$ rpki-client -vvf rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.mft File: 2cYV0QtB5uVphlzKp_4oDRKOMRw.mft (raw, json) Hash identifier: bCTgYDZAnh6oCaiP7e7HThgjCmUBrla8m8NcyyI0fgg= Subject key identifier: AB:9D:0B:5F:8B:F2:A1:E9:D8:E7:27:48:27:2C:42:ED:35:B6:95:87 Authority key identifier: D9:C6:15:D1:0B:41:E6:E5:69:86:5C:CA:A7:FE:28:0D:12:8E:31:1C Certificate issuer: /CN=A91293E9/serialNumber=D9C615D10B41E6E569865CCAA7FE280D128E311C Certificate serial: 06AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cYV0QtB5uVphlzKp_4oDRKOMRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.mft Manifest number: 06A2 Signing time: Tue 04 Nov 2025 22:25:21 +0000 Manifest this update: Tue 04 Nov 2025 22:25:20 +0000 Manifest next update: Tue 11 Nov 2025 22:25:20 +0000 Files and hashes: 1: 2cYV0QtB5uVphlzKp_4oDRKOMRw.crl (hash: 17Zb1dR0apGlJwXchcJ0K7rYcTO5Nbu3//QCQG+l2yU=) 2: 1AC1982A8C6A11EB91832D52C4F9AE02.roa (hash: fSfAPi/bUi9k15IOKds7b6yXEktxoZjFwfG44RAp5IM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.crl rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cYV0QtB5uVphlzKp_4oDRKOMRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:25:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1709 (0x6ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91293E9, serialNumber=D9C615D10B41E6E569865CCAA7FE280D128E311C Validity Not Before: Nov 4 22:25:20 2025 GMT Not After : Nov 11 22:25:20 2025 GMT Subject: CN=690a7d51-fa1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:df:98:60:34:b6:2c:80:05:d8:c6:dd:9c:39: ba:04:59:34:d6:0b:38:e8:7f:14:f7:a2:42:0d:c9: a3:aa:27:3c:ea:6b:5f:95:bd:3d:36:5e:13:79:6d: 35:46:ee:e6:ce:43:5a:40:bf:28:5e:f3:b9:9d:e6: 47:71:e1:24:23:0e:91:e1:57:48:28:de:38:31:a9: 29:bb:1c:6a:c6:a9:8c:6a:e8:d2:67:a9:04:78:ea: ad:e0:df:49:84:75:9a:5e:e2:67:f9:48:38:29:c4: 0e:7f:ec:55:23:69:ef:02:20:4b:aa:0a:8d:ba:f3: 8e:dd:86:9b:c2:0d:b5:35:3d:2c:d7:9a:d0:3e:51: 43:09:82:00:d0:1f:86:be:df:f3:dd:c0:a0:b3:95: 7d:12:10:82:ba:8a:25:11:39:c2:a2:58:c5:33:2c: 96:10:24:36:51:36:22:8d:75:9b:02:33:23:ec:b2: d5:be:3a:4b:9a:65:57:0a:e0:f7:46:01:42:b9:33: 2e:96:5b:cd:e6:09:a9:9e:33:38:86:56:38:fd:f2: 14:84:9b:a6:90:cb:a8:4b:10:99:32:f9:14:08:5d: 3b:17:dc:87:03:41:f8:32:f5:97:de:d3:45:43:f5: 28:b5:89:e2:ba:7b:b8:05:d9:2b:68:1f:31:de:d6: 61:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:9D:0B:5F:8B:F2:A1:E9:D8:E7:27:48:27:2C:42:ED:35:B6:95:87 X509v3 Authority Key Identifier: