$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft File: AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft (raw, json) Hash identifier: xgjRStjsWyVPmMlbHQ7/TW2cDqmGYKV3JEy4xsB4kCQ= Subject key identifier: BC:B6:50:6B:EF:C6:BB:70:F6:45:E4:8F:A5:2E:60:D3:D8:0D:2A:5B Authority key identifier: 01:7D:8D:B8:A7:88:74:AB:2F:9A:D9:7D:E5:7A:FD:E1:BE:16:7D:44 Certificate issuer: /CN=A91C2F8C/serialNumber=017D8DB8A78874AB2F9AD97DE57AFDE1BE167D44 Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft Manifest number: C7 Signing time: Mon 03 Nov 2025 05:47:16 +0000 Manifest this update: Mon 03 Nov 2025 05:47:15 +0000 Manifest next update: Mon 10 Nov 2025 05:47:15 +0000 Files and hashes: 1: AX2NuKeIdKsvmtl95Xr94b4WfUQ.crl (hash: QGLZFIGtwzGdUF9HOTn+CPD3G/tr4oi89eDGaDhuFpM=) 2: CEB2CA5686E011EF81BE1A7FC4F9AE02.roa (hash: 6Kn2Tc8nx8bkTt0Gnf962Qu64Px5Cncotr8SgT4Ke8I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.crl rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:47:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2F8C, serialNumber=017D8DB8A78874AB2F9AD97DE57AFDE1BE167D44 Validity Not Before: Nov 3 05:47:15 2025 GMT Not After : Nov 10 05:47:15 2025 GMT Subject: CN=690841e4-0263 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:19:75:6f:9b:06:5d:34:26:93:f2:87:85:fc: 13:73:fe:dd:99:60:e2:76:ee:ba:fb:67:f4:62:26: e6:79:52:58:ed:16:62:3c:c5:bc:87:7c:b9:26:10: 7d:5e:b3:4a:62:2c:45:f3:5b:82:f2:26:21:5a:a1: c6:bb:ce:15:ca:06:f5:4a:31:d3:f6:54:20:e9:6e: a2:2f:ba:00:8f:16:f4:33:aa:a5:a5:28:b9:5d:9a: 6d:16:a0:30:94:93:17:e3:4d:9b:f5:d5:cc:ba:cb: 6c:45:0b:e3:dc:a7:82:ab:da:c4:50:cd:d0:6d:e9: 91:07:13:cf:d6:e3:57:41:c5:4d:a3:dd:d5:fc:92: af:75:dd:ae:d2:39:90:fd:94:e9:3e:48:eb:7a:0f: 7f:1c:f0:8e:97:6d:cc:b7:03:f9:17:47:0c:f2:c8: b1:ee:63:94:db:c7:a6:5b:e0:39:43:6b:a2:de:f5: fc:47:02:b6:70:ec:9b:82:f5:14:4e:1e:92:2c:94: 9b:1d:a7:df:0d:a4:76:2e:48:ad:ee:93:bd:82:04: a7:66:c7:f3:20:dc:b4:05:b9:d6:40:0e:ce:f7:8a: 17:61:a1:11:a0:13:fe:0d:14:b7:a7:6b:d9:4e:36: 6b:9f:2c:b6:09:54:52:a3:00:a8:8f:d3:5b:56:e2: 97:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:B6:50:6B:EF:C6:BB:70:F6:45:E4:8F:A5:2E:60:D3:D8:0D:2A:5B X509v3 Authority Key Identifier: keyid:01:7D:8D:B8:A7:88:74:AB:2F:9A:D9:7D:E5:7A:FD:E1:BE:16:7D:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AX2NuKeIdKsvmtl95Xr94b4WfUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2F8C/5579B9B086E011EF9B6B177EC4F9AE02/AX2NuKeIdKsvmtl95Xr94b4WfUQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:8e:7e:3b:ee:eb:4e:03:78:3f:7f:44:71:79:7c:e5:48:2e: 