$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.mft File: K2gwqzfLNO8nOiCi8ugmQplgE9o.mft (raw, json) Hash identifier: gXb0bIMwOiyPEkD/Jsa7NBJBdlJhnAG7FkZH27XjGsQ= Subject key identifier: 67:AF:15:8C:20:1E:55:5E:2C:1E:43:59:F9:0D:DA:00:6C:D8:DE:6C Authority key identifier: 2B:68:30:AB:37:CB:34:EF:27:3A:20:A2:F2:E8:26:42:99:60:13:DA Certificate issuer: /CN=A91E3E80/serialNumber=2B6830AB37CB34EF273A20A2F2E82642996013DA Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K2gwqzfLNO8nOiCi8ugmQplgE9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.mft Manifest number: 49 Signing time: Wed 05 Nov 2025 07:32:23 +0000 Manifest this update: Wed 05 Nov 2025 07:32:22 +0000 Manifest next update: Wed 12 Nov 2025 07:32:22 +0000 Files and hashes: 1: K2gwqzfLNO8nOiCi8ugmQplgE9o.crl (hash: jZX1UCkQv6GCTrquvCJD6Pjs6BA5QOcuh9sxIyaGdsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.crl rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K2gwqzfLNO8nOiCi8ugmQplgE9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:32:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E80, serialNumber=2B6830AB37CB34EF273A20A2F2E82642996013DA Validity Not Before: Nov 5 07:32:22 2025 GMT Not After : Nov 12 07:32:22 2025 GMT Subject: CN=690afd87-93d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ad:b8:76:a7:10:e5:19:49:d4:64:45:d0:ff: 3b:ef:06:32:36:c3:4d:52:2f:a4:08:95:1a:08:3b: 2f:1b:8b:a2:8b:a7:c0:75:6c:28:a1:a8:8a:69:5e: d6:81:c1:13:c2:36:21:33:f0:d6:24:fc:a9:f2:f9: 08:ff:df:ae:d6:e6:4c:70:5c:05:fd:3f:c2:25:37: e0:0b:1b:f4:30:9e:42:dc:74:8c:cc:f8:36:04:60: 1b:5c:60:8b:a7:0a:1f:a9:82:89:05:b1:df:8a:cb: 9b:79:7a:3f:5a:7e:a1:c4:9e:65:ae:d4:f2:1b:d9: 1e:5d:b9:29:ce:87:55:c8:1f:4a:cd:b0:29:f5:48: f9:a8:05:a5:93:fc:fe:46:0f:fa:a5:c7:67:06:3d: 39:9f:13:aa:79:f2:5d:de:35:f8:6c:eb:2f:73:e0: 77:16:d7:59:4d:d4:1f:47:f2:2e:3c:46:dd:7a:3d: 38:a7:18:35:71:30:38:88:02:e0:a3:5c:36:1b:be: 8e:6a:11:88:a2:83:3f:b0:e4:4e:75:48:9e:92:0d: 11:27:6d:a3:34:e6:af:cd:b9:ac:fb:e5:91:9b:3a: 9c:48:90:c2:58:20:ec:ed:ec:36:c4:e6:23:5a:b8: 84:2d:dc:35:e5:8e:07:89:5e:41:39:80:87:1a:9b: b5:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:AF:15:8C:20:1E:55:5E:2C:1E:43:59:F9:0D:DA:00:6C:D8:DE:6C X509v3 Authority Key Identifier: keyid:2B:68:30:AB:37:CB:34:EF:27:3A:20:A2:F2:E8:26:42:99:60:13:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K2gwqzfLNO8nOiCi8ugmQplgE9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:fa:22:21:e1:55:37:1f:be:da:e4:64:86:36:76:07:d2:6d: