$ rpki-client -vvf rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft File: 2kcELjdqlHP8Dt_IRFc53RMorg4.mft (raw, json) Hash identifier: UQknrcQ395WL0KxxwO9gMvwprjTNrewO1QpyMBuzkXQ= Subject key identifier: 3E:D4:1F:4D:95:70:38:44:F9:F5:8B:75:05:C4:1D:DA:7B:D0:24:C0 Authority key identifier: DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E Certificate issuer: /CN=A9191DF4/serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Certificate serial: 0E5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft Manifest number: 0E43 Signing time: Thu 06 Nov 2025 17:08:21 +0000 Manifest this update: Thu 06 Nov 2025 17:08:20 +0000 Manifest next update: Thu 13 Nov 2025 17:08:20 +0000 Files and hashes: 1: 2kcELjdqlHP8Dt_IRFc53RMorg4.crl (hash: vAKPN3BIlfi/CfLq7feLRc2j00/emzpwfHwWdRZ+IQI=) 2: B5D4A156598B11EC82C8685CC4F9AE02.roa (hash: 4QYUWAD8mV7goqY2eyB8OTjIn05Ok4IHRMJOhxEL9Q0=) 3: B922DB22E84211EA918B8F09C4F9AE02.roa (hash: WrORF911HLcFuZdH0HRCb0Ilepojo6I2DwL+ZjMpcO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Nov 2025 17:08:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3676 (0xe5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191DF4, serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Validity Not Before: Nov 6 17:08:20 2025 GMT Not After : Nov 13 17:08:20 2025 GMT Subject: CN=690cd605-0ff5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7c:6d:18:8f:f7:43:bf:9e:58:cc:88:e2:e1: 00:55:8b:af:b4:71:ae:84:e4:29:46:f8:c6:f6:21: 01:42:e9:27:21:fe:38:bb:24:c7:6e:dd:5f:10:d7: 0c:82:e5:bd:41:fb:64:65:66:ce:53:af:42:6d:51: 99:2e:8f:13:b0:26:01:8b:92:e6:c8:89:40:c7:a6: 53:ad:f2:16:54:f8:25:7f:e6:dc:67:82:29:f9:ab: fa:92:47:ed:ae:b4:31:0b:00:46:48:ec:fb:00:99: 28:fc:e0:1e:67:53:84:d4:38:b6:c8:1d:10:d4:96: 89:36:6c:54:3f:52:75:d9:86:c8:53:82:4c:61:c9: 8d:5f:88:80:4c:34:78:20:62:b2:3a:48:c5:97:09: 8f:b2:bd:d9:26:40:dc:c4:8f:ff:33:2f:52:95:8c: 37:f6:9b:9c:9e:0e:37:ef:15:32:03:11:40:45:2a: 49:75:f7:29:c2:2c:f4:18:e4:36:73:77:e4:99:b8: 9e:67:78:a6:a9:ba:25:38:ae:d7:18:0f:5a:59:ab: fc:2e:a6:1b:a2:db:c5:ab:7a:93:b5:7c:c0:04:aa: b3:2e:01:2c:f6:db:0d:55:ba:cf:71:6d:ce:93:23: 27:d4:da:3e:fd:44:b9:3e:36:54:ff:d6:c4:7d:5e: 10:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:D4:1F:4D:95:70:38:44:F9:F5:8B:75:05:C4:1D:DA:7B:D0:24:C0 X509v3 Authority Key Identifier: keyid:DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:d8:7a:4a:bf:93:b5:86:88:62:3d:b2:6a:77:38:fb:5c:ba: 5c:ff:b7:e1:a9:0e:29:b1:d2:1d:7e:a5:5b:6f:fb:dd:ad:f8: d3:ae:17:63:96:56:49:3f:67:7a:f3:92:dd:a0:d2:a2:c2:74: 9f:21:9a:b9:74:92:ba:5d:28:d4:b1:06:c9:ef:2c:31:0a:ef: 5d:d1:55:a0:06:99:95:b5:e1:64:ca:44:44:8f:7d:d5:a7:6b: 11:68:af:54:86:a7:28:4d:ff:2a:44:18:53:41:f7:19:a6:ba: b3:8d:8c:19:fe:3a:ed:d2:50:70:fa:75:33:e5:ac:5e:46:57: f0:3b:0c:d1:25:e1:64:91:ff:51:e3:d3:06:c2:b8:6f:ea:e6: cb:d2:2e:6e:98:71:af:78:79:f4:82:08:a1:e7:3f:ff:b6:49: 07:2c:94:ac:67:7a:6b:41:ee:76:39:36:4c:8e:13:d2:ee:07: 0a:25:72:4f:1b:88:b5:fd:c8:ee:2a:73:7c:b3:4c:d1:60:ce: df:e0:3f:66:2f:7a:9d:11:10:e1:b3:02:41:20:9e:6a:c8:3e: 36:47:8a:ae:0a:be:6b:6e:2b:1f:07:79:99:3e:57:b9:3e:74: e7:08:da:b7:3d:2d:4a:45:6e:c0:8b:b1:20:21:ae:a4:7c:09: 84:ad:48:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFERjQxMTAvBgNVBAUTKERBNDcwNDJFMzc2QTk0NzNGQzBFREZDODQ0NTczOURE MTMyOEFFMEUwHhcNMjUxMTA2MTcwODIwWhcNMjUxMTEzMTcwODIwWjAYMRYwFAYD VQQDEw02OTBjZDYwNS0wZmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXxtGI/3Q7+eWMyI4uEAVYuvtHGuhOQpRvjG9iEBQuknIf44uyTHbt1fENcM guW9QftkZWbOU69CbVGZLo8TsCYBi5LmyIlAx6ZTrfIWVPglf+bcZ4Ip+av6kkft rrQxCwBGSOz7AJko/OAeZ1OE1Di2yB0Q1JaJNmxUP1J12YbIU4JMYcmNX4iATDR4 IGKyOkjFlwmPsr3ZJkDcxI//My9SlYw39pucng437xUyAxFARSpJdfcpwiz0GOQ2 c3fkmbieZ3imqbolOK7XGA9aWav8LqYbotvFq3qTtXzABKqzLgEs9tsNVbrPcW3O kyMn1No+/US5PjZU/9bEfV4QqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7UH02V cDhE+fWLdQXEHdp70CTAMB8GA1UdIwQYMBaAFNpHBC43apRz/A7fyERXOd0TKK4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MURGNC9GNDFEMUMxOEIz OEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxIUDhEdF9JUkZjNTNSTW9y ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY0VMamRxbEhQOER0X0lSRmM1M1JNb3JnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MURGNC9GNDFEMUMxOEIzOEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxI UDhEdF9JUkZjNTNSTW9yZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDR2HpKv5O1hohiPbJqdzj7XLpc/7fhqQ4psdIdfqVbb/vdrfjTrhdj llZJP2d685LdoNKiwnSfIZq5dJK6XSjUsQbJ7ywxCu9d0VWgBpmVteFkykREj33V p2sRaK9UhqcoTf8qRBhTQfcZprqzjYwZ/jrt0lBw+nUz5axeRlfwOwzRJeFkkf9R 49MGwrhv6ubL0i5umHGveHn0ggih5z//tkkHLJSsZ3prQe52OTZMjhPS7gcKJXJP G4i1/cjuKnN8s0zRYM7f4D9mL3qdERDhswJBIJ5qyD42R4quCr5rbisfB3mZPle5 PnTnCNq3PS1KRW7Ai7EgIa6kfAmErUgh -----END CERTIFICATE-----Generated at Fri Nov 7 12:05:59 2025 by rpki-client