$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft File: 2OL6sVCi_VePZ-GbApZTmzdSyak.mft (raw, json) Hash identifier: dktugMFNZhQJ5VHHtnh7Fvw03/uiD/VmDG98IhjoS/o= Subject key identifier: 0A:A7:56:F6:70:FE:50:18:E7:2E:D9:EC:F9:3C:38:88:E0:68:8D:2C Authority key identifier: D8:E2:FA:B1:50:A2:FD:57:8F:67:E1:9B:02:96:53:9B:37:52:C9:A9 Certificate issuer: /CN=A91EC225/serialNumber=D8E2FAB150A2FD578F67E19B0296539B3752C9A9 Certificate serial: 0EFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft Manifest number: 0EF3 Signing time: Sun 02 Nov 2025 17:38:19 +0000 Manifest this update: Sun 02 Nov 2025 17:38:19 +0000 Manifest next update: Sun 09 Nov 2025 17:38:19 +0000 Files and hashes: 1: 2OL6sVCi_VePZ-GbApZTmzdSyak.crl (hash: 7gfvSYzqd4r46YylqzE1/FOi8cZpFvixRjpc//eZFKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.crl rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:38:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3837 (0xefd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC225, serialNumber=D8E2FAB150A2FD578F67E19B0296539B3752C9A9 Validity Not Before: Nov 2 17:38:19 2025 GMT Not After : Nov 9 17:38:19 2025 GMT Subject: CN=6907970b-0490 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:57:c3:ef:a2:62:f5:d2:5f:c9:77:27:df:e1: 80:2c:5c:60:e9:1a:63:b0:f2:a8:2b:3b:da:6f:aa: 6c:7d:10:98:ef:49:17:df:92:98:f7:6b:79:f7:a4: 83:8a:52:58:87:b3:4c:68:fb:db:5b:e5:d4:41:6f: b6:c9:74:2b:dd:f8:e2:5a:b5:09:f4:f0:c3:6a:bf: ba:46:db:14:86:b9:bb:18:84:3d:cb:af:28:eb:6c: 41:d2:a6:d6:46:b4:4b:e0:5a:b4:7e:95:bb:0d:c9: f5:73:7c:0c:18:14:33:ef:e0:5f:5d:cb:a8:af:56: 1c:0e:a7:32:f5:4e:3f:68:08:df:16:17:50:18:18: 64:7d:77:46:f8:e3:2a:16:02:58:7a:bd:5f:67:92: 09:2c:e2:a3:77:88:f9:40:23:ce:10:51:56:63:0e: fb:b2:a9:43:59:0a:3c:c4:3f:2d:9d:64:2e:72:97: e5:e4:51:fc:4d:e2:d2:6d:71:a1:c5:17:cf:13:f3: 6c:d9:92:90:36:c7:3e:73:a7:de:33:62:ef:8f:6c: 53:88:b6:61:b0:9d:cd:93:ab:0e:3f:75:d1:18:83: e4:bb:ae:fb:80:5e:04:b4:ea:13:0e:f1:9d:ef:cc: 89:f4:37:64:c5:5f:14:0b:f6:ab:73:47:59:06:56: c2:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:A7:56:F6:70:FE:50:18:E7:2E:D9:EC:F9:3C:38:88:E0:68:8D:2C X509v3 Authority Key Identifier: keyid:D8:E2:FA:B1:50:A2:FD:57:8F:67:E1:9B:02:96:53:9B:37:52:C9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:21:a7:3a:38:f7:68:87:64:b1:d5:0b:4c:68:fa:c2:30:c4: 