$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft File: 2WQZRdW0z31j_JExr89yeuNtkCA.mft (raw, json) Hash identifier: KdJMv65H5MpRKzcBDqfU4GbkzpYs2RT6vJ0ZlndJSF4= Subject key identifier: 4F:C6:DB:5B:07:65:5D:55:A5:DB:A3:31:2A:63:CB:70:A0:29:C0:4D Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Certificate serial: 022B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft Manifest number: 0221 Signing time: Mon 03 Nov 2025 02:05:25 +0000 Manifest this update: Mon 03 Nov 2025 02:05:25 +0000 Manifest next update: Mon 10 Nov 2025 02:05:25 +0000 Files and hashes: 1: 2WQZRdW0z31j_JExr89yeuNtkCA.crl (hash: VIJPics3VtHlvB3hqiYP6PSpymxiBK24BmNCY0wZzAM=) 2: 15714ED2776A11ED98AF7341C4F9AE02.roa (hash: WBxu67wj7qK+1XHnF6Gm/tpT83HjDxcRJ+5R7dbCf7I=) 3: 77490C9A792F11EEBF849942C4F9AE02.roa (hash: +qSb4R4TGVMwO8UibifLnyUfy5g07BZr/1fOfOFiaKg=) 4: 590A6A9A792E11EEA5AAB840C4F9AE02.roa (hash: TjgZvd8NTyfnTIYx+SMzczM6IMYvFc5scP1aWMMbHyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:05:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F316, serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Validity Not Before: Nov 3 02:05:25 2025 GMT Not After : Nov 10 02:05:25 2025 GMT Subject: CN=69080de5-823e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ca:4e:a6:e4:87:e2:07:b0:e0:df:b6:b5:01: 5e:bb:dc:33:88:60:82:75:4a:3e:19:da:54:8a:76: 8b:2e:7d:4a:62:01:d1:f3:e4:2c:93:11:95:98:ac: ea:b5:5a:c5:a7:11:25:43:b4:ad:4f:57:8c:da:a4: 0c:7a:8d:03:65:da:85:61:94:10:fd:f0:7f:a8:fe: 90:13:0f:a3:a1:8f:15:e7:7e:82:e2:a6:37:bc:c3: 77:c2:b3:90:c5:1d:85:ab:eb:73:8a:80:ac:61:eb: ed:dc:c5:2d:2a:de:63:9c:af:bc:4a:e3:6d:67:1f: 39:5c:94:69:2d:26:15:e8:7d:a0:bf:bf:80:14:64: dd:a0:c5:7e:e0:00:6c:a4:e6:f0:4f:1a:e6:5d:ff: cb:6a:4e:8c:c2:66:7e:c1:17:69:d4:94:ef:e7:d6: a2:8b:bf:4d:a0:91:f4:b6:45:36:53:a0:50:0c:bb: 0c:b2:af:6c:a6:56:74:47:c5:1c:31:e0:49:41:c1: 89:42:a3:18:f8:e3:77:89:ad:1c:02:66:29:1c:5e: ff:43:03:2d:00:0f:57:85:f6:1b:32:d1:8a:07:50: 43:0f:ec:e3:ee:f6:7b:ea:20:36:8b:1e:10:28:01: 6e:ab:f5:fc:2c:88:82:81:89:cb:a5:96:79:96:f4: 09:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:C6:DB:5B:07:65:5D:55:A5:DB:A3:31:2A:63:CB:70:A0:29:C0:4D X509v3 Authority Key Identifier: keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:31:7a:45:a6:81:e0:90:ec:c1:30:45:b8:ce:b5:48:83:03: 04:aa:6f:7d:dc:c4:20:f3:13:29:5d:b9:2e:23:38:c5:a8:7d: c5:bd:bb:a8:ff:a9:b4:61:1d:45:0d:2b:00:2b:00:91:7d:a2: 8a:c3:5f:b0:3b:55:de:d9:75:24:0d:1b:3a:ef:d5:ab:75:f2: e3:28:45:fa:14:48:3c:e1:a4:44:34:9e:36:da:59:7f:26:9d: 32:f5:5f:9d:93:7e:e8:45:bc:32:6d:9e:81:96:95:ad:50:ce: 5c:33:5e:33:25:13:d1:f8:09:24:5a:0a:14:49:9b:bc:c3:ee: ca:fb:cd:cc:06:d6:bf:21:e6:ec:76:39:e9:96:c8:7c:07:d3: d9:1c:d7:6a:cf:f0:35:2b:c1:52:40:62:e2:67:16:40:6d:89: 26:11:d7:47:30:77:58:f1:51:d2:d4:44:18:42:f2:f7:8a:67: de:6c:7b:2b:b1:cb:0e:59:d9:0e:dd:0b:9a:38:f6:2f:60:3f: b8:98:ff:4e:c1:45:56:8a:0d:14:93:6e:23:4d:e9:d9:bf:59: 17:50:0b:d4:9f:15:90:fb:6f:f9:e4:c3:2d:cb:8c:13:7e:16: 57:e2:cf:dd:69:78:0e:45:0d:2c:3a:84:54:f3:ca:b4:3b:9f: 9e:04:cb:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB RTM2RDkwMjAwHhcNMjUxMTAzMDIwNTI1WhcNMjUxMTEwMDIwNTI1WjAYMRYwFAYD VQQDEw02OTA4MGRlNS04MjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArspOpuSH4gew4N+2tQFeu9wziGCCdUo+GdpUinaLLn1KYgHR8+QskxGVmKzq tVrFpxElQ7StT1eM2qQMeo0DZdqFYZQQ/fB/qP6QEw+joY8V536C4qY3vMN3wrOQ xR2Fq+tzioCsYevt3MUtKt5jnK+8SuNtZx85XJRpLSYV6H2gv7+AFGTdoMV+4ABs pObwTxrmXf/Lak6MwmZ+wRdp1JTv59aii79NoJH0tkU2U6BQDLsMsq9splZ0R8Uc MeBJQcGJQqMY+ON3ia0cAmYpHF7/QwMtAA9XhfYbMtGKB1BDD+zj7vZ76iA2ix4Q KAFuq/X8LIiCgYnLpZZ5lvQJGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/G21sH ZV1VpdujMSpjy3CgKcBNMB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3 NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjMxNi9BMURGMTUyMDc3NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHoz MWpfSkV4cjg5eWV1TnRrQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADMXpFpoHgkOzBMEW4zrVIgwMEqm993MQg8xMpXbkuIzjFqH3Fvbuo /6m0YR1FDSsAKwCRfaKKw1+wO1Xe2XUkDRs679WrdfLjKEX6FEg84aRENJ422ll/ Jp0y9V+dk37oRbwybZ6BlpWtUM5cM14zJRPR+AkkWgoUSZu8w+7K+83MBta/Iebs djnplsh8B9PZHNdqz/A1K8FSQGLiZxZAbYkmEddHMHdY8VHS1EQYQvL3imfebHsr scsOWdkO3QuaOPYvYD+4mP9OwUVWig0Uk24jTenZv1kXUAvUnxWQ+2/55MMty4wT fhZX4s/daXgORQ0sOoRU88q0O5+eBMvW -----END CERTIFICATE-----Generated at Tue Nov 4 21:34:55 2025 by rpki-client