:7c:cc:6e:07:6a:55: 1b:3f:50:97:91:39:6a:4b:82:cc:65:42:01:5e:10: 49:ab:18:d3:02:2c:e5:2a:c4:c4:20:96:33:f0:21: 99:d5:03:12:95:d5:9a:5e:ba:7f:50:d5:d3:e8:71: 2f:2f:b8:a1:ec:bd:30:ef:93:e9:e3:b6:2a:4a:fa: 8b:21:1b:88:6c:5c:5f:bf:15:4e:b9:68:a9:52:e9: 62:92:54:8f:d8:ac:c5:6b:dc:02:7e:6f:56:de:55: 77:88:4d:69:1a:12:32:8f:a5:43:c4:86:9f:2b:84: 1b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:3F:C9:E3:D6:BA:C5:9B:69:E1:C5:3D:06:AC:12:A8:17:46:14:1E X509v3 Authority Key Identifier: keyid:DA:BF:B3:B5:9F:7D:71:6F:D5:2D:45:A7:41:AF:15:9A:F7:EA:F7:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:a1:4a:dc:02:c3:f7:e4:9b:ab:01:7f:34:f5:66:16:f5:92: e5:1a:77:21:42:93:e6:d7:47:ce:82:e3:e2:a9:a4:0f:2c:c7: 8d:f7:e1:1a:81:7f:b0:43:ce:f9:01:98:50:88:a5:51:cd:86: a8:bf:79:34:7a:d6:7a:75:8c:36:87:e5:c5:2e:f7:01:4a:85: e6:30:66:89:8a:b0:08:02:91:9f:9c:29:e1:92:a0:99:29:b2: b2:5d:b0:16:92:d6:0e:d0:b5:3a:d3:45:04:d8:ec:c6:f5:88: 44:5e:59:63:72:63:e6:e1:61:55:46:21:c5:ec:3e:33:fe:60: 08:9a:23:d6:ba:a6:bc:81:35:b0:29:ff:6c:92:8b:11:9c:2a: 98:4a:ff:22:70:f2:81:62:2f:f2:1b:fa:49:91:2d:5e:e8:83: 6e:f9:e4:84:e0:5a:f1:75:48:28:47:fd:4b:e6:a5:09:ee:90: 18:c4:7f:50:ec:47:ba:41:c0:af:ce:e4:eb:bf:a2:46:1a:b8: f2:2d:cc:8c:cc:fe:c4:f6:f6:ee:b8:e8:a5:95:e6:87:36:69: 82:a8:e8:f2:c3:d1:17:4b:db:c8:af:ef:e0:36:5e:66:63:d7: 67:55:74:a2:28:35:64:e2:25:77:01:47:a8:78:59:01:c9:a6: 64:9a:c0:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVBRTcxMTAvBgNVBAUTKERBQkZCM0I1OUY3RDcxNkZENTJENDVBNzQxQUYxNTlB RjdFQUY3QkEwHhcNMjUxMDI0MjM1NTQ2WhcNMjUxMDMxMjM1NTQ2WjAYMRYwFAYD VQQDEw02OGZjMTIwMi1iODU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJKj33x4F1l2NXYpMdqCtw+73OQ9k/LaiFRZej5w5rkbpNm8kg9VpvXkdYuM OHFcxjgU46SMRmKY5AL6ngZIpPeOgzW15m5cLOkPn+D+hZEIoAjeWM6Wbuvr2AB6 heNi+Oar1d4BVVQrZQDSWN4QA6SE3QofU/LWtH+L5OEKoNQ7MuQognpu91p0FaQ5 xZB8zG4HalUbP1CXkTlqS4LMZUIBXhBJqxjTAizlKsTEIJYz8CGZ1QMSldWaXrp/ UNXT6HEvL7ih7L0w75Pp47YqSvqLIRuIbFxfvxVOuWipUuliklSP2KzFa9wCfm9W 3lV3iE1pGhIyj6VDxIafK4QbJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL0/yePW usWbaeHFPQasEqgXRhQeMB8GA1UdIwQYMBaAFNq/s7WffXFv1S1Fp0GvFZr36ve6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUFFNy9FMTgyNTc5Njkw RjMxMUVCOUQyRTBFNEZDNEY5QUUwMi8yci16dFo5OWNXX1ZMVVduUWE4Vm12ZnE5 N28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyLXp0Wjk5Y1dfVkxVV25RYThWbXZmcTk3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUFFNy9FMTgyNTc5NjkwRjMxMUVCOUQyRTBFNEZDNEY5QUUwMi8yci16dFo5OWNX X1ZMVVduUWE4Vm12ZnE5N28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2oUrcAsP35JurAX809WYW9ZLlGnchQpPm10fOguPiqaQPLMeN9+Ea gX+wQ875AZhQiKVRzYaov3k0etZ6dYw2h+XFLvcBSoXmMGaJirAIApGfnCnhkqCZ KbKyXbAWktYO0LU600UE2OzG9YhEXlljcmPm4WFVRiHF7D4z/mAImiPWuqa8gTWw Kf9skosRnCqYSv8icPKBYi/yG/pJkS1e6INu+eSE4FrxdUgoR/1L5qUJ7pAYxH9Q 7Ee6QcCvzuTrv6JGGrjyLcyMzP7E9vbuuOilleaHNmmCqOjyw9EXS9vIr+/gNl5m Y9dnVXSiKDVk4iV3AUeoeFkByaZkmsDB -----END CERTIFICATE-----Generated at Sat Oct 25 15:42:24 2025 by rpki-client