$ rpki-client -vvf rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft File: 2fwVW2_aEGxpmlabEgOEkJWKoy8.mft (raw, json) Hash identifier: CIfmzJ3a1fFgQZ6QJoabVrHf97LcuQXl8JAnJYoRuH8= Subject key identifier: E2:61:6A:64:DF:ED:30:41:EF:33:FD:3A:D2:90:04:DB:D5:37:7D:77 Authority key identifier: D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F Certificate issuer: /CN=A91B53A5/serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Certificate serial: 1AA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft Manifest number: 1A85 Signing time: Tue 04 Nov 2025 16:25:53 +0000 Manifest this update: Tue 04 Nov 2025 16:25:53 +0000 Manifest next update: Tue 11 Nov 2025 16:25:53 +0000 Files and hashes: 1: 2fwVW2_aEGxpmlabEgOEkJWKoy8.crl (hash: yXC5pWa/iczdpTFVMQG2HjXKJKM+xutvPy8mfMwdASI=) 2: C443D86A55A311E7896BED09C4F9AE02.roa (hash: iAz8qRk3/H7vOgPRojw19iFmTjtRy8EuUxq8QG7UtTs=) 3: A9286C0E6D4411E7AF539270C4F9AE02.roa (hash: BhjSntJM5KeISAX/AXFVMKFsUVqLH2ibjtVSQJsKXQw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:25:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6816 (0x1aa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B53A5, serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Validity Not Before: Nov 4 16:25:53 2025 GMT Not After : Nov 11 16:25:53 2025 GMT Subject: CN=690a2911-4865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:39:ad:8b:d8:90:a3:e3:e5:be:20:51:90:f5: b3:d6:82:87:d8:11:d8:e1:33:bf:99:db:2c:5b:19: 19:98:e0:94:75:7d:6b:d5:8f:5c:88:d4:ea:66:4e: 90:23:07:2b:56:ee:50:3a:66:41:eb:85:40:51:31: c6:3c:3b:1e:87:e3:96:cb:91:83:8f:71:f4:be:48: cd:4c:20:bd:ee:d8:c8:87:11:a5:0e:e2:31:ae:ed: 14:c0:71:c1:d5:c4:2f:14:f5:c3:34:15:a1:ff:ac: 7b:b5:69:62:1c:49:e5:d4:a8:19:d0:65:dc:7d:52: d3:68:bb:15:19:0f:27:24:6b:13:04:14:15:04:44: a9:6a:ed:04:a6:b2:ba:f2:58:3a:42:e4:98:09:e8: 53:c1:21:72:77:a5:94:2c:24:9b:10:c9:b2:d6:98: 39:87:10:63:32:fc:21:44:3f:f3:f3:86:91:7d:08: f5:a2:04:ec:e2:15:79:30:bd:5f:fc:42:74:60:46: 32:8f:9d:ce:88:7f:22:1d:3e:c2:74:4e:a3:b1:12: 64:33:b5:13:1c:77:71:37:ca:ba:89:78:6c:09:36: f3:5e:d6:b3:72:2f:03:8c:0a:28:d1:30:24:72:e5: d1:b2:e6:59:c5:86:81:e6:de:e1:34:a3:a0:9b:7e: c4:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:61:6A:64:DF:ED:30:41:EF:33:FD:3A:D2:90:04:DB:D5:37:7D:77 X509v3 Authority Key Identifier: keyid:D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:aa:3a:a9:44:41:a0:20:ea:99:af:99:40:53:32:84:d3:b3: be:e5:ec:3a:25:dd:07:43:0b:66:12:01:39:20:03:1f:4a:a6: 7d:5c:04:7e:ff:be:45:eb:2c:25:31:04:4e:99:f1:7e:45:a1: d3:8a:3a:db:2d:ad:a7:d8:20:9c:c6:76:69:1f:87:b8:1a:c3: 55:32:68:95:6c:b0:b3:7c:1f:61:ad:ac:29:4c:56:6a:ac:67: 8a:c2:ac:14:be:c4:ed:f0:b9:28:b0:5d:01:f4:5a:2a:7b:98: ea:52:5d:34:a6:6f:32:89:c5:b6:e3:1d:c8:61:2e:f3:f2:b9: a9:48:8c:20:68:2d:88:d6:4c:46:a9:b7:2d:1d:5b:c5:f5:ba: 4d:32:a4:aa:55:fc:bb:26:d1:76:7f:04:89:14:04:15:f2:cd: 56:1e:0f:6c:a8:f3:e9:c1:9a:42:2d:dd:38:07:e0:dd:36:b1: a2:6d:20:46:e0:f4:72:7d:75:e8:5d:c9:b2:5b:ad:fe:be:61: ed:92:8f:0d:df:47:4c:ff:5e:b1:d1:af:6d:85:02:4d:96:bd: 15:f9:0e:40:d8:98:2f:7a:45:c1:b6:4a:9d:b5:60:f6:6e:4f: 60:d8:1f:40:d7:bc:58:1c:bf:3e:38:8b:48:83:3a:27:ff:28: 34:27:55:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUzQTUxMTAvBgNVBAUTKEQ5RkMxNTVCNkZEQTEwNkM2OTlBNTY5QjEyMDM4NDkw OTU4QUEzMkYwHhcNMjUxMTA0MTYyNTUzWhcNMjUxMTExMTYyNTUzWjAYMRYwFAYD VQQDEw02OTBhMjkxMS00ODY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDmti9iQo+PlviBRkPWz1oKH2BHY4TO/mdssWxkZmOCUdX1r1Y9ciNTqZk6Q IwcrVu5QOmZB64VAUTHGPDseh+OWy5GDj3H0vkjNTCC97tjIhxGlDuIxru0UwHHB 1cQvFPXDNBWh/6x7tWliHEnl1KgZ0GXcfVLTaLsVGQ8nJGsTBBQVBESpau0EprK6 8lg6QuSYCehTwSFyd6WULCSbEMmy1pg5hxBjMvwhRD/z84aRfQj1ogTs4hV5ML1f /EJ0YEYyj53OiH8iHT7CdE6jsRJkM7UTHHdxN8q6iXhsCTbzXtazci8DjAoo0TAk cuXRsuZZxYaB5t7hNKOgm37E9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOJhamTf 7TBB7zP9OtKQBNvVN313MB8GA1UdIwQYMBaAFNn8FVtv2hBsaZpWmxIDhJCViqMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTNBNS8yNTgwQThENjRC NjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVHeHBtbGFiRWdPRWtKV0tv eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJmd1ZXMl9hRUd4cG1sYWJFZ09Fa0pXS295OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTNBNS8yNTgwQThENjRCNjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVH eHBtbGFiRWdPRWtKV0tveTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSqjqpREGgIOqZr5lAUzKE07O+5ew6Jd0HQwtmEgE5IAMfSqZ9XAR+ /75F6ywlMQROmfF+RaHTijrbLa2n2CCcxnZpH4e4GsNVMmiVbLCzfB9hrawpTFZq rGeKwqwUvsTt8LkosF0B9Foqe5jqUl00pm8yicW24x3IYS7z8rmpSIwgaC2I1kxG qbctHVvF9bpNMqSqVfy7JtF2fwSJFAQV8s1WHg9sqPPpwZpCLd04B+DdNrGibSBG 4PRyfXXoXcmyW63+vmHtko8N30dM/16x0a9thQJNlr0V+Q5A2JgvekXBtkqdtWD2 bk9g2B9A17xYHL8+OItIgzon/yg0J1X7 -----END CERTIFICATE-----Generated at Wed Nov 5 10:28:30 2025 by rpki-client