$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft File: 2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft (raw, json) Hash identifier: TKWKi9YBilVkk6wsKbIA4DkCNrkx1M6D81KKzEicy2o= Subject key identifier: F2:A5:82:82:90:92:34:86:06:7C:4D:29:C6:B0:28:00:5C:71:6A:C3 Authority key identifier: DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 Certificate issuer: /CN=A91CD00C/serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Certificate serial: 0389 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft Manifest number: 0381 Signing time: Wed 05 Nov 2025 00:55:18 +0000 Manifest this update: Wed 05 Nov 2025 00:55:17 +0000 Manifest next update: Wed 12 Nov 2025 00:55:17 +0000 Files and hashes: 1: 2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl (hash: RB92SJNx4+xCRfMNv5iSzJ7BHS2tjny0jM/3otxtBWU=) 2: 46654408C6CB11ECB185E43EC4F9AE02.roa (hash: 2bcV6GxsWp02/25GPOOyDI2TUUeSbqzzvJgPU+rv3Lc=) 3: 15D68F5ED55011EFA0564D54C4F9AE02.roa (hash: S/3id5/GrdHISWrodbVNvQaLLsQVLmIkD0brgywz+oo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:55:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 905 (0x389) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD00C, serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Validity Not Before: Nov 5 00:55:17 2025 GMT Not After : Nov 12 00:55:17 2025 GMT Subject: CN=690aa075-ac06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:22:47:2a:3f:95:75:b5:d4:79:80:e9:b8:77: fa:c8:55:e5:97:fe:27:5e:d0:18:86:aa:65:8f:f8: 99:3e:15:5b:81:57:b7:a5:f7:6b:f6:b8:22:95:e2: e8:1b:ba:3a:13:34:06:9b:2f:05:c2:3a:1d:de:f4: 0f:fe:44:8e:2e:2e:3c:b9:d0:21:4d:27:e8:5c:df: 17:21:7e:37:75:2f:1b:68:1a:e9:9a:7b:6b:73:cc: ee:6e:6e:8b:14:04:22:bd:ce:22:61:76:0f:09:c7: ec:3c:33:7b:6d:80:61:ee:da:c1:a1:33:e0:07:38: 62:6e:67:48:52:83:df:8c:90:c2:cf:7b:44:ff:20: d9:08:7d:39:8e:b8:f9:04:6a:96:1a:fd:a6:f4:2c: fb:b8:64:ba:92:0b:a8:d8:e2:fd:72:73:98:c6:59: 44:cc:05:de:60:ae:13:8b:64:36:cd:be:2f:74:e2: 3c:89:fe:b0:b3:1f:6b:72:18:f5:f2:2d:e4:e8:fe: 72:6d:a5:8a:b6:c6:85:44:c6:53:ed:24:04:0a:2b: 3d:a5:93:c0:e3:1a:5c:2d:e3:33:1d:f6:fd:74:6f: 8c:d7:a0:33:2f:a1:bc:7d:bf:ef:7c:80:81:72:7a: 5b:68:ce:be:af:8f:90:9f:a3:ae:c1:c9:0f:f5:92: 4e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:A5:82:82:90:92:34:86:06:7C:4D:29:C6:B0:28:00:5C:71:6A:C3 X509v3 Authority Key Identifier: keyid:DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:1b:84:c7:e1:19:06:51:79:dc:47:94:4a:80:fa:d3:06:03: 3b:8e:74:85:7e:aa:fb:2a:15:f0:28:34:eb:86:c0:52:6b:e7: b6:ff:f9:ba:a7:7c:70:c1:79:51:60:bc:d0:65:30:db:c2:36: 7d:e6:13:d2:e3:56:92:a9:23:ff:30:a9:ca:fa:4d:81:99:97: 6f:e0:22:c0:76:3f:7d:de:75:c2:b0:ea:d0:76:c9:f7:fb:5d: 36:d7:78:44:89:4a:84:84:a7:ef:b7:df:21:07:85:ac:61:80: 4f:0b:f3:8e:c1:a6:0d:8f:4e:40:da:17:0a:fc:e7:03:b8:35: d5:ce:09:7d:2e:e1:97:e5:da:71:a5:8e:15:69:e3:db:4d:75: 8a:d6:75:04:23:9c:b0:28:7e:f9:8a:3f:c8:c8:4d:f1:55:10: 40:00:d8:e4:91:41:39:21:02:9c:07:d9:d1:7e:26:bf:4b:c5: 81:30:6b:1e:ae:80:8a:c0:83:76:b8:3a:dd:e4:94:87:08:90: 39:b8:35:81:a2:a3:a3:0c:3f:bf:16:91:43:39:e3:be:2d:61: 8c:c7:f3:a3:c1:59:40:5f:46:86:f5:f3:08:0e:ad:cf:6a:d2: 6d:b0:eb:61:6f:c8:18:e6:be:9a:e2:99:62:52:2e:95:71:89: 92:c6:c5:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwMEMxMTAvBgNVBAUTKERCMkNDQ0E4M0Q4NTMyODhDNTAwQ0RGQzNBRTFFMkZF QTA0OUY1MTQwHhcNMjUxMTA1MDA1NTE3WhcNMjUxMTEyMDA1NTE3WjAYMRYwFAYD VQQDEw02OTBhYTA3NS1hYzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlyJHKj+VdbXUeYDpuHf6yFXll/4nXtAYhqplj/iZPhVbgVe3pfdr9rgileLo G7o6EzQGmy8Fwjod3vQP/kSOLi48udAhTSfoXN8XIX43dS8baBrpmntrc8zubm6L FAQivc4iYXYPCcfsPDN7bYBh7trBoTPgBzhibmdIUoPfjJDCz3tE/yDZCH05jrj5 BGqWGv2m9Cz7uGS6kguo2OL9cnOYxllEzAXeYK4Ti2Q2zb4vdOI8if6wsx9rchj1 8i3k6P5ybaWKtsaFRMZT7SQECis9pZPA4xpcLeMzHfb9dG+M16AzL6G8fb/vfICB cnpbaM6+r4+Qn6OuwckP9ZJO8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPKlgoKQ kjSGBnxNKcawKABccWrDMB8GA1UdIwQYMBaAFNsszKg9hTKIxQDN/Drh4v6gSfUU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDAwQy9DQUE4ODYxRUM2 MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1vakZBTTM4T3VIaV9xQko5 UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ5ek1xRDJGTW9qRkFNMzhPdUhpX3FCSjlSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDAwQy9DQUE4ODYxRUM2MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1v akZBTTM4T3VIaV9xQko5UlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXG4TH4RkGUXncR5RKgPrTBgM7jnSFfqr7KhXwKDTrhsBSa+e2//m6 p3xwwXlRYLzQZTDbwjZ95hPS41aSqSP/MKnK+k2BmZdv4CLAdj993nXCsOrQdsn3 +10213hEiUqEhKfvt98hB4WsYYBPC/OOwaYNj05A2hcK/OcDuDXVzgl9LuGX5dpx pY4VaePbTXWK1nUEI5ywKH75ij/IyE3xVRBAANjkkUE5IQKcB9nRfia/S8WBMGse roCKwIN2uDrd5JSHCJA5uDWBoqOjDD+/FpFDOeO+LWGMx/OjwVlAX0aG9fMIDq3P atJtsOthb8gY5r6a4pliUi6VcYmSxsUv -----END CERTIFICATE-----Generated at Wed Nov 5 19:18:34 2025 by rpki-client