$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft File: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft (raw, json) Hash identifier: 7/maAvzY0JzBN0HXVxKDLiq2RMwlUPZBIzsm+YNC08E= Subject key identifier: FD:4A:D4:C2:A3:36:D8:ED:D4:14:9F:11:51:52:78:83:22:0F:DB:4B Authority key identifier: DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B Certificate issuer: /CN=A91D1C7F/serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Certificate serial: 03BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft Manifest number: 03B7 Signing time: Wed 05 Nov 2025 00:46:42 +0000 Manifest this update: Wed 05 Nov 2025 00:46:42 +0000 Manifest next update: Wed 12 Nov 2025 00:46:42 +0000 Files and hashes: 1: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl (hash: 5MdRrPFYanW3Zscyv4zH/BQYKWi6MoHUyu0IRocjZS8=) 2: E5B25D84B0D211ECB7B1BA7DC4F9AE02.roa (hash: 5JeHEtG1xdKCrCH6rPS3zOfVRTqBs2fv9GJfMUQ9NfQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 957 (0x3bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1C7F, serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Validity Not Before: Nov 5 00:46:42 2025 GMT Not After : Nov 12 00:46:42 2025 GMT Subject: CN=690a9e72-1727 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ad:8c:1c:6b:b7:74:65:4f:4e:4c:49:8c:e9: 19:77:62:b6:2c:fb:31:19:a4:7c:4a:d6:4d:aa:2b: 67:6a:76:42:7d:e5:a2:b0:ac:17:e7:dc:6b:88:c7: 9c:b1:85:ea:90:70:26:d0:25:67:8f:ee:ad:8c:cc: f0:20:1e:0d:91:9d:d8:34:98:71:9f:dc:d8:97:5c: 8d:2a:7b:1e:23:08:b7:b9:ea:3b:a6:b5:fd:84:6c: 56:d6:44:46:e9:39:dc:af:c4:e6:26:6b:1d:48:b0: 19:b3:e8:27:12:5d:94:10:16:0b:2c:1a:0d:de:fb: 87:59:d7:29:31:5e:d0:2c:08:52:ac:6a:38:13:6d: 19:18:66:44:8b:a4:fe:ea:2c:18:f5:98:a2:0f:39: 4e:19:b3:60:e4:bc:34:43:38:ff:ca:46:7f:98:c9: c4:29:2c:4a:c3:55:20:b2:fd:5f:c7:ab:e6:8a:ef: c8:86:a4:3c:5f:38:8e:28:02:b1:03:ee:39:0c:70: 5c:11:5f:be:05:22:2a:d6:b4:47:fc:1c:de:cc:81: 9e:98:0c:46:a4:81:78:af:c0:e3:86:3b:ce:08:2c: 27:84:65:6e:eb:81:62:a3:b5:b8:1f:25:c7:df:d1: 15:1a:b0:68:ed:af:54:0c:37:e7:54:ca:fd:7e:b8: 0d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:4A:D4:C2:A3:36:D8:ED:D4:14:9F:11:51:52:78:83:22:0F:DB:4B X509v3 Authority Key Identifier: keyid:DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:43:9e:50:d7:6e:94:44:b2:71:31:45:f0:8d:ef:8d:7b:e4: bf:7e:1f:7b:ef:54:91:4d:29:58:f2:9d:2d:22:8e:94:48:03: e4:fb:58:85:7f:76:14:46:42:d1:e5:ff:ee:99:e7:ab:00:f8: 9d:99:ed:e5:6f:2c:58:bb:8b:51:b8:f9:22:ae:75:26:42:03: 22:e3:de:fb:ae:8a:0a:a9:81:ed:3b:eb:a6:2b:7e:b0:ed:6b: 52:ec:c9:43:71:e7:12:07:49:1a:d4:03:06:2d:e0:f4:af:68: 8a:e8:fe:4f:e8:44:c0:52:04:5a:eb:19:66:36:6e:49:78:29: 4f:b4:d1:83:29:88:52:18:24:bd:e2:fd:25:02:7e:bc:27:d6: f7:51:e8:32:8b:9c:96:8d:a9:f0:25:d6:ef:8f:0a:41:30:a0: 9c:f0:00:fe:9d:de:81:14:a4:6d:67:79:93:c3:3a:87:a5:b4: 21:77:9a:af:7a:51:1b:64:1b:0b:3d:35:6c:02:cb:68:ea:fd: 99:2d:10:e9:09:d7:3d:8f:b3:f6:f2:1a:f2:01:0d:9d:09:4e: e0:fc:0b:eb:69:d4:7d:98:eb:e4:8b:a2:19:b5:a6:78:e1:95: df:fd:7d:8e:1b:02:12:bb:60:1f:90:98:ce:3a:71:1d:0c:c5: ea:58:32:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFDN0YxMTAvBgNVBAUTKERBQjRBNTJBOEVDMUFBRDZDOTI1MkVFQTRENUQxNTY5 RDI3QUY0NkIwHhcNMjUxMTA1MDA0NjQyWhcNMjUxMTEyMDA0NjQyWjAYMRYwFAYD VQQDEw02OTBhOWU3Mi0xNzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxq2MHGu3dGVPTkxJjOkZd2K2LPsxGaR8StZNqitnanZCfeWisKwX59xriMec sYXqkHAm0CVnj+6tjMzwIB4NkZ3YNJhxn9zYl1yNKnseIwi3ueo7prX9hGxW1kRG 6Tncr8TmJmsdSLAZs+gnEl2UEBYLLBoN3vuHWdcpMV7QLAhSrGo4E20ZGGZEi6T+ 6iwY9ZiiDzlOGbNg5Lw0Qzj/ykZ/mMnEKSxKw1Ugsv1fx6vmiu/IhqQ8XziOKAKx A+45DHBcEV++BSIq1rRH/BzezIGemAxGpIF4r8DjhjvOCCwnhGVu64Fio7W4HyXH 39EVGrBo7a9UDDfnVMr9frgNbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP1K1MKj Ntjt1BSfEVFSeIMiD9tLMB8GA1UdIwQYMBaAFNq0pSqOwarWySUu6k1dFWnSevRr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUM3Ri8wOTFFMUVBQUIw RDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0YkpKUzdxVFYwVmFkSjY5 R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyU2xLbzdCcXRiSkpTN3FUVjBWYWRKNjlHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUM3Ri8wOTFFMUVBQUIwRDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0 YkpKUzdxVFYwVmFkSjY5R3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANQ55Q126URLJxMUXwje+Ne+S/fh9771SRTSlY8p0tIo6USAPk+1iF f3YURkLR5f/umeerAPidme3lbyxYu4tRuPkirnUmQgMi4977rooKqYHtO+umK36w 7WtS7MlDcecSB0ka1AMGLeD0r2iK6P5P6ETAUgRa6xlmNm5JeClPtNGDKYhSGCS9 4v0lAn68J9b3Uegyi5yWjanwJdbvjwpBMKCc8AD+nd6BFKRtZ3mTwzqHpbQhd5qv elEbZBsLPTVsAsto6v2ZLRDpCdc9j7P28hryAQ2dCU7g/AvradR9mOvki6IZtaZ4 4ZXf/X2OGwISu2AfkJjOOnEdDMXqWDJf -----END CERTIFICATE-----Generated at Wed Nov 5 23:47:24 2025 by rpki-client