7d:3e:22:c1:e0:41:a1:32:3a:b1:7b:d2:c2:87:20:0d:40:7f: 35:bb:e8:46:df:71:ab:d4:72:54:3f:e2:98:59:d3:25:61:a5: 63:89:6f:c9:77:8e:82:07:e9:02:1b:06:b0:42:13:d2:89:3d: 27:46:9e:7c:4e:4e:4e:99:fc:8a:f4:c6:46:6c:54:d6:55:39: 40:62:09:1c:5e:54:fa:f4:ac:f0:84:53:91:38:96:0c:c7:5a: 23:98:84:28:bd:16:9c:88:3f:81:af:b3:88:e2:0a:86:56:06: a4:88:69:b1:cf:36:ef:aa:3f:37:f8:b8:55:b5:2e:ea:47:a5: 56:6b:63:6b:d6:bd:a6:57:9f:04:0d:88:1b:76:8b:cf:3b:b7: 4b:a2:39:3c:fe:cf:5c:15:cf:76:8b:4c:ac:d7:76:c1:fb:58: a4:6a:68:fd:79:88:6b:a5:c5:73:2c:c9:72:35:c3:60:b0:ef: cd:fc:76:31:20:69:af:75:bf:2a:6e:91:33:ed:d7:1b:9d:cb: fb:f2:f6:a2:e7:ae:df:fc:10:ba:97:28:3c:be:6b:30:ce:e8: 13:b2:d6:25:c2:0e:d5:92:2a:34:85:d6:bb:44:21:bc:ef:e8: a5:9e:8c:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJGOEMxMTAvBgNVBAUTKDAxN0Q4REI4QTc4ODc0QUIyRjlBRDk3REU1N0FGREUx QkUxNjdENDQwHhcNMjUxMTAzMDU0NzE1WhcNMjUxMTEwMDU0NzE1WjAYMRYwFAYD VQQDEw02OTA4NDFlNC0wMjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRl1b5sGXTQmk/KHhfwTc/7dmWDidu66+2f0YibmeVJY7RZiPMW8h3y5JhB9 XrNKYixF81uC8iYhWqHGu84Vygb1SjHT9lQg6W6iL7oAjxb0M6qlpSi5XZptFqAw lJMX402b9dXMustsRQvj3KeCq9rEUM3QbemRBxPP1uNXQcVNo93V/JKvdd2u0jmQ /ZTpPkjreg9/HPCOl23MtwP5F0cM8six7mOU28emW+A5Q2ui3vX8RwK2cOybgvUU Th6SLJSbHaffDaR2Lkit7pO9ggSnZsfzINy0BbnWQA7O94oXYaERoBP+DRS3p2vZ TjZrnyy2CVRSowCoj9NbVuKX1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLy2UGvv xrtw9kXkj6UuYNPYDSpbMB8GA1UdIwQYMBaAFAF9jbiniHSrL5rZfeV6/eG+Fn1E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkY4Qy81NTc5QjlCMDg2 RTAxMUVGOUI2QjE3N0VDNEY5QUUwMi9BWDJOdUtlSWRLc3ZtdGw5NVhyOTRiNFdm VVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FYMk51S2VJZEtzdm10bDk1WHI5NGI0V2ZVUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkY4Qy81NTc5QjlCMDg2RTAxMUVGOUI2QjE3N0VDNEY5QUUwMi9BWDJOdUtlSWRL c3ZtdGw5NVhyOTRiNFdmVVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfjn477utOA3g/f0RxeXzlSC59PiLB4EGhMjqxe9LChyANQH81u+hG 33Gr1HJUP+KYWdMlYaVjiW/Jd46CB+kCGwawQhPSiT0nRp58Tk5OmfyK9MZGbFTW VTlAYgkcXlT69KzwhFOROJYMx1ojmIQovRaciD+Br7OI4gqGVgakiGmxzzbvqj83 +LhVtS7qR6VWa2Nr1r2mV58EDYgbdovPO7dLojk8/s9cFc92i0ys13bB+1ikamj9 eYhrpcVzLMlyNcNgsO/N/HYxIGmvdb8qbpEz7dcbncv78vai567f/BC6lyg8vmsw zugTstYlwg7Vkio0hda7RCG87+ilnoyE -----END CERTIFICATE-----Generated at Tue Nov 4 21:31:53 2025 by rpki-client