$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.mft File: 2zxJsbLapmnoFyU5XfcR6D-K09E.mft (raw, json) Hash identifier: qfh9MlCbzxmZgV6hrBL9hrYSi/dwxl9Wya547LlgnBs= Subject key identifier: 94:D9:57:B3:DC:AB:8A:DE:2A:D7:5E:BF:86:DC:F9:CC:34:BD:5F:CB Authority key identifier: DB:3C:49:B1:B2:DA:A6:69:E8:17:25:39:5D:F7:11:E8:3F:8A:D3:D1 Certificate issuer: /CN=A91B1833/serialNumber=DB3C49B1B2DAA669E81725395DF711E83F8AD3D1 Certificate serial: 0416 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zxJsbLapmnoFyU5XfcR6D-K09E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.mft Manifest number: 040C Signing time: Mon 03 Nov 2025 00:22:13 +0000 Manifest this update: Mon 03 Nov 2025 00:22:12 +0000 Manifest next update: Mon 10 Nov 2025 00:22:12 +0000 Files and hashes: 1: 2zxJsbLapmnoFyU5XfcR6D-K09E.crl (hash: 1UHVgYGjFuBi8RAjAtMMNp4A8+9CIl4yoQGZ5UlU8Q8=) 2: 93CBDF448EE111EC9D298C83C4F9AE02.roa (hash: BUnFVKWXS5jIu8y5GkL7bgepdNyRdvPBw8U/+IQhx6g=) 3: 48ECA4C48EE411EC9936A210C4F9AE02.roa (hash: +5J/6WRU15WkYWy0ca5x0funlOBTzCAMAXyUc4i4gAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.crl rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zxJsbLapmnoFyU5XfcR6D-K09E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:22:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1046 (0x416) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1833, serialNumber=DB3C49B1B2DAA669E81725395DF711E83F8AD3D1 Validity Not Before: Nov 3 00:22:12 2025 GMT Not After : Nov 10 00:22:12 2025 GMT Subject: CN=6907f5b5-71a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:b6:dc:5e:0b:2e:7d:f4:ba:cc:bd:15:f1:7e: 51:3a:b0:6d:8b:6f:bc:e1:23:9c:4c:47:06:07:9f: 32:73:0b:eb:cc:ce:a1:0c:ce:a3:b4:4b:06:e2:26: 3d:27:60:6a:0b:c1:15:12:c7:19:69:bc:7e:08:84: e9:56:bf:cc:46:37:d6:c2:e8:4d:7f:4c:f7:cd:d5: de:50:a5:11:e0:91:da:5b:38:48:2b:f5:1f:5e:0f: dc:8e:10:5d:51:9b:34:04:70:cc:f1:cc:6e:1f:2a: 55:da:d2:b6:00:77:99:ea:9c:38:86:f3:dd:2a:99: f5:2f:99:81:a9:f1:60:6c:67:0e:99:4e:a8:ac:bc: a8:05:82:9c:6c:88:61:b2:99:53:de:76:20:85:ad: 3e:43:0b:ec:63:75:44:60:02:c3:68:87:96:7b:52: d3:fd:37:db:80:30:37:e2:4c:29:90:70:6b:54:09: f9:63:a2:40:14:a3:18:fa:cc:90:66:4e:34:24:b2: 17:4e:ea:1e:f7:0f:44:12:a7:79:79:ec:65:f3:53: 82:5e:7f:cd:b3:83:6b:5e:4c:a1:5c:c6:4e:04:79: 28:a1:60:f5:d4:d7:ee:44:ab:75:9a:c5:33:fc:70: 95:5e:71:c3:57:0d:53:d3:e8:3e:77:e5:25:a9:99: 58:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:D9:57:B3:DC:AB:8A:DE:2A:D7:5E:BF:86:DC:F9:CC:34:BD:5F:CB X509v3 Authority Key Identifier: