$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft File: 2iwTK47FBxr425BJG63bwPCntEU.mft (raw, json) Hash identifier: 0zpY88YS5abrVGpb2Lr5DmdfDvOgqnvhdPwJ3GytiNE= Subject key identifier: CC:52:E6:4A:9B:F8:91:B3:23:73:31:AE:88:90:8E:3C:F2:E5:62:65 Authority key identifier: DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 Certificate issuer: /CN=A91534B8/serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Certificate serial: 02DA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft Manifest number: 02DA Signing time: Wed 05 Nov 2025 01:26:28 +0000 Manifest this update: Wed 05 Nov 2025 01:26:27 +0000 Manifest next update: Wed 12 Nov 2025 01:26:27 +0000 Files and hashes: 1: 2iwTK47FBxr425BJG63bwPCntEU.crl (hash: hRu/UnjxwjLIkDx2FOPux/NY79HamQExDKVOflI+Y/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:26:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 730 (0x2da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Validity Not Before: Nov 5 01:26:27 2025 GMT Not After : Nov 12 01:26:27 2025 GMT Subject: CN=690aa7c4-adbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e3:7f:55:19:4a:b5:5a:ae:d5:0c:46:a6:b4: cf:64:e4:79:af:d5:f4:90:32:16:61:9e:51:f1:7f: 01:e0:2b:5c:da:20:be:44:07:42:1a:ff:bf:4b:94: 4b:70:08:d8:f0:bc:ad:61:97:e4:db:84:ac:ff:fe: 31:1c:62:b2:cc:23:e3:5a:38:46:63:bd:9d:fd:1e: 2d:8a:43:3c:4b:2b:b4:20:f9:3e:90:e0:43:8c:61: d5:ad:fc:10:d1:b5:ff:b2:5e:c9:c8:23:23:aa:37: 58:7a:ef:2b:9d:5c:77:db:97:0a:5b:4e:5a:24:c4: 99:18:91:06:b6:e7:c9:26:00:99:62:8f:20:f8:43: 83:71:03:5c:9b:80:d5:5a:c9:30:93:93:61:49:08: 03:1b:6a:e4:59:71:ee:14:59:11:5b:53:9e:33:4c: 7b:85:d5:10:cd:fa:86:10:6b:21:27:60:71:16:fd: 38:ef:d7:9f:f8:5e:cc:26:b6:50:8b:82:8f:52:ad: f1:cd:ae:d3:8e:5e:b4:2b:cb:11:2c:a7:c0:7a:7c: 6c:61:fb:f0:9e:5b:95:db:41:31:ef:dd:cc:2d:dd: 08:ef:8e:12:be:3f:ac:c6:6e:32:09:96:05:b6:13: ec:a5:15:0e:79:a7:f9:2c:84:b6:de:0c:f5:39:ff: 31:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:52:E6:4A:9B:F8:91:B3:23:73:31:AE:88:90:8E:3C:F2:E5:62:65 X509v3 Authority Key Identifier: keyid:DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:fc:47:39:02:0b:76:1d:8b:23:80:9f:22:27:b9:dc:b8:0b: a2:b4:c6:e0:18:45:a6:81:18:09:eb:95:56:85:b6:2d:19:6d: f9:0c:64:7f:3a:2a:6d:77:76:b5:7e:82:eb:17:81:52:64:71: 19:e0:0c:b1:9f:90:c0:b8:54:f3:b6:4e:13:84:29:a4:51:de: 87:fd:e6:cc:78:60:f4:72:af:44:f0:0b:1e:52:94:34:e1:3e: bf:87:7c:ac:34:1b:ee:ec:ae:a5:18:71:78:a8:49:ce:ee:ac: 5c:9c:c1:31:75:31:86:67:90:25:2b:ab:11:4f:15:5c:ac:a3: 7c:0f:00:b8:3f:ef:77:9e:55:61:de:10:c0:3d:ff:23:ee:67: f3:bb:3d:74:fc:15:33:de:2f:8e:af:4f:0c:38:8b:85:01:f5: 39:a3:e9:3f:0c:71:2c:68:3a:5b:f1:67:f7:8c:7d:2f:c4:62: 25:a7:ff:cc:74:d0:cb:63:03:5b:ff:a9:4d:7c:7d:d2:b4:bb: 34:f5:bf:e0:87:ca:de:75:da:9d:a5:b3:b8:74:8f:ad:55:e8: 08:9e:56:a9:51:5d:cc:f3:5c:c2:73:a9:33:77:ac:df:df:df: db:65:a6:07:30:ab:18:62:db:5b:03:aa:81:07:95:59:24:8c: ac:27:5f:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERBMkMxMzJCOEVDNTA3MUFGOERCOTA0OTFCQUREQkMw RjBBN0I0NDUwHhcNMjUxMTA1MDEyNjI3WhcNMjUxMTEyMDEyNjI3WjAYMRYwFAYD VQQDEw02OTBhYTdjNC1hZGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyON/VRlKtVqu1QxGprTPZOR5r9X0kDIWYZ5R8X8B4Ctc2iC+RAdCGv+/S5RL cAjY8LytYZfk24Ss//4xHGKyzCPjWjhGY72d/R4tikM8Syu0IPk+kOBDjGHVrfwQ 0bX/sl7JyCMjqjdYeu8rnVx325cKW05aJMSZGJEGtufJJgCZYo8g+EODcQNcm4DV Wskwk5NhSQgDG2rkWXHuFFkRW1OeM0x7hdUQzfqGEGshJ2BxFv0479ef+F7MJrZQ i4KPUq3xza7Tjl60K8sRLKfAenxsYfvwnluV20Ex793MLd0I744Svj+sxm4yCZYF thPspRUOeaf5LIS23gz1Of8xuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMxS5kqb +JGzI3MxroiQjjzy5WJlMB8GA1UdIwQYMBaAFNosEyuOxQca+NuQSRut28Dwp7RF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85NjY1OTk3RTA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4cjQyNUJKRzYzYndQQ250 RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzJpd1RLNDdGQnhyNDI1QkpHNjNid1BDbnRFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85NjY1OTk3RTA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4 cjQyNUJKRzYzYndQQ250RVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAH/Ec5Agt2HYsjgJ8iJ7ncuAuitMbgGEWmgRgJ65VWhbYtGW35DGR/ Oiptd3a1foLrF4FSZHEZ4Ayxn5DAuFTztk4ThCmkUd6H/ebMeGD0cq9E8AseUpQ0 4T6/h3ysNBvu7K6lGHF4qEnO7qxcnMExdTGGZ5AlK6sRTxVcrKN8DwC4P+93nlVh 3hDAPf8j7mfzuz10/BUz3i+Or08MOIuFAfU5o+k/DHEsaDpb8Wf3jH0vxGIlp//M dNDLYwNb/6lNfH3StLs09b/gh8reddqdpbO4dI+tVegInlapUV3M81zCc6kzd6zf 39/bZaYHMKsYYttbA6qBB5VZJIysJ19y -----END CERTIFICATE-----Generated at Wed Nov 5 19:22:57 2025 by rpki-client