$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft File: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft (raw, json) Hash identifier: NoUbTrmbFab65uRBjWRVTC1ue+6TIY4B6wUB5kUe5q4= Subject key identifier: C1:B2:08:29:98:37:CC:98:BA:06:E0:63:89:A3:BA:C8:C8:E7:17:9B Authority key identifier: DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF Certificate issuer: /CN=A9140E66/serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Certificate serial: 0CC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft Manifest number: 0CB7 Signing time: Tue 04 Nov 2025 18:16:59 +0000 Manifest this update: Tue 04 Nov 2025 18:16:58 +0000 Manifest next update: Tue 11 Nov 2025 18:16:58 +0000 Files and hashes: 1: 2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl (hash: eamHMpmAHbzBfbXTW0LgXFPuVNMrSKWWTEETEPxDkeg=) 2: 44FEC394589711F0B981A181C4F9AE02.roa (hash: czF1g9Ex6VYm+KxfQ/94CmFck1ccrgeMZN09KqEwv5g=) 3: C21D3A065B7E11F0A8B76B2EC4F9AE02.roa (hash: 84DuWQA+97cDdeAiob2yXUJKVlhHSu21Cq4u1ZPXmWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:16:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3265 (0xcc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E66, serialNumber=DA547ED6928AAD1ECFB6847A1B07432BD87B19EF Validity Not Before: Nov 4 18:16:58 2025 GMT Not After : Nov 11 18:16:58 2025 GMT Subject: CN=690a431b-2433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:3a:5f:4e:de:67:fd:8b:96:27:5f:2d:8c:6f: 88:c3:9e:73:27:7d:06:03:27:2f:5a:26:4d:15:71: c6:cf:f8:8a:82:c4:83:55:c1:d8:0b:cd:85:ae:64: 24:11:7b:fc:a6:69:42:c8:73:f2:77:e5:86:37:81: 0a:64:da:93:41:7c:6f:97:1b:04:72:aa:17:9a:64: 64:c4:e6:6e:0b:b3:61:e7:86:ed:b8:9f:82:7e:cf: e3:7d:70:46:16:f2:5d:e1:8f:0e:ee:f0:52:be:81: 82:93:d4:a1:fc:ae:3f:28:10:d5:19:d5:aa:8b:ad: a6:6c:ed:ae:f4:fb:2a:6e:8a:9a:3b:48:05:34:ae: d8:b1:ed:81:e3:8c:e8:fe:95:76:fb:3b:ca:40:95: 02:26:ff:ea:bb:d9:fd:0f:d5:11:3b:fe:2d:ff:0e: 94:9e:28:c0:11:55:b2:88:a8:78:49:7d:ee:7c:18: b2:51:45:af:88:d4:ae:02:5b:ae:84:fd:94:dc:2c: d5:5e:f2:30:f5:ad:8b:5e:6b:92:50:9b:8d:77:ce: 2b:9f:05:df:57:ad:8e:19:e0:5d:d5:7c:ab:4e:e2: 31:25:f9:6a:ab:9c:be:79:6e:1f:c8:a0:66:28:f4: 5e:fa:d9:57:7f:4e:28:b1:73:83:29:01:2c:87:1f: 6c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:B2:08:29:98:37:CC:98:BA:06:E0:63:89:A3:BA:C8:C8:E7:17:9B X509v3 Authority Key Identifier: