$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.mft File: vC2jXLVlE6lKaLWR3Sx2xR2BETQ.mft (raw, json) Hash identifier: A83LtoImpZ1/xw6mdb3PfexzusPFox3fxAf4ueYTYYE= Subject key identifier: 7C:D4:D5:43:BC:A4:30:27:5D:C0:60:A6:40:4E:77:0C:22:6B:5B:42 Authority key identifier: BC:2D:A3:5C:B5:65:13:A9:4A:68:B5:91:DD:2C:76:C5:1D:81:11:34 Certificate issuer: /CN=A91F7C21/serialNumber=BC2DA35CB56513A94A68B591DD2C76C51D811134 Certificate serial: 0596 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.mft Manifest number: 058A Signing time: Mon 27 Oct 2025 00:10:54 +0000 Manifest this update: Mon 27 Oct 2025 00:10:53 +0000 Manifest next update: Mon 03 Nov 2025 00:10:53 +0000 Files and hashes: 1: vC2jXLVlE6lKaLWR3Sx2xR2BETQ.crl (hash: ONnaMQi1f8V5yGhqHZ4voEg6XnSQ5nNo+KDifT67qf4=) 2: 7FBF284EF5B211EB8419A23AC4F9AE02.roa (hash: edmH+zoE3tcqcciZuFe0JER5V1TWvNXJvKg0Me+DQ90=) 3: 0EF4DA3A38D011EC936A8C4FC4F9AE02.roa (hash: amAbeNg9WhoR9LiBcCPddN+usabEY60TrC7LxRq3i34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.crl rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 00:10:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1430 (0x596) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7C21, serialNumber=BC2DA35CB56513A94A68B591DD2C76C51D811134 Validity Not Before: Oct 27 00:10:53 2025 GMT Not After : Nov 3 00:10:53 2025 GMT Subject: CN=68feb88e-4528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b1:2f:8b:40:5c:d5:df:54:85:b8:ed:a4:74: 45:d6:0c:c8:ac:ae:bb:b5:9f:79:c0:c5:31:72:10: 05:e6:45:ec:95:7b:ca:ef:38:18:a2:82:f6:90:c9: fd:bc:ab:b7:b0:02:4b:6c:ef:c0:e7:c1:f4:15:71: 49:07:c4:4d:db:4f:54:e0:61:d8:2f:c3:7b:40:36: 1b:7b:73:18:3f:a4:19:bb:0a:0c:de:69:b2:d7:9d: 7a:fd:eb:4c:16:54:e6:ea:54:e3:6e:a8:a2:b2:e4: 45:1d:f1:e2:7b:bb:4f:de:c6:e7:6d:26:d2:6e:04: 7c:6c:4f:99:ee:32:b9:80:41:40:aa:46:14:01:3c: f1:81:74:6b:35:d1:1d:0e:b5:6d:14:99:eb:5b:d8: 5c:b4:70:ce:73:bd:f1:d7:26:be:23:84:a9:e3:25: e9:a3:f6:78:9d:68:ee:49:b6:a5:62:0d:62:73:e0: 2c:41:6e:86:9d:6b:9d:9e:fc:94:e1:2e:71:50:1f: 30:0b:64:95:78:95:03:9b:12:9b:f6:cc:6e:ae:98: ea:a6:c5:b6:4c:e3:28:26:ab:89:07:11:1f:85:71: ca:23:c4:48:19:3b:d8:40:68:5b:80:5f:9a:a1:a8: ce:2e:0d:f1:e3:e3:53:08:a1:1a:10:2a:71:af:67: 84:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:D4:D5:43:BC:A4:30:27:5D:C0:60:A6:40:4E:77:0C:22:6B:5B:42 X509v3 Authority Key Identifier: