$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft File: Sr2iSte9no2c77NZONCoeIBMYuQ.mft (raw, json) Hash identifier: G3th/gW4gDR7YV/K/eQ2cjZTj5MOMhQXaVovYEdZY0U= Subject key identifier: E8:0F:0B:17:A0:09:71:4E:5C:D5:7D:4D:A6:0C:A1:FE:0E:A3:D2:42 Authority key identifier: 4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 Certificate issuer: /CN=A91BE096/serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Certificate serial: 10EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft Manifest number: 10D3 Signing time: Tue 04 Nov 2025 17:23:46 +0000 Manifest this update: Tue 04 Nov 2025 17:23:45 +0000 Manifest next update: Tue 11 Nov 2025 17:23:45 +0000 Files and hashes: 1: Sr2iSte9no2c77NZONCoeIBMYuQ.crl (hash: 7ZjIbrggH8mx/F8TXQ4jqq2C42rsReAnyYRbCmujPBE=) 2: 60E695B6C52A11EE80D54071C4F9AE02.roa (hash: Ur8W3C7QgJQkw3BnGAD55weFMOItsdqD/26WShAlLaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:23:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4332 (0x10ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE096, serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Validity Not Before: Nov 4 17:23:45 2025 GMT Not After : Nov 11 17:23:45 2025 GMT Subject: CN=690a36a2-a98a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3b:86:35:1c:38:11:c5:dd:ac:2e:e6:a4:ad: 0a:d8:86:0e:0e:c6:4b:8a:17:6b:a4:4e:10:54:36: 02:4b:09:d0:bc:1a:50:fb:ba:82:aa:21:7b:7a:30: ce:d5:d4:c8:ba:45:13:18:1e:c9:69:9b:51:52:33: e0:e6:88:68:af:c7:f1:5f:5a:e3:9f:48:74:23:a2: 8b:06:b6:87:d5:50:16:7e:ea:d1:39:4a:fd:5a:73: ce:f6:87:90:a4:e9:30:ce:12:c2:5c:5b:4f:20:f7: a8:c4:7c:de:35:60:f9:60:71:e1:5d:e4:16:ed:ad: dc:77:2e:00:f9:2a:1c:04:b8:3e:b1:d5:90:62:7c: 4c:c5:47:d4:5c:9d:22:95:f6:23:35:b1:dd:9d:36: ec:35:23:dc:05:79:4b:55:da:73:88:ed:8e:87:50: 4f:e5:e5:10:29:4b:18:d2:f9:92:14:5d:4e:16:48: 07:4f:3b:b6:ad:b3:21:25:0c:47:4c:e7:2a:10:12: 76:cb:95:54:56:3f:6f:ad:d9:e9:f5:06:f9:43:06: 0f:aa:82:cd:11:76:2b:ab:6e:a0:e7:fc:85:b6:a1: 08:58:99:bc:45:8f:14:d4:e4:1b:1e:fb:aa:8c:1a: 32:a4:c8:8e:1a:53:48:bb:8f:a0:26:1b:e4:97:61: b7:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:0F:0B:17:A0:09:71:4E:5C:D5:7D:4D:A6:0C:A1:FE:0E:A3:D2:42 X509v3 Authority Key Identifier: keyid:4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:e9:c7:46:3b:97:97:09:d9:3f:a5:a0:a1:ed:1f:f3:c4:37: 