$ rpki-client -vvf rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft File: rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft (raw, json) Hash identifier: cXmelEZKIRvl8N+NNTUgQsWPXlQ6uSAnlVbgTYA1rxI= Subject key identifier: 3E:94:FB:CE:78:32:30:57:3F:35:CB:A8:44:8D:4E:65:21:D2:B3:34 Authority key identifier: AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 Certificate issuer: /CN=A91B97DB/serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Certificate serial: 0C66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft Manifest number: 0C5D Signing time: Sun 02 Nov 2025 18:33:32 +0000 Manifest this update: Sun 02 Nov 2025 18:33:32 +0000 Manifest next update: Sun 09 Nov 2025 18:33:32 +0000 Files and hashes: 1: rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl (hash: tlNCFBHwEr/DmmVHLoLlDzfl90ZjOICM5HQa4YM77HQ=) 2: 5A0FAE220F7011EAB8E21167C4F9AE02.roa (hash: TQZLfyrNNm4rH/joKuV/c0LtGb3rqWKsaid6lV6en3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3174 (0xc66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B97DB, serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Validity Not Before: Nov 2 18:33:32 2025 GMT Not After : Nov 9 18:33:32 2025 GMT Subject: CN=6907a3fc-d86b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:c8:61:0c:17:79:e2:35:fc:5f:f8:90:82:a3: 0b:81:bb:70:4f:d8:7d:06:50:ff:2f:b6:82:23:ce: ab:bd:ba:24:22:07:57:92:27:2b:86:38:84:a0:a3: 41:c3:61:25:c7:e3:21:f7:d0:75:2c:81:b2:a2:2d: ea:3c:c9:65:52:74:89:2e:e3:4e:4e:54:01:e5:1b: 86:71:5a:4f:8f:bc:ed:11:33:93:34:2f:df:b1:be: 86:85:bc:a9:c9:be:90:43:f7:37:7a:da:a4:2c:81: b1:54:e3:93:f1:35:ef:33:bf:68:68:e1:0d:e3:8a: c1:32:4f:c2:c6:6c:1b:bc:89:b3:dc:14:11:b5:fb: c4:6f:f8:dc:34:a5:13:58:7c:21:0b:00:90:34:83: 0a:6b:85:12:ef:7e:d0:f8:2d:1b:ab:cf:66:52:cf: 30:41:20:ad:db:db:bb:e6:ea:0e:62:e8:ba:34:7a: 0c:6e:22:3d:b6:96:d9:65:65:d0:7c:36:65:34:4c: 59:32:f9:a1:26:f9:cb:05:2f:ca:62:d3:d9:80:7a: 47:c1:e0:49:7a:2d:5e:94:9a:63:53:13:01:ff:c1: e9:b5:51:b7:02:e6:ed:44:57:1b:19:5d:74:88:74: 3a:7c:74:b2:b5:4f:54:30:98:22:84:63:42:bd:6a: 42:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:94:FB:CE:78:32:30:57:3F:35:CB:A8:44:8D:4E:65:21:D2:B3:34 X509v3 Authority Key Identifier: keyid:AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:e8:c1:06:d6:e8:83:8e:88:44:48:09:1d:cc:19:27:c5:a8: 5f:7b:db:17:9d:46:8a:a9:0f:a1:30:0f:d3:e7:d6:3c:60:f3: b6:62:70:cf:e8:68:d1:e4:52:8b:93:35:2d:7b:aa:d9:77:f9: fa:0b:13:58:34:36:d1:4a:42:d4:44:73:ac:89:7d:f3:5e:33: fe:54:8a:84:ba:f4:50:9e:60:84:02:6c:73:9b:66:dc:40:eb: 30:c1:d2:69:45:fc:73:2a:43:1b:8b:45:12:ee:5a:19:90:a0: df:5c:3c:71:79:88:62:9d:3f:5d:51:8c:6a:49:fc:d4:dc:a9: 23:d5:d2:6f:f9:d7:ff:59:68:aa:17:be:f0:f1:ff:b6:9a:93: cd:90:9e:c3:f5:20:7f:a0:fe:92:a2:e5:7c:a2:b1:99:34:b3: b7:55:27:91:18:78:91:50:84:4c:06:94:2b:28:28:47:86:cb: 46:82:80:35:7a:51:89:a4:95:25:d2:df:20:3a:21:ea:a6:32: 23:3c:2c:13:5c:e4:e0:23:c2:6c:59:60:de:a2:19:22:52:9d: 44:d9:51:dd:ce:a8:19:9f:5f:30:32:bf:76:a2:3a:a7:cf:b5: e4:a6:66:9e:96:49:6d:e9:39:22:f5:34:54:d7:eb:f0:1e:81: c7:3d:77:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3REIxMTAvBgNVBAUTKEFEM0Q4NzAzODUwQjEyNzFFOEYzMUFFMDNFM0NDOUFD NDY2MEQ5NDIwHhcNMjUxMTAyMTgzMzMyWhcNMjUxMTA5MTgzMzMyWjAYMRYwFAYD VQQDEw02OTA3YTNmYy1kODZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7chhDBd54jX8X/iQgqMLgbtwT9h9BlD/L7aCI86rvbokIgdXkicrhjiEoKNB w2Elx+Mh99B1LIGyoi3qPMllUnSJLuNOTlQB5RuGcVpPj7ztETOTNC/fsb6Ghbyp yb6QQ/c3etqkLIGxVOOT8TXvM79oaOEN44rBMk/CxmwbvImz3BQRtfvEb/jcNKUT WHwhCwCQNIMKa4US737Q+C0bq89mUs8wQSCt29u75uoOYui6NHoMbiI9tpbZZWXQ fDZlNExZMvmhJvnLBS/KYtPZgHpHweBJei1elJpjUxMB/8HptVG3AubtRFcbGV10 iHQ6fHSytU9UMJgihGNCvWpCKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD6U+854 MjBXPzXLqESNTmUh0rM0MB8GA1UdIwQYMBaAFK09hwOFCxJx6PMa4D48yaxGYNlC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTdEQi80RTQxMEFDRTBG NkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVuSG84eHJnUGp6SnJFWmcy VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JUMkhBNFVMRW5Ibzh4cmdQanpKckVaZzJVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTdEQi80RTQxMEFDRTBGNkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVu SG84eHJnUGp6SnJFWmcyVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAW6MEG1uiDjohESAkdzBknxahfe9sXnUaKqQ+hMA/T59Y8YPO2YnDP 6GjR5FKLkzUte6rZd/n6CxNYNDbRSkLURHOsiX3zXjP+VIqEuvRQnmCEAmxzm2bc QOswwdJpRfxzKkMbi0US7loZkKDfXDxxeYhinT9dUYxqSfzU3Kkj1dJv+df/WWiq F77w8f+2mpPNkJ7D9SB/oP6SouV8orGZNLO3VSeRGHiRUIRMBpQrKChHhstGgoA1 elGJpJUl0t8gOiHqpjIjPCwTXOTgI8JsWWDeohkiUp1E2VHdzqgZn18wMr92ojqn z7Xkpmaelklt6Tki9TRU1+vwHoHHPXfb -----END CERTIFICATE-----Generated at Tue Nov 4 01:02:36 2025 by rpki-client