keyid:D9:C6:15:D1:0B:41:E6:E5:69:86:5C:CA:A7:FE:28:0D:12:8E:31:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cYV0QtB5uVphlzKp_4oDRKOMRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91293E9/83A174FC8C6811EB981B2542C4F9AE02/2cYV0QtB5uVphlzKp_4oDRKOMRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:a7:ae:45:04:61:b1:54:d6:61:ac:a4:a4:a8:88:f5:ff:8d: 72:70:ca:9b:f1:f8:70:f3:a0:58:e6:20:92:3f:19:36:e1:24: 73:98:bd:1e:03:42:ad:9c:89:4d:51:32:8f:2d:07:97:d8:1f: 52:60:d0:7c:1e:f6:8c:86:9c:6f:2b:ba:2d:fa:92:f8:04:32: 7b:4f:75:26:53:f8:2c:97:0d:21:80:64:31:55:db:a6:60:2f: 0f:07:6f:e9:7b:bd:f9:d1:8c:53:b6:7a:bc:1a:54:1e:43:d5: ea:b9:60:e4:f3:2e:95:3b:d2:05:20:0d:11:44:d1:a7:b2:0c: 31:90:de:ff:15:58:07:b3:61:57:d3:fe:ef:53:8b:ff:d8:5e: 92:ab:4e:6a:7a:a4:4b:07:bd:ab:51:c1:10:31:9d:71:a3:47: f8:c8:28:22:b4:2b:b6:f6:e6:67:55:ed:02:2c:2f:46:09:99: 84:97:ae:3b:97:7e:c4:61:6f:2f:a1:ea:08:5e:c2:24:ee:c8: 97:83:d1:31:91:99:10:ea:0b:87:11:a5:55:36:3f:10:71:f7: 7b:ea:fc:e9:8f:f1:d0:e0:f8:2c:f7:b9:c6:18:f7:ad:35:8d: 56:74:02:f8:9e:37:2d:ed:0c:36:ac:e3:29:cb:3f:04:6c:d3: 2b:2f:04:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjkzRTkxMTAvBgNVBAUTKEQ5QzYxNUQxMEI0MUU2RTU2OTg2NUNDQUE3RkUyODBE MTI4RTMxMUMwHhcNMjUxMTA0MjIyNTIwWhcNMjUxMTExMjIyNTIwWjAYMRYwFAYD VQQDEw02OTBhN2Q1MS1mYTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvt+YYDS2LIAF2MbdnDm6BFk01gs46H8U96JCDcmjqic86mtflb09Nl4TeW01 Ru7mzkNaQL8oXvO5neZHceEkIw6R4VdIKN44MakpuxxqxqmMaujSZ6kEeOqt4N9J hHWaXuJn+Ug4KcQOf+xVI2nvAiBLqgqNuvOO3Yabwg21NT0s15rQPlFDCYIA0B+G vt/z3cCgs5V9EhCCuoolETnColjFMyyWECQ2UTYijXWbAjMj7LLVvjpLmmVXCuD3 RgFCuTMullvN5gmpnjM4hlY4/fIUhJumkMuoSxCZMvkUCF07F9yHA0H4MvWX3tNF Q/UotYniunu4BdkraB8x3tZhPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKudC1+L 8qHp2OcnSCcsQu01tpWHMB8GA1UdIwQYMBaAFNnGFdELQeblaYZcyqf+KA0SjjEc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTNFOS84M0ExNzRGQzhD NjgxMUVCOTgxQjI1NDJDNEY5QUUwMi8yY1lWMFF0QjV1VnBobHpLcF80b0RSS09N UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJjWVYwUXRCNXVWcGhsektwXzRvRFJLT01Sdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTNFOS84M0ExNzRGQzhDNjgxMUVCOTgxQjI1NDJDNEY5QUUwMi8yY1lWMFF0QjV1 VnBobHpLcF80b0RSS09NUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2p65FBGGxVNZhrKSkqIj1/41ycMqb8fhw86BY5iCSPxk24SRzmL0e A0KtnIlNUTKPLQeX2B9SYNB8HvaMhpxvK7ot+pL4BDJ7T3UmU/gslw0hgGQxVdum YC8PB2/pe7350YxTtnq8GlQeQ9XquWDk8y6VO9IFIA0RRNGnsgwxkN7/FVgHs2FX 0/7vU4v/2F6Sq05qeqRLB72rUcEQMZ1xo0f4yCgitCu29uZnVe0CLC9GCZmEl647 l37EYW8voeoIXsIk7siXg9ExkZkQ6guHEaVVNj8Qcfd76vzpj/HQ4Pgs97nGGPet NY1WdAL4njct7Qw2rOMpyz8EbNMrLwR5 -----END CERTIFICATE-----Generated at Wed Nov 5 11:44:50 2025 by rpki-client