$ rpki-client -vvf rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft File: -c2wYYjVT9E3MDC5IMjkRdstPVc.mft (raw, json) Hash identifier: MN94y9P/WofbKlkEDt0iLVtk/9EY05qm+cp5U0x+2CQ= Subject key identifier: 3E:CB:F6:04:EE:2E:AF:36:53:31:86:1F:5C:E2:20:1F:D2:01:33:63 Authority key identifier: F9:CD:B0:61:88:D5:4F:D1:37:30:30:B9:20:C8:E4:45:DB:2D:3D:57 Certificate issuer: /CN=A91A99F8/serialNumber=F9CDB06188D54FD1373030B920C8E445DB2D3D57 Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft Manifest number: 7F Signing time: Wed 05 Nov 2025 07:01:54 +0000 Manifest this update: Wed 05 Nov 2025 07:01:54 +0000 Manifest next update: Wed 12 Nov 2025 07:01:53 +0000 Files and hashes: 1: -c2wYYjVT9E3MDC5IMjkRdstPVc.crl (hash: dcbMxAZzIOpHkPUT63cWUEocOx9KeJ2RLsraqB3wYws=) 2: C4D0CEECACF611F0AC34117FC4F9AE02.roa (hash: 7ucYBUaCLmqgDRuv79Vd3l7kVK2Q22cJEETdC+Ms3yg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.crl rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:01:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A99F8, serialNumber=F9CDB06188D54FD1373030B920C8E445DB2D3D57 Validity Not Before: Nov 5 07:01:54 2025 GMT Not After : Nov 12 07:01:53 2025 GMT Subject: CN=690af662-ca25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7f:83:08:8a:67:ab:be:27:fe:5c:39:83:b2: 03:94:19:8f:b1:43:6b:be:a7:a6:53:1f:15:cd:f5: 1a:98:18:b5:40:43:df:9d:71:a4:8a:c5:0b:a0:b4: 69:f3:6d:27:1f:19:e6:c8:d3:a2:45:b2:9e:79:4b: 25:aa:34:26:9c:ba:d7:88:27:8f:b5:fd:89:59:e9: 1d:14:8c:52:8a:a9:8b:38:1d:1d:d2:fe:8a:87:c1: 5c:1d:aa:8e:53:35:84:66:e9:e3:72:96:80:d2:b1: 22:23:a2:3a:09:08:79:ca:87:65:d0:6c:8d:81:0b: 68:e4:23:93:da:1c:39:0d:fc:64:57:eb:94:62:9e: 17:07:be:80:96:69:95:51:f9:04:70:cd:9d:e1:21: 0b:79:57:67:32:52:47:75:71:eb:64:fe:4c:6a:9a: f7:c9:71:de:db:8b:95:81:b7:1f:5b:38:89:89:c5: 7e:2c:7a:f9:b6:04:d9:8a:1f:a4:3f:98:c2:4b:30: 27:31:61:cd:b0:c4:09:57:7a:d3:84:aa:79:33:7f: 43:74:c1:b9:b0:85:95:26:38:4e:f9:e8:ee:24:62: 36:8a:82:c2:a3:99:b6:01:c7:1a:f7:b4:31:02:f0: 7f:99:b0:6b:55:ee:35:fa:ad:78:be:df:d9:81:26: 0d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:CB:F6:04:EE:2E:AF:36:53:31:86:1F:5C:E2:20:1F:D2:01:33:63 X509v3 Authority Key Identifier: keyid:F9:CD:B0:61:88:D5:4F:D1:37:30:30:B9:20:C8:E4:45:DB:2D:3D:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:67:cc:d9:41:ae:e5:31:6d:0b:d2:c9:c4:59:b5:26:11:cf: