$ rpki-client -vvf rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft File: 2jyR-PFV2QuZh8kTskxPnlRF6cw.mft (raw, json) Hash identifier: Wkt36IbRzOTPjmasks7+cFYQC5zBUh9Fwl188whc6/Y= Subject key identifier: D6:07:0B:56:46:04:5E:9A:E1:D5:AB:81:F5:F2:6C:D7:36:F7:79:E1 Authority key identifier: DA:3C:91:F8:F1:55:D9:0B:99:87:C9:13:B2:4C:4F:9E:54:45:E9:CC Certificate issuer: /CN=A91E70ED/serialNumber=DA3C91F8F155D90B9987C913B24C4F9E5445E9CC Certificate serial: 0D41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft Manifest number: 0D2B Signing time: Tue 04 Nov 2025 18:08:26 +0000 Manifest this update: Tue 04 Nov 2025 18:08:26 +0000 Manifest next update: Tue 11 Nov 2025 18:08:26 +0000 Files and hashes: 1: 2jyR-PFV2QuZh8kTskxPnlRF6cw.crl (hash: EThoz/OegxOFsjQkq7K/JYH251vEq5ySpLTmzBw/iLI=) 2: 8D9FFB3EEB2911EB9891D01DC4F9AE02.roa (hash: LD0ithX2780J0eLYJ+pZjxCf/VO5UT20hM3rBP9oW8s=) 3: FEB624F6B94911EE897F7947C4F9AE02.roa (hash: PkBHUrnClJtIRj3hyvhFOR74ygd0IwmSJ02fNGArhbM=) 4: 8E4647E6EB2911EB9891D01DC4F9AE02.roa (hash: ORDwcUk6C17rG0Rjjv65wOFUqorGmDWrJEH1nGvJDz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.crl rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:08:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3393 (0xd41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E70ED, serialNumber=DA3C91F8F155D90B9987C913B24C4F9E5445E9CC Validity Not Before: Nov 4 18:08:26 2025 GMT Not After : Nov 11 18:08:26 2025 GMT Subject: CN=690a411a-3034 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c6:e2:a1:fe:d9:1e:0f:20:b1:46:92:d8:d0: 4b:76:dd:51:26:c2:51:40:f9:c2:21:e7:73:b7:ed: 41:f1:ea:25:2e:67:5b:df:c1:0c:ae:b1:ca:cc:63: 36:08:4d:62:c9:28:49:b4:04:ca:22:40:58:72:99: 2f:b4:0e:5f:21:99:4f:63:ef:18:46:c1:aa:4a:70: 0c:6f:48:aa:1d:35:f3:fb:42:fd:b9:b9:2b:f5:ce: 22:3e:67:ed:4b:c6:2c:b3:22:aa:1c:3f:3b:69:19: 91:34:a6:28:2d:7b:cd:01:43:db:70:52:55:12:c3: b0:b7:6f:f3:9d:74:ba:52:ee:45:b4:7d:7a:e6:8e: 26:ff:5e:1f:aa:29:09:30:05:38:a9:61:93:6d:63: 04:f9:99:81:9a:e0:53:ec:11:6a:6e:1f:9d:c9:81: c0:67:8f:3c:07:4e:d2:82:79:26:08:4c:b6:13:3f: cb:52:25:4b:ae:65:68:11:82:50:f7:4f:93:ec:13: db:ee:16:7b:5f:ad:c4:32:b7:b6:b3:0f:b7:32:1a: 5a:cb:5e:d3:e5:e7:d9:2b:0b:17:72:e8:ca:60:8e: 76:92:da:74:4e:5d:83:db:c1:6c:6c:8a:67:ff:52: 70:b3:1e:c0:00:60:64:d6:32:68:75:a6:ca:e0:21: 53:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:07:0B:56:46:04:5E:9A:E1:D5:AB:81:F5:F2:6C:D7:36:F7:79:E1 X509v3 Authority Key Identifier: keyid:DA:3C:91:F8:F1:55:D9:0B:99:87:C9:13:B2:4C:4F:9E:54:45:E9:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:c8:ad:14:24:0f:11:fb:3e:5f:10:3f:70:ff:54:9c:7a:d4: 7e:2e:ed:f8:3c:35:c3:d6:e4:19:e8:05:c4:e9:37:35:c5:9d: df:45:c4:46:88:66:e2:33:b7:34:82:8c:86:fa:84:1a:a7:20: 5c:80:47:99:10:f8:08:8a:dc:37:54:08:00:2b:fc:de:8c:47: e2:d9:f9:d8:21:c7:fc:ea:f8:27:b0:df:d5:e0:64:db:54:f3: 49:ad:7d:86:71:27:91:de:8d:38:cc:9c:0d:46:95:b4:a0:a1: 6f:84:e0:e5:84:a4:88:85:79:30:fb:1f:04:77:3c:73:7f:c6: f2:37:9c:72:3b:18:52:3e:a3:8f:56:1b:3d:14:1b:0e:37:f1: 24:1b:8f:0e:2e:cf:b5:2e:7e:bc:9a:43:3c:b0:df:59:47:e5: e7:c8:84:15:7e:87:62:c1:d8:d6:7f:ca:17:96:02:54:09:40: 0e:39:88:f4:0d:27:e2:e3:0a:32:b0:03:b3:bb:18:9e:93:b4: 84:75:f0:b2:d3:2d:27:0f:21:86:85:ba:c6:06:ec:22:4d:bc: 73:ae:0c:78:6f:29:8c:44:a7:b1:df:eb:09:c8:4a:b3:a1:e9: 94:8b:64:ff:c4:f8:fa:dd:57:99:5b:f6:c3:74:e0:29:70:93: c8:bd:e0:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcwRUQxMTAvBgNVBAUTKERBM0M5MUY4RjE1NUQ5MEI5OTg3QzkxM0IyNEM0RjlF NTQ0NUU5Q0MwHhcNMjUxMTA0MTgwODI2WhcNMjUxMTExMTgwODI2WjAYMRYwFAYD VQQDEw02OTBhNDExYS0zMDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8biof7ZHg8gsUaS2NBLdt1RJsJRQPnCIedzt+1B8eolLmdb38EMrrHKzGM2 CE1iyShJtATKIkBYcpkvtA5fIZlPY+8YRsGqSnAMb0iqHTXz+0L9ubkr9c4iPmft S8YssyKqHD87aRmRNKYoLXvNAUPbcFJVEsOwt2/znXS6Uu5FtH165o4m/14fqikJ MAU4qWGTbWME+ZmBmuBT7BFqbh+dyYHAZ488B07SgnkmCEy2Ez/LUiVLrmVoEYJQ 90+T7BPb7hZ