$ rpki-client -vvf rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft File: 2fwVW2_aEGxpmlabEgOEkJWKoy8.mft (raw, json) Hash identifier: ejk57JIjNsBqsaA5+j4xT9sSRhf5V94Wuog8+brum1k= Subject key identifier: CD:B2:D3:EF:7E:D8:73:EF:3E:D7:03:3B:A1:BF:7E:82:CD:1D:7A:45 Authority key identifier: D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F Certificate issuer: /CN=A91B53A5/serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Certificate serial: 1A9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft Manifest number: 1A84 Signing time: Sun 02 Nov 2025 16:20:40 +0000 Manifest this update: Sun 02 Nov 2025 16:20:39 +0000 Manifest next update: Sun 09 Nov 2025 16:20:39 +0000 Files and hashes: 1: 2fwVW2_aEGxpmlabEgOEkJWKoy8.crl (hash: jbPEnoEheL17/Ho2ZhX6JTkAmU/byN1iBA6Ep4v0JDo=) 2: C443D86A55A311E7896BED09C4F9AE02.roa (hash: iAz8qRk3/H7vOgPRojw19iFmTjtRy8EuUxq8QG7UtTs=) 3: A9286C0E6D4411E7AF539270C4F9AE02.roa (hash: BhjSntJM5KeISAX/AXFVMKFsUVqLH2ibjtVSQJsKXQw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:20:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6815 (0x1a9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B53A5, serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Validity Not Before: Nov 2 16:20:39 2025 GMT Not After : Nov 9 16:20:39 2025 GMT Subject: CN=690784d7-f666 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:66:3a:d2:99:01:1e:b3:73:37:47:fc:d2:12: ff:44:29:f0:23:0c:29:87:5a:16:ed:9e:9f:ea:ac: 00:69:37:25:f1:c2:f9:3a:06:04:38:bf:7a:37:83: 57:75:0e:10:a5:60:ad:4a:1c:0f:8e:e3:c8:49:01: 5b:06:46:b6:de:8d:49:36:f7:3b:fa:a5:58:b8:43: 2b:45:13:71:a0:7a:e2:0d:7a:55:8d:7b:dc:51:3c: 81:49:22:28:9a:97:ea:c1:12:09:00:c4:5c:e1:6f: c8:09:9d:69:06:b4:67:ca:ef:41:d9:da:d7:e3:0a: c3:d1:4f:2e:99:2e:e4:2e:5b:70:e0:57:d9:b9:8a: 6a:cf:bd:39:71:64:61:d5:cb:03:e2:8b:4e:08:43: 37:e0:80:e4:1d:65:9a:75:47:9b:74:5f:76:1c:d4: b9:3c:90:8c:ef:5b:72:38:dd:d1:54:f3:2e:18:94: 33:83:3a:a8:4b:ef:07:24:44:d8:9e:fb:9b:05:90: c4:8d:8a:7e:d0:36:64:ea:bc:74:0e:b9:a4:6c:69: 02:af:4e:1f:93:ea:f4:9d:c5:66:94:93:8f:8b:5c: aa:37:e8:64:99:56:90:f5:6e:e5:96:54:69:5d:6d: 56:6a:99:bd:e1:6a:2c:b0:8b:8a:e0:95:af:3d:d6: 52:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B2:D3:EF:7E:D8:73:EF:3E:D7:03:3B:A1:BF:7E:82:CD:1D:7A:45 X509v3 Authority Key Identifier: keyid:D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:d8:62:6b:84:d5:5c:dc:54:35:b0:73:ec:e5:9c:90:1b:03: 29:31:bb:73:69:fc:10:6d:ec:19:49:32:be:91:59:8b:8e:71: 86:0e:cf:ce:8c:c1:39:2b:fb:13:db:eb:59:2c:87:4a:53:67: f5:97:b1:37:03:4b:1c:97:d5:af:16:7e:71:04:d8:01:0e:2d: f6:cc:67:4a:33:9c:07:79:f8:2f:04:26:38:35:01:dd:db:2f: 6e:af:ab:44:46:72:99:ff:ff:31:73:ff:65:6a:7b:5e:2c:81: a5:2f:22:d8:10:eb:4c:87:42:15:36:8d:87:a1:69:91:02:a9: e9:aa:56:e6:a7:b5:a0:b0:4a:b2:4d:5b:f1:f9:b3:40:54:bd: 21:b5:32:5b:3d:d6:8c:26:38:48:54:ab:0d:4b:37:b3:e3:24: 99:21:01:43:8a:2b:bb:be:f6:b6:96:c9:a6:f9:0e:74:64:39: 5f:a8:49:7e:cc:ee:17:13:35:97:7f:6f:b0:b5:c1:fb:51:1e: 47:68:a7:16:c6:51:68:e2:78:10:89:3a:5a:21:82:6d:8b:8d: 0e:f7:9f:c2:d1:cb:c6:2e:04:46:9b:66:62:13:c8:54:07:89: cb:51:fd:ee:20:f3:5a:e0:9b:40:54:64:7f:30:ad:6b:6b:ac: 96:44:0e:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUzQTUxMTAvBgNVBAUTKEQ5RkMxNTVCNkZEQTEwNkM2OTlBNTY5QjEyMDM4NDkw OTU4QUEzMkYwHhcNMjUxMTAyMTYyMDM5WhcNMjUxMTA5MTYyMDM5WjAYMRYwFAYD VQQDEw02OTA3ODRkNy1mNjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGY60pkBHrNzN0f80hL/RCnwIwwph1oW7Z6f6qwAaTcl8cL5OgYEOL96N4NX dQ4QpWCtShwPjuPISQFbBka23o1JNvc7+qVYuEMrRRNxoHriDXpVjXvcUTyBSSIo mpfqwRIJAMRc4W/ICZ1pBrRnyu9B2drX4wrD0U8umS7kLltw4FfZuYpqz705cWRh 1csD4otOCEM34IDkHWWadUebdF92HNS5PJCM71tyON3RVPMuGJQzgzqoS+8HJETY nvubBZDEjYp+0DZk6rx0DrmkbGkCr04fk+r0ncVmlJOPi1yqN+hkmVaQ9W7lllRp XW1Wapm94WossIuK4JWvPdZSIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2y0+9+ 2HPvPtcDO6G/foLNHXpFMB8GA1UdIwQYMBaAFNn8FVtv2hBsaZpWmxIDhJCViqMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTNBNS8yNTgwQThENjRC NjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVHeHBtbGFiRWdPRWtKV0tv eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJmd1ZXMl9hRUd4cG1sYWJFZ09Fa0pXS295OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTNBNS8yNTgwQThENjRCNjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVH eHBtbGFiRWdPRWtKV0tveTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP2GJrhNVc3FQ1sHPs5ZyQGwMpMbtzafwQbewZSTK+kVmLjnGGDs/O jME5K/sT2+tZLIdKU2f1l7E3A0scl9WvFn5xBNgBDi32zGdKM5wHefgvBCY4NQHd 2y9ur6tERnKZ//8xc/9lanteLIGlLyLYEOtMh0IVNo2HoWmRAqnpqlbmp7WgsEqy TVvx+bNAVL0htTJbPdaMJjhIVKsNSzez4ySZIQFDiiu7vva2lsmm+Q50ZDlfqEl+ zO4XEzWXf2+wtcH7UR5HaKcWxlFo4ngQiTpaIYJti40O95/C0cvGLgRGm2ZiE8hU B4nLUf3uIPNa4JtAVGR/MK1ra6yWRA5/ -----END CERTIFICATE-----Generated at Mon Nov 3 18:08:15 2025 by rpki-client