f1:e1:c2:80:c8:90:01:6e:d5:7d:1e:fd:ce:2a:83:9d:6e:04: 37:2d:bd:77:e1:b3:70:c2:59:bf:c9:e7:7d:63:da:a9:36:4e: 8e:9a:9a:92:36:25:a7:4f:b2:d7:cc:aa:7c:1f:ac:1e:77:e2: 9e:2c:69:9a:4d:02:94:57:6a:76:10:3f:6e:df:e5:13:f6:dc: c2:a1:39:df:b5:77:b3:aa:b7:37:50:b6:b2:dd:e8:eb:68:c2: c8:7b:3b:a6:94:b0:5f:5d:07:64:8b:95:d8:b2:b1:ff:eb:85: 65:f0:69:a0:30:4c:e4:2f:51:58:7f:ac:26:c4:28:32:64:27: 82:09:82:22:30:dc:62:89:b6:25:aa:33:51:17:40:9d:93:d0: a7:5e:d3:87:a0:c1:d1:22:01:f1:47:5d:73:f0:c7:70:0f:3a: 95:7c:66:ac:9c:14:da:e5:35:e1:51:4b:bc:47:a9:68:89:79: 4c:a2:63:55:b1:b8:71:20:84:d2:a4:24:04:53:31:ee:2d:53: 98:e8:77:20:d5:af:14:df:ff:f0:9b:02:5a:a0:d7:76:76:a9: 6b:2f:4b:13:b1:17:9e:f4:ad:84:a9:5e:3a:a6:fc:25:26:53: 9c:27:43:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk5RjgxMTAvBgNVBAUTKEY5Q0RCMDYxODhENTRGRDEzNzMwMzBCOTIwQzhFNDQ1 REIyRDNENTcwHhcNMjUxMTA1MDcwMTU0WhcNMjUxMTEyMDcwMTUzWjAYMRYwFAYD VQQDEw02OTBhZjY2Mi1jYTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA03+DCIpnq74n/lw5g7IDlBmPsUNrvqemUx8VzfUamBi1QEPfnXGkisULoLRp 820nHxnmyNOiRbKeeUslqjQmnLrXiCePtf2JWekdFIxSiqmLOB0d0v6Kh8FcHaqO UzWEZunjcpaA0rEiI6I6CQh5yodl0GyNgQto5COT2hw5DfxkV+uUYp4XB76AlmmV UfkEcM2d4SELeVdnMlJHdXHrZP5Mapr3yXHe24uVgbcfWziJicV+LHr5tgTZih+k P5jCSzAnMWHNsMQJV3rThKp5M39DdMG5sIWVJjhO+ejuJGI2ioLCo5m2Acca97Qx AvB/mbBrVe41+q14vt/ZgSYNuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7L9gTu Lq82UzGGH1ziIB/SATNjMB8GA1UdIwQYMBaAFPnNsGGI1U/RNzAwuSDI5EXbLT1X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTlGOC83QTREN0I4ODA0 QTcxMUYwQjRENzM5ODJDNEY5QUUwMi8tYzJ3WVlqVlQ5RTNNREM1SU1qa1Jkc3RQ VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1jMndZWWpWVDlFM01EQzVJTWprUmRzdFBWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTlGOC83QTREN0I4ODA0QTcxMUYwQjRENzM5ODJDNEY5QUUwMi8tYzJ3WVlqVlQ5 RTNNREM1SU1qa1Jkc3RQVmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1Z8zZQa7lMW0L0snEWbUmEc/x4cKAyJABbtV9Hv3OKoOdbgQ3Lb13 4bNwwlm/yed9Y9qpNk6OmpqSNiWnT7LXzKp8H6wed+KeLGmaTQKUV2p2ED9u3+UT 9tzCoTnftXezqrc3ULay3ejraMLIezumlLBfXQdki5XYsrH/64Vl8GmgMEzkL1FY f6wmxCgyZCeCCYIiMNxiibYlqjNRF0Cdk9CnXtOHoMHRIgHxR11z8MdwDzqVfGas nBTa5TXhUUu8R6loiXlMomNVsbhxIITSpCQEUzHuLVOY6Hcg1a8U3//wmwJaoNd2 dqlrL0sTsRee9K2EqV46pvwlJlOcJ0Mq -----END CERTIFICATE-----Generated at Wed Nov 5 10:05:23 2025 by rpki-client