keyid:BC:2D:A3:5C:B5:65:13:A9:4A:68:B5:91:DD:2C:76:C5:1D:81:11:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:b0:1e:11:ff:8d:0f:f6:86:28:0d:7a:97:78:17:43:84:47: 96:9d:c0:7e:12:7c:cc:38:8f:0c:e8:06:12:ee:28:42:2f:f6: a4:9a:9f:15:14:b7:f9:db:77:5f:cf:1a:54:08:82:32:65:e8: 70:30:24:4f:93:52:91:08:97:0f:bd:7e:ad:c3:5f:d3:af:f8: 7d:4b:b5:f0:1d:f0:52:a7:1f:77:58:0d:73:5a:8a:b1:be:95: fa:eb:17:13:a1:b5:4f:14:21:c8:93:b7:95:bb:90:32:a9:5f: 70:e0:dc:6d:94:dc:c2:0e:94:cd:3d:cf:6b:ab:71:72:74:3d: 40:92:64:03:94:7e:5a:fe:ab:6d:07:10:f2:24:5e:cc:8c:78: 42:a9:92:07:bc:a7:ae:7c:75:09:cd:97:9e:7e:59:4a:18:fd: 0b:71:30:46:11:16:6a:0a:f4:03:b2:0f:46:51:d4:2e:2a:20: 26:88:3f:7c:09:8a:eb:6f:03:05:ea:4d:18:c9:b7:b8:e0:d2: 7e:a1:29:b9:69:30:17:4a:d6:1f:68:cc:6e:11:c3:71:c8:b6: d9:df:8a:66:40:2a:da:e8:f8:16:ae:56:5d:75:33:24:52:0d: 44:05:28:81:07:0f:e4:f4:51:f4:9a:bf:85:be:cb:86:39:9b: b3:24:34:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdDMjExMTAvBgNVBAUTKEJDMkRBMzVDQjU2NTEzQTk0QTY4QjU5MUREMkM3NkM1 MUQ4MTExMzQwHhcNMjUxMDI3MDAxMDUzWhcNMjUxMTAzMDAxMDUzWjAYMRYwFAYD VQQDEw02OGZlYjg4ZS00NTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnbEvi0Bc1d9UhbjtpHRF1gzIrK67tZ95wMUxchAF5kXslXvK7zgYooL2kMn9 vKu3sAJLbO/A58H0FXFJB8RN209U4GHYL8N7QDYbe3MYP6QZuwoM3mmy1516/etM FlTm6lTjbqiisuRFHfHie7tP3sbnbSbSbgR8bE+Z7jK5gEFAqkYUATzxgXRrNdEd DrVtFJnrW9hctHDOc73x1ya+I4Sp4yXpo/Z4nWjuSbalYg1ic+AsQW6GnWudnvyU 4S5xUB8wC2SVeJUDmxKb9sxurpjqpsW2TOMoJquJBxEfhXHKI8RIGTvYQGhbgF+a oajOLg3x4+NTCKEaECpxr2eE2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzU1UO8 pDAnXcBgpkBOdwwia1tCMB8GA1UdIwQYMBaAFLwto1y1ZROpSmi1kd0sdsUdgRE0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0MyMS8zQkNEMDA3NEY1 QUUxMUVCOEUzRUZCMzNDNEY5QUUwMi92QzJqWExWbEU2bEthTFdSM1N4MnhSMkJF VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZDMmpYTFZsRTZsS2FMV1IzU3gyeFIyQkVUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0MyMS8zQkNEMDA3NEY1QUUxMUVCOEUzRUZCMzNDNEY5QUUwMi92QzJqWExWbEU2 bEthTFdSM1N4MnhSMkJFVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwsB4R/40P9oYoDXqXeBdDhEeWncB+EnzMOI8M6AYS7ihCL/akmp8V FLf523dfzxpUCIIyZehwMCRPk1KRCJcPvX6tw1/Tr/h9S7XwHfBSpx93WA1zWoqx vpX66xcTobVPFCHIk7eVu5AyqV9w4NxtlNzCDpTNPc9rq3FydD1AkmQDlH5a/qtt BxDyJF7MjHhCqZIHvKeufHUJzZeefllKGP0LcTBGERZqCvQDsg9GUdQuKiAmiD98 CYrrbwMF6k0Yybe44NJ+oSm5aTAXStYfaMxuEcNxyLbZ34pmQCra6PgWrlZddTMk Ug1EBSiBBw/k9FH0mr+FvsuGOZuzJDTC -----END CERTIFICATE-----Generated at Wed Oct 29 00:57:49 2025 by rpki-client