$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft File: E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft (raw, json) Hash identifier: lDPpQrg0WWRihwu5+TcbPP2KG41WZ5cPEMVJNPVm3e0= Subject key identifier: 4E:C5:99:8F:F6:61:9E:A9:AD:FE:8A:6C:D4:65:B0:70:9F:C3:EB:78 Authority key identifier: 13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 Certificate issuer: /CN=A91CE9D6/serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Certificate serial: 0A58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft Manifest number: 0A42 Signing time: Sun 02 Nov 2025 19:41:17 +0000 Manifest this update: Sun 02 Nov 2025 19:41:17 +0000 Manifest next update: Sun 09 Nov 2025 19:41:17 +0000 Files and hashes: 1: E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl (hash: xZ9Oj9+JxzUSKDqNm3GhP5RNz/h4AhA34KGuNvOVqUw=) 2: 722D43AC7A5A11EABD77E486C4F9AE02.roa (hash: dz0lDVUdbKurIPgLKnTIK+TUvk2MtsrFSHr5aV4oHoA=) 3: E4EFE6905ECB11ECA9B55A3BC4F9AE02.roa (hash: ACLukHzl4iP7lAUKq3zWaW1x17F+UkqOsay4tSs+0D0=) 4: A1C764027A5B11EA98745A0EC4F9AE02.roa (hash: WPHw7kNP0n6c5UltUwmrIvy70bAxnVBFcfWA6in4LsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:41:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2648 (0xa58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9D6, serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Validity Not Before: Nov 2 19:41:17 2025 GMT Not After : Nov 9 19:41:17 2025 GMT Subject: CN=6907b3dd-f383 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:60:cd:26:e5:63:ec:4e:db:18:1e:35:2b:e8: f6:ca:9b:b2:3c:47:68:61:48:51:45:b8:4e:0d:4b: 50:34:ac:23:8a:9b:9b:c5:b6:5e:0e:52:3b:54:22: f5:4b:1b:5b:c8:38:c0:e2:ca:14:76:27:71:d5:ae: 1d:b6:b5:af:82:63:8c:98:4d:e4:e1:52:71:87:2c: 4a:79:20:9d:38:ae:6e:a9:ce:06:8d:fe:60:3a:3a: 19:84:49:ed:67:99:f6:29:c3:ad:96:93:db:5e:52: 9a:0c:ac:90:47:7b:87:21:b5:ad:b3:fc:f0:5b:44: b5:d1:0e:c3:c3:43:a3:76:31:bb:b5:e6:93:63:96: 45:09:12:35:04:6f:25:51:0e:73:4c:0d:5f:83:3a: 37:b1:dc:2a:d7:d7:d6:29:80:75:cf:ad:91:f7:18: b1:b9:5b:70:17:ee:08:68:e9:2e:14:89:be:4a:7c: d5:6f:63:3e:25:08:19:1c:28:02:7b:6f:60:32:39: 5c:86:a5:4e:45:f4:0d:cd:08:64:5e:eb:4d:af:4f: ef:8c:99:c7:f3:df:ee:db:02:a1:d0:2e:c7:d9:18: 7d:20:bf:59:05:f6:65:10:c4:71:93:20:cc:4e:01: d9:5c:2c:b8:a9:2e:fa:76:f9:7d:32:71:98:9b:ba: 60:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:C5:99:8F:F6:61:9E:A9:AD:FE:8A:6C:D4:65:B0:70:9F:C3:EB:78 X509v3 Authority Key