$ rpki-client -vvf rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft File: 2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft (raw, json) Hash identifier: WRHHrLZFT7xp6VVrH+8l07dfg2mD3E0lwIt5WXtDDHw= Subject key identifier: 9A:90:2F:6D:10:98:17:06:52:98:F6:40:9C:4A:C4:00:FC:64:9C:EF Authority key identifier: D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C Certificate issuer: /CN=A913664F/serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Certificate serial: 01F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft Manifest number: 01E2 Signing time: Mon 03 Nov 2025 02:41:46 +0000 Manifest this update: Mon 03 Nov 2025 02:41:45 +0000 Manifest next update: Mon 10 Nov 2025 02:41:45 +0000 Files and hashes: 1: 2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl (hash: Bl0NrvBghRdZEJ23cTYqsrG5H+OOx1wRCwPDxRDp0A4=) 2: D2677928DD9811EDB2BBBA09C4F9AE02.roa (hash: pVr+bUV7osuNpKcdEe2SU8B4kCWvORQSGGyqBngWkWY=) 3: D1DDFDECDD9811EDB2BBBA09C4F9AE02.roa (hash: ou5M00utddUa9B9T2ZjIX4AhXtQUSSATyN+Uf1fiHwE=) 4: B1E75D08DD7F11ED815F9B4DC4F9AE02.roa (hash: m0+29/xOQkLY0SUQkzyArE5bZt0Gpa6rpxJzQEzTpmY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:41:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 498 (0x1f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913664F, serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Validity Not Before: Nov 3 02:41:45 2025 GMT Not After : Nov 10 02:41:45 2025 GMT Subject: CN=6908166a-ae49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:95:0e:18:17:8e:f3:34:90:25:d2:be:da:26: 14:cf:c0:6a:75:c6:c2:5c:63:c7:7d:44:14:51:44: 00:c0:7a:f9:1d:b9:cf:0e:fb:a9:2a:42:45:8d:61: 09:da:1f:f4:71:fa:2b:0e:7e:91:49:0b:7d:77:5a: 46:fc:9a:27:b9:6c:c0:08:ef:4d:5d:0a:c1:be:10: 25:90:56:7c:74:2f:cc:66:fa:7f:91:a3:e1:7b:1c: c9:d2:34:72:30:77:d4:43:d1:21:b8:4b:e1:3e:5e: 29:28:6b:4d:87:fa:c8:63:0e:65:44:bc:de:80:c8: 7d:81:5d:8c:6e:78:25:cd:ca:58:d8:05:71:da:e4: 09:8d:29:01:b1:b3:8d:78:b8:01:a7:cc:7b:e0:33: 6a:f6:0f:80:39:cf:44:37:4e:2c:9d:b6:46:eb:5a: bb:fc:f0:7c:a3:ac:5c:08:1c:3c:b5:da:21:25:ce: b3:6d:07:60:4c:77:10:e0:42:93:98:2c:5b:77:a0: ef:1c:e6:72:56:26:c7:6b:98:98:ab:dc:b5:53:c1: eb:a6:9f:9b:f7:45:b6:31:df:a8:2d:d2:f3:eb:f6: 56:a7:db:24:f8:33:68:51:7a:25:5c:f5:87:72:30: d3:fa:d0:b1:e6:3c:3e:21:05:fa:6f:bc:42:d6:37: 2e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:90:2F:6D:10:98:17:06:52:98:F6:40:9C:4A:C4:00:FC:64:9C:EF X509v3 