$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft File: 2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft (raw, json) Hash identifier: ZhIs85O1vxoKt48IORp9Rv72Y0DBPXaAGSI7IrwUuA4= Subject key identifier: CC:04:35:D0:65:60:5F:5C:7F:10:C8:DF:44:FA:25:32:70:C8:7F:46 Authority key identifier: DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 Certificate issuer: /CN=A91CD00C/serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Certificate serial: 0384 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft Manifest number: 037C Signing time: Mon 27 Oct 2025 02:15:37 +0000 Manifest this update: Mon 27 Oct 2025 02:15:36 +0000 Manifest next update: Mon 03 Nov 2025 02:15:36 +0000 Files and hashes: 1: 2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl (hash: KVrI0EXkaGzmSTk3Ah7AXr3SYAu0ttx4R76u0JZ0gdY=) 2: 46654408C6CB11ECB185E43EC4F9AE02.roa (hash: 2bcV6GxsWp02/25GPOOyDI2TUUeSbqzzvJgPU+rv3Lc=) 3: 15D68F5ED55011EFA0564D54C4F9AE02.roa (hash: S/3id5/GrdHISWrodbVNvQaLLsQVLmIkD0brgywz+oo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 02:15:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 900 (0x384) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD00C, serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Validity Not Before: Oct 27 02:15:36 2025 GMT Not After : Nov 3 02:15:36 2025 GMT Subject: CN=68fed5c8-c9e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ef:27:21:62:33:01:a3:df:55:dc:7b:54:ea: b4:84:03:1b:f7:7d:50:8f:03:cf:c6:35:6a:8d:1c: a0:d5:9b:8d:7f:36:6e:9b:84:8e:7f:d2:1b:0c:a2: 2e:29:84:59:d4:28:7a:d1:b5:16:ec:75:4c:85:06: 60:d6:d2:78:f7:d4:b5:3e:8e:73:49:1e:77:66:ae: 60:3c:e7:90:eb:3f:23:a1:5c:03:d9:7c:34:e5:c9: 17:e8:a2:77:05:6b:6d:82:5a:07:36:65:d8:0b:c3: de:bb:c2:b6:94:9f:10:1e:15:06:6f:3f:5f:6c:eb: 2b:31:ee:18:8f:73:0d:2b:92:36:80:3f:98:36:bf: 67:23:9f:00:63:b9:e0:70:15:8a:01:52:c2:b5:7b: 2f:c1:d8:8a:2b:3f:05:33:9e:63:e8:ad:86:aa:1a: 00:25:48:94:41:b1:43:d4:d3:a7:9a:7a:2c:a0:12: 2b:42:50:08:51:30:94:4e:05:b5:1c:87:6e:14:48: b8:a0:81:10:af:92:a7:ef:54:cb:2b:56:7e:2c:2c: 90:58:8f:5f:12:83:f6:a6:22:40:36:21:af:8c:69: f3:28:59:63:2b:2f:3f:7d:16:20:1e:d1:85:fa:4f: 81:66:7a:5d:e7:7e:6c:0f:fe:f1:50:10:06:f6:4e: fb:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:04:35:D0:65:60:5F:5C:7F:10:C8:DF:44:FA:25:32:70:C8:7F:46 X509v3 Authority Key Identifier: keyid:DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:bf:0e:81:39:a2:f9:ba:ff:07:27:98:fc:b3:66:0a:3b:12: 50:38:93:f4:83:3e:1b:4a:95:6c:a5:4d:94:c2:8d:2d:ed:5c: 0b:7d:e3:ed:db:cc:cc:1d:77:0c:9d:60:ae:31:e8:3c:66:0e: 94:23:e6:a2:ca:71:92:90:1d:3c:3e:36:80:49:86:b3:d3:17: 29:5e:fa:a5:54:20:85:50:8d:43:e6:94:d4:4c:f9:ee:28:88: 3d:55:93:36:8f:4d:2a:de:f1:97:38:6d:9f:62:be:1b:eb:6c: cc:e1:1b:f2:eb:4c:ca:eb:88:5f:55:e7:5f:21:54:6f:cc:2c: 92:a9:7b:8d:c5:68:3f:70:df:3e:67:e8:67:e4:98:3a:64:7e: e2:a5:b0:cd:01:05:ad:d1:12:75:5c:0e:47:5b:64:32:19:7a: 98:63:fb:b4:35:c1:31:e2:5c:ab:2a:ba:9d:01:f2:ef:44:92: 85:fe:16:42:d0:ad:8c:22:32:f2:14:14:63:b1:60:46:72:3c: dd:c1:6a:69:f1:06:ae:b8:03:bf:ab:74:89:80:2a:cc:19:18: f5:56:83:ca:5a:81:32:48:09:47:3a:08:b1:42:52:ae:f5:3e: 5e:f3:fa:2d:9f:99:ad:80:cb:6e:3a:f2:2c:de:e8:b2:10:8a: c3:73:da:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwMEMxMTAvBgNVBAUTKERCMkNDQ0E4M0Q4NTMyODhDNTAwQ0RGQzNBRTFFMkZF QTA0OUY1MTQwHhcNMjUxMDI3MDIxNTM2WhcNMjUxMTAzMDIxNTM2WjAYMRYwFAYD VQQDEw02OGZlZDVjOC1jOWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3e8nIWIzAaPfVdx7VOq0hAMb931QjwPPxjVqjRyg1ZuNfzZum4SOf9IbDKIu KYRZ1Ch60bUW7HVMhQZg1tJ499S1Po5zSR53Zq5gPOeQ6z8joVwD2Xw05ckX6KJ3 BWttgloHNmXYC8Peu8K2lJ8QHhUGbz9fbOsrMe4Yj3MNK5I2gD+YNr9nI58AY7ng cBWKAVLCtXsvwdiKKz8FM55j6K2GqhoAJUiUQbFD1NOnmnosoBIrQlAIUTCUTgW1 HIduFEi4oIEQr5Kn71TLK1Z+LCyQWI9fEoP2piJANiGvjGnzKFljKy8/fRYgHtGF +k+BZnpd535sD/7xUBAG9k77LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwENdBl YF9cfxDI30T6JTJwyH9GMB8GA1UdIwQYMBaAFNsszKg9hTKIxQDN/Drh4v6gSfUU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDAwQy9DQUE4ODYxRUM2 MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1vakZBTTM4T3VIaV9xQko5 UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ5ek1xRDJGTW9qRkFNMzhPdUhpX3FCSjlSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDAwQy9DQUE4ODYxRUM2MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1v akZBTTM4T3VIaV9xQko5UlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFvw6BOaL5uv8HJ5j8s2YKOxJQOJP0gz4bSpVspU2Uwo0t7VwLfePt 28zMHXcMnWCuMeg8Zg6UI+aiynGSkB08PjaASYaz0xcpXvqlVCCFUI1D5pTUTPnu KIg9VZM2j00q3vGXOG2fYr4b62zM4Rvy60zK64hfVedfIVRvzCySqXuNxWg/cN8+ Z+hn5Jg6ZH7ipbDNAQWt0RJ1XA5HW2QyGXqYY/u0NcEx4lyrKrqdAfLvRJKF/hZC 0K2MIjLyFBRjsWBGcjzdwWpp8QauuAO/q3SJgCrMGRj1VoPKWoEySAlHOgixQlKu 9T5e8/otn5mtgMtuOvIs3uiyEIrDc9pz -----END CERTIFICATE-----Generated at Mon Oct 27 17:43:06 2025 by rpki-client