$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6B73/EA809FF26ED211ECAE2EB829C4F9AE02/2qqxLpL6DuBDwg7q8r5GlqLDeHc.mft File: 2qqxLpL6DuBDwg7q8r5GlqLDeHc.mft (raw, json) Hash identifier: u4aoxsdpdB7W1Ka1itVQMsOcbMP0wGRcLd/GzM11IDE= Subject key identifier: EA:B9:4A:5B:FF:BD:76:E6:C8:08:75:AF:FE:12:13:1D:57:18:AD:91 Authority key identifier: DA:AA:B1:2E:92:FA:0E:E0:43:C2:0E:EA:F2:BE:46:96:A2:C3:78:77 Certificate issuer: /CN=A91E6B73/serialNumber=DAAAB12E92FA0EE043C20EEAF2BE4696A2C37877 Certificate serial: 0467 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2qqxLpL6DuBDwg7q8r5GlqLDeHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6B73/EA809FF26ED211ECAE2EB829C4F9AE02/2qqxLpL6DuBDwg7q8r5GlqLDeHc.mft Manifest number: 0460 Signing time: Wed 05 Nov 2025 00:16:22 +0000 Manifest this update: Wed 05 Nov 2025 00:16:21 +0000 Manifest next update: Wed 12 Nov 2025 00:16:21 +0000 Files and hashes: 1: 2qqxLpL6DuBDwg7q8r5GlqLDeHc.crl (hash: 3FDaSFtdb1REBNT1h67kp88+IRt6igDydYwLavwjZPQ=) 2: 4F12B4886EEB11EC8699607FC4F9AE02.roa (hash: oZqrtJQlT3Kbcps4JCliN7dRzvuckdjDLLEfBNjz0jM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6B73/EA809FF26ED211ECAE2EB829C4F9AE02/2qqxLpL6DuBDwg7q8r5GlqLDeHc.crl rsync://rpki.apnic.net/member_repository/A91E6B73/EA809FF26ED211ECAE2EB829C4F9AE02/2qqxLpL6DuBDwg7q8r5GlqLDeHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2qqxLpL6DuBDwg7q8r5GlqLDeHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:16:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1127 (0x467) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6B73, serialNumber=DAAAB12E92FA0EE043C20EEAF2BE4696A2C37877 Validity Not Before: Nov 5 00:16:21 2025 GMT Not After : Nov 12 00:16:21 2025 GMT Subject: CN=690a9756-eb02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4e:40:ba:73:32:59:f2:6e:a6:4d:1d:28:d4: b9:e9:e3:56:c0:36:c2:11:09:4a:6a:58:b5:83:b9: da:08:d9:32:d7:ed:af:e7:91:70:52:56:b1:76:a7: b2:1c:c0:81:05:9b:87:8d:e6:4e:bf:46:71:4d:c8: c1:57:94:28:24:9a:c3:7f:f5:45:44:f4:d7:03:9a: 41:2b:6c:60:81:e7:aa:47:be:58:b4:81:fd:07:83: c3:e8:90:5d:b7:13:04:0b:72:b4:03:a8:b3:5d:62: 05:70:fd:24:ae:8f:cd:6f:c0:44:e6:c1:49:40:79: db:53:8b:55:94:00:65:fa:e6:c8:40:7e:2e:18:88: 84:0c:1e:93:72:2b:fb:b0:7e:72:9f:89:49:a6:f5: 1a:a5:86:fe:68:47:4b:d9:45:ef:f1:ff:eb:6a:71: 7a:2d:3f:2b:4f:a3:aa:8b:45:f7:c3:cb:e4:5b:6f: be:d6:3e:11:f2:20:20:31:4d:18:70:6d:63:2e:92: 7c:cc:aa:2f:ae:7b:69:35:0f:7c:5c:33:cd:06:00: 88:84:c8:6e:8c:08:b7:4a:6a:58:83:5e:73:2e:8d: 28:9e:2d:5c:35:b8:27:9b:57:b6:3a:31:85:0d:fe: 4e:c4:e3:c5:7e:02:23:63:9e:92:93:63:1e:a8:5b: b4:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:B9:4A:5B:FF:BD:76:E6:C8:08:75:AF:FE:12:13:1D:57:18:AD:91 X509v3 Authority Key Identifier: keyid:DA:AA:B1:2E:92:FA:0E:E0:43:C2:0E:EA:F2:BE:46:96:A2:C3:78:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6B73/EA809FF26ED211ECAE2EB829C4F9AE02/2qqxLpL6DuBDwg7q8r5GlqLDeHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2qqxLpL6DuBDwg7q8r5GlqLDeHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6B73/EA809FF26ED211ECAE2EB829C4F9AE02/2qqxLpL6DuBDwg7q8r5GlqLDeHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:2f:c5:6d:65:b6:0b:24:f4:30:37:c7:93:54:f1:ad:1b:e0: 4e:ce:8d:5b:3a:73:27:ec:73:60:13:fb:55:5a:8b:d7:8e:fd: 97:a3:77:0e:5e:65:9e:e7:37:8d:e3:de:5d:ac:9b:2f:8a:b3: aa:3e:cf:99:16:24:4a:b4:88:19:13:22:97:58:9e:36:7f:f6: 5d:6b:cd:50:ea:d3:67:fd:e2:4e:69:34:a9:44:2f:61:98:82: 84:63:1c:98:9f:9e:8d:34:0a:ab:b7:f3:88:05:d9:a5:3a:80: d8:cf:7c:0a:90:1b:52:f2:3b:b1:e4:67:95:bc:ff:3e:3c:98: 7c:64:70:59:dd:ed:1e:f1:0d:f1:cb:69:fc:ca:34:ac:c1:3c: fd:ba:26:41:a6:0a:10:a3:7e:4c:fb:e8:65:a3:3d:39:9d:d8: a7:b3:c6:f9:ac:89:16:4d:c4:a9:56:99:c0:b2:fa:33:52:e4: e2:75:46:dc:dc:50:be:03:a2:26:a9:f9:90:ef:2c:e6:80:36: a3:62:c0:d4:19:8b:f8:24:02:c0:86:ad:33:54:ca:b3:52:90: e2:e1:e5:76:1b:15:fa:af:3c:af:c5:bf:8b:ce:53:a1:71:bc: 0c:0f:bd:c8:a6:86:be:b8:18:d7:ad:57:1d:59:d4:c6:e0:10: f5:a4:6b:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCNzMxMTAvBgNVBAUTKERBQUFCMTJFOTJGQTBFRTA0M0MyMEVFQUYyQkU0Njk2 QTJDMzc4NzcwHhcNMjUxMTA1MDAxNjIxWhcNMjUxMTEyMDAxNjIxWjAYMRYwFAYD VQQDEw02OTBhOTc1Ni1lYjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtE5AunMyWfJupk0dKNS56eNWwDbCEQlKali1g7naCNky1+2v55FwUlaxdqey HMCBBZuHjeZOv0ZxTcjBV5QoJJrDf/VFRPTXA5pBK2xggeeqR75YtIH9B4PD6JBd txMEC3K0A6izXWIFcP0kro/Nb8BE5sFJQHnbU4tVlABl+ubIQH4uGIiEDB6Tciv7 sH5yn4lJpvUapYb+aEdL2UXv8f/ranF6LT8rT6Oqi0X3w8vkW2++1j4R8iAgMU0Y cG1jLpJ8zKovrntpNQ98XDPNBgCIhMhujAi3SmpYg15zLo0oni1cNbgnm1e2OjGF Df5OxOPFfgIjY56Sk2MeqFu0xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOq5Slv/ vXbmyAh1r/4SEx1XGK2RMB8GA1UdIwQYMBaAFNqqsS6S+g7gQ8IO6vK+Rpaiw3h3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkI3My9FQTgwOUZGMjZF RDIxMUVDQUUyRUI4MjlDNEY5QUUwMi8ycXF4THBMNkR1QkR3ZzdxOHI1R2xxTERl SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJxcXhMcEw2RHVCRHdnN3E4cjVHbHFMRGVIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkI3My9FQTgwOUZGMjZFRDIxMUVDQUUyRUI4MjlDNEY5QUUwMi8ycXF4THBMNkR1 QkR3ZzdxOHI1R2xxTERlSGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKL8VtZbYLJPQwN8eTVPGtG+BOzo1bOnMn7HNgE/tVWovXjv2Xo3cO XmWe5zeN495drJsvirOqPs+ZFiRKtIgZEyKXWJ42f/Zda81Q6tNn/eJOaTSpRC9h mIKEYxyYn56NNAqrt/OIBdmlOoDYz3wKkBtS8jux5GeVvP8+PJh8ZHBZ3e0e8Q3x y2n8yjSswTz9uiZBpgoQo35M++hloz05ndins8b5rIkWTcSpVpnAsvozUuTidUbc 3FC+A6ImqfmQ7yzmgDajYsDUGYv4JALAhq0zVMqzUpDi4eV2GxX6rzyvxb+LzlOh cbwMD73Ipoa+uBjXrVcdWdTG4BD1pGsp -----END CERTIFICATE-----Generated at Wed Nov 5 19:48:06 2025 by rpki-client