0e:eb:59:16:d3:cf:6f:36:8e:64:31:91:12:a9:58:da:c6:77: 82:5f:a0:bf:90:d3:e0:45:a5:da:fb:02:ff:a4:f9:22:25:ff: 34:38:f5:d8:10:cf:a3:a5:a9:45:88:0a:23:b0:3f:2d:62:bb: 5a:27:0b:90:95:8e:b8:7b:8f:5c:7a:ad:30:90:41:b6:20:18: 33:27:24:46:2d:38:cf:f1:57:87:4c:44:83:7c:8e:f2:7c:3a: 42:1d:ca:09:2b:24:fb:71:a8:df:63:1c:e1:7a:f1:22:93:f0: 91:f2:8a:ba:7a:ad:f5:77:fc:08:21:9e:44:5b:af:f3:a5:2a: 4d:bc:f6:f1:54:67:f3:c6:03:3b:d4:86:91:86:d7:22:63:22: 73:8a:12:60:f6:f8:bf:af:f4:eb:b8:1f:ab:cb:57:cf:d8:3e: a9:72:53:8b:df:05:55:30:c2:42:ce:aa:71:a3:b9:c3:31:db: 19:4d:93:85:1b:5b:22:ed:53:7a:87:03:d9:3d:cf:76:00:da: 81:55:9e:7d:33:b3:e2:1b:fe:27:6d:6b:03:23:ab:bd:3f:8b: cf:a5:6f:0b:07:b9:46:f9:75:03:29:d6:24:27:2d:d1:10:eb: e3:bd:08:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUwOTYxMTAvBgNVBAUTKDRBQkRBMjRBRDdCRDlFOEQ5Q0VGQjM1OTM4RDBBODc4 ODA0QzYyRTQwHhcNMjUxMTA0MTcyMzQ1WhcNMjUxMTExMTcyMzQ1WjAYMRYwFAYD VQQDEw02OTBhMzZhMi1hOThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujuGNRw4EcXdrC7mpK0K2IYODsZLihdrpE4QVDYCSwnQvBpQ+7qCqiF7ejDO 1dTIukUTGB7JaZtRUjPg5ohor8fxX1rjn0h0I6KLBraH1VAWfurROUr9WnPO9oeQ pOkwzhLCXFtPIPeoxHzeNWD5YHHhXeQW7a3cdy4A+SocBLg+sdWQYnxMxUfUXJ0i lfYjNbHdnTbsNSPcBXlLVdpziO2Oh1BP5eUQKUsY0vmSFF1OFkgHTzu2rbMhJQxH TOcqEBJ2y5VUVj9vrdnp9Qb5QwYPqoLNEXYrq26g5/yFtqEIWJm8RY8U1OQbHvuq jBoypMiOGlNIu4+gJhvkl2G3eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOgPCxeg CXFOXNV9TaYMof4Oo9JCMB8GA1UdIwQYMBaAFEq9okrXvZ6NnO+zWTjQqHiATGLk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTA5Ni8yRkJCNDQwRTMz NDUxMUU5OThDNTY3M0JDNEY5QUUwMi9TcjJpU3RlOW5vMmM3N05aT05Db2VJQk1Z dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NyMmlTdGU5bm8yYzc3TlpPTkNvZUlCTVl1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RTA5Ni8yRkJCNDQwRTMzNDUxMUU5OThDNTY3M0JDNEY5QUUwMi9TcjJpU3RlOW5v MmM3N05aT05Db2VJQk1ZdVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC76cdGO5eXCdk/paCh7R/zxDcO61kW089vNo5kMZESqVjaxneCX6C/ kNPgRaXa+wL/pPkiJf80OPXYEM+jpalFiAojsD8tYrtaJwuQlY64e49ceq0wkEG2 IBgzJyRGLTjP8VeHTESDfI7yfDpCHcoJKyT7cajfYxzhevEik/CR8oq6eq31d/wI IZ5EW6/zpSpNvPbxVGfzxgM71IaRhtciYyJzihJg9vi/r/TruB+ry1fP2D6pclOL 3wVVMMJCzqpxo7nDMdsZTZOFG1si7VN6hwPZPc92ANqBVZ59M7PiG/4nbWsDI6u9 P4vPpW8LB7lG+XUDKdYkJy3REOvjvQh8 -----END CERTIFICATE-----Generated at Wed Nov 5 12:23:34 2025 by rpki-client