$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft File: EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft (raw, json) Hash identifier: hKHVkebEiWS0df885hSq18r+rrWmNLwai3DTeUPE4kc= Subject key identifier: 8B:07:99:57:7F:17:BC:47:DB:D6:97:DC:DC:20:0B:91:4D:2C:23:DE Authority key identifier: 11:8D:9B:DE:31:75:4F:98:54:CB:55:47:40:A2:99:F1:37:E2:41:E2 Certificate issuer: /CN=A91CE814/serialNumber=118D9BDE31754F9854CB554740A299F137E241E2 Certificate serial: F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft Manifest number: EF Signing time: Mon 03 Nov 2025 05:17:40 +0000 Manifest this update: Mon 03 Nov 2025 05:17:39 +0000 Manifest next update: Mon 10 Nov 2025 05:17:39 +0000 Files and hashes: 1: EY2b3jF1T5hUy1VHQKKZ8TfiQeI.crl (hash: UF5Z1DXxTfDP3dUQQylyQpFOx2zqGIX7/hl6o0F5lAs=) 2: CA8007604A3011EFB101441AC4F9AE02.roa (hash: tG+xEb4Bj22fmRv5Ap5El7N6H/BamXJAvudixhV4S5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.crl rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:17:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE814, serialNumber=118D9BDE31754F9854CB554740A299F137E241E2 Validity Not Before: Nov 3 05:17:39 2025 GMT Not After : Nov 10 05:17:39 2025 GMT Subject: CN=69083af3-66dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3b:f0:c9:e4:bc:0c:33:bd:55:67:42:f1:3b: 61:c7:90:af:1a:8e:cb:84:d5:31:c7:c6:2c:ee:15: 5e:a3:fa:83:0e:1c:33:f2:53:dc:b0:54:c9:42:ff: fe:28:50:a9:ed:6d:13:b2:55:cf:01:67:d9:3f:30: 45:ed:f4:06:f6:ec:58:32:8c:1e:a9:16:7e:7b:68: 17:ab:fa:88:9d:f7:ef:47:36:b8:dc:fe:8b:cc:30: ce:cc:28:b3:b7:b3:22:59:86:d5:7e:80:ef:0b:fd: 3a:5c:04:d6:1b:dc:f3:39:71:cb:6d:f8:d0:c3:a0: 7f:94:00:2a:06:b7:4c:b3:ff:3c:99:ea:10:31:d0: 8f:bf:c0:c7:d7:f2:f8:f4:6f:7f:a1:81:25:32:d4: 55:ff:fc:1a:a3:be:3b:03:a6:79:cd:43:f5:6e:21: be:73:ee:0b:f8:06:b3:04:5b:eb:c2:c7:15:96:77: e2:72:1d:17:73:ae:42:63:12:cf:23:ac:4c:ec:a0: 20:e9:21:4c:b9:57:1c:9b:d6:83:cb:80:36:28:56: e5:8d:15:50:9b:c1:6f:9b:ef:9d:8b:b9:eb:4c:34: 76:bc:5a:31:0d:da:3b:5b:b2:ca:e6:a4:b5:09:35: 8b:e7:09:54:bd:c5:e8:4d:00:c2:ed:31:25:94:cc: 22:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:07:99:57:7F:17:BC:47:DB:D6:97:DC:DC:20:0B:91:4D:2C:23:DE X509v3 Authority Key Identifier: keyid:11:8D:9B:DE:31:75:4F:98:54:CB:55:47:40:A2:99:F1:37:E2:41:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE814/8C57F15A4A3011EFA8307719C4F9AE02/EY2b3jF1T5hUy1VHQKKZ8TfiQeI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:6a:c9:0f:38:8b:37:2e:80:2c:76:26:58:70:42:73:9e:3c: