$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft File: 2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft (raw, json) Hash identifier: hBTI1Sa5rdcXW6QH97DTeCh38Ok9IChmqTECIoCIJSE= Subject key identifier: AB:CB:CC:9F:6D:BF:CE:24:CD:B7:21:7B:9B:81:74:AC:BC:A0:67:62 Authority key identifier: DB:13:FB:AF:7B:3B:38:DB:76:30:DB:0B:97:37:4D:AA:D0:31:5A:DE Certificate issuer: /CN=A91E6CCA/serialNumber=DB13FBAF7B3B38DB7630DB0B97374DAAD0315ADE Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xP7r3s7ONt2MNsLlzdNqtAxWt4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft Manifest number: 70 Signing time: Mon 03 Nov 2025 06:55:32 +0000 Manifest this update: Mon 03 Nov 2025 06:55:31 +0000 Manifest next update: Mon 10 Nov 2025 06:55:31 +0000 Files and hashes: 1: 2xP7r3s7ONt2MNsLlzdNqtAxWt4.crl (hash: 9xby+ReggGnP4i+Db07WiDKAz3f6uSATNbWxrEnea7I=) 2: E9CF18DE0F7111F096BBCF24C4F9AE02.roa (hash: LJYk/G3tN+KuXhxLY4vLUCBZc2tSEaFJTdOb4sX/qHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.crl rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xP7r3s7ONt2MNsLlzdNqtAxWt4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:55:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6CCA, serialNumber=DB13FBAF7B3B38DB7630DB0B97374DAAD0315ADE Validity Not Before: Nov 3 06:55:31 2025 GMT Not After : Nov 10 06:55:31 2025 GMT Subject: CN=690851e3-3e37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e9:0a:7a:5c:a8:da:55:73:e7:34:9d:85:d1: 01:c1:12:f6:0d:d7:69:71:17:fc:86:00:23:a7:59: 36:d2:69:eb:06:95:ad:9f:d2:9a:bc:55:a8:96:7e: 4e:34:fb:97:41:0c:ca:b9:9d:c9:2a:14:56:9e:c4: d4:76:00:57:49:fb:db:13:5d:2b:53:5a:45:59:aa: 63:5e:d1:61:50:ff:36:ea:16:7d:8c:8e:1a:ae:51: e3:3d:43:64:ea:eb:b8:4f:02:47:cd:83:e5:31:f1: 88:b7:e0:36:36:40:09:28:14:24:31:dc:1f:3c:2b: 59:0c:eb:1c:7c:8e:27:31:e2:13:02:14:98:d1:e3: 46:44:d4:84:58:ce:61:43:b3:c0:ba:36:20:b2:2f: 70:1e:45:6c:b0:21:4f:ad:1b:07:07:bc:57:4e:57: ec:1b:be:77:54:34:c5:8e:d4:51:a7:a0:8d:25:67: dc:93:19:e7:b3:7a:a4:98:8e:00:22:a7:1b:81:8e: c8:4f:43:38:bc:94:6f:15:2a:2a:38:09:de:bf:8b: 61:90:f5:e3:bd:4d:6a:36:6b:f8:bf:6b:35:ac:74: 48:1c:76:4e:21:12:c1:31:e6:11:87:3e:67:45:d9: 2a:77:5a:2e:2a:b5:86:c9:4f:1c:f1:9c:55:2a:b3: 01:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:CB:CC:9F:6D:BF:CE:24:CD:B7:21:7B:9B:81:74:AC:BC:A0:67:62 X509v3 Authority Key Identifier: