$ rpki-client -vvf rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft File: 2CVmixrBt_OBXwe82lfnSMSWSpo.mft (raw, json) Hash identifier: sBnw20tMORHRVKhsFBtomZ0gw7oO81EdjnCe52u9z38= Subject key identifier: 4F:B2:49:AD:A4:43:24:A0:E2:D5:88:48:53:EB:11:19:B1:2C:F0:70 Authority key identifier: D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A Certificate issuer: /CN=A91756C3/serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft Manifest number: 8E Signing time: Mon 03 Nov 2025 06:32:22 +0000 Manifest this update: Mon 03 Nov 2025 06:32:22 +0000 Manifest next update: Mon 10 Nov 2025 06:32:22 +0000 Files and hashes: 1: 2CVmixrBt_OBXwe82lfnSMSWSpo.crl (hash: fSw1y7nTCj3WL1C9/O5ER4SOir9CC6eUtt5i3tYpf1M=) 2: 00078764E06811EF8716401DC4F9AE02.roa (hash: LbImQdZW2RSWgtVHcpBhymJAYl7D/59tKMuTPJC97Bo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:32:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91756C3, serialNumber=D825668B1AC1B7F3815F07BCDA57E748C4964A9A Validity Not Before: Nov 3 06:32:22 2025 GMT Not After : Nov 10 06:32:22 2025 GMT Subject: CN=69084c76-7b90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c9:99:d2:92:8d:df:71:22:73:3c:c7:d2:34: 9c:db:a7:98:2c:e8:44:3f:36:b8:69:d3:33:41:18: 43:27:2c:0f:98:41:b5:a5:aa:d4:f2:1c:94:83:3c: 0e:fa:0d:50:02:76:51:81:6b:79:37:67:1a:00:fa: 3d:9d:44:27:81:a7:38:b7:0c:53:02:34:34:42:a9: 31:9d:83:ff:61:fb:04:aa:83:a9:64:2d:f1:d2:1e: bb:11:64:93:38:a0:ab:65:0f:a5:04:8c:e4:b1:d2: 27:93:f4:11:74:02:da:76:02:ee:52:1d:76:c4:3d: 76:96:f2:36:73:d2:b6:ee:d9:15:03:73:e1:3c:ff: 50:fc:9a:e0:63:4f:bd:51:c4:5f:cd:ca:06:dd:be: 3a:f5:53:28:f3:bb:cd:a3:4e:43:34:a8:05:6f:db: 6b:d4:08:5c:1d:4c:4f:26:d7:2f:69:7a:8a:a5:5c: f2:52:83:78:1d:ef:f4:ba:6c:d0:a9:62:28:7c:b9: df:ca:2e:f2:69:dc:4f:f1:47:5a:c6:85:d0:56:54: 6e:4c:c4:4d:4c:e2:fa:bf:af:e1:c6:2e:b0:13:0f: 98:2e:31:08:ec:85:a3:fe:43:d6:ab:8b:1d:fa:90: 7d:5f:b6:68:f1:17:30:68:73:9f:78:4b:71:64:de: c4:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:B2:49:AD:A4:43:24:A0:E2:D5:88:48:53:EB:11:19:B1:2C:F0:70 X509v3 Authority Key Identifier: keyid:D8:25:66:8B:1A:C1:B7:F3:81:5F:07:BC:DA:57:E7:48:C4:96:4A:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CVmixrBt_OBXwe82lfnSMSWSpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756C3/5BF5192AE06711EFBC3D171BC4F9AE02/2CVmixrBt_OBXwe82lfnSMSWSpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:8e:aa:b3:77:e9:c4:75:04:07:72:f6:18:1f:6f:3d:2f:bc: e8:95:17:a3:f1:3a:a9:ef:84:fd:b8:85:fe:9b:5e:81:4e:65: ee:f3:a8:de:8e:65:b6:5e:31:0c:c4:c1:57:bc:22:66:b1:b8: 81:cc:e8:ed:42:20:16:eb:ac:5c:4c:20:4c:66:8e:35:c6:2c: 0c:22:f4:a8:16:5c:c1:1b:70:32:9f:10:01:21:51:c0:2d:bb: 1a:d1:79:66:50:26:03:e5:a8:fa:e5:42:82:6d:c1:f1:fb:84: 86:c8:d6:87:52:1e:91:5c:bd:96:ba:8c:1e:ba:60:5c:69:a9: fa:2d:3c:cb:02:b3:3f:ef:42:2e:9a:1a:16:38:c3:4e:e6:ed: 59:49:17:ed:48:73:3f:2b:f9:dc:64:b8:75:2f:2d:a5:4c:6e: c0:97:24:c5:40:dc:04:38:23:50:4e:bd:d5:df:10:f6:19:74: c3:56:7c:29:b2:54:71:14:22:fa:b0:da:8c:00:6c:70:0f:ee: 8e:e0:cc:0b:58:98:4b:31:9a:17:94:91:be:c7:c9:cc:f2:24: 7f:36:eb:d1:89:0a:cc:9f:27:29:f4:ca:80:38:bf:f5:ad:5c: b9:ab:37:9f:74:cd:01:6f:5e:f3:f0:c2:4b:bd:ec:1d:c9:db: 97:93:6f:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU2QzMxMTAvBgNVBAUTKEQ4MjU2NjhCMUFDMUI3RjM4MTVGMDdCQ0RBNTdFNzQ4 QzQ5NjRBOUEwHhcNMjUxMTAzMDYzMjIyWhcNMjUxMTEwMDYzMjIyWjAYMRYwFAYD VQQDEw02OTA4NGM3Ni03YjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8mZ0pKN33EiczzH0jSc26eYLOhEPza4adMzQRhDJywPmEG1parU8hyUgzwO +g1QAnZRgWt5N2caAPo9nUQngac4twxTAjQ0QqkxnYP/YfsEqoOpZC3x0h67EWST OKCrZQ+lBIzksdInk/QRdALadgLuUh12xD12lvI2c9K27tkVA3PhPP9Q/JrgY0+9 UcRfzcoG3b469VMo87vNo05DNKgFb9tr1AhcHUxPJtcvaXqKpVzyUoN4He/0umzQ qWIofLnfyi7yadxP8UdaxoXQVlRuTMRNTOL6v6/hxi6wEw+YLjEI7IWj/kPWq4sd +pB9X7Zo8RcwaHOfeEtxZN7EjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+ySa2k QySg4tWISFPrERmxLPBwMB8GA1UdIwQYMBaAFNglZosawbfzgV8HvNpX50jElkqa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTZDMy81QkY1MTkyQUUw NjcxMUVGQkMzRDE3MUJDNEY5QUUwMi8yQ1ZtaXhyQnRfT0JYd2U4MmxmblNNU1dT cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDVm1peHJCdF9PQlh3ZTgybGZuU01TV1Nwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTZDMy81QkY1MTkyQUUwNjcxMUVGQkMzRDE3MUJDNEY5QUUwMi8yQ1ZtaXhyQnRf T0JYd2U4MmxmblNNU1dTcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqjqqzd+nEdQQHcvYYH289L7zolRej8Tqp74T9uIX+m16BTmXu86je jmW2XjEMxMFXvCJmsbiBzOjtQiAW66xcTCBMZo41xiwMIvSoFlzBG3AynxABIVHA Lbsa0XlmUCYD5aj65UKCbcHx+4SGyNaHUh6RXL2WuoweumBcaan6LTzLArM/70Iu mhoWOMNO5u1ZSRftSHM/K/ncZLh1Ly2lTG7AlyTFQNwEOCNQTr3V3xD2GXTDVnwp slRxFCL6sNqMAGxwD+6O4MwLWJhLMZoXlJG+x8nM8iR/NuvRiQrMnycp9MqAOL/1 rVy5qzefdM0Bb17z8MJLvewdyduXk28D -----END CERTIFICATE-----Generated at Wed Nov 5 01:57:25 2025 by rpki-client