$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json) Hash identifier: Al+PNunXxkSZO/SpGu+wdNVkqQolP9Ak6Swd9/kXfkM= Subject key identifier: 54:F3:95:23:AF:FA:9E:49:BD:E4:B1:B7:9D:AA:78:F7:38:80:87:C4 Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Certificate serial: 0E67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft Manifest number: 103A Signing time: Sun 02 Nov 2025 17:47:34 +0000 Manifest this update: Sun 02 Nov 2025 17:47:33 +0000 Manifest next update: Sun 09 Nov 2025 17:47:33 +0000 Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: K8J/b50+WDEOcge7jLW7Em0Cc5+9Eaz1XQwZTTzIAEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:47:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3687 (0xe67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0, serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Validity Not Before: Nov 2 17:47:33 2025 GMT Not After : Nov 9 17:47:33 2025 GMT Subject: CN=69079935-8a2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:00:ff:2c:f0:31:6e:46:3a:4b:b2:c8:f8:e1: 8a:9a:52:41:aa:a5:21:c3:fe:26:08:e9:ee:ee:ff: 2c:aa:91:ae:e7:98:0c:e1:06:d5:b5:5b:81:a9:4e: bf:9c:37:93:2c:f6:eb:28:3e:bb:a7:0d:19:f1:d3: 93:80:ad:1f:85:6f:70:02:53:23:48:ac:82:fd:c6: 10:1b:f4:68:fb:25:57:01:69:c1:59:a4:cc:43:3a: a3:84:7d:70:00:aa:f1:c2:60:e0:0a:e1:94:30:cd: 7a:6d:90:e2:5b:ba:64:e7:f2:aa:a8:c8:17:ba:96: d6:fd:fb:70:fd:e7:e0:2f:dc:f0:cf:0a:9e:cb:a6: ba:ea:d7:9a:3a:1f:10:75:ca:13:12:2d:64:bb:4e: de:ea:31:6f:25:cc:ba:00:e3:f3:de:73:54:85:8f: 3e:3d:04:85:2f:b0:ef:19:28:e1:a1:f8:95:d5:e4: d1:01:01:72:1b:fa:d1:9d:3d:6a:3a:01:ce:a3:d2: 3e:18:92:9a:63:6c:5e:5a:02:36:e8:5b:dc:89:ea: 7e:a4:7a:77:ed:8e:2c:50:66:8b:2d:e3:46:19:b1: 90:c0:bc:cb:07:77:2c:40:e3:fc:e8:20:cc:17:59: 7a:59:64:31:3e:dc:84:99:be:f1:4f:9f:a3:ac:b9: ce:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:F3:95:23:AF:FA:9E:49:BD:E4:B1:B7:9D:AA:78:F7:38:80:87:C4 X509v3 Authority Key Identifier: keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:0f:46:a6:ec:d8:89:2b:7b:a4:d8:37:5c:70:87:db:06:7e: d9:14:07:1d:0b:f9:03:73:42:47:48:4e:08:86:b2:5e:38:e3: 27:aa:2d:29:89:09:29:6b:c1:f8:0c:65:67:b4:88:a3:bf:c7: 93:ce:a2:e4:13:df:81:e7:95:81:07:d4:cb:0a:31:c0:e0:9f: ec:53:00:19:c6:87:bd:a2:cf:4b:91:31:13:93:8a:f1:8c:4f: bb:cb:8a:fc:f3:42:45:ad:82:6a:59:19:10:57:48:95:44:a1: 1f:12:29:eb:46:ca:f1:ae:c0:bf:db:63:c0:34:ab:73:b1:21: 4b:6f:9a:23:f6:72:aa:1c:0a:4a:c4:33:6c:47:2c:65:e4:8b: e8:df:25:dc:10:c1:1e:6a:4c:2c:95:91:f8:5e:cf:03:cc:3e: d9:2d:80:3f:fc:8c:ec:d8:93:44:e7:ff:13:4f:f1:91:63:f1: 8b:70:a9:04:46:0c:aa:f8:31:d1:65:dc:cf:74:37:47:8b:af: 79:c0:fc:5b:84:ef:69:bf:b2:01:ac:55:2c:2a:26:21:c5:61: f8:2d:f4:7f:2e:6a:35:ba:2e:b6:7f:e2:06:cb:b1:a6:2a:f8: 9b:72:7d:84:9d:70:7a:15:60:37:85:86:65:bc:2d:8c:4f:37: a8:37:83:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2 NjE0Rjg0QUYwHhcNMjUxMTAyMTc0NzMzWhcNMjUxMTA5MTc0NzMzWjAYMRYwFAYD VQQDEw02OTA3OTkzNS04YTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4AD/LPAxbkY6S7LI+OGKmlJBqqUhw/4mCOnu7v8sqpGu55gM4QbVtVuBqU6/ nDeTLPbrKD67pw0Z8dOTgK0fhW9wAlMjSKyC/cYQG/Ro+yVXAWnBWaTMQzqjhH1w AKrxwmDgCuGUMM16bZDiW7pk5/KqqMgXupbW/ftw/efgL9zwzwqey6a66teaOh8Q dcoTEi1ku07e6jFvJcy6AOPz3nNUhY8+PQSFL7DvGSjhofiV1eTRAQFyG/rRnT1q OgHOo9I+GJKaY2xeWgI26Fvciep+pHp37Y4sUGaLLeNGGbGQwLzLB3csQOP86CDM F1l6WWQxPtyEmb7xT5+jrLnOaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFTzlSOv +p5JveSxt52qePc4gIfEMB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK SW9jcURLX1FVZkZtRlBoSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVD0am7NiJK3uk2DdccIfbBn7ZFAcdC/kDc0JHSE4IhrJeOOMnqi0p iQkpa8H4DGVntIijv8eTzqLkE9+B55WBB9TLCjHA4J/sUwAZxoe9os9LkTETk4rx jE+7y4r880JFrYJqWRkQV0iVRKEfEinrRsrxrsC/22PANKtzsSFLb5oj9nKqHApK xDNsRyxl5Ivo3yXcEMEeakwslZH4Xs8DzD7ZLYA//Izs2JNE5/8TT/GRY/GLcKkE Rgyq+DHRZdzPdDdHi695wPxbhO9pv7IBrFUsKiYhxWH4LfR/Lmo1ui62f+IGy7Gm Kvibcn2EnXB6FWA3hYZlvC2MTzeoN4Nb -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:18 2025 by rpki-client