$ rpki-client -vvf rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft File: 2QhrDfk0LcKwkbrobLd5_GJZvXs.mft (raw, json) Hash identifier: btilwOnALTxyT/TprRd2vYI9ZCOJgCdEPZaDyvPiLOk= Subject key identifier: CB:4E:74:C3:FC:5D:5D:C7:43:85:D8:1C:E7:0F:0B:ED:6E:A9:B8:AD Authority key identifier: D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B Certificate issuer: /CN=A914F2EC/serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Certificate serial: 34E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft Manifest number: 34DE Signing time: Tue 04 Nov 2025 15:02:09 +0000 Manifest this update: Tue 04 Nov 2025 15:02:08 +0000 Manifest next update: Tue 11 Nov 2025 15:02:08 +0000 Files and hashes: 1: 2QhrDfk0LcKwkbrobLd5_GJZvXs.crl (hash: o+7H8g1nBNvUMnOcCJdZqR7OQiSlgAIYUCNWGIxNioQ=) 2: 588BD7269A1211E8B97A623AC4F9AE02.roa (hash: KKbAooYir9kiM+kQeIhamjhStk+gbSQk/A73xTUucXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:02:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13543 (0x34e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F2EC, serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Validity Not Before: Nov 4 15:02:08 2025 GMT Not After : Nov 11 15:02:08 2025 GMT Subject: CN=690a1570-17b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b0:e0:05:4b:d3:fd:3d:a0:fd:59:32:07:82: 50:5b:f7:73:9f:15:a9:d9:cc:c2:94:b4:75:dc:8e: ed:1e:c6:19:71:72:df:a3:ad:6b:7f:b2:5e:50:09: 9e:a0:ae:a4:ac:10:49:b5:cc:66:d3:6e:81:eb:db: 8f:01:22:a8:79:a0:06:0e:86:62:c2:03:3e:44:aa: 41:4a:73:f1:c1:2f:55:3f:90:12:f7:c3:b2:b9:10: b5:95:cf:0a:23:97:49:53:2b:84:d4:42:3f:90:78: b0:36:7e:41:28:41:74:49:f6:fd:36:6b:a5:f1:4e: 24:54:97:7f:6f:97:bc:c3:40:35:c0:ba:32:f9:5e: ad:1e:b1:d4:c4:54:36:24:44:43:ae:df:a3:ea:3a: c1:d2:ca:7a:8f:24:57:ff:8d:67:b4:a4:a6:41:2b: 85:fc:5f:e8:24:0e:23:bf:dd:33:67:37:a1:c7:bc: e8:82:a6:21:d4:a2:d3:d9:49:64:fb:e0:c6:39:d3: 5c:9f:f1:29:29:91:48:67:5d:bc:9f:f9:ef:31:a1: 9d:56:c8:ee:92:b7:b5:02:1f:f6:0a:26:6b:3a:e3: cb:28:33:4f:e6:57:ff:02:bb:b1:ab:24:56:0e:36: 26:07:55:02:13:0f:7c:b0:c1:65:13:17:0c:c6:6a: 4d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:4E:74:C3:FC:5D:5D:C7:43:85:D8:1C:E7:0F:0B:ED:6E:A9:B8:AD X509v3 Authority Key Identifier: keyid:D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:71:c5:3a:10:1a:d1:40:82:c4:7a:39:50:f1:2a:23:0c:ff: f8:3a:7b:61:a5:bc:8c:bc:46:e3:81:3c:0b:98:75:97:b0:91: 73:b1:34:41:6b:94:d8:8d:97:93:c3:bb:ad:0c:7d:64:a2:83: 25:ac:1f:2b:37:3b:89:c4:4d:a3:a5:83:4f:c0:7a:03:74:77: f9:38:86:a8:fb:20:e1:b4:5a:31:31:c5:84:90:9a:bf:ac:59: 96:8f:02:ff:3d:32:86:1c:d9:f7:4a:c5:2f:90:1e:e4:7e:79: d6:07:92:c1:5c:d6:74:cb:15:fc:19:a3:f3:92:90:0b:66:65: e9:67:4f:fe:52:5e:56:59:a3:54:0b:c0:d8:bc:be:da:c9:8d: 4a:2c:e0:ab:51:d8:33:68:7e:3d:03:25:ad:f8:c5:23:24:c2: 6a:70:6b:53:96:f4:06:89:2a:f2:ea:a7:52:f9:5d:b0:03:eb: 3a:7d:1e:16:19:e3:cd:a7:cf:74:08:af:7a:8e:2a:23:b2:1c: ab:4d:1f:bc:56:d5:f3:94:ac:fa:6f:3f:5f:e2:15:19:23:c2: d0:89:4a:40:8a:f3:8a:05:1b:d4:dc:bf:54:d0:f7:63:29:22: 0f:cf:d6:9e:e1:10:cf:ac:2b:a9:7b:66:36:73:ff:7b:f8:a7: 8e:02:50:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyRUMxMTAvBgNVBAUTKEQ5MDg2QjBERjkzNDJEQzJCMDkxQkFFODZDQjc3OUZD NjI1OUJEN0IwHhcNMjUxMTA0MTUwMjA4WhcNMjUxMTExMTUwMjA4WjAYMRYwFAYD VQQDEw02OTBhMTU3MC0xN2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbDgBUvT/T2g/VkyB4JQW/dznxWp2czClLR13I7tHsYZcXLfo61rf7JeUAme oK6krBBJtcxm026B69uPASKoeaAGDoZiwgM+RKpBSnPxwS9VP5AS98OyuRC1lc8K I5dJUyuE1EI/kHiwNn5BKEF0Sfb9Nmul8U4kVJd/b5e8w0A1wLoy+V6tHrHUxFQ2 JERDrt+j6jrB0sp6jyRX/41ntKSmQSuF/F/oJA4jv90zZzehx7zogqYh1KLT2Ulk ++DGOdNcn/EpKZFIZ128n/nvMaGdVsjukre1Ah/2CiZrOuPLKDNP5lf/AruxqyRW DjYmB1UCEw98sMFlExcMxmpNFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtOdMP8 XV3HQ4XYHOcPC+1uqbitMB8GA1UdIwQYMBaAFNkIaw35NC3CsJG66Gy3efxiWb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjJFQy9ENThBMjI2QzFE OUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExjS3drYnJvYkxkNV9HSlp2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaHJEZmswTGNLd2ticm9iTGQ1X0dKWnZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjJFQy9ENThBMjI2QzFEOUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExj S3drYnJvYkxkNV9HSlp2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNccU6EBrRQILEejlQ8SojDP/4OnthpbyMvEbjgTwLmHWXsJFzsTRB a5TYjZeTw7utDH1kooMlrB8rNzuJxE2jpYNPwHoDdHf5OIao+yDhtFoxMcWEkJq/ rFmWjwL/PTKGHNn3SsUvkB7kfnnWB5LBXNZ0yxX8GaPzkpALZmXpZ0/+Ul5WWaNU C8DYvL7ayY1KLOCrUdgzaH49AyWt+MUjJMJqcGtTlvQGiSry6qdS+V2wA+s6fR4W GePNp890CK96jiojshyrTR+8VtXzlKz6bz9f4hUZI8LQiUpAivOKBRvU3L9U0Pdj KSIPz9ae4RDPrCupe2Y2c/97+KeOAlCo -----END CERTIFICATE-----Generated at Tue Nov 4 19:05:07 2025 by rpki-client