$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft File: 2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft (raw, json) Hash identifier: ojyyLZ9RZYlJirOaFhWF8FRYjk5lxQmGVLEb5RlXYRM= Subject key identifier: 47:14:1E:27:38:4C:27:AF:A7:7B:6D:CA:D2:11:42:E1:F3:A0:3F:83 Authority key identifier: D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84 Certificate issuer: /CN=A91F89A2/serialNumber=D8FC795B63CC42573FD5DB44F0A8386C8D643B84 Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft Manifest number: 0149 Signing time: Wed 05 Nov 2025 04:28:34 +0000 Manifest this update: Wed 05 Nov 2025 04:28:33 +0000 Manifest next update: Wed 12 Nov 2025 04:28:33 +0000 Files and hashes: 1: 2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl (hash: BrfQSZ8XPTOfCLjkGubOUPCGxaaXuz9NuUgeq6yGSpI=) 2: 6C363C0CF85911EE9EAE731BC4F9AE02.roa (hash: G8LAWFDM7ySLTe/ZJTkJCLPXRoKFmaYaIusDW3bZoi0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:28:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89A2, serialNumber=D8FC795B63CC42573FD5DB44F0A8386C8D643B84 Validity Not Before: Nov 5 04:28:33 2025 GMT Not After : Nov 12 04:28:33 2025 GMT Subject: CN=690ad271-ff09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b2:f0:23:21:82:af:14:a8:32:6d:e9:50:41: ea:c0:28:77:0f:e7:05:64:9b:dd:4a:f2:a7:63:eb: 44:af:ec:58:38:fa:60:e8:0c:76:f3:bd:52:dc:a1: b7:2d:cf:cb:4b:a0:ce:b4:d0:69:c6:35:1c:fc:d8: b3:d0:af:d3:9a:b7:6d:fa:c7:84:ca:f7:3d:e0:f9: dc:48:54:8b:ae:ca:24:ec:f9:f1:44:d2:b0:bf:46: 09:24:8a:14:ce:4b:44:b7:53:ff:d2:10:91:44:25: 5a:c4:1b:13:ee:ba:16:6d:5c:7e:3b:1b:83:f1:91: 30:db:51:be:60:48:62:d9:b6:dd:ad:d7:57:9d:b3: 4e:db:18:16:9b:5f:58:5b:74:cc:ab:f1:da:e5:d4: e9:25:c8:3e:e9:6e:50:32:c2:0f:2e:7a:05:23:84: e7:ee:ae:f5:4a:c6:7d:0d:c2:48:76:a1:80:35:1f: e5:ef:2f:24:b5:35:c1:d5:26:ed:bc:28:a1:8e:c2: ee:d4:df:ca:da:4a:99:5d:1b:c0:5e:99:82:89:33: 32:3d:a7:2d:6d:f1:68:4b:bb:07:cb:97:ca:af:da: 88:22:66:14:13:08:32:74:c2:c4:1a:45:10:6a:e1: d6:4c:48:3a:1c:6a:0d:b3:b2:fc:f7:a4:f2:ce:45: 08:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:14:1E:27:38:4C:27:AF:A7:7B:6D:CA:D2:11:42:E1:F3:A0:3F:83 X509v3 Authority Key Identifier: keyid:D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:8b:be:94:cb:8a:df:6a:eb:78:ec:30:ec:b9:4f:24:0d:23: 10:e3:89:43:b7:4f:97:12:31:71:a6:cd:3a:b2:0a:4e:80:01: 7a:f3:04:52:f3:7e:86:4b:5a:39:d0:a2:d5:bf:f6:c6:39:55: 95:ba:a4:8d:65:c9:ce:08:ac:fd:ad:25:8d:01:bc:ee:77:81: 7c:2a:82:87:00:26:ff:eb:2d:26:57:d8:c1:ab:04:25:0e:65: 47:e6:18:a7:79:da:e9:43:25:bd:64:8a:9d:15:c4:d6:5e:c6: 20:39:19:85:52:40:80:73:fb:67:18:e6:2b:7f:cc:84:99:ba: 05:14:dd:be:56:97:f2:38:e1:9f:f1:d9:43:d1:cb:17:e7:53: ec:19:06:5c:16:af:ba:4c:3c:f8:45:2d:a3:c7:fb:9a:12:46: 22:f6:06:91:a0:12:16:51:49:61:ff:89:fc:0d:ad:2b:50:28: ec:d5:ca:12:bf:16:ec:a1:85:d3:aa:52:1e:d2:8f:8d:60:67: 74:3e:4f:8c:7d:ff:f3:7e:e9:5c:d8:3a:50:d0:eb:14:a4:d6: 93:7b:d3:a4:00:2d:89:e9:28:9b:4a:fb:ed:8f:9f:58:6c:ed: ee:39:e2:35:0e:8e:4f:48:1a:99:ba:37:47:86:05:64:39:72: 63:a5:62:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QTIxMTAvBgNVBAUTKEQ4RkM3OTVCNjNDQzQyNTczRkQ1REI0NEYwQTgzODZD OEQ2NDNCODQwHhcNMjUxMTA1MDQyODMzWhcNMjUxMTEyMDQyODMzWjAYMRYwFAYD VQQDEw02OTBhZDI3MS1mZjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07LwIyGCrxSoMm3pUEHqwCh3D+cFZJvdSvKnY+tEr+xYOPpg6Ax2871S3KG3 Lc/LS6DOtNBpxjUc/Niz0K/Tmrdt+seEyvc94PncSFSLrsok7PnxRNKwv0YJJIoU zktEt1P/0hCRRCVaxBsT7roWbVx+OxuD8ZEw21G+YEhi2bbdrddXnbNO2xgWm19Y W3TMq/Ha5dTpJcg+6W5QMsIPLnoFI4Tn7q71SsZ9DcJIdqGANR/l7y8ktTXB1Sbt vCihjsLu1N/K2kqZXRvAXpmCiTMyPactbfFoS7sHy5fKr9qIImYUEwgydMLEGkUQ auHWTEg6HGoNs7L896TyzkUIgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEcUHic4 TCevp3ttytIRQuHzoD+DMB8GA1UdIwQYMBaAFNj8eVtjzEJXP9XbRPCoOGyNZDuE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlBMi9CMzk2RjNDMEM1 NDExMUVFQUJDMkMzODVDNEY5QUUwMi8yUHg1VzJQTVFsY18xZHRFOEtnNGJJMWtP NFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJQeDVXMlBNUWxjXzFkdEU4S2c0Ykkxa080US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlBMi9CMzk2RjNDMEM1NDExMUVFQUJDMkMzODVDNEY5QUUwMi8yUHg1VzJQTVFs Y18xZHRFOEtnNGJJMWtPNFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEi76Uy4rfaut47DDsuU8kDSMQ44lDt0+XEjFxps06sgpOgAF68wRS 836GS1o50KLVv/bGOVWVuqSNZcnOCKz9rSWNAbzud4F8KoKHACb/6y0mV9jBqwQl DmVH5hinedrpQyW9ZIqdFcTWXsYgORmFUkCAc/tnGOYrf8yEmboFFN2+VpfyOOGf 8dlD0csX51PsGQZcFq+6TDz4RS2jx/uaEkYi9gaRoBIWUUlh/4n8Da0rUCjs1coS vxbsoYXTqlIe0o+NYGd0Pk+Mff/zfulc2DpQ0OsUpNaTe9OkAC2J6SibSvvtj59Y bO3uOeI1Do5PSBqZujdHhgVkOXJjpWI9 -----END CERTIFICATE-----Generated at Thu Nov 6 04:24:29 2025 by rpki-client