eb:e3:a6:3f:b7:b5:1e:fc:3d:65:ca:ca:7b:ab:c8:07:2e:65: e1:0b:53:37:d5:84:ac:18:89:70:58:41:87:ad:3c:32:8f:6a: 59:49:bf:4f:e4:5e:61:09:a6:71:41:47:64:a4:d9:37:b7:b6: 39:82:7a:ed:52:c5:1e:00:64:9c:fe:4b:7d:71:da:11:dc:0e: de:7b:39:6d:4e:0e:c0:52:b2:78:52:4d:86:10:89:53:04:f2: 9e:25:c0:7c:13:54:80:80:ef:99:70:71:76:97:86:8a:e8:30: 16:f5:b2:ab:13:7b:eb:ad:85:cb:69:0a:f6:ab:26:41:60:ca: fa:d4:8e:05:b0:e5:11:be:b0:7a:80:04:10:8e:f0:cd:3f:fb: cf:c8:b2:10:d4:e9:43:a7:e2:99:be:f6:02:9f:4a:ca:70:6f: 39:15:b8:bb:a3:e4:86:50:1a:aa:f9:7a:dc:20:0e:4a:3d:5b: 6a:42:83:26:de:ff:01:c2:d4:10:eb:ba:4c:57:ac:ec:e4:a9: 2a:c8:e7:26:f5:81:9a:14:03:9b:e5:a8:5f:42:ac:7b:0f:5c: a1:0b:34:dc:8b:62:4e:ee:bb:fb:12:08:c1:18:a8:7d:56:7f: be:8d:4e:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U4MTQxMTAvBgNVBAUTKDExOEQ5QkRFMzE3NTRGOTg1NENCNTU0NzQwQTI5OUYx MzdFMjQxRTIwHhcNMjUxMTAzMDUxNzM5WhcNMjUxMTEwMDUxNzM5WjAYMRYwFAYD VQQDEw02OTA4M2FmMy02NmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjvwyeS8DDO9VWdC8Tthx5CvGo7LhNUxx8Ys7hVeo/qDDhwz8lPcsFTJQv/+ KFCp7W0TslXPAWfZPzBF7fQG9uxYMoweqRZ+e2gXq/qInffvRza43P6LzDDOzCiz t7MiWYbVfoDvC/06XATWG9zzOXHLbfjQw6B/lAAqBrdMs/88meoQMdCPv8DH1/L4 9G9/oYElMtRV//wao747A6Z5zUP1biG+c+4L+AazBFvrwscVlnfich0Xc65CYxLP I6xM7KAg6SFMuVccm9aDy4A2KFbljRVQm8Fvm++di7nrTDR2vFoxDdo7W7LK5qS1 CTWL5wlUvcXoTQDC7TEllMwi7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIsHmVd/ F7xH29aX3NwgC5FNLCPeMB8GA1UdIwQYMBaAFBGNm94xdU+YVMtVR0CimfE34kHi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTgxNC84QzU3RjE1QTRB MzAxMUVGQTgzMDc3MTlDNEY5QUUwMi9FWTJiM2pGMVQ1aFV5MVZIUUtLWjhUZmlR ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VZMmIzakYxVDVoVXkxVkhRS0taOFRmaVFlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTgxNC84QzU3RjE1QTRBMzAxMUVGQTgzMDc3MTlDNEY5QUUwMi9FWTJiM2pGMVQ1 aFV5MVZIUUtLWjhUZmlRZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByaskPOIs3LoAsdiZYcEJznjzr46Y/t7Ue/D1lysp7q8gHLmXhC1M3 1YSsGIlwWEGHrTwyj2pZSb9P5F5hCaZxQUdkpNk3t7Y5gnrtUsUeAGSc/kt9cdoR 3A7eezltTg7AUrJ4Uk2GEIlTBPKeJcB8E1SAgO+ZcHF2l4aK6DAW9bKrE3vrrYXL aQr2qyZBYMr61I4FsOURvrB6gAQQjvDNP/vPyLIQ1OlDp+KZvvYCn0rKcG85Fbi7 o+SGUBqq+XrcIA5KPVtqQoMm3v8BwtQQ67pMV6zs5KkqyOcm9YGaFAOb5ahfQqx7 D1yhCzTci2JO7rv7EgjBGKh9Vn++jU4+ -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:18 2025 by rpki-client