$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft File: 2cZrDkILkTQXPVU9FqoLFGt3R3M.mft (raw, json) Hash identifier: 8JcYIqWBDzPc9UAC1r0ecIzAxYY/Wrw8hJ4W+9hie7E= Subject key identifier: 4C:E5:EE:B2:6B:39:16:04:3B:1D:72:95:63:CA:4A:60:5F:AF:8E:72 Authority key identifier: D9:C6:6B:0E:42:0B:91:34:17:3D:55:3D:16:AA:0B:14:6B:77:47:73 Certificate issuer: /CN=A91B9B0D/serialNumber=D9C66B0E420B9134173D553D16AA0B146B774773 Certificate serial: 06A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft Manifest number: 06A1 Signing time: Thu 06 Nov 2025 20:07:12 +0000 Manifest this update: Thu 06 Nov 2025 20:07:11 +0000 Manifest next update: Thu 13 Nov 2025 20:07:11 +0000 Files and hashes: 1: 2cZrDkILkTQXPVU9FqoLFGt3R3M.crl (hash: xthF2B+Aw0VrtwRitsz/e3i/3zuRY4uhFe+Y3/SsJGg=) 2: E0147FC48AB811EB92252D18C4F9AE02.roa (hash: 7XRpzi2cKsozsds402vZG1Qa9TevGqVQRP3rG1+mDlM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Nov 2025 20:07:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1704 (0x6a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D, serialNumber=D9C66B0E420B9134173D553D16AA0B146B774773 Validity Not Before: Nov 6 20:07:11 2025 GMT Not After : Nov 13 20:07:11 2025 GMT Subject: CN=690cfff0-7b94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:5c:d5:d4:08:c6:1f:d0:42:25:fc:a1:b2:25: e3:1a:da:a8:b2:f5:b0:57:68:22:74:a5:05:85:b5: d9:00:79:a3:0f:f1:25:a5:f2:24:cb:05:79:a9:82: 64:63:8a:99:e8:87:94:37:01:c8:86:29:ff:cb:20: 3f:07:a7:4c:20:ee:41:01:18:e8:7d:1f:ac:0a:e1: aa:7f:ae:c6:d5:f4:05:df:42:46:20:cd:1d:96:12: 69:77:99:6f:4f:0e:b7:3f:ea:b8:49:c6:36:4a:63: fb:c8:a4:23:d8:8a:b1:1f:3f:37:7f:1d:39:79:b2: dd:76:93:0e:7c:27:2d:fb:42:17:e3:90:f2:fb:f0: 69:c6:dd:d4:44:f9:bf:05:26:70:1a:15:fa:dc:ad: f3:02:b8:1d:6a:a8:20:d4:dc:3d:fa:f5:fb:fd:9e: b8:09:6d:80:a6:e9:02:c7:68:79:00:d9:46:10:c1: bb:c4:78:ac:25:08:4e:79:d0:e5:5a:ec:7e:18:26: c3:e9:02:6c:d7:dd:4d:a1:8c:bf:9a:a8:86:4d:ff: 95:e6:5b:f2:11:cb:6f:ba:c2:4a:d2:50:d3:48:bf: 4e:e6:75:06:79:cd:98:de:ba:94:e6:da:22:f7:31: 39:af:cf:1b:27:93:a2:e4:9e:fc:39:23:62:83:cd: 6c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:E5:EE:B2:6B:39:16:04:3B:1D:72:95:63:CA:4A:60:5F:AF:8E:72 X509v3 Authority Key Identifier: keyid:D9:C6:6B:0E:42:0B:91:34:17:3D:55:3D:16:AA:0B:14:6B:77:47:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:9d:44:f9:0d:38:2e:2f:25:d4:59:c8:c1:bf:34:1b:55:16: 