$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft File: 2gE-F4NYyzWot2XJvAkK6c8cT74.mft (raw, json) Hash identifier: 8K1i5CsAot41pSqG9NbGo1oMZ9Ju5r3t6VASvhbKLCg= Subject key identifier: 30:EB:F0:1A:A2:EA:CE:1B:95:F3:9C:53:82:1E:85:77:F7:B3:CF:FA Authority key identifier: DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE Certificate issuer: /CN=A91B2C88/serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Certificate serial: 0689 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft Manifest number: 0681 Signing time: Sun 02 Nov 2025 22:27:58 +0000 Manifest this update: Sun 02 Nov 2025 22:27:58 +0000 Manifest next update: Sun 09 Nov 2025 22:27:58 +0000 Files and hashes: 1: 2gE-F4NYyzWot2XJvAkK6c8cT74.crl (hash: xO6EDpDzafqDVUlhBX7xh0MpK3pzu90bd3BBbhOk/GY=) 2: 3C5E55F041A411ECA73C8C0EC4F9AE02.roa (hash: KMuh5ult9LiAce0tih+7IUcHZQamzlPDZPCJthZ1JAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:27:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2C88, serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Validity Not Before: Nov 2 22:27:58 2025 GMT Not After : Nov 9 22:27:58 2025 GMT Subject: CN=6907daee-11f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:88:8b:25:da:bc:57:67:5c:8a:a3:d8:59:2d: ba:87:d9:cc:39:3b:61:17:7c:a9:57:93:51:c4:29: 34:c8:2f:39:4c:0c:1e:a5:ce:08:ea:57:16:6d:3b: f1:95:da:55:16:84:f0:b2:1d:f8:df:90:30:ee:f7: 17:57:d0:1f:b7:9e:fa:e9:56:65:6d:9a:83:06:3a: 1f:7a:5d:dc:4d:42:2c:e8:2d:be:a1:98:f4:73:6e: 0e:ba:bf:8b:2c:fa:26:34:72:74:0b:ab:0d:ba:b7: 1a:b8:59:34:f4:13:c5:c2:c6:04:58:d7:42:39:de: 75:17:d8:ab:66:7a:f2:ce:8b:29:ff:b2:ba:0e:c3: 6d:6f:92:b2:3e:d2:b0:9f:b4:05:d6:26:29:5a:d7: 34:1a:39:be:4c:a0:fb:fa:9f:1c:0e:b1:2d:f6:0b: 85:81:a1:5f:c1:a0:d2:a3:6a:92:22:96:b2:11:30: 4d:c5:34:73:d5:e9:e2:7a:2a:41:3e:ad:a1:77:10: e2:55:f9:48:b7:fd:1d:96:58:08:c8:f3:8f:05:75: 0c:43:6e:04:a7:36:78:77:e2:7c:1d:ab:2b:28:c3: 38:40:3f:77:45:d7:89:9c:3f:47:2d:a4:9b:86:5e: b8:62:36:8a:8d:2a:19:da:59:79:19:8c:cd:1e:12: b7:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:EB:F0:1A:A2:EA:CE:1B:95:F3:9C:53:82:1E:85:77:F7:B3:CF:FA X509v3 Authority Key Identifier: keyid:DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:e9:1a:67:43:9d:79:c2:2c:d2:39:e2:98:9c:eb:5e:8b:f6: 94:e1:75:04:ae:34:9e:72:13:ec:d9:ca:3c:c7:cd:1c:da:23: 44:2d:78:03:72:cc:31:d1:76:eb:8a:d7:3a:8d:42:a2:fe:67: be:b7:a2:99:23:27:4f:af:b2:3f:51:45:1f:a1:0d:f2:99:45: ed:5f:4c:c5:3c:f1:47:8a:8b:61:3b:9b:e1:fc:b4:12:94:b1: 25:1f:ec:2a:2c:47:3c:60:a8:54:ea:cb:d9:65:3f:e1:fd:64: f1:ba:91:ee:2a:8a:59:6b:23:25:8f:d5:09:98:e0:e4:9d:c1: 19:d2:7f:3a:8f:6d:8d:e9:fc:dc:a1:f6:c4:2f:1e:4d:29:3b: 1f:d0:d6:e4:18:97:27:62:e9:cd:43:b7:ae:65:28:de:27:8f: c5:dd:98:b5:5c:d0:04:fb:bb:43:1a:4d:f4:a6:ce:02:c5:91: cb:eb:dc:03:65:ba:0c:54:68:8d:94:98:62:df:15:a2:6b:54: 81:31:fe:6d:9e:c3:23:b5:04:c4:44:a5:0d:a5:2a:16:38:24: d7:26:bb:e3:86:8a:4b:26:d9:c3:9a:77:b6:b4:c7:8f:35:99: 66:75:f9:ae:63:1f:0a:3c:51:f8:98:c0:a2:01:be:86:15:7e: d8:e4:ad:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDODgxMTAvBgNVBAUTKERBMDEzRTE3ODM1OENCMzVBOEI3NjVDOUJDMDkwQUU5 Q0YxQzRGQkUwHhcNMjUxMTAyMjIyNzU4WhcNMjUxMTA5MjIyNzU4WjAYMRYwFAYD VQQDEw02OTA3ZGFlZS0xMWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4iLJdq8V2dciqPYWS26h9nMOTthF3ypV5NRxCk0yC85TAwepc4I6lcWbTvx ldpVFoTwsh3435Aw7vcXV9Aft5766VZlbZqDBjofel3cTUIs6C2+oZj0c24Our+L LPomNHJ0C6sNurcauFk09BPFwsYEWNdCOd51F9irZnryzosp/7K6DsNtb5KyPtKw n7QF1iYpWtc0Gjm+TKD7+p8cDrEt9guFgaFfwaDSo2qSIpayETBNxTRz1enieipB Pq2hdxDiVflIt/0dllgIyPOPBXUMQ24EpzZ4d+J8HasrKMM4QD93RdeJnD9HLaSb hl64YjaKjSoZ2ll5GYzNHhK3PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDr8Bqi 6s4blfOcU4IehXf3s8/6MB8GA1UdIwQYMBaAFNoBPheDWMs1qLdlybwJCunPHE++ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkM4OC8yNDI5OURDQTk3 OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6V290MlhKdkFrSzZjOGNU NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRS1GNE5ZeXpXb3QyWEp2QWtLNmM4Y1Q3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkM4OC8yNDI5OURDQTk3OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6 V290MlhKdkFrSzZjOGNUNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK6RpnQ515wizSOeKYnOtei/aU4XUErjSechPs2co8x80c2iNELXgD cswx0Xbritc6jUKi/me+t6KZIydPr7I/UUUfoQ3ymUXtX0zFPPFHiothO5vh/LQS lLElH+wqLEc8YKhU6svZZT/h/WTxupHuKopZayMlj9UJmODkncEZ0n86j22N6fzc ofbELx5NKTsf0NbkGJcnYunNQ7euZSjeJ4/F3Zi1XNAE+7tDGk30ps4CxZHL69wD ZboMVGiNlJhi3xWia1SBMf5tnsMjtQTERKUNpSoWOCTXJrvjhopLJtnDmne2tMeP NZlmdfmuYx8KPFH4mMCiAb6GFX7Y5K25 -----END CERTIFICATE-----Generated at Tue Nov 4 07:23:39 2025 by rpki-client