$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: cWQMw1H32W2gcGb0qs+5HDRgmSrBzC9TV34hfCR33l4= Subject key identifier: 07:D7:BF:DC:7D:38:9D:A1:9C:57:04:BC:0F:15:2E:67:A5:19:3F:39 Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 01E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 01D8 Signing time: Mon 03 Nov 2025 02:45:14 +0000 Manifest this update: Mon 03 Nov 2025 02:45:14 +0000 Manifest next update: Mon 10 Nov 2025 02:45:14 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: gQJ5aXzWHSfgpqQgCg7+0dLEXTLUWqr3NfIQqTGXcgg=) 2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: HkCOmQRPg+yDDZPtodRzZcHCpOQoTEGcVWS7eV1BiSA=) 3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: 4Vu2iECkKD+oqedLfhjWXd7CHOWEQhszvHID7EwF+IE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Nov 3 02:45:14 2025 GMT Not After : Nov 10 02:45:14 2025 GMT Subject: CN=6908173a-a498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0a:89:d2:3e:51:5f:ce:5b:76:b7:1c:f3:36: ee:b5:ed:1b:74:f2:06:6e:72:d2:63:6d:8c:6b:75: ee:ba:85:10:16:f7:05:57:6a:d7:f3:0b:f7:e8:80: 88:78:b1:a4:3f:7c:46:62:ec:d4:4d:fd:04:56:2a: c3:f7:d7:11:7d:d1:e3:dc:83:ad:10:2b:9e:0a:51: 77:1f:ee:50:2e:9d:b0:bc:9f:e9:76:a7:be:8d:0c: 58:03:5b:3b:91:55:ca:2c:d2:fb:6f:34:59:d6:28: 13:80:b4:92:aa:a6:3d:9f:ad:c0:25:c9:ce:bc:16: 48:33:c2:02:9d:a0:85:86:ea:a8:77:da:70:be:7d: f0:94:24:5f:aa:35:1b:e3:a6:37:48:e5:b9:57:07: 92:4e:43:53:76:72:7e:65:03:89:67:7e:a1:15:e5: 5e:f8:75:7c:70:69:77:b8:a8:a9:ba:6d:12:4d:71: 90:4b:1a:09:40:c7:41:ae:c5:c9:f5:3f:58:e3:5d: 4d:4e:38:e2:37:fa:78:f0:76:47:6c:19:72:55:3b: f1:29:7f:5c:22:c5:5f:0d:86:5c:c2:56:c0:e9:d2: 96:cc:ff:c9:a7:00:23:e7:e0:2f:b4:9f:ef:aa:99: c9:56:85:95:c5:30:68:52:f2:42:5e:70:22:96:1a: 71:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:D7:BF:DC:7D:38:9D:A1:9C:57:04:BC:0F:15:2E:67:A5:19:3F:39 X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:fb:b8:1e:af:10:e5:e4:82:98:88:17:21:f5:79:f6:a6:8d: f2:22:be:87:2c:02:e8:bf:59:4e:90:07:fc:15:15:63:2a:56: 94:22:0c:42:a0:92:e3:02:de:75:7c:fb:b0:52:3d:24:32:53: 2e:2a:5e:bc:33:b5:cc:db:7e:00:46:0d:54:3b:d9:f0:37:6a: 33:bd:b7:48:ed:6a:c7:85:4a:c1:4f:86:d0:18:81:b7:44:ae: 0e:40:1a:b0:58:21:ed:96:ff:28:8e:8c:79:e1:05:11:48:98: bb:d0:45:85:2b:08:91:4f:10:e2:9c:21:ee:b8:df:af:f6:5a: 61:bc:2f:d2:0c:c1:e3:a2:86:b2:f5:73:8c:46:e7:ac:65:bc: 81:ab:f9:0b:05:81:78:68:8e:66:ef:c7:ea:d6:0e:19:89:c2: fd:96:9d:56:4f:4f:de:c6:e5:d0:20:33:70:08:75:7a:2a:dd: 77:d4:92:65:40:ca:93:c5:94:60:4a:c5:21:9c:ff:5c:a2:c4: ab:0e:96:51:c8:1f:69:a4:5b:1e:d0:f1:3c:ec:2d:f3:59:bc: e1:e9:6f:48:ff:1f:01:c7:e6:07:01:1d:74:eb:b3:3e:4f:6c: 0d:2e:d3:35:75:0d:ae:21:6c:ee:1c:6b:1f:c0:e2:da:1c:e5: 99:4f:4f:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjUxMTAzMDI0NTE0WhcNMjUxMTEwMDI0NTE0WjAYMRYwFAYD VQQDEw02OTA4MTczYS1hNDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQqJ0j5RX85bdrcc8zbute0bdPIGbnLSY22Ma3XuuoUQFvcFV2rX8wv36ICI eLGkP3xGYuzUTf0EVirD99cRfdHj3IOtECueClF3H+5QLp2wvJ/pdqe+jQxYA1s7 kVXKLNL7bzRZ1igTgLSSqqY9n63AJcnOvBZIM8ICnaCFhuqod9pwvn3wlCRfqjUb 46Y3SOW5VweSTkNTdnJ+ZQOJZ36hFeVe+HV8cGl3uKipum0STXGQSxoJQMdBrsXJ 9T9Y411NTjjiN/p48HZHbBlyVTvxKX9cIsVfDYZcwlbA6dKWzP/JpwAj5+AvtJ/v qpnJVoWVxTBoUvJCXnAilhpx4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAfXv9x9 OJ2hnFcEvA8VLmelGT85MB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8+7gerxDl5IKYiBch9Xn2po3yIr6HLALov1lOkAf8FRVjKlaUIgxC oJLjAt51fPuwUj0kMlMuKl68M7XM234ARg1UO9nwN2ozvbdI7WrHhUrBT4bQGIG3 RK4OQBqwWCHtlv8ojox54QURSJi70EWFKwiRTxDinCHuuN+v9lphvC/SDMHjooay 9XOMRuesZbyBq/kLBYF4aI5m78fq1g4ZicL9lp1WT0/exuXQIDNwCHV6Kt131JJl QMqTxZRgSsUhnP9cosSrDpZRyB9ppFse0PE87C3zWbzh6W9I/x8Bx+YHAR1067M+ T2wNLtM1dQ2uIWzuHGsfwOLaHOWZT0+r -----END CERTIFICATE-----Generated at Mon Nov 3 18:16:31 2025 by rpki-client