7f:6d:b5:c7:0f:e6:37:d3:a7:39:77:c0:f3:73:ad:2a:48:06: 52:b2:f5:98:93:78:ff:e0:af:68:0a:9b:85:a9:36:1d:80:7c: 92:2c:1f:91:0b:b5:09:d1:33:5d:26:cd:0d:61:f3:5f:1e:26: be:81:48:34:8f:61:8e:ba:ee:80:78:7c:6d:e5:45:d9:8a:26: b2:2d:b9:53:9f:94:8e:dd:76:09:67:86:7c:ce:f0:f7:2a:f2: 3e:ae:80:0f:22:c5:58:91:08:1f:3b:b1:f3:b0:62:b0:fd:20: 8e:3a:ac:ba:df:b3:5a:48:04:7c:de:f6:61:3e:16:c9:24:dd: 4c:5a:33:d7:4c:0a:1e:91:ab:5c:a2:ab:3c:fc:d2:16:d4:c6: 6c:5b:01:3c:2e:8c:bf:f3:ce:ec:f6:a3:19:6c:fb:32:4d:1d: 3a:bc:a8:86:ed:2f:12:73:f8:a1:b3:f3:c4:90:72:27:00:89: 35:0c:d8:95:75:13:d6:9a:82:57:02:13:d4:cb:2d:cc:a6:0b: 2c:46:d9:71:37:89:11:6b:26:6d:a8:4b:17:72:c3:54:2a:82: a0:62:10:3d:43:99:46:bb:32:43:3e:eb:7c:56:f3:cb:6b:02: 1c:11:96:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEQ5QzY2QjBFNDIwQjkxMzQxNzNENTUzRDE2QUEwQjE0 NkI3NzQ3NzMwHhcNMjUxMTA2MjAwNzExWhcNMjUxMTEzMjAwNzExWjAYMRYwFAYD VQQDEw02OTBjZmZmMC03Yjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApVzV1AjGH9BCJfyhsiXjGtqosvWwV2gidKUFhbXZAHmjD/ElpfIkywV5qYJk Y4qZ6IeUNwHIhin/yyA/B6dMIO5BARjofR+sCuGqf67G1fQF30JGIM0dlhJpd5lv Tw63P+q4ScY2SmP7yKQj2IqxHz83fx05ebLddpMOfCct+0IX45Dy+/Bpxt3URPm/ BSZwGhX63K3zArgdaqgg1Nw9+vX7/Z64CW2ApukCx2h5ANlGEMG7xHisJQhOedDl Wux+GCbD6QJs191NoYy/mqiGTf+V5lvyEctvusJK0lDTSL9O5nUGec2Y3rqU5toi 9zE5r88bJ5Oi5J78OSNig81saQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzl7rJr ORYEOx1ylWPKSmBfr45yMB8GA1UdIwQYMBaAFNnGaw5CC5E0Fz1VPRaqCxRrd0dz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC85OEI3MjgwRThB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi8yY1pyRGtJTGtUUVhQVlU5RnFvTEZHdDNS M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJjWnJEa0lMa1RRWFBWVTlGcW9MRkd0M1IzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUIwRC85OEI3MjgwRThBQjYxMUVCODIzN0Q0MTRDNEY5QUUwMi8yY1pyRGtJTGtU UVhQVlU5RnFvTEZHdDNSM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0nUT5DTguLyXUWcjBvzQbVRZ/bbXHD+Y306c5d8Dzc60qSAZSsvWY k3j/4K9oCpuFqTYdgHySLB+RC7UJ0TNdJs0NYfNfHia+gUg0j2GOuu6AeHxt5UXZ iiayLblTn5SO3XYJZ4Z8zvD3KvI+roAPIsVYkQgfO7HzsGKw/SCOOqy637NaSAR8 3vZhPhbJJN1MWjPXTAoekatcoqs8/NIW1MZsWwE8Loy/887s9qMZbPsyTR06vKiG 7S8Sc/ihs/PEkHInAIk1DNiVdRPWmoJXAhPUyy3MpgssRtlxN4kRayZtqEsXcsNU KoKgYhA9Q5lGuzJDPut8VvPLawIcEZby -----END CERTIFICATE-----Generated at Sat Nov 8 05:15:18 2025 by rpki-client