keyid:DA:54:7E:D6:92:8A:AD:1E:CF:B6:84:7A:1B:07:43:2B:D8:7B:19:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E66/70639EFCFF6E11E985A88C67C4F9AE02/2lR-1pKKrR7PtoR6GwdDK9h7Ge8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:fe:d2:24:20:12:56:96:56:24:e2:8c:a3:00:43:dc:0d:06: 81:04:15:f9:5b:5e:25:00:44:1f:17:1f:2a:ba:5b:ee:52:45: c9:07:34:f5:f9:ca:2f:28:e5:f5:01:7a:d7:cd:d0:86:89:c4: 81:f2:14:c0:8a:17:ff:d3:47:23:07:77:3f:22:5d:77:51:2b: 65:08:19:26:89:e8:43:15:e0:4d:c9:c0:ff:c7:93:eb:3c:9a: 8b:60:96:34:8c:df:4c:ac:9e:96:61:ba:7a:f3:6d:7e:bd:17: 3e:58:b0:90:bf:f2:eb:ee:e6:57:7e:14:eb:02:48:65:99:57: 3b:2b:c1:7a:06:8e:5a:61:0e:56:32:2b:6b:d7:0f:dd:00:66: b8:25:e7:28:64:58:b7:1a:68:c3:9b:d5:eb:32:57:b0:18:e2: b2:d1:59:f6:05:39:cf:7e:e6:3d:f8:85:f0:2e:f1:9d:f8:d0: 69:7e:de:eb:79:a3:4d:51:82:2e:55:d3:07:c0:73:28:dc:90: 4f:4c:c2:61:2c:d7:b8:2d:6b:b2:96:b7:ac:23:3d:82:ff:d0: 03:c9:b7:c2:38:98:87:67:93:e1:f4:3a:60:cf:0c:0b:68:ef: 98:b6:11:ce:fd:37:7a:f9:5c:12:cb:69:bb:22:bb:5f:d1:de: bc:8e:b3:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNjYxMTAvBgNVBAUTKERBNTQ3RUQ2OTI4QUFEMUVDRkI2ODQ3QTFCMDc0MzJC RDg3QjE5RUYwHhcNMjUxMTA0MTgxNjU4WhcNMjUxMTExMTgxNjU4WjAYMRYwFAYD VQQDEw02OTBhNDMxYi0yNDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6zpfTt5n/YuWJ18tjG+Iw55zJ30GAycvWiZNFXHGz/iKgsSDVcHYC82FrmQk EXv8pmlCyHPyd+WGN4EKZNqTQXxvlxsEcqoXmmRkxOZuC7Nh54btuJ+Cfs/jfXBG FvJd4Y8O7vBSvoGCk9Sh/K4/KBDVGdWqi62mbO2u9PsqboqaO0gFNK7Yse2B44zo /pV2+zvKQJUCJv/qu9n9D9URO/4t/w6UnijAEVWyiKh4SX3ufBiyUUWviNSuAluu hP2U3CzVXvIw9a2LXmuSUJuNd84rnwXfV62OGeBd1XyrTuIxJflqq5y+eW4fyKBm KPRe+tlXf04osXODKQEshx9swQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGyCCmY N8yYugbgY4mjusjI5xebMB8GA1UdIwQYMBaAFNpUftaSiq0ez7aEehsHQyvYexnv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU2Ni83MDYzOUVGQ0ZG NkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JSN1B0b1I2R3dkREs5aDdH ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsUi0xcEtLclI3UHRvUjZHd2RESzloN0dlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU2Ni83MDYzOUVGQ0ZGNkUxMUU5ODVBODhDNjdDNEY5QUUwMi8ybFItMXBLS3JS N1B0b1I2R3dkREs5aDdHZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr/tIkIBJWllYk4oyjAEPcDQaBBBX5W14lAEQfFx8qulvuUkXJBzT1 +covKOX1AXrXzdCGicSB8hTAihf/00cjB3c/Il13UStlCBkmiehDFeBNycD/x5Pr PJqLYJY0jN9MrJ6WYbp6821+vRc+WLCQv/Lr7uZXfhTrAkhlmVc7K8F6Bo5aYQ5W Mitr1w/dAGa4JecoZFi3GmjDm9XrMlewGOKy0Vn2BTnPfuY9+IXwLvGd+NBpft7r eaNNUYIuVdMHwHMo3JBPTMJhLNe4LWuylresIz2C/9ADybfCOJiHZ5Ph9DpgzwwL aO+YthHO/Td6+VwSy2m7Irtf0d68jrOx -----END CERTIFICATE-----Generated at Wed Nov 5 12:26:22 2025 by rpki-client