$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft File: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft (raw, json) Hash identifier: StLR+QC4FzmZ+whSOy6R71Gd/o+qCDNBkuwQL9bKyRk= Subject key identifier: 75:AF:50:79:A5:53:25:45:7C:19:AB:ED:EF:4D:55:F6:C4:4A:8F:D5 Authority key identifier: DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B Certificate issuer: /CN=A91D1C7F/serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Certificate serial: 03BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft Manifest number: 03B6 Signing time: Mon 03 Nov 2025 00:38:57 +0000 Manifest this update: Mon 03 Nov 2025 00:38:56 +0000 Manifest next update: Mon 10 Nov 2025 00:38:56 +0000 Files and hashes: 1: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl (hash: ZNOPkSuQY5gVg0n1+URaNpR2k0EcR+kGT069PFxGkjw=) 2: E5B25D84B0D211ECB7B1BA7DC4F9AE02.roa (hash: 5JeHEtG1xdKCrCH6rPS3zOfVRTqBs2fv9GJfMUQ9NfQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:38:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 956 (0x3bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1C7F, serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Validity Not Before: Nov 3 00:38:56 2025 GMT Not After : Nov 10 00:38:56 2025 GMT Subject: CN=6907f9a0-c750 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:43:01:d1:42:5a:95:ac:c6:fe:be:e2:76:f8: 00:45:fe:af:c2:b5:e4:67:3b:9f:71:7b:40:11:36: 7c:7c:39:cd:28:ba:3f:63:17:e8:f6:2d:8f:04:80: bd:e1:11:57:a3:98:6c:95:57:00:56:0f:d9:1d:69: e3:59:07:aa:12:2f:d3:8c:ab:8a:7c:4b:66:76:85: 7d:e1:28:34:f1:38:de:af:8e:0f:01:bd:4b:0e:58: 1e:08:62:b7:9e:f8:ca:2c:7d:34:ef:0d:1a:57:67: cb:07:82:57:9d:61:1f:97:7c:67:e7:bb:33:ac:49: 38:92:97:12:a9:02:29:3b:f5:13:a7:ec:50:5b:5e: 22:9c:57:a7:90:30:47:d8:01:1c:33:24:a8:b1:ee: 5d:13:8d:0b:e5:ad:dd:0a:f8:b4:97:a3:fe:20:f7: 2f:ac:81:e1:47:bf:cd:c3:8f:97:e3:94:a3:82:72: 52:7c:36:98:18:7b:9a:a4:f7:d3:b7:6d:f4:1b:dc: 00:46:94:be:97:b9:de:c7:39:bf:d4:40:fb:ba:56: ec:0b:d9:dd:21:6b:e4:6f:da:28:9d:c4:23:a5:ef: 4e:c2:45:90:2e:16:99:f8:94:8b:62:9b:06:a0:48: 03:bf:03:98:83:0a:c6:9e:92:8f:4a:9b:88:f0:ab: 9f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:AF:50:79:A5:53:25:45:7C:19:AB:ED:EF:4D:55:F6:C4:4A:8F:D5 X509v3 Authority Key Identifier: keyid:DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:0e:1a:92:7d:36:77:cd:37:ec:cc:1e:c0:dc:eb:af:03:49: eb:4d:0c:64:08:70:2f:d0:bb:fa:60:64:91:53:5a:73:c9:51: 50:4b:f0:e8:fe:bd:3f:7e:7c:09:a9:b8:5b:cd:5e:83:1b:56: 04:f9:18:87:b8:9d:43:f3:7a:05:d7:1c:c0:0f:87:31:61:14: 05:94:df:3c:cb:53:9d:da:ee:92:fc:32:f2:ad:9f:61:cd:22: 1b:dd:9f:de:c1:21:dd:ee:18:db:ae:b3:37:f4:ca:de:67:5f: 25:a8:40:39:3e:a9:4f:29:36:8b:b2:04:42:7e:35:db:67:67: f8:34:9f:40:40:1d:14:82:47:09:f1:1f:cb:8a:a2:a9:e0:c4: a3:0c:d8:19:f5:3d:06:06:f6:ee:2a:d7:2b:54:67:01:80:af: eb:f0:ac:4a:1e:7b:ff:cf:14:30:f8:58:41:b2:f4:2d:a2:8e: 17:37:92:02:05:0a:79:43:7f:92:f7:a5:d7:b2:23:33:0e:f4: 4b:8d:a4:13:14:ef:06:72:41:ff:c3:91:cb:9e:15:ff:75:eb: b0:fd:54:cc:7f:c7:01:02:af:9b:26:f9:40:5d:9e:a9:a2:38: cc:f1:21:5c:ce:d3:95:45:d8:8c:e6:85:bc:5b:33:b9:d8:e8: 5f:a7:1d:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFDN0YxMTAvBgNVBAUTKERBQjRBNTJBOEVDMUFBRDZDOTI1MkVFQTRENUQxNTY5 RDI3QUY0NkIwHhcNMjUxMTAzMDAzODU2WhcNMjUxMTEwMDAzODU2WjAYMRYwFAYD VQQDEw02OTA3ZjlhMC1jNzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArkMB0UJalazG/r7idvgARf6vwrXkZzufcXtAETZ8fDnNKLo/Yxfo9i2PBIC9 4RFXo5hslVcAVg/ZHWnjWQeqEi/TjKuKfEtmdoV94Sg08Tjer44PAb1LDlgeCGK3 nvjKLH007w0aV2fLB4JXnWEfl3xn57szrEk4kpcSqQIpO/UTp+xQW14inFenkDBH 2AEcMySose5dE40L5a3dCvi0l6P+IPcvrIHhR7/Nw4+X45SjgnJSfDaYGHuapPfT t230G9wARpS+l7nexzm/1ED7ulbsC9ndIWvkb9ooncQjpe9OwkWQLhaZ+JSLYpsG oEgDvwOYgwrGnpKPSpuI8KuflwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWvUHml UyVFfBmr7e9NVfbESo/VMB8GA1UdIwQYMBaAFNq0pSqOwarWySUu6k1dFWnSevRr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUM3Ri8wOTFFMUVBQUIw RDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0YkpKUzdxVFYwVmFkSjY5 R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyU2xLbzdCcXRiSkpTN3FUVjBWYWRKNjlHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUM3Ri8wOTFFMUVBQUIwRDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0 YkpKUzdxVFYwVmFkSjY5R3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdDhqSfTZ3zTfszB7A3OuvA0nrTQxkCHAv0Lv6YGSRU1pzyVFQS/Do /r0/fnwJqbhbzV6DG1YE+RiHuJ1D83oF1xzAD4cxYRQFlN88y1Od2u6S/DLyrZ9h zSIb3Z/ewSHd7hjbrrM39MreZ18lqEA5PqlPKTaLsgRCfjXbZ2f4NJ9AQB0UgkcJ 8R/LiqKp4MSjDNgZ9T0GBvbuKtcrVGcBgK/r8KxKHnv/zxQw+FhBsvQtoo4XN5IC BQp5Q3+S96XXsiMzDvRLjaQTFO8GckH/w5HLnhX/deuw/VTMf8cBAq+bJvlAXZ6p ojjM8SFcztOVRdiM5oW8WzO52Ohfpx12 -----END CERTIFICATE-----Generated at Tue Nov 4 08:20:02 2025 by rpki-client