$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft File: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft (raw, json) Hash identifier: AKc5AapNLjaeKgGR93wCE6jeukJWq3pHKP6z1F8/8Wo= Subject key identifier: 68:AE:39:7F:75:C0:18:A9:42:22:A3:53:3D:4A:5C:B4:70:27:76:BE Authority key identifier: D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D Certificate issuer: /CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft Manifest number: 0119 Signing time: Thu 23 Oct 2025 06:43:12 +0000 Manifest this update: Thu 23 Oct 2025 06:43:11 +0000 Manifest next update: Thu 30 Oct 2025 06:43:11 +0000 Files and hashes: 1: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl (hash: sO3e6A08ILfCe2X7lmeMOd1znWiXI2eoRc0BDVxBODM=) 2: B00A68E6014A11EFA8F03B5BC4F9AE02.roa (hash: F6IB2oLxhpfXXQwj/Kl3IJNncyOBKEOTP7G3C5XwQrk=) 3: E2037F8C019911EFAFFEEC5DC4F9AE02.roa (hash: yyKQJp3Cor943Y25Ya+6ME8Xl4xDZuaYL1jQZ9UiIZI=) 4: B0BE3042014A11EFA8F03B5BC4F9AE02.roa (hash: kGlkPBXGhK2HbK8wICTx12rG9bb9NpN/Iy7FI3DGEGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 06:43:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2B93, serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Validity Not Before: Oct 23 06:43:11 2025 GMT Not After : Oct 30 06:43:11 2025 GMT Subject: CN=68f9ce80-be75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b4:d6:8e:33:c3:f1:49:b3:69:e4:d1:60:34: f1:05:4c:04:b9:e9:bf:d9:b7:52:3d:5e:0f:34:16: 33:38:c4:64:d0:64:d8:51:f6:96:1c:cf:b0:65:e3: 34:66:c1:bf:21:3a:85:23:fd:2d:b0:0c:28:12:b0: 2d:30:d0:36:22:fc:d8:f0:cb:ef:1e:ad:02:7c:f6: f7:67:8d:f6:7a:21:45:f0:c0:4b:17:f4:76:01:d6: 0a:1b:ce:9d:dd:fa:cf:f8:70:13:13:d7:be:63:6f: ea:92:b9:f4:96:26:c9:fe:a7:86:26:0c:47:aa:57: 1b:66:66:ab:e3:7e:aa:2b:19:40:5c:c9:de:03:78: 58:61:20:f8:ab:a1:6d:a4:e7:f8:0f:e4:58:84:e1: 25:39:e8:d7:dd:bf:3f:ad:58:25:d7:5d:32:b8:92: fb:55:62:68:a4:a6:7e:92:85:89:6d:4e:17:71:39: d8:21:0e:c4:49:79:62:ef:36:58:f2:49:f6:50:5c: b7:cf:d8:8a:d6:5e:87:18:3f:2d:d6:c9:1e:a3:2f: 1e:33:47:61:c2:2c:70:c0:b5:10:65:05:ce:76:ab: 82:7e:2d:ff:5e:d2:b7:ac:0a:e1:9b:fb:46:c9:59: 7d:15:fb:6c:d0:31:29:fc:65:a7:5f:66:66:68:3c: 67:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:AE:39:7F:75:C0:18:A9:42:22:A3:53:3D:4A:5C:B4:70:27:76:BE X509v3 Authority Key Identifier: keyid:D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:55:cf:3f:9a:a5:41:a6:80:18:f0:fb:da:86:ca:7f:87:b6: 52:2e:46:35:17:53:aa:fe:3d:54:73:47:4e:3a:c8:60:f3:97: 2e:93:b7:a3:2e:6a:81:8c:40:54:f7:18:21:f4:b4:dd:e2:fa: 60:8a:67:e9:8e:23:35:4a:f3:47:9f:a3:ca:90:9f:15:7b:4c: 38:9c:f2:da:fa:05:d4:3f:14:54:e6:cb:6d:93:a6:0f:d2:c4: de:f2:bd:a5:94:dc:62:10:25:15:9c:a9:d2:3a:b5:53:27:00: cd:41:d2:6f:95:94:3d:84:54:08:26:48:37:b7:77:05:2a:dc: d4:5e:79:45:2e:b8:17:6b:df:75:c7:32:3c:a4:99:b6:46:72: 13:54:98:06:24:ad:b8:a6:b2:4e:9d:d8:d8:c6:52:fb:55:9c: 38:46:7c:a0:2d:87:f9:d0:59:f4:d7:f7:1b:fb:3f:7f:11:dd: 2f:b9:be:a3:0f:73:84:62:51:36:a2:1c:e9:7a:18:aa:eb:b5: f1:28:ad:51:b1:25:90:56:d7:73:34:41:0b:2e:f8:57:37:e9: e9:80:73:fd:a1:a2:36:26:67:9e:d5:10:c2:19:ca:8d:f6:a7: c9:f3:c6:2c:9f:e4:7f:5f:cf:60:9a:6d:ad:93:f6:72:60:14: e6:7e:d4:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJCOTMxMTAvBgNVBAUTKEQ5RDY1RjdGMzYwOTBDNDAxQkNGMjBENEJDODBDNDNG MERDNTkzM0QwHhcNMjUxMDIzMDY0MzExWhcNMjUxMDMwMDY0MzExWjAYMRYwFAYD VQQDEw02OGY5Y2U4MC1iZTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAorTWjjPD8UmzaeTRYDTxBUwEuem/2bdSPV4PNBYzOMRk0GTYUfaWHM+wZeM0 ZsG/ITqFI/0tsAwoErAtMNA2IvzY8MvvHq0CfPb3Z432eiFF8MBLF/R2AdYKG86d 3frP+HATE9e+Y2/qkrn0libJ/qeGJgxHqlcbZmar436qKxlAXMneA3hYYSD4q6Ft pOf4D+RYhOElOejX3b8/rVgl110yuJL7VWJopKZ+koWJbU4XcTnYIQ7ESXli7zZY 8kn2UFy3z9iK1l6HGD8t1skeoy8eM0dhwixwwLUQZQXOdquCfi3/XtK3rArhm/tG yVl9Ffts0DEp/GWnX2ZmaDxnXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGiuOX91 wBipQiKjUz1KXLRwJ3a+MB8GA1UdIwQYMBaAFNnWX382CQxAG88g1LyAxD8NxZM9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkI5My8zQUM4NzRFRTAx NDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRFQWJ6eURVdklERVB3M0Zr ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkWmZmellKREVBYnp5RFV2SURFUHczRmt6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkI5My8zQUM4NzRFRTAxNDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRF QWJ6eURVdklERVB3M0ZrejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5Vc8/mqVBpoAY8Pvahsp/h7ZSLkY1F1Oq/j1Uc0dOOshg85cuk7ej LmqBjEBU9xgh9LTd4vpgimfpjiM1SvNHn6PKkJ8Ve0w4nPLa+gXUPxRU5sttk6YP 0sTe8r2llNxiECUVnKnSOrVTJwDNQdJvlZQ9hFQIJkg3t3cFKtzUXnlFLrgXa991 xzI8pJm2RnITVJgGJK24prJOndjYxlL7VZw4RnygLYf50Fn01/cb+z9/Ed0vub6j D3OEYlE2ohzpehiq67XxKK1RsSWQVtdzNEELLvhXN+npgHP9oaI2Jmee1RDCGcqN 9qfJ88Ysn+R/X89gmm2tk/ZyYBTmftQ0 -----END CERTIFICATE-----Generated at Thu Oct 23 20:30:22 2025 by rpki-client