$ rpki-client -vvf rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft File: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft (raw, json) Hash identifier: xDeFLvoLEthToqukw0vuCALzpOqOakKOsTkg1mpVBek= Subject key identifier: 55:74:4D:4A:44:26:77:28:A5:01:6D:19:C9:00:11:48:A4:20:DD:37 Authority key identifier: D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F Certificate issuer: /CN=A91758EC/serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft Manifest number: 3D Signing time: Wed 05 Nov 2025 07:45:30 +0000 Manifest this update: Wed 05 Nov 2025 07:45:30 +0000 Manifest next update: Wed 12 Nov 2025 07:45:30 +0000 Files and hashes: 1: 2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl (hash: TlSNth3FUNq8l/zsYuY+XZ64CWlgFH4cCIvEYhvV0Yc=) 2: 9DA6D1866E1C11F0B7ED1D84C4F9AE02.roa (hash: Ab7z11j/JWV2srLlnZVUsiX2l5YoRDQg2qGXrcUnimg=) 3: 312F0E7E6E1C11F0AB99F682C4F9AE02.roa (hash: TPTw4itouUrT3zWp67Qh/kFVGTIQgN0gjeYV7fEtXi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:45:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758EC, serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Validity Not Before: Nov 5 07:45:30 2025 GMT Not After : Nov 12 07:45:30 2025 GMT Subject: CN=690b009a-e894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6d:52:42:02:40:1e:da:f3:27:c2:2f:f1:d4: c9:5a:34:ea:46:f2:eb:47:62:b8:58:d7:ff:97:cb: d2:c7:3c:d3:9f:01:e0:d7:62:f0:4a:ef:60:d3:de: 1c:87:b6:90:00:ac:cf:1a:d9:46:34:85:d7:a4:13: 28:33:d1:5b:e2:6b:6c:8f:ce:9f:1a:83:29:64:ad: 92:e7:6e:14:fc:82:41:37:e5:1d:79:ce:a8:55:ed: 44:b5:66:d9:d8:be:02:7c:37:51:93:18:69:ab:88: 4f:08:32:82:9f:d1:df:a5:9c:8a:6e:ee:6d:02:c3: f4:1f:24:da:88:46:33:ab:4a:44:5c:3b:42:a8:77: 31:04:c5:74:b2:0c:1a:eb:d6:08:8c:11:5a:d4:d5: e2:31:14:3e:85:18:3f:4a:04:c2:78:7f:a2:32:43: fb:6b:57:64:8b:98:7f:62:7b:67:83:db:3d:dd:d4: 47:6e:41:a0:f4:12:eb:f5:4c:57:89:b7:ab:ef:5f: 09:02:d2:f5:99:51:74:40:63:6c:0d:6e:3e:73:51: 15:b8:3a:13:fb:44:c8:cc:9e:e7:54:a4:91:cb:5e: c4:64:e0:44:dd:03:ae:2b:ce:45:92:71:02:db:d0: 15:3f:6d:08:f3:2f:58:34:72:98:1b:f9:1b:e1:56: 3d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:74:4D:4A:44:26:77:28:A5:01:6D:19:C9:00:11:48:A4:20:DD:37 X509v3 Authority Key Identifier: keyid:D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:6b:52:9b:8b:21:d7:10:86:ff:70:06:61:f0:d8:4c:8a:db: 