Identifier: keyid:13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:ca:ca:65:02:96:7b:91:36:48:7a:97:64:98:e8:32:ce:d9: 73:8a:98:58:90:96:9a:b5:2c:01:e7:be:63:97:f7:b1:4e:b8: 44:8d:2e:57:22:2f:f5:6a:84:e2:34:f8:79:e8:69:a1:d5:ef: b3:04:06:f9:3d:67:40:1b:57:a1:73:06:8b:6f:f0:aa:dc:4c: 7a:0b:3d:e1:c8:4c:2f:39:4f:f2:22:79:db:4d:c8:2d:14:14: 2a:70:fd:87:f9:fc:15:13:7a:2f:0d:d3:37:ef:7b:fc:2d:45: a7:dd:d3:09:a5:ce:23:ae:fe:f5:89:e3:91:be:65:c9:b0:0e: b7:05:df:f0:3a:2f:fa:05:cd:a4:51:8c:ab:cf:74:4b:3e:b8: 03:02:dc:3a:9c:12:09:23:d0:62:46:cf:30:63:77:f8:b2:8b: a9:44:a0:c2:7d:76:2c:7d:81:f3:28:da:e2:cf:61:14:c5:29: d0:fc:1f:12:5f:81:1b:7e:c3:59:b2:67:51:48:ef:ca:ab:2c: c2:b8:b5:1a:0a:de:3c:e6:61:54:af:36:33:17:52:d2:28:a6: a3:6c:58:62:81:ff:76:c9:5d:46:6d:29:6a:74:c1:8b:24:cd: 0c:28:d9:12:de:de:e8:f8:cc:28:dd:ca:a3:a8:39:1d:26:ed: 9e:88:96:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RDYxMTAvBgNVBAUTKDEzNjc0MUJEOUU4NzBGMDZFQ0U1Q0IzNTVCOEM3NTcx Q0M5NkJBNzQwHhcNMjUxMTAyMTk0MTE3WhcNMjUxMTA5MTk0MTE3WjAYMRYwFAYD VQQDEw02OTA3YjNkZC1mMzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2DNJuVj7E7bGB41K+j2ypuyPEdoYUhRRbhODUtQNKwjipubxbZeDlI7VCL1 SxtbyDjA4soUdidx1a4dtrWvgmOMmE3k4VJxhyxKeSCdOK5uqc4Gjf5gOjoZhEnt Z5n2KcOtlpPbXlKaDKyQR3uHIbWts/zwW0S10Q7Dw0OjdjG7teaTY5ZFCRI1BG8l UQ5zTA1fgzo3sdwq19fWKYB1z62R9xixuVtwF+4IaOkuFIm+SnzVb2M+JQgZHCgC e29gMjlchqVORfQNzQhkXutNr0/vjJnH89/u2wKh0C7H2Rh9IL9ZBfZlEMRxkyDM TgHZXCy4qS76dvl9MnGYm7pgTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE7FmY/2 YZ6prf6KbNRlsHCfw+t4MB8GA1UdIwQYMBaAFBNnQb2ehw8G7OXLNVuMdXHMlrp0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlENi85RTY2RjUxMjdB NTUxMUVBQkZCRTk0N0FDNEY5QUUwMi9FMmRCdlo2SER3YnM1Y3MxVzR4MWNjeVd1 blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UyZEJ2WjZIRHdiczVjczFXNHgxY2N5V3VuUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTlENi85RTY2RjUxMjdBNTUxMUVBQkZCRTk0N0FDNEY5QUUwMi9FMmRCdlo2SER3 YnM1Y3MxVzR4MWNjeVd1blEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLysplApZ7kTZIepdkmOgyztlziphYkJaatSwB575jl/exTrhEjS5X Ii/1aoTiNPh56Gmh1e+zBAb5PWdAG1ehcwaLb/Cq3Ex6Cz3hyEwvOU/yInnbTcgt FBQqcP2H+fwVE3ovDdM373v8LUWn3dMJpc4jrv71ieORvmXJsA63Bd/wOi/6Bc2k UYyrz3RLPrgDAtw6nBIJI9BiRs8wY3f4soupRKDCfXYsfYHzKNriz2EUxSnQ/B8S X4EbfsNZsmdRSO/KqyzCuLUaCt485mFUrzYzF1LSKKajbFhigf92yV1GbSlqdMGL JM0MKNkS3t7o+Mwo3cqjqDkdJu2eiJbo -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:24 2025 by rpki-client