$ rpki-client -vvf rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.mft File: 2Qg5PFuoA1r2i37ACVWOgS7QleA.mft (raw, json) Hash identifier: 4mU2yItRqyIzN5xNnciL+/yK/lIMZe4zmsvzaHNXatE= Subject key identifier: 76:46:44:EA:78:27:FF:5E:DB:A9:2D:D2:FC:06:CE:56:CE:F1:FC:A7 Authority key identifier: D9:08:39:3C:5B:A8:03:5A:F6:8B:7E:C0:09:55:8E:81:2E:D0:95:E0 Certificate issuer: /CN=A916069A/serialNumber=D908393C5BA8035AF68B7EC009558E812ED095E0 Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.mft Manifest number: C7 Signing time: Wed 05 Nov 2025 06:08:14 +0000 Manifest this update: Wed 05 Nov 2025 06:08:14 +0000 Manifest next update: Wed 12 Nov 2025 06:08:14 +0000 Files and hashes: 1: 2Qg5PFuoA1r2i37ACVWOgS7QleA.crl (hash: 9y6LTXW5BDCguApgWX+bfe2axHJ95ldQICiFFbwMx24=) 2: 82A8B328B3A811F0AAE0F97FC4F9AE02.roa (hash: U0IWYvGmRx3I3mxIWZIgHUwav5iOqJcH3J0tZ5o3tQ8=) 3: C532393AB3A811F084597180C4F9AE02.roa (hash: 2izRKzpGeHD6MVI55CDUdaaQ/cOqkorsu2rOvJGpqlk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.crl rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:08:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916069A, serialNumber=D908393C5BA8035AF68B7EC009558E812ED095E0 Validity Not Before: Nov 5 06:08:14 2025 GMT Not After : Nov 12 06:08:14 2025 GMT Subject: CN=690ae9ce-ac0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ac:d3:10:8a:8d:94:2e:6e:b7:68:8b:fc:68: 0d:4f:1c:4c:78:ea:3e:01:a6:2a:87:75:8c:1f:e1: d4:c3:3e:bc:16:be:e9:b5:53:4c:77:d0:8c:2c:77: 1b:0b:0f:ba:29:7b:99:3d:a3:5c:a6:bc:56:73:dd: b7:93:b8:7d:95:00:36:b8:e9:50:94:2a:0c:ce:39: 55:f9:40:d4:b0:96:e0:b6:87:2b:c2:a8:37:81:1f: 5b:6f:36:02:01:77:dd:a8:f7:cb:5b:09:29:80:99: fe:37:29:09:d2:90:1d:89:91:45:7b:3e:b8:47:f7: 57:1b:f1:3c:a8:cb:2c:06:4a:0b:f9:63:3f:8d:02: 57:77:ca:5d:8b:46:d0:5e:8b:be:7e:a2:f0:68:22: 34:14:a0:12:ff:bc:7f:6d:74:13:fa:55:32:6e:fa: 3a:8c:37:16:20:54:5b:ff:09:32:71:43:d3:33:32: 0c:ca:a1:b2:d0:e8:9f:97:f5:1c:cb:48:62:b5:59: f7:d1:4d:13:fa:84:45:6f:4a:1f:f7:dd:6a:f8:d4: 0f:ea:67:b4:26:5a:91:cd:be:de:52:d0:b4:d4:9b: 4b:32:e4:c6:d9:87:44:5d:f1:dd:74:51:16:57:a1: a8:d3:a8:e0:1f:b0:2e:95:c1:32:77:5f:2e:b4:b2: ff:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:46:44:EA:78:27:FF:5E:DB:A9:2D:D2:FC:06:CE:56:CE:F1:FC:A7 X509v3 Authority Key Identifier: keyid:D9:08:39:3C:5B:A8:03:5A:F6:8B:7E:C0:09:55:8E:81:2E:D0:95:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:59:76:b4:45:d7:e5:05:22:cb:67:1c:4f:11:05:56:4e:83: 