$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: Tr1Jd2M+6HDnyQ2oJuYrmvEn0Cf5L0GgLGcwdmn0wwU= Subject key identifier: 06:AF:8F:24:5F:49:BB:2C:AE:EC:64:96:3E:F1:8D:13:38:0E:EF:EC Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2BE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2BBD Signing time: Tue 04 Nov 2025 15:35:02 +0000 Manifest this update: Tue 04 Nov 2025 15:35:01 +0000 Manifest next update: Tue 11 Nov 2025 15:35:01 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: UwTqsnvZW4g/36m6LKWPaLHbn1FIKRsZ1ggG8TPiPag=) 2: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: q2QK7nleDfVKJdydH1BhBELt50ggXZGsQHTMsb+GgzQ=) 3: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: R7GiqDFWTFG5/KzmRDTnU8CgA9M5hlMTeWah7zEstzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:35:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11233 (0x2be1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: Nov 4 15:35:01 2025 GMT Not After : Nov 11 15:35:01 2025 GMT Subject: CN=690a1d25-4a66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f2:cb:a9:e2:be:7a:61:d4:20:08:1a:a5:a3: 54:7d:16:b2:5d:9d:b9:cf:ad:ca:c4:ec:bc:d0:fc: e2:1c:98:eb:b3:99:1e:ee:f2:45:b2:65:a8:21:1d: b9:bf:92:6b:b0:25:d0:3a:04:55:2e:89:61:12:92: 11:6f:ad:76:82:aa:78:02:c5:5f:83:a4:f8:47:e2: 43:c8:11:b7:39:34:d9:36:60:46:ba:3c:c1:5d:4f: eb:43:ce:64:09:bb:43:01:9e:2f:8b:25:a2:cb:81: 7f:14:2b:41:bc:84:05:b1:f2:11:2d:b3:08:fd:14: b0:bc:2f:7e:04:8f:71:ab:7d:d4:e8:39:a3:43:4f: 26:9f:fd:71:fd:73:5d:dd:3d:7c:de:c0:9d:3f:a2: 8b:66:c8:3b:33:e5:53:cb:6f:c3:62:5f:6f:ad:f9: ba:a4:72:11:9e:db:2b:7d:c9:bc:3a:83:30:aa:66: 94:93:19:04:d1:cc:b7:fb:91:79:18:31:a8:d2:95: 6a:7f:7b:c4:d3:ca:13:5e:dd:c7:d1:1e:4f:82:b2: 2e:97:5b:b4:79:91:f2:c8:c4:97:aa:77:88:ea:c6: 9d:07:9b:e1:34:29:fb:ae:06:ed:a4:cb:ff:a7:64: a2:6d:e2:ff:b9:d9:73:3f:ea:c5:c8:a8:d4:8b:f4: dc:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:AF:8F:24:5F:49:BB:2C:AE:EC:64:96:3E:F1:8D:13:38:0E:EF:EC X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:71:de:7e:a8:ec:07:fa:a0:f6:20:ec:85:d0:c4:82:26:c9: 9b:eb:fc:4a:ac:f4:08:ae:40:ab:97:46:66:b1:78:4b:95:ff: a5:92:8a:41:35:a1:4e:c7:83:92:8a:ad:bd:b8:cb:aa:70:b8: fb:bb:ff:66:49:cc:33:49:27:ce:49:bd:3e:bd:91:6a:fa:5b: 6b:96:f7:c0:37:c6:03:44:07:af:a0:46:b0:f0:5c:03:21:2d: 9f:71:d6:2b:78:07:0e:e1:9d:b2:57:eb:85:cb:95:f6:5c:d8: 87:51:a2:77:8f:25:ba:8f:bb:ce:d7:9b:3a:f8:5f:da:35:f2: d7:a3:79:37:1a:80:8b:d9:a5:b3:42:db:fa:25:05:db:bf:7a: f4:7c:60:46:fe:56:02:96:f1:a1:47:d8:ab:36:49:a6:2d:e0: 03:89:fc:a4:5e:0b:6a:66:08:61:3e:f3:0e:b8:73:f6:af:ff: 56:c7:04:3a:32:f5:16:ef:64:b7:c6:e1:fd:25:cb:5d:72:14: 6b:13:30:50:ea:da:78:63:6e:89:2c:c7:07:4d:ad:c7:43:85: 71:dd:cc:24:36:33:b3:f5:7b:12:c0:d1:7a:9f:76:e4:4a:34: 20:ba:5b:7b:42:03:d2:e7:34:19:98:1c:be:09:4c:d3:53:48: 7a:cc:35:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjUxMTA0MTUzNTAxWhcNMjUxMTExMTUzNTAxWjAYMRYwFAYD VQQDEw02OTBhMWQyNS00YTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfLLqeK+emHUIAgapaNUfRayXZ25z63KxOy80PziHJjrs5ke7vJFsmWoIR25 v5JrsCXQOgRVLolhEpIRb612gqp4AsVfg6T4R+JDyBG3OTTZNmBGujzBXU/rQ85k CbtDAZ4viyWiy4F/FCtBvIQFsfIRLbMI/RSwvC9+BI9xq33U6DmjQ08mn/1x/XNd 3T183sCdP6KLZsg7M+VTy2/DYl9vrfm6pHIRntsrfcm8OoMwqmaUkxkE0cy3+5F5 GDGo0pVqf3vE08oTXt3H0R5PgrIul1u0eZHyyMSXqneI6sadB5vhNCn7rgbtpMv/ p2SibeL/udlzP+rFyKjUi/TccwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAavjyRf Sbssruxklj7xjRM4Du/sMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClcd5+qOwH+qD2IOyF0MSCJsmb6/xKrPQIrkCrl0ZmsXhLlf+lkopB NaFOx4OSiq29uMuqcLj7u/9mScwzSSfOSb0+vZFq+ltrlvfAN8YDRAevoEaw8FwD IS2fcdYreAcO4Z2yV+uFy5X2XNiHUaJ3jyW6j7vO15s6+F/aNfLXo3k3GoCL2aWz Qtv6JQXbv3r0fGBG/lYClvGhR9irNkmmLeADifykXgtqZghhPvMOuHP2r/9WxwQ6 MvUW72S3xuH9JctdchRrEzBQ6tp4Y26JLMcHTa3HQ4Vx3cwkNjOz9XsSwNF6n3bk SjQgult7QgPS5zQZmBy+CUzTU0h6zDX5 -----END CERTIFICATE-----Generated at Wed Nov 5 05:14:42 2025 by rpki-client