$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.mft File: N2A9suBywKj9cROOJUCZ9MrYwW8.mft (raw, json) Hash identifier: +NghA1lU5XVtoeNIdZAq2p2cwk6hsdyTLVpghs/Yn8o= Subject key identifier: A6:80:15:F9:8B:F1:C8:D4:E1:C1:2A:A8:01:BE:BB:6E:ED:E8:8A:4B Authority key identifier: 37:60:3D:B2:E0:72:C0:A8:FD:71:13:8E:25:40:99:F4:CA:D8:C1:6F Certificate issuer: /CN=A91FD47F/serialNumber=37603DB2E072C0A8FD71138E254099F4CAD8C16F Certificate serial: 0284 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2A9suBywKj9cROOJUCZ9MrYwW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.mft Manifest number: 026F Signing time: Sat 25 Oct 2025 04:55:58 +0000 Manifest this update: Sat 25 Oct 2025 04:55:57 +0000 Manifest next update: Sat 01 Nov 2025 04:55:57 +0000 Files and hashes: 1: N2A9suBywKj9cROOJUCZ9MrYwW8.crl (hash: luscnktLSPZ1A2lsL7ah5oV3OURjJoEwlvjT0N4rBKU=) 2: AB68CE76346511EDAC41E081C4F9AE02.roa (hash: ENwpRdEuucpLR199wMX1ovh0yufktlvsonosnrFa6n4=) 3: 14B312EC3AE711EDBF700472C4F9AE02.roa (hash: hpkK6ksOTaD7mDbT56x2zJ1eza3vKxeFROPXP1u/0+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.crl rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2A9suBywKj9cROOJUCZ9MrYwW8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 04:55:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 644 (0x284) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD47F, serialNumber=37603DB2E072C0A8FD71138E254099F4CAD8C16F Validity Not Before: Oct 25 04:55:57 2025 GMT Not After : Nov 1 04:55:57 2025 GMT Subject: CN=68fc585e-7d3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:93:30:05:75:9f:89:1b:75:c9:af:bf:9d:02: dc:96:5d:0e:e1:b3:db:94:4e:5d:74:99:f3:cd:15: ea:c7:90:67:62:a4:9c:89:57:1c:eb:73:72:3b:9b: 09:45:b7:f7:a5:79:f1:65:35:a0:5e:4a:ee:b5:a6: b8:82:f9:3c:cf:11:fb:1e:4f:ed:5a:ab:dc:31:f3: 9f:6d:c2:94:03:3f:d9:df:50:20:78:86:95:82:48: b4:a1:dc:d8:0f:99:2e:68:4c:6f:4e:8d:ba:0d:8d: 5a:06:02:52:4f:89:d4:b8:33:f2:93:b2:a8:78:3a: 14:c1:d6:4e:a1:ce:64:b5:e5:a4:89:ec:36:57:97: fd:29:48:0f:8e:a3:5d:6c:41:09:02:26:91:9d:3a: 7f:55:4b:59:da:96:b2:91:14:ab:8f:62:8d:56:b4: e8:e5:d6:b3:29:f5:e1:44:6b:90:19:c8:fb:ef:81: 77:72:22:82:0e:e8:2d:e8:ea:07:65:56:cf:e3:e1: ce:24:7c:51:77:20:9a:66:27:ae:30:99:24:ea:77: a0:26:17:cf:cb:e4:8d:06:74:65:8c:4b:f3:6f:90: 4d:cd:fd:ce:0f:fd:c1:3e:d7:a7:95:2b:26:c6:06: ba:00:b6:76:11:35:ac:e0:d1:2c:79:10:fe:5b:4c: 01:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:80:15:F9:8B:F1:C8:D4:E1:C1:2A:A8:01:BE:BB:6E:ED:E8:8A:4B X509v3 Authority Key Identifier: keyid:37:60:3D:B2:E0:72:C0:A8:FD:71:13:8E:25:40:99:F4:CA:D8:C1:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2A9suBywKj9cROOJUCZ9MrYwW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD47F/D5CE626A346111ED9DEE8E7AC4F9AE02/N2A9suBywKj9cROOJUCZ9MrYwW8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:ec:3f:5a:f8:89:7b:a1:6a:fe:4b:66:b1:e6:6f:4d:68:45: 4b:96:d9:79:7d:a7:6c:e5:c4:5f:f3:a2:a2:05:9c:f4:0c:14: cf:84:0f:3a:bc:34:ea:3c:0c:3f:b3:bf:43:54:5f:aa:7d:94: 80:4e:19:15:53:f4:03:45:12:22:84:b5:6b:23:9b:c7:80:79: a7:6a:96:0f:6a:77:8c:52:e7:7b:a2:5d:80:88:d7:62:d2:80: 98:ab:ef:79:b4:ed:96:40:7e:a9:91:62:5c:f0:0e:89:4f:41: c7:7c:4c:86:a3:6e:3a:3d:ba:b6:06:6b:c0:e1:2e:b7:d0:f5: 3c:aa:0c:37:72:b2:dc:9e:66:a7:36:92:a6:95:60:30:e4:09: d2:aa:f0:9d:85:d4:e5:b6:b3:aa:ec:9a:10:34:75:84:48:cd: 14:a2:db:56:c9:d3:04:6b:fc:1e:86:c9:c0:cf:fd:9e:9e:88: f5:59:8a:2c:c4:e0:44:1e:3a:d6:e0:e8:1c:20:96:54:3d:9f: 70:b5:41:85:e3:9f:35:ff:37:2e:c1:67:0b:e1:9c:b6:16:34: 71:92:23:12:2a:37:6d:54:ff:66:14:ea:0b:ba:44:b5:45:63: fa:05:60:f5:75:86:4f:d8:55:26:66:fd:52:25:aa:ae:64:45: e2:93:ba:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ0N0YxMTAvBgNVBAUTKDM3NjAzREIyRTA3MkMwQThGRDcxMTM4RTI1NDA5OUY0 Q0FEOEMxNkYwHhcNMjUxMDI1MDQ1NTU3WhcNMjUxMTAxMDQ1NTU3WjAYMRYwFAYD VQQDEw02OGZjNTg1ZS03ZDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pMwBXWfiRt1ya+/nQLcll0O4bPblE5ddJnzzRXqx5BnYqSciVcc63NyO5sJ Rbf3pXnxZTWgXkrutaa4gvk8zxH7Hk/tWqvcMfOfbcKUAz/Z31AgeIaVgki0odzY D5kuaExvTo26DY1aBgJST4nUuDPyk7KoeDoUwdZOoc5kteWkiew2V5f9KUgPjqNd bEEJAiaRnTp/VUtZ2paykRSrj2KNVrTo5dazKfXhRGuQGcj774F3ciKCDugt6OoH ZVbP4+HOJHxRdyCaZieuMJkk6negJhfPy+SNBnRljEvzb5BNzf3OD/3BPtenlSsm xga6ALZ2ETWs4NEseRD+W0wB5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKaAFfmL 8cjU4cEqqAG+u27t6IpLMB8GA1UdIwQYMBaAFDdgPbLgcsCo/XETjiVAmfTK2MFv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDQ3Ri9ENUNFNjI2QTM0 NjExMUVEOURFRThFN0FDNEY5QUUwMi9OMkE5c3VCeXdLajljUk9PSlVDWjlNcll3 VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04yQTlzdUJ5d0tqOWNST09KVUNaOU1yWXdXOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDQ3Ri9ENUNFNjI2QTM0NjExMUVEOURFRThFN0FDNEY5QUUwMi9OMkE5c3VCeXdL ajljUk9PSlVDWjlNcll3VzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS7D9a+Il7oWr+S2ax5m9NaEVLltl5fads5cRf86KiBZz0DBTPhA86 vDTqPAw/s79DVF+qfZSAThkVU/QDRRIihLVrI5vHgHmnapYPaneMUud7ol2AiNdi 0oCYq+95tO2WQH6pkWJc8A6JT0HHfEyGo246Pbq2BmvA4S630PU8qgw3crLcnman NpKmlWAw5AnSqvCdhdTltrOq7JoQNHWESM0UottWydMEa/wehsnAz/2enoj1WYos xOBEHjrW4OgcIJZUPZ9wtUGF4581/zcuwWcL4Zy2FjRxkiMSKjdtVP9mFOoLukS1 RWP6BWD1dYZP2FUmZv1SJaquZEXik7os -----END CERTIFICATE-----Generated at Sat Oct 25 17:18:57 2025 by rpki-client