22:db:53:b0:e7:61:19:32:59:19:75:fc:d8:1c:aa:94:b5:10: 56:41:ae:1d:2c:a9:25:c0:b7:51:aa:97:9a:e1:0c:d6:89:70: 84:c9:e9:38:19:ca:7c:c6:09:d8:1c:73:61:a5:36:fd:68:1b: b7:b2:b8:11:0a:96:72:35:b9:19:3f:9d:65:69:b9:73:02:83: 89:1c:76:ad:93:95:6c:06:fa:c2:31:bd:ae:a2:61:50:64:93: 44:a1:3d:4a:df:4a:42:f4:8b:99:79:8c:e5:fb:dd:0c:69:a9: 73:de:bd:6b:b6:c6:37:af:fa:81:19:d0:8a:9f:3c:0e:12:74: 2f:bc:db:d2:f8:0b:27:bd:51:cc:ee:5e:69:86:16:5f:60:21: a9:50:84:fe:24:ac:c3:87:d0:4d:b6:4b:35:c4:b5:c4:7b:55: 37:00:02:87:bb:b0:ef:0c:35:d4:58:fc:9c:83:57:92:60:c9: 42:7b:1c:90:d8:64:5d:a2:2e:32:0b:91:b6:8e:23:64:4b:a0: b0:84:de:54:5f:b1:05:3c:f4:d4:e8:83:be:75:ae:84:a9:de: c5:5f:ae:62:e0:53:9c:6b:5c:f4:6f:1d:a0:e4:c2:5f:54:7b: e9:83:45:c7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NThFQzExMC8GA1UEBRMoRDgyN0I2ODQzRUI3RjZCOUYwRUQ1RjJGRjcyMzQ0QTUy QzA0QjQ5RjAeFw0yNTExMDUwNzQ1MzBaFw0yNTExMTIwNzQ1MzBaMBgxFjAUBgNV BAMTDTY5MGIwMDlhLWU4OTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDabVJCAkAe2vMnwi/x1MlaNOpG8utHYrhY1/+Xy9LHPNOfAeDXYvBK72DT3hyH tpAArM8a2UY0hdekEygz0Vvia2yPzp8agylkrZLnbhT8gkE35R15zqhV7US1ZtnY vgJ8N1GTGGmriE8IMoKf0d+lnIpu7m0Cw/QfJNqIRjOrSkRcO0KodzEExXSyDBrr 1giMEVrU1eIxFD6FGD9KBMJ4f6IyQ/trV2SLmH9ie2eD2z3d1EduQaD0Euv1TFeJ t6vvXwkC0vWZUXRAY2wNbj5zURW4OhP7RMjMnudUpJHLXsRk4ETdA64rzkWScQLb 0BU/bQjzL1g0cpgb+RvhVj1XAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVXRNSkQm dyilAW0ZyQARSKQg3TcwHwYDVR0jBBgwFoAU2Ce2hD639rnw7V8v9yNEpSwEtJ8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1OEVDLzZCRjg2Qjg0NjYz MDExRjBCOURDNEU2NEM0RjlBRTAyLzJDZTJoRDYzOXJudzdWOHY5eU5FcFN3RXRK OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMkNlMmhENjM5cm53N1Y4djl5TkVwU3dFdEo4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 OEVDLzZCRjg2Qjg0NjYzMDExRjBCOURDNEU2NEM0RjlBRTAyLzJDZTJoRDYzOXJu dzdWOHY5eU5FcFN3RXRKOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA1rUpuLIdcQhv9wBmHw2EyK2yLbU7DnYRkyWRl1/NgcqpS1EFZBrh0s qSXAt1Gql5rhDNaJcITJ6TgZynzGCdgcc2GlNv1oG7eyuBEKlnI1uRk/nWVpuXMC g4kcdq2TlWwG+sIxva6iYVBkk0ShPUrfSkL0i5l5jOX73QxpqXPevWu2xjev+oEZ 0IqfPA4SdC+829L4Cye9UczuXmmGFl9gIalQhP4krMOH0E22SzXEtcR7VTcAAoe7 sO8MNdRY/JyDV5JgyUJ7HJDYZF2iLjILkbaOI2RLoLCE3lRfsQU89NTog751roSp 3sVfrmLgU5xrXPRvHaDkwl9Ue+mDRcc= -----END CERTIFICATE-----Generated at Wed Nov 5 12:03:17 2025 by rpki-client