Authority Key Identifier: keyid:D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:c2:37:3b:ad:3f:8f:a4:d3:ad:d0:c4:fe:fe:8e:69:c6:eb: b9:37:ac:97:42:0c:fe:d6:45:9f:63:15:b9:5a:19:35:d7:2b: b6:d3:ae:fd:ed:f8:78:7a:f2:e0:1e:6e:43:b2:6e:72:2a:19: 4b:61:91:7f:7f:d0:92:71:56:b5:c2:3b:5e:43:c9:a3:9d:b5: 5f:c9:3d:7a:a5:79:f8:22:7f:8d:6c:7b:de:cf:dc:e1:3d:b8: 7f:01:24:9a:81:65:09:87:98:20:e3:f4:d3:9b:8b:12:15:77: db:2b:85:61:c4:0d:33:81:a8:33:f6:23:a8:91:87:22:3f:b8: 2c:be:9d:f0:23:02:ea:f5:91:c6:66:00:29:2d:d0:0d:40:6a: 87:b1:f8:f0:24:42:d0:da:5a:54:2e:ee:22:7b:d1:82:74:76: d7:b3:65:8a:4a:8e:e2:4d:fd:d7:3d:2f:9e:fb:ad:a0:cc:11: b8:6f:e4:f4:7f:2b:5a:94:9c:8c:ef:d8:5b:cc:5e:1f:cb:10: d9:08:b4:9b:ee:e6:60:ef:b1:06:13:77:87:1c:dd:88:33:8f: 77:46:a1:6d:c2:21:8c:b8:d1:91:ed:b7:01:4a:e5:6b:ed:04: d3:83:62:4f:17:50:aa:80:c8:cd:32:4a:2a:ea:86:dc:79:3f: a5:d9:e6:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY2NEYxMTAvBgNVBAUTKEQ5OTAyQzRFOTQ3MkM3QUQ1MDgyODEyRkE3RDA3NzE0 NkFCN0NCOUMwHhcNMjUxMTAzMDI0MTQ1WhcNMjUxMTEwMDI0MTQ1WjAYMRYwFAYD VQQDEw02OTA4MTY2YS1hZTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5UOGBeO8zSQJdK+2iYUz8BqdcbCXGPHfUQUUUQAwHr5HbnPDvupKkJFjWEJ 2h/0cforDn6RSQt9d1pG/JonuWzACO9NXQrBvhAlkFZ8dC/MZvp/kaPhexzJ0jRy MHfUQ9EhuEvhPl4pKGtNh/rIYw5lRLzegMh9gV2MbnglzcpY2AVx2uQJjSkBsbON eLgBp8x74DNq9g+AOc9EN04snbZG61q7/PB8o6xcCBw8tdohJc6zbQdgTHcQ4EKT mCxbd6DvHOZyVibHa5iYq9y1U8Hrpp+b90W2Md+oLdLz6/ZWp9sk+DNoUXolXPWH cjDT+tCx5jw+IQX6b7xC1jcu8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqQL20Q mBcGUpj2QJxKxAD8ZJzvMB8GA1UdIwQYMBaAFNmQLE6UcsetUIKBL6fQdxRqt8uc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjY0Ri8xRTA4NTRBRURE N0QxMUVEOTFBMDQ2NERDNEY5QUUwMi8yWkFzVHBSeXg2MVFnb0V2cDlCM0ZHcTN5 NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJaQXNUcFJ5eDYxUWdvRXZwOUIzRkdxM3k1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjY0Ri8xRTA4NTRBRUREN0QxMUVEOTFBMDQ2NERDNEY5QUUwMi8yWkFzVHBSeXg2 MVFnb0V2cDlCM0ZHcTN5NXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiwjc7rT+PpNOt0MT+/o5pxuu5N6yXQgz+1kWfYxW5Whk11yu20679 7fh4evLgHm5Dsm5yKhlLYZF/f9CScVa1wjteQ8mjnbVfyT16pXn4In+NbHvez9zh Pbh/ASSagWUJh5gg4/TTm4sSFXfbK4VhxA0zgagz9iOokYciP7gsvp3wIwLq9ZHG ZgApLdANQGqHsfjwJELQ2lpULu4ie9GCdHbXs2WKSo7iTf3XPS+e+62gzBG4b+T0 fytalJyM79hbzF4fyxDZCLSb7uZg77EGE3eHHN2IM493RqFtwiGMuNGR7bcBSuVr 7QTTg2JPF1CqgMjNMkoq6obceT+l2ebx -----END CERTIFICATE-----Generated at Tue Nov 4 02:15:02 2025 by rpki-client