$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft File: r2ctqMXR1sgNUGF4yefLdE9uOOY.mft (raw, json) Hash identifier: apFjL1oR3SMbv5eXv4Fkd7H4Lhz792j44Kk6NmOP7OM= Subject key identifier: DF:DD:58:78:2A:AE:CA:38:74:07:5B:45:72:27:52:A0:56:93:35:33 Authority key identifier: AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 Certificate issuer: /CN=A91A6F2D/serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft Manifest number: B3 Signing time: Tue 04 Nov 2025 22:52:34 +0000 Manifest this update: Tue 04 Nov 2025 22:52:34 +0000 Manifest next update: Tue 11 Nov 2025 22:52:34 +0000 Files and hashes: 1: r2ctqMXR1sgNUGF4yefLdE9uOOY.crl (hash: vyROcfKsJiYQTohmOv4gINCDrWx3Ng4pqtClzJVW9pg=) 2: FBE0AB56AC6511EFAEAA8A3CC4F9AE02.roa (hash: 05N/6Qhw5iJe1Qr/JCmwvRl4veGMACl1Zh2wsIyWrXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:52:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F2D, serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Validity Not Before: Nov 4 22:52:34 2025 GMT Not After : Nov 11 22:52:34 2025 GMT Subject: CN=690a83b2-2cce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c8:9b:3c:ce:b9:f7:9a:17:7d:53:b7:ab:3c: b3:fb:63:e0:99:6c:00:1d:3e:e6:6b:ec:e5:b0:bc: 6e:10:06:51:9d:d4:b2:f9:87:ad:74:a8:7e:e4:b7: 2b:d1:e1:5f:ec:f7:96:bc:8f:97:b6:03:01:20:ca: 76:b0:38:6d:bc:c2:a0:48:14:ad:98:3b:64:08:b8: b2:7f:1d:4d:37:e2:61:09:a5:b6:ac:4f:fb:e9:ef: b4:99:d4:3c:84:66:d9:2c:58:3f:cc:4b:60:e9:d6: 31:e2:54:ae:7d:aa:14:36:70:85:39:68:36:cf:0e: cb:6a:a5:05:e7:f4:ff:ce:10:11:dc:73:04:72:47: 03:c1:9d:71:4a:f0:3d:8a:f5:d0:8b:18:12:38:09: 3f:d1:b5:c5:ed:52:64:6e:11:d3:b3:9c:62:72:23: 41:92:3a:63:3b:39:c6:9d:c3:c4:54:ce:3f:48:4c: 9e:4e:1c:4f:af:0b:25:8a:b1:f8:cf:10:0a:88:67: 44:f4:d6:38:b4:f9:c5:28:d3:98:a1:da:9a:ae:cf: 7e:63:8c:b4:6a:cb:08:57:75:ad:6d:ca:e9:4b:72: 01:3e:db:9a:28:0a:c2:48:e8:73:bb:98:11:1c:df: 57:b5:48:8e:23:f9:23:8c:d9:c1:5b:1e:fd:cc:0a: 9e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:DD:58:78:2A:AE:CA:38:74:07:5B:45:72:27:52:A0:56:93:35:33 X509v3 Authority Key Identifier: keyid:AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:06:dd:bc:2d:e7:af:c4:c4:77:53:eb:56:a2:25:f4:a3:f8: bc:a3:01:8b:a7:9c:08:0c:2b:07:ab:38:41:bb:64:bf:83:4c: 43:4b:26:97:3a:4d:de:2d:25:0e:37:2f:0d:2f:35:2e:ad:11: 67:4e:56:54:2e:66:22:1d:0f:5d:ad:a1:76:c2:97:b1:31:c3: ef:e8:e3:85:cd:22:32:48:b6:c1:8b:6f:a9:f8:59:ed:34:12: d1:9f:97:19:da:fe:12:28:90:ad:4d:77:f7:71:2e:b6:17:14: 4c:ab:90:b1:30:77:41:b1:6c:d1:e7:df:fc:29:7a:cc:8e:b1: ae:ac:28:24:96:21:4a:2f:11:e8:73:72:ce:20:7f:c9:b3:75: 83:a3:ee:d8:22:35:b2:f8:eb:a0:6e:c8:fb:02:0e:60:ca:80: ff:74:9e:8b:b6:05:10:55:93:83:9c:28:38:18:de:cf:7a:c0: 3c:1c:ca:2b:fd:c0:61:8e:2b:50:68:16:0a:69:24:8e:d5:3c: e6:38:89:1f:0a:54:71:da:c4:ce:da:03:e9:1f:10:70:7e:c9: 40:83:95:90:b7:be:53:c0:d9:21:40:d6:98:b5:2c:01:6d:be: dc:92:8a:93:98:f7:9a:58:71:73:73:f1:43:46:25:c8:14:65: ce:c8:fe:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGMkQxMTAvBgNVBAUTKEFGNjcyREE4QzVEMUQ2QzgwRDUwNjE3OEM5RTdDQjc0 NEY2RTM4RTYwHhcNMjUxMTA0MjI1MjM0WhcNMjUxMTExMjI1MjM0WjAYMRYwFAYD VQQDEw02OTBhODNiMi0yY2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsibPM6595oXfVO3qzyz+2PgmWwAHT7ma+zlsLxuEAZRndSy+YetdKh+5Lcr 0eFf7PeWvI+XtgMBIMp2sDhtvMKgSBStmDtkCLiyfx1NN+JhCaW2rE/76e+0mdQ8 hGbZLFg/zEtg6dYx4lSufaoUNnCFOWg2zw7LaqUF5/T/zhAR3HMEckcDwZ1xSvA9 ivXQixgSOAk/0bXF7VJkbhHTs5xiciNBkjpjOznGncPEVM4/SEyeThxPrwslirH4 zxAKiGdE9NY4tPnFKNOYodqars9+Y4y0assIV3WtbcrpS3IBPtuaKArCSOhzu5gR HN9XtUiOI/kjjNnBWx79zAqeNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN/dWHgq rso4dAdbRXInUqBWkzUzMB8GA1UdIwQYMBaAFK9nLajF0dbIDVBheMnny3RPbjjm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkYyRC82RjgyMTE3OEFC ODgxMUVGODBDNzVBNzRDNEY5QUUwMi9yMmN0cU1YUjFzZ05VR0Y0eWVmTGRFOXVP T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3IyY3RxTVhSMXNnTlVHRjR5ZWZMZEU5dU9PWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkYyRC82RjgyMTE3OEFCODgxMUVGODBDNzVBNzRDNEY5QUUwMi9yMmN0cU1YUjFz Z05VR0Y0eWVmTGRFOXVPT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZBt28LeevxMR3U+tWoiX0o/i8owGLp5wIDCsHqzhBu2S/g0xDSyaX Ok3eLSUONy8NLzUurRFnTlZULmYiHQ9draF2wpexMcPv6OOFzSIySLbBi2+p+Fnt NBLRn5cZ2v4SKJCtTXf3cS62FxRMq5CxMHdBsWzR59/8KXrMjrGurCgkliFKLxHo c3LOIH/Js3WDo+7YIjWy+Ougbsj7Ag5gyoD/dJ6LtgUQVZODnCg4GN7PesA8HMor /cBhjitQaBYKaSSO1TzmOIkfClRx2sTO2gPpHxBwfslAg5WQt75TwNkhQNaYtSwB bb7ckoqTmPeaWHFzc/FDRiXIFGXOyP7A -----END CERTIFICATE-----Generated at Wed Nov 5 04:48:37 2025 by rpki-client