$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft File: maB2Nu64AHCDMDGWpYxBvsxoj4A.mft (raw, json) Hash identifier: 6KpETYWONbgqzTQHTjRW8szNtaC+OpDm7HkM3UlPbhQ= Subject key identifier: D9:F6:FF:F9:32:B2:0D:40:D7:D5:FC:3B:D0:EB:3F:E5:73:3E:C7:1E Authority key identifier: 99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 Certificate issuer: /CN=A91EEC3B/serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Certificate serial: 0C2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft Manifest number: 2D3E Signing time: Tue 04 Nov 2025 16:30:57 +0000 Manifest this update: Tue 04 Nov 2025 16:30:57 +0000 Manifest next update: Tue 11 Nov 2025 16:30:57 +0000 Files and hashes: 1: maB2Nu64AHCDMDGWpYxBvsxoj4A.crl (hash: TonPJTLksQwZ4J9iPs02+Z05j2ODh3jHEInSA8oCYB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:30:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3115 (0xc2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEC3B, serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Validity Not Before: Nov 4 16:30:57 2025 GMT Not After : Nov 11 16:30:57 2025 GMT Subject: CN=690a2a41-0a1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bc:0f:10:c8:aa:8c:34:96:f7:69:a3:ed:95: da:bc:4c:f5:7a:c0:3e:f7:43:ed:cf:8f:25:d4:89: ea:88:0a:a2:de:b1:47:bc:2d:a8:f2:40:ef:d0:51: 78:c9:79:03:7c:27:f8:3d:16:ff:4f:84:be:9d:85: 95:35:00:a1:ec:cd:7f:8f:4e:a0:24:09:68:33:9f: 16:e8:dd:8d:67:c2:0a:c0:36:08:25:22:02:89:ec: 28:fd:6e:bc:d5:8b:2e:b6:b6:2b:e0:e0:4b:27:4c: 7f:29:88:26:80:23:6b:3f:6b:db:43:aa:94:29:e2: a7:ea:a9:89:1e:fe:e6:4e:c2:2a:ea:97:51:79:ec: 89:96:16:2a:df:d8:ca:51:5d:8e:a8:16:25:eb:d1: c3:05:4a:ca:a3:97:ee:85:37:00:6e:3e:d5:89:71: 85:5c:48:8a:f6:3f:9a:2b:7d:1c:8d:69:f8:cf:b5: 57:ff:c9:20:4b:9d:bc:b0:32:b7:0e:30:4f:0f:6a: ad:0a:0b:24:56:47:b0:a1:ca:d3:e3:e6:97:f6:c5: 25:79:0e:cc:e2:28:14:8c:b1:ce:93:d0:22:a2:f9: 52:d7:cf:ff:1e:a8:2e:86:86:c7:45:a2:c4:9d:06: 4a:e9:01:b3:ef:6a:74:e4:68:95:9f:97:92:8f:6e: c6:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:F6:FF:F9:32:B2:0D:40:D7:D5:FC:3B:D0:EB:3F:E5:73:3E:C7:1E X509v3 Authority Key Identifier: keyid:99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:75:fb:8c:4a:0b:f2:20:71:a1:3b:cf:b6:11:42:92:4b:98: 50:93:6a:60:e5:b9:dd:11:10:0d:b6:83:4b:95:00:91:e7:d9: 28:83:c5:2e:37:28:0b:77:2b:0d:dd:8e:df:53:d7:09:de:cd: 68:68:d8:6b:6e:b7:14:4f:b0:aa:78:e6:c9:86:f7:82:e0:b5: 13:97:b9:7f:09:ce:14:88:e2:6b:67:6a:1b:0d:e0:e4:d0:33: c5:e2:0b:79:27:4b:3a:61:2b:f6:39:07:40:b2:f8:47:cb:90: 52:68:66:01:e2:7a:b8:77:f5:55:60:96:93:2f:dc:a9:85:05: e6:65:b2:64:e9:26:e4:b0:b5:10:73:aa:59:6f:f5:35:71:cb: 4d:dd:7e:f8:f1:dd:38:76:18:d1:c3:66:9a:3a:49:85:a3:ab: 75:ae:b7:c1:8b:af:89:cc:94:99:8e:22:54:02:f2:1b:c2:71: 89:a7:a5:8b:a9:ed:bb:f0:f2:ae:46:ba:f5:c3:7d:7f:32:1e: 63:26:a6:5c:c4:95:42:bc:42:30:a2:79:4d:62:43:1c:99:83: c1:4c:1a:aa:63:86:42:4c:c7:58:91:6a:70:96:d9:11:22:ca: a4:a7:48:4a:50:ea:cf:0f:bc:91:35:39:16:9a:7a:85:76:61: b2:7b:e8:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDM0IxMTAvBgNVBAUTKDk5QTA3NjM2RUVCODAwNzA4MzMwMzE5NkE1OEM0MUJF Q0M2ODhGODAwHhcNMjUxMTA0MTYzMDU3WhcNMjUxMTExMTYzMDU3WjAYMRYwFAYD VQQDEw02OTBhMmE0MS0wYTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrwPEMiqjDSW92mj7ZXavEz1esA+90Ptz48l1InqiAqi3rFHvC2o8kDv0FF4 yXkDfCf4PRb/T4S+nYWVNQCh7M1/j06gJAloM58W6N2NZ8IKwDYIJSICiewo/W68 1YsutrYr4OBLJ0x/KYgmgCNrP2vbQ6qUKeKn6qmJHv7mTsIq6pdReeyJlhYq39jK UV2OqBYl69HDBUrKo5fuhTcAbj7ViXGFXEiK9j+aK30cjWn4z7VX/8kgS528sDK3 DjBPD2qtCgskVkewocrT4+aX9sUleQ7M4igUjLHOk9AiovlS18//HqguhobHRaLE nQZK6QGz72p05GiVn5eSj27GhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNn2//ky sg1A19X8O9DrP+VzPsceMB8GA1UdIwQYMBaAFJmgdjbuuABwgzAxlqWMQb7MaI+A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUMzQi82QjM3RTE5Qzg0 MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFIQ0RNREdXcFl4QnZzeG9q NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21hQjJOdTY0QUhDRE1ER1dwWXhCdnN4b2o0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RUMzQi82QjM3RTE5Qzg0MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFI Q0RNREdXcFl4QnZzeG9qNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAydfuMSgvyIHGhO8+2EUKSS5hQk2pg5bndERANtoNLlQCR59kog8Uu NygLdysN3Y7fU9cJ3s1oaNhrbrcUT7CqeObJhveC4LUTl7l/Cc4UiOJrZ2obDeDk 0DPF4gt5J0s6YSv2OQdAsvhHy5BSaGYB4nq4d/VVYJaTL9yphQXmZbJk6SbksLUQ c6pZb/U1cctN3X748d04dhjRw2aaOkmFo6t1rrfBi6+JzJSZjiJUAvIbwnGJp6WL qe278PKuRrr1w31/Mh5jJqZcxJVCvEIwonlNYkMcmYPBTBqqY4ZCTMdYkWpwltkR Isqkp0hKUOrPD7yRNTkWmnqFdmGye+hU -----END CERTIFICATE-----Generated at Wed Nov 5 10:27:51 2025 by rpki-client