$ rpki-client -vvf rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft File: 2en59z7k9bHN8XYsLfODKVCja30.mft (raw, json) Hash identifier: KuDfGy5SqGt603Nv2Y4bJlnCK934M3TU2zMkWhxLAM0= Subject key identifier: 2B:A4:63:61:4C:40:42:09:DC:23:63:7C:FC:94:35:90:02:86:5B:49 Authority key identifier: D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D Certificate issuer: /CN=A91AACB2/serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Certificate serial: 34E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft Manifest number: 34DC Signing time: Tue 04 Nov 2025 15:01:22 +0000 Manifest this update: Tue 04 Nov 2025 15:01:21 +0000 Manifest next update: Tue 11 Nov 2025 15:01:21 +0000 Files and hashes: 1: 2en59z7k9bHN8XYsLfODKVCja30.crl (hash: 9Do70E3vrN/L3bi/zYf34W0qoprKQk6EMo06hoLJgGs=) 2: 76B5C744B45E11EAB71DF94AC4F9AE02.roa (hash: RzsyMG8grNRl/TU/HKZlXJ7ZiLnl0fu14E8Z0lJpa0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13538 (0x34e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AACB2, serialNumber=D9E9F9F73EE4F5B1CDF1762C2DF3832950A36B7D Validity Not Before: Nov 4 15:01:21 2025 GMT Not After : Nov 11 15:01:21 2025 GMT Subject: CN=690a1541-fdd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:73:74:44:1c:e4:e4:6b:32:d2:ba:5a:82:8b: 06:c1:2d:20:f4:81:3d:08:ef:5f:17:b5:e2:c9:1d: e8:d0:78:2c:b6:57:41:f6:92:70:c9:e5:cf:6b:30: 29:d4:9a:36:89:ff:3f:da:e5:04:0b:08:c0:b7:38: dc:a1:e3:c9:e5:24:1b:72:23:ba:62:e3:3e:1c:12: a4:e3:5d:8b:77:05:12:f4:d8:a8:83:f7:a4:7f:58: ec:47:35:40:88:89:d4:74:60:59:81:d0:c5:8b:db: 5b:0f:f2:e6:99:ac:03:23:45:fa:13:8e:8c:69:e8: 7e:f6:c2:d3:03:c9:ca:7d:17:e4:99:0a:e8:ba:ed: 5a:bc:3a:8a:47:3c:ec:03:30:50:66:f9:79:f4:13: 2b:dc:67:0f:0a:e1:58:90:fd:75:1c:45:b0:30:69: ae:5c:b5:14:61:83:a4:1c:d9:9b:88:b5:1e:2a:f1: 55:20:fa:04:e1:92:2a:96:44:32:86:54:eb:b7:bb: 42:18:dd:e6:5d:28:52:89:35:b5:6f:74:4b:92:d8: 11:fa:1c:53:20:05:8e:c5:06:43:80:34:36:8a:97: eb:bc:74:70:b9:44:43:ff:33:38:a3:f1:6b:af:d3: e1:77:08:01:d4:29:d0:33:fc:10:4a:57:29:f6:ab: fc:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:A4:63:61:4C:40:42:09:DC:23:63:7C:FC:94:35:90:02:86:5B:49 X509v3 Authority Key Identifier: keyid:D9:E9:F9:F7:3E:E4:F5:B1:CD:F1:76:2C:2D:F3:83:29:50:A3:6B:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2en59z7k9bHN8XYsLfODKVCja30.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AACB2/37D5A3DE1D9C11E2892E8B8A08B02CD2/2en59z7k9bHN8XYsLfODKVCja30.