38:15:62:bc:e5:f6:88:ea:71:bc:19:05:02:bd:09:51:c6:73: 97:9f:81:4f:53:26:39:d7:b6:b7:1b:ca:20:3b:44:f4:df:24: 67:a4:8f:0f:50:8a:3d:c2:61:60:94:10:7d:e5:6a:83:70:d8: d2:dd:21:0a:80:1d:80:6c:57:3a:64:66:d3:8c:20:c9:25:c4: f5:36:d8:3d:f6:68:b1:f0:8d:c2:a7:bc:82:2e:09:9d:cd:d4: ed:a3:bf:63:fa:58:26:e1:2e:26:e5:60:b2:4b:9d:3f:a3:df: 55:cd:0a:f4:11:b4:28:f9:ba:b4:bc:d5:92:14:3d:bf:10:2f: 87:fe:3c:12:3f:e3:e8:5b:80:27:bb:31:86:ee:c5:79:30:0a: cb:bc:95:ec:b3:7e:37:26:4e:82:ff:59:86:20:a4:eb:f9:bb: 45:6b:8f:1b:3f:f9:1c:73:d3:91:e6:27:0a:49:9a:da:de:3f: 0c:be:f8:c7:8b:9e:f2:34:10:f1:63:65:96:92:45:c8:15:a8: 60:68:3b:7a:57:00:d3:82:9d:99:ae:b1:7f:81:95:c0:40:2c: 25:59:91:b3:0d:72:74:15:4f:7a:36:54:b7:96:a5:d3:4f:0b: 1c:bb:db:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA2OUExMTAvBgNVBAUTKEQ5MDgzOTNDNUJBODAzNUFGNjhCN0VDMDA5NTU4RTgx MkVEMDk1RTAwHhcNMjUxMTA1MDYwODE0WhcNMjUxMTEyMDYwODE0WjAYMRYwFAYD VQQDEw02OTBhZTljZS1hYzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4azTEIqNlC5ut2iL/GgNTxxMeOo+AaYqh3WMH+HUwz68Fr7ptVNMd9CMLHcb Cw+6KXuZPaNcprxWc923k7h9lQA2uOlQlCoMzjlV+UDUsJbgtocrwqg3gR9bbzYC AXfdqPfLWwkpgJn+NykJ0pAdiZFFez64R/dXG/E8qMssBkoL+WM/jQJXd8pdi0bQ Xou+fqLwaCI0FKAS/7x/bXQT+lUybvo6jDcWIFRb/wkycUPTMzIMyqGy0Oifl/Uc y0hitVn30U0T+oRFb0of991q+NQP6me0JlqRzb7eUtC01JtLMuTG2YdEXfHddFEW V6Go06jgH7AulcEyd18utLL/gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZGROp4 J/9e26kt0vwGzlbO8fynMB8GA1UdIwQYMBaAFNkIOTxbqANa9ot+wAlVjoEu0JXg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDY5QS8yRUI2MDc5NjlC RjAxMUVGODFDOTAyNjdDNEY5QUUwMi8yUWc1UEZ1b0ExcjJpMzdBQ1ZXT2dTN1Fs ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJRZzVQRnVvQTFyMmkzN0FDVldPZ1M3UWxlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDY5QS8yRUI2MDc5NjlCRjAxMUVGODFDOTAyNjdDNEY5QUUwMi8yUWc1UEZ1b0Ex cjJpMzdBQ1ZXT2dTN1FsZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZWXa0RdflBSLLZxxPEQVWToM4FWK85faI6nG8GQUCvQlRxnOXn4FP UyY517a3G8ogO0T03yRnpI8PUIo9wmFglBB95WqDcNjS3SEKgB2AbFc6ZGbTjCDJ JcT1Ntg99mix8I3Cp7yCLgmdzdTto79j+lgm4S4m5WCyS50/o99VzQr0EbQo+bq0 vNWSFD2/EC+H/jwSP+PoW4AnuzGG7sV5MArLvJXss343Jk6C/1mGIKTr+btFa48b P/kcc9OR5icKSZra3j8MvvjHi57yNBDxY2WWkkXIFahgaDt6VwDTgp2ZrrF/gZXA QCwlWZGzDXJ0FU96NlS3lqXTTwscu9tj -----END CERTIFICATE-----Generated at Wed Nov 5 15:18:29 2025 by rpki-client