keyid:DB:3C:49:B1:B2:DA:A6:69:E8:17:25:39:5D:F7:11:E8:3F:8A:D3:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zxJsbLapmnoFyU5XfcR6D-K09E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:a7:98:e1:26:f8:e8:82:e5:d8:bf:b5:5d:9a:24:e8:26:de: 5e:30:d4:0b:9a:16:4c:6b:bd:2b:48:eb:ac:1c:7d:14:9f:df: c4:01:f5:25:28:80:49:20:06:01:bd:77:a0:00:64:1e:b1:85: a2:56:d5:57:f6:c3:4c:a4:51:4b:df:4d:e6:f4:f8:e6:8d:eb: 8a:65:92:59:3c:ae:42:af:bb:86:cb:1f:e9:e4:6a:34:73:a4: f5:15:63:06:db:f1:7d:26:ac:84:0d:4b:48:7f:5b:6f:18:5c: 21:d3:ca:51:6d:83:53:39:2b:0b:6c:72:f3:a5:c8:b0:91:d7: 7f:7e:6c:a4:37:68:3d:10:f5:2d:78:d8:0c:b8:6a:9e:d5:f0: 69:28:22:f0:b9:97:2e:75:35:f6:b6:82:d8:bb:11:3d:ca:14: 89:f1:19:b2:6c:f2:f4:48:29:40:21:1c:85:18:69:90:a4:c6: 2f:e9:38:82:49:ba:de:aa:61:9b:b2:17:04:33:ec:6e:35:c3: c2:4d:41:40:40:62:b1:1b:ff:ee:8b:d6:24:ac:0d:70:22:da: a9:c9:0a:94:bb:7f:c9:6b:69:ac:d6:db:df:a0:85:2e:d0:76: c8:27:68:45:9c:3a:74:58:a4:32:e5:a5:9e:c5:48:89:80:44: c2:34:10:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE4MzMxMTAvBgNVBAUTKERCM0M0OUIxQjJEQUE2NjlFODE3MjUzOTVERjcxMUU4 M0Y4QUQzRDEwHhcNMjUxMTAzMDAyMjEyWhcNMjUxMTEwMDAyMjEyWjAYMRYwFAYD VQQDEw02OTA3ZjViNS03MWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7rbcXgsuffS6zL0V8X5ROrBti2+84SOcTEcGB58ycwvrzM6hDM6jtEsG4iY9 J2BqC8EVEscZabx+CITpVr/MRjfWwuhNf0z3zdXeUKUR4JHaWzhIK/UfXg/cjhBd UZs0BHDM8cxuHypV2tK2AHeZ6pw4hvPdKpn1L5mBqfFgbGcOmU6orLyoBYKcbIhh splT3nYgha0+QwvsY3VEYALDaIeWe1LT/TfbgDA34kwpkHBrVAn5Y6JAFKMY+syQ Zk40JLIXTuoe9w9EEqd5eexl81OCXn/Ns4NrXkyhXMZOBHkooWD11NfuRKt1msUz /HCVXnHDVw1T0+g+d+UlqZlYXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTZV7Pc q4reKtdev4bc+cw0vV/LMB8GA1UdIwQYMBaAFNs8SbGy2qZp6BclOV33Eeg/itPR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTgzMy9GRTY4RTBCMjhF MzMxMUVDQUQ2NzQ2NzVDNEY5QUUwMi8yenhKc2JMYXBtbm9GeVU1WGZjUjZELUsw OUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6eEpzYkxhcG1ub0Z5VTVYZmNSNkQtSzA5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTgzMy9GRTY4RTBCMjhFMzMxMUVDQUQ2NzQ2NzVDNEY5QUUwMi8yenhKc2JMYXBt bm9GeVU1WGZjUjZELUswOUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMp5jhJvjoguXYv7VdmiToJt5eMNQLmhZMa70rSOusHH0Un9/EAfUl KIBJIAYBvXegAGQesYWiVtVX9sNMpFFL303m9PjmjeuKZZJZPK5Cr7uGyx/p5Go0 c6T1FWMG2/F9JqyEDUtIf1tvGFwh08pRbYNTOSsLbHLzpciwkdd/fmykN2g9EPUt eNgMuGqe1fBpKCLwuZcudTX2toLYuxE9yhSJ8RmybPL0SClAIRyFGGmQpMYv6TiC SbreqmGbshcEM+xuNcPCTUFAQGKxG//ui9YkrA1wItqpyQqUu3/Ja2ms1tvfoIUu 0HbIJ2hFnDp0WKQy5aWexUiJgETCNBAi -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:15 2025 by rpki-client