$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: 1Czmcu8GLgHTtF9Q88Y5r/bQzSz9sIc8FwNDsmlV3fI= Subject key identifier: 76:11:C7:FE:6F:F7:E4:EA:0C:05:F8:B8:3D:0C:4E:AE:5A:E0:2E:72 Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2BE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2BBC Signing time: Sun 02 Nov 2025 15:32:15 +0000 Manifest this update: Sun 02 Nov 2025 15:32:15 +0000 Manifest next update: Sun 09 Nov 2025 15:32:15 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: XL5BwPqSx5K/MSrruz4zqvb/N2X7DV+R4I3TNTed3D4=) 2: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: q2QK7nleDfVKJdydH1BhBELt50ggXZGsQHTMsb+GgzQ=) 3: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: R7GiqDFWTFG5/KzmRDTnU8CgA9M5hlMTeWah7zEstzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:32:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11232 (0x2be0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: Nov 2 15:32:15 2025 GMT Not After : Nov 9 15:32:15 2025 GMT Subject: CN=6907797f-f0bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:2b:f2:fb:dd:72:04:96:a5:6b:fc:6d:44:ff: b7:0b:73:12:3b:a0:98:19:f0:4f:3d:c3:66:b2:40: 20:47:56:57:85:25:28:a8:f0:ff:f3:f5:fc:f7:33: 70:ea:44:fd:81:ad:30:37:c1:97:ae:d3:72:1d:65: b3:5b:b3:e0:06:91:bd:69:52:30:c3:73:70:3a:b1: f4:8a:38:77:dd:b8:fd:81:fb:ca:4d:d1:0c:2a:1c: 8d:d8:11:e5:a0:e4:e1:c7:f3:1b:7f:e7:2b:02:79: 04:dc:d9:68:61:9b:b7:61:03:d9:8f:24:bd:fd:e2: 01:ce:7c:fe:d3:35:39:0c:cb:76:6c:77:ad:59:e6: d5:11:f3:90:96:fb:a8:4d:3e:df:93:8c:ec:3f:48: 91:7f:51:1f:42:74:75:36:1a:7b:10:d0:99:16:65: 30:4d:a3:59:a1:7e:d8:07:db:1c:b2:4e:07:d5:4e: c7:42:01:1c:e8:61:64:04:45:9f:04:28:5f:0c:d1: b2:3d:5c:01:e7:f4:1e:bd:95:64:a4:b2:51:b6:2f: c9:c2:51:13:65:80:e8:a9:a2:07:b7:8b:c9:ad:43: 0b:49:d2:3e:f0:43:6c:da:29:a9:3e:e2:e2:14:06: cf:44:50:bf:56:84:8c:56:84:a5:95:00:10:aa:1a: 97:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:11:C7:FE:6F:F7:E4:EA:0C:05:F8:B8:3D:0C:4E:AE:5A:E0:2E:72 X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:1b:90:2d:7e:b5:6f:1e:db:d2:53:7f:77:6f:b0:84:61:a9: f3:52:61:f2:00:bd:07:16:e3:13:63:2c:46:65:0d:c8:e0:2a: 0c:dd:8f:0c:c0:9a:00:67:ff:09:b3:7d:8d:e1:c3:e0:8e:b5: 63:ad:cb:50:75:34:fc:23:32:cf:11:1e:da:a3:07:fb:ed:d6: bd:4c:2e:1e:ac:4e:a1:7b:d1:2b:a2:ec:4f:9b:b6:f4:69:5e: 9a:f1:59:9a:79:68:78:e6:1b:4d:76:fd:04:91:a8:dd:28:e5: 93:66:e0:c5:66:82:52:da:2d:07:c4:91:26:c3:fb:22:86:08: ab:45:69:33:23:90:c3:24:60:36:e4:15:33:8c:26:a3:97:7a: 46:bc:d3:69:17:ef:d9:b0:0d:72:b1:3b:23:3e:d6:da:f0:f8: 9b:c9:50:a1:b7:ca:a3:c0:ef:29:0c:0d:6a:f6:77:7b:ff:7c: e8:11:9d:79:8b:95:17:7c:1d:8f:99:4d:f5:f5:11:75:56:68: 67:86:71:0f:d1:60:1e:8e:13:a8:b3:df:7e:e0:43:08:8c:62: 6d:bc:08:c7:90:4d:d9:6c:53:f7:65:30:86:e5:88:51:1d:da: e6:99:c5:c6:08:eb:73:a3:da:e4:c1:26:72:8f:28:96:49:c4: 80:c7:d5:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjUxMTAyMTUzMjE1WhcNMjUxMTA5MTUzMjE1WjAYMRYwFAYD VQQDEw02OTA3Nzk3Zi1mMGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoivy+91yBJala/xtRP+3C3MSO6CYGfBPPcNmskAgR1ZXhSUoqPD/8/X89zNw 6kT9ga0wN8GXrtNyHWWzW7PgBpG9aVIww3NwOrH0ijh33bj9gfvKTdEMKhyN2BHl oOThx/Mbf+crAnkE3NloYZu3YQPZjyS9/eIBznz+0zU5DMt2bHetWebVEfOQlvuo TT7fk4zsP0iRf1EfQnR1Nhp7ENCZFmUwTaNZoX7YB9scsk4H1U7HQgEc6GFkBEWf BChfDNGyPVwB5/QevZVkpLJRti/JwlETZYDoqaIHt4vJrUMLSdI+8ENs2impPuLi FAbPRFC/VoSMVoSllQAQqhqX8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHYRx/5v 9+TqDAX4uD0MTq5a4C5yMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASG5AtfrVvHtvSU393b7CEYanzUmHyAL0HFuMTYyxGZQ3I4CoM3Y8M wJoAZ/8Js32N4cPgjrVjrctQdTT8IzLPER7aowf77da9TC4erE6he9ErouxPm7b0 aV6a8VmaeWh45htNdv0EkajdKOWTZuDFZoJS2i0HxJEmw/sihgirRWkzI5DDJGA2 5BUzjCajl3pGvNNpF+/ZsA1ysTsjPtba8PibyVCht8qjwO8pDA1q9nd7/3zoEZ15 i5UXfB2PmU319RF1VmhnhnEP0WAejhOos99+4EMIjGJtvAjHkE3ZbFP3ZTCG5YhR HdrmmcXGCOtzo9rkwSZyjyiWScSAx9U6 -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:29 2025 by rpki-client