keyid:DB:13:FB:AF:7B:3B:38:DB:76:30:DB:0B:97:37:4D:AA:D0:31:5A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xP7r3s7ONt2MNsLlzdNqtAxWt4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:52:0f:e4:42:30:8a:d3:df:8a:72:68:27:81:0f:c0:88:ae: 57:ef:4e:b0:95:64:f9:7c:8d:2a:9a:f8:d5:b3:ce:a6:0f:ed: 91:24:88:2a:07:5b:26:5d:e2:83:ae:78:f1:17:a9:3d:42:5b: aa:08:83:64:a5:31:ac:e0:9f:52:ec:b3:db:8b:c6:69:5a:e1: 56:1e:2e:32:8f:36:cc:98:2b:5b:3b:41:ab:2a:58:a3:36:2b: 99:5b:2b:4b:a2:28:32:0b:01:07:81:ce:e0:c0:67:57:8d:11: 08:74:20:98:8d:94:f0:8e:c8:2a:88:20:26:2d:a2:2c:b2:a5: 1c:d8:02:70:22:38:24:e5:ca:ed:b2:22:12:fd:83:c6:27:e7: b9:3f:ea:01:40:2f:25:90:a0:e1:dd:4b:88:1b:25:59:3b:82: 7b:bd:13:3a:ac:24:3c:19:f7:7d:e8:09:9f:cb:27:35:ff:9f: c6:e8:7f:0c:01:06:6d:b1:69:45:99:a9:d3:c9:ad:8c:a1:20: 9e:5b:d8:ba:d7:95:e8:ab:a6:ad:fd:e2:a9:3b:e3:aa:e8:1e: 20:fe:80:e5:a6:2c:ac:8e:a7:c9:9e:3e:42:f3:0e:24:46:36: 66:f8:69:01:04:fd:48:99:25:ef:b3:12:b3:d2:97:a4:78:73: 4a:d6:eb:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NkNDQTExMC8GA1UEBRMoREIxM0ZCQUY3QjNCMzhEQjc2MzBEQjBCOTczNzREQUFE MDMxNUFERTAeFw0yNTExMDMwNjU1MzFaFw0yNTExMTAwNjU1MzFaMBgxFjAUBgNV BAMTDTY5MDg1MWUzLTNlMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC66Qp6XKjaVXPnNJ2F0QHBEvYN12lxF/yGACOnWTbSaesGla2f0pq8VaiWfk40 +5dBDMq5nckqFFaexNR2AFdJ+9sTXStTWkVZqmNe0WFQ/zbqFn2MjhquUeM9Q2Tq 67hPAkfNg+Ux8Yi34DY2QAkoFCQx3B88K1kM6xx8jicx4hMCFJjR40ZE1IRYzmFD s8C6NiCyL3AeRWywIU+tGwcHvFdOV+wbvndUNMWO1FGnoI0lZ9yTGeezeqSYjgAi pxuBjshPQzi8lG8VKio4Cd6/i2GQ9eO9TWo2a/i/azWsdEgcdk4hEsEx5hGHPmdF 2Sp3Wi4qtYbJTxzxnFUqswHbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUq8vMn22/ ziTNtyF7m4F0rLygZ2IwHwYDVR0jBBgwFoAU2xP7r3s7ONt2MNsLlzdNqtAxWt4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2Q0NBLzI0MDEwRDUyMEY3 MDExRjA5RTJGN0QxRkM0RjlBRTAyLzJ4UDdyM3M3T050Mk1Oc0xsemROcXRBeFd0 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnhQN3IzczdPTnQyTU5zTGx6ZE5xdEF4V3Q0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2 Q0NBLzI0MDEwRDUyMEY3MDExRjA5RTJGN0QxRkM0RjlBRTAyLzJ4UDdyM3M3T050 Mk1Oc0xsemROcXRBeFd0NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALxSD+RCMIrT34pyaCeBD8CIrlfvTrCVZPl8jSqa+NWzzqYP7ZEkiCoH WyZd4oOuePEXqT1CW6oIg2SlMazgn1Lss9uLxmla4VYeLjKPNsyYK1s7QasqWKM2 K5lbK0uiKDILAQeBzuDAZ1eNEQh0IJiNlPCOyCqIICYtoiyypRzYAnAiOCTlyu2y IhL9g8Yn57k/6gFALyWQoOHdS4gbJVk7gnu9EzqsJDwZ933oCZ/LJzX/n8bofwwB Bm2xaUWZqdPJrYyhIJ5b2LrXleirpq394qk746roHiD+gOWmLKyOp8mePkLzDiRG Nmb4aQEE/UiZJe+zErPSl6R4c0rW6w4= -----END CERTIFICATE-----Generated at Tue Nov 4 12:48:00 2025 by rpki-client