$ rpki-client -vvf rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft File: 2MZzCV6Cqbfn381GWA94MajRiso.mft (raw, json) Hash identifier: jFCKqvGnYDF8ClQr05NK6KRV3cY2BlM7TR/f6jp62kU= Subject key identifier: A8:5E:F4:B4:EA:44:45:B4:9E:4E:0E:A0:66:4F:66:1D:6C:1B:EC:95 Authority key identifier: D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA Certificate issuer: /CN=A911862D/serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Certificate serial: 1789 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft Manifest number: 176E Signing time: Tue 04 Nov 2025 16:42:18 +0000 Manifest this update: Tue 04 Nov 2025 16:42:17 +0000 Manifest next update: Tue 11 Nov 2025 16:42:17 +0000 Files and hashes: 1: 2MZzCV6Cqbfn381GWA94MajRiso.crl (hash: a7lce1so64VZc1eeTHj7n2uz9Hjy7Ap5pt5nCoN2V44=) 2: D4A7497E6E6B11EF9FC61C6AC4F9AE02.roa (hash: JBsRHnJPdnzdINV0pvwEs0IpHO7Li2A9KaO/T3DyLM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:42:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6025 (0x1789) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911862D, serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Validity Not Before: Nov 4 16:42:17 2025 GMT Not After : Nov 11 16:42:17 2025 GMT Subject: CN=690a2cea-0dea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:17:7a:b7:07:a8:fd:0f:2c:ab:16:09:3d:2e: e3:09:8b:dd:b1:09:ad:5a:f4:ed:be:f4:e2:c7:ba: 26:ba:a2:98:6a:05:33:d5:f4:2a:8d:f0:87:61:41: 08:66:8d:30:3b:b3:e4:49:de:5a:0a:60:6c:5d:1c: b7:3f:1e:2b:24:c6:01:48:d6:73:ee:86:d2:18:c9: 10:17:ca:6d:a4:9d:ca:3c:29:ec:20:c6:08:68:6b: b6:ab:36:a2:cc:8c:ed:47:cb:3b:a4:d4:7b:06:18: e9:46:e9:76:e7:35:72:11:74:b4:ef:13:96:98:30: cc:f5:4e:e2:23:17:12:3e:60:4a:5d:c8:e2:5e:8d: 52:23:6d:bf:b0:24:b4:60:fe:1b:2b:af:c9:3e:0d: c1:72:7e:be:56:1a:70:af:12:fb:71:c2:8e:21:04: e6:87:bc:bc:d7:f5:30:ac:bb:14:7c:5c:e0:2b:b6: 50:dc:69:4f:7e:e9:59:a5:bb:91:ca:43:94:69:e1: d6:b1:c6:58:f8:17:17:2b:0e:eb:1e:31:85:87:73: c8:07:02:ca:8c:93:be:73:0f:6b:40:8c:fb:d6:dc: cf:63:c7:49:91:a1:fa:f1:03:d0:1c:f6:73:50:2b: 04:2f:ae:3e:77:5f:3d:25:c0:5f:8f:19:a8:44:69: ee:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:5E:F4:B4:EA:44:45:B4:9E:4E:0E:A0:66:4F:66:1D:6C:1B:EC:95 X509v3 Authority Key Identifier: keyid:D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:48:f8:33:df:1f:24:a4:d5:a8:0a:0f:54:c1:96:5e:6a:4f: 89:8b:1a:17:42:0c:b7:6a:6f:8a:75:49:76:bf:db:1b:d7:aa: c0:6d:f5:4a:a8:16:8f:f7:b6:a4:0f:81:78:40:17:d1:9f:81: 5f:af:8b:14:83:47:81:55:f0:17:81:2e:d6:9b:f8:36:1c:51: 69:7d:4b:fa:b8:8d:1a:d5:25:82:ec:bb:85:3a:f5:aa:1e:a6: 63:c2:1c:75:96:da:4e:a7:53:b7:8b:f1:78:7b:2c:02:9f:51: 66:dc:c5:3b:f8:ac:09:1b:0a:fa:73:57:8e:e7:03:6c:73:5d: 84:24:ab:22:42:27:4a:3e:b3:c7:32:2b:1b:69:7f:5c:39:5f: c2:11:ae:77:19:a4:ff:df:b8:ce:d1:04:e2:ab:dd:ca:54:2a: 46:26:cb:62:58:d4:e8:f9:82:ed:db:aa:a1:2d:f9:4a:76:b4: bb:7f:56:cb:8d:70:72:60:5b:f9:08:72:ef:4e:15:9a:99:85: 55:30:c7:3c:64:fc:5a:d7:0e:9c:7e:bf:10:63:0b:cc:5d:a3: 95:69:d4:f2:e6:38:15:72:0d:53:f2:5a:ac:dd:46:32:c1:9e: ec:ec:e1:0c:b7:50:13:2d:21:91:73:66:fb:23:20:93:1e:45: 84:d8:1f:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2MkQxMTAvBgNVBAUTKEQ4QzY3MzA5NUU4MkE5QjdFN0RGQ0Q0NjU4MEY3ODMx QThEMThBQ0EwHhcNMjUxMTA0MTY0MjE3WhcNMjUxMTExMTY0MjE3WjAYMRYwFAYD VQQDEw02OTBhMmNlYS0wZGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRd6tweo/Q8sqxYJPS7jCYvdsQmtWvTtvvTix7omuqKYagUz1fQqjfCHYUEI Zo0wO7PkSd5aCmBsXRy3Px4rJMYBSNZz7obSGMkQF8ptpJ3KPCnsIMYIaGu2qzai zIztR8s7pNR7BhjpRul25zVyEXS07xOWmDDM9U7iIxcSPmBKXcjiXo1SI22/sCS0 YP4bK6/JPg3Bcn6+VhpwrxL7ccKOIQTmh7y81/UwrLsUfFzgK7ZQ3GlPfulZpbuR ykOUaeHWscZY+BcXKw7rHjGFh3PIBwLKjJO+cw9rQIz71tzPY8dJkaH68QPQHPZz UCsEL64+d189JcBfjxmoRGnuVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKhe9LTq REW0nk4OoGZPZh1sG+yVMB8GA1UdIwQYMBaAFNjGcwlegqm359/NRlgPeDGo0YrK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODYyRC8zMjg3OUQzQUU4 QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3FiZm4zODFHV0E5NE1halJp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJNWnpDVjZDcWJmbjM4MUdXQTk0TWFqUmlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODYyRC8zMjg3OUQzQUU4QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3Fi Zm4zODFHV0E5NE1halJpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaSPgz3x8kpNWoCg9UwZZeak+JixoXQgy3am+KdUl2v9sb16rAbfVK qBaP97akD4F4QBfRn4Ffr4sUg0eBVfAXgS7Wm/g2HFFpfUv6uI0a1SWC7LuFOvWq HqZjwhx1ltpOp1O3i/F4eywCn1Fm3MU7+KwJGwr6c1eO5wNsc12EJKsiQidKPrPH MisbaX9cOV/CEa53GaT/37jO0QTiq93KVCpGJstiWNTo+YLt26qhLflKdrS7f1bL jXByYFv5CHLvThWamYVVMMc8ZPxa1w6cfr8QYwvMXaOVadTy5jgVcg1T8lqs3UYy wZ7s7OEMt1ATLSGRc2b7IyCTHkWE2B9r -----END CERTIFICATE-----Generated at Tue Nov 4 21:37:15 2025 by rpki-client