c7:b1:07:e7:33:85:9d:2c:fb:2c:74:4f:73:40:2f:7b:f7:b1: e1:bf:bf:02:b0:e8:68:48:eb:42:54:26:55:ac:7b:4c:b7:a9: 0b:64:a5:33:97:c7:1a:7c:5e:01:91:05:3f:ae:60:e3:c9:cd: 14:16:e6:7c:de:b4:00:ca:a0:15:84:e5:fe:3a:e7:25:65:3d: de:2c:ca:3e:25:28:8c:a4:15:39:af:c5:4b:42:9e:a9:cd:4f: 00:b2:b9:fb:ea:e0:37:af:9f:84:ed:c6:01:48:f9:8f:b4:94: 19:f9:c5:ba:e9:46:c0:18:6c:9f:9c:91:fd:70:44:a2:fb:4c: 5d:35:41:6b:5a:28:e9:e0:c2:f6:a6:94:33:dc:9c:6b:d8:9a: 6e:5d:e8:4f:09:01:f6:47:fa:4b:bf:a9:4e:70:54:ad:84:0f: 42:95:5f:44:a0:10:b7:70:32:e2:61:47:6c:f0:e2:fd:59:81: b8:3e:e5:b8:40:a4:37:2b:41:5f:1c:6a:08:30:e6:13:6c:74: e0:17:21:4b:07:92:10:5d:8f:8a:52:90:70:68:66:99:5a:79: ce:6c:b1:f2:ce:e0:d1:b1:42:4a:56:28:80:ba:74:4f:a2:61: 77:93:60:98 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0U4MDExMC8GA1UEBRMoMkI2ODMwQUIzN0NCMzRFRjI3M0EyMEEyRjJFODI2NDI5 OTYwMTNEQTAeFw0yNTExMDUwNzMyMjJaFw0yNTExMTIwNzMyMjJaMBgxFjAUBgNV BAMTDTY5MGFmZDg3LTkzZDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZrbh2pxDlGUnUZEXQ/zvvBjI2w01SL6QIlRoIOy8bi6KLp8B1bCihqIppXtaB wRPCNiEz8NYk/Kny+Qj/367W5kxwXAX9P8IlN+ALG/QwnkLcdIzM+DYEYBtcYIun Ch+pgokFsd+Ky5t5ej9afqHEnmWu1PIb2R5duSnOh1XIH0rNsCn1SPmoBaWT/P5G D/qlx2cGPTmfE6p58l3eNfhs6y9z4HcW11lN1B9H8i48Rt16PTinGDVxMDiIAuCj XDYbvo5qEYiigz+w5E51SJ6SDREnbaM05q/Nuaz75ZGbOpxIkMJYIOzt7DbE5iNa uIQt3DXljgeJXkE5gIcam7VhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZ68VjCAe VV4sHkNZ+Q3aAGzY3mwwHwYDVR0jBBgwFoAUK2gwqzfLNO8nOiCi8ugmQplgE9ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzRTgwLzNFNDAyQUVBNEI2 NjExRjBCODg1MjQzOUM0RjlBRTAyL0syZ3dxemZMTk84bk9pQ2k4dWdtUXBsZ0U5 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSzJnd3F6ZkxOTzhuT2lDaTh1Z21RcGxnRTlvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz RTgwLzNFNDAyQUVBNEI2NjExRjBCODg1MjQzOUM0RjlBRTAyL0syZ3dxemZMTk84 bk9pQ2k4dWdtUXBsZ0U5by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEX6IiHhVTcfvtrkZIY2dgfSbcexB+czhZ0s+yx0T3NAL3v3seG/vwKw 6GhI60JUJlWse0y3qQtkpTOXxxp8XgGRBT+uYOPJzRQW5nzetADKoBWE5f465yVl Pd4syj4lKIykFTmvxUtCnqnNTwCyufvq4Devn4TtxgFI+Y+0lBn5xbrpRsAYbJ+c kf1wRKL7TF01QWtaKOngwvamlDPcnGvYmm5d6E8JAfZH+ku/qU5wVK2ED0KVX0Sg ELdwMuJhR2zw4v1Zgbg+5bhApDcrQV8caggw5hNsdOAXIUsHkhBdj4pSkHBoZpla ec5ssfLO4NGxQkpWKIC6dE+iYXeTYJg= -----END CERTIFICATE-----Generated at Wed Nov 5 18:09:04 2025 by rpki-client