10:c7:5e:e1:21:70:68:e4:df:58:89:1d:cb:91:65:27:a3:cb: c2:49:c0:44:1b:db:ea:d6:97:17:aa:7d:cc:29:91:a3:85:d7: 73:5c:c2:2c:7e:4f:4c:29:e4:d9:52:12:50:67:1d:20:09:46: da:77:41:c5:47:fc:a1:c9:f8:a7:3a:ab:d9:f2:b5:44:f5:e6: 33:9f:d2:19:0a:a7:d3:09:a8:46:18:77:1f:49:0d:f8:e1:87: 20:73:f6:2b:45:c2:36:aa:73:d9:45:a3:e2:fb:19:26:75:95: a3:59:55:75:16:a7:a0:56:0e:4f:4d:1c:97:95:37:5f:f3:cf: 4b:79:6c:12:52:4d:0a:5e:9f:3a:fc:3f:82:d7:51:10:ea:ae: bb:fe:69:10:40:40:b2:f7:e2:53:ea:8b:3c:8f:bb:dc:cf:b6: 15:8d:73:6c:b6:9a:9a:6a:84:96:de:3c:87:86:9c:32:5c:80: b3:3f:d7:8c:09:f3:7b:2a:17:eb:f1:93:35:93:46:30:a0:21: 8f:3f:26:e9:26:da:07:24:77:e7:ef:ea:ef:8b:d2:9a:b0:ee: a8:1f:bf:67:44:2e:66:05:38:0f:f7:a6:75:e4:b1:ba:4e:82: 5d:06:8a:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMyMjUxMTAvBgNVBAUTKEQ4RTJGQUIxNTBBMkZENTc4RjY3RTE5QjAyOTY1MzlC Mzc1MkM5QTkwHhcNMjUxMTAyMTczODE5WhcNMjUxMTA5MTczODE5WjAYMRYwFAYD VQQDEw02OTA3OTcwYi0wNDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFfD76Ji9dJfyXcn3+GALFxg6RpjsPKoKzvab6psfRCY70kX35KY92t596SD ilJYh7NMaPvbW+XUQW+2yXQr3fjiWrUJ9PDDar+6RtsUhrm7GIQ9y68o62xB0qbW RrRL4Fq0fpW7Dcn1c3wMGBQz7+BfXcuor1YcDqcy9U4/aAjfFhdQGBhkfXdG+OMq FgJYer1fZ5IJLOKjd4j5QCPOEFFWYw77sqlDWQo8xD8tnWQucpfl5FH8TeLSbXGh xRfPE/Ns2ZKQNsc+c6feM2Lvj2xTiLZhsJ3Nk6sOP3XRGIPku677gF4EtOoTDvGd 78yJ9DdkxV8UC/arc0dZBlbChwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqnVvZw /lAY5y7Z7Pk8OIjgaI0sMB8GA1UdIwQYMBaAFNji+rFQov1Xj2fhmwKWU5s3Usmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzIyNS80OTlGREY5MDhF NTUxMUU5ODBEMDlBNDJDNEY5QUUwMi8yT0w2c1ZDaV9WZVBaLUdiQXBaVG16ZFN5 YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJPTDZzVkNpX1ZlUFotR2JBcFpUbXpkU3lhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzIyNS80OTlGREY5MDhFNTUxMUU5ODBEMDlBNDJDNEY5QUUwMi8yT0w2c1ZDaV9W ZVBaLUdiQXBaVG16ZFN5YWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8Iac6OPdoh2Sx1QtMaPrCMMQQx17hIXBo5N9YiR3LkWUno8vCScBE G9vq1pcXqn3MKZGjhddzXMIsfk9MKeTZUhJQZx0gCUbad0HFR/yhyfinOqvZ8rVE 9eYzn9IZCqfTCahGGHcfSQ344Ycgc/YrRcI2qnPZRaPi+xkmdZWjWVV1FqegVg5P TRyXlTdf889LeWwSUk0KXp86/D+C11EQ6q67/mkQQECy9+JT6os8j7vcz7YVjXNs tpqaaoSW3jyHhpwyXICzP9eMCfN7Khfr8ZM1k0YwoCGPPybpJtoHJHfn7+rvi9Ka sO6oH79nRC5mBTgP96Z15LG6ToJdBopz -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:06 2025 by rpki-client