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:43:e2:62:a5:39:04:00:94:c9:7e:5b:06:7f:ec:75:8e:87: 73:b5:25:71:a6:05:5c:43:47:c5:76:96:7b:79:c2:aa:34:a5: 7b:6d:09:dc:62:c4:d2:f0:d8:69:d7:d0:06:6a:61:73:68:3d: d2:b0:b3:6f:a6:cf:95:b9:f1:83:c6:4e:71:11:1d:eb:9e:22: 33:63:33:e5:7c:0e:ee:10:a5:28:b8:98:f8:4d:3b:f3:b7:c1: 13:f9:3f:2e:7e:c1:da:d3:2f:c5:9c:76:86:c9:c8:e0:bd:6b: a0:b3:d2:86:0d:e9:f4:cb:78:88:31:66:e0:c9:bf:1a:d0:b8: 16:0d:c1:29:1f:8a:4f:da:53:3a:e1:2f:9d:ed:36:93:4b:3c: b5:76:b3:e9:05:ce:d7:92:39:55:98:b5:45:db:62:87:ad:81: 46:15:4a:9e:9a:6e:fe:07:62:dc:36:1a:32:a8:59:1d:5e:13: 86:48:4e:aa:d7:89:73:67:f9:64:0a:ab:cd:51:8e:15:fe:be: d1:9d:25:45:6b:15:58:90:41:38:db:6e:7c:90:94:78:8c:ea: 4e:99:13:d0:67:11:38:53:d0:a0:f0:2d:29:7b:d7:88:3c:f8: 42:0f:b7:09:f7:6f:6b:20:59:5d:6f:8d:b4:f5:91:8a:24:f1: c5:95:dd:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDQjIxMTAvBgNVBAUTKEQ5RTlGOUY3M0VFNEY1QjFDREYxNzYyQzJERjM4MzI5 NTBBMzZCN0QwHhcNMjUxMTA0MTUwMTIxWhcNMjUxMTExMTUwMTIxWjAYMRYwFAYD VQQDEw02OTBhMTU0MS1mZGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3N0RBzk5Gsy0rpagosGwS0g9IE9CO9fF7XiyR3o0HgstldB9pJwyeXPazAp 1Jo2if8/2uUECwjAtzjcoePJ5SQbciO6YuM+HBKk412LdwUS9Niog/ekf1jsRzVA iInUdGBZgdDFi9tbD/LmmawDI0X6E46Maeh+9sLTA8nKfRfkmQrouu1avDqKRzzs AzBQZvl59BMr3GcPCuFYkP11HEWwMGmuXLUUYYOkHNmbiLUeKvFVIPoE4ZIqlkQy hlTrt7tCGN3mXShSiTW1b3RLktgR+hxTIAWOxQZDgDQ2ipfrvHRwuURD/zM4o/Fr r9PhdwgB1CnQM/wQSlcp9qv8BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCukY2FM QEIJ3CNjfPyUNZAChltJMB8GA1UdIwQYMBaAFNnp+fc+5PWxzfF2LC3zgylQo2t9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUNCMi8zN0Q1QTNERTFE OUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azliSE44WFlzTGZPREtWQ2ph MzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJlbjU5ejdrOWJITjhYWXNMZk9ES1ZDamEzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUNCMi8zN0Q1QTNERTFEOUMxMUUyODkyRThCOEEwOEIwMkNEMi8yZW41OXo3azli SE44WFlzTGZPREtWQ2phMzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6Q+JipTkEAJTJflsGf+x1jodztSVxpgVcQ0fFdpZ7ecKqNKV7bQnc YsTS8Nhp19AGamFzaD3SsLNvps+VufGDxk5xER3rniIzYzPlfA7uEKUouJj4TTvz t8ET+T8ufsHa0y/FnHaGycjgvWugs9KGDen0y3iIMWbgyb8a0LgWDcEpH4pP2lM6 4S+d7TaTSzy1drPpBc7XkjlVmLVF22KHrYFGFUqemm7+B2LcNhoyqFkdXhOGSE6q 14lzZ/lkCqvNUY4V/r7RnSVFaxVYkEE42258kJR4jOpOmRPQZxE4U9Cg8C0pe9eI PPhCD7cJ929rIFldb4209ZGKJPHFld1t -----END CERTIFICATE-----Generated at Tue Nov 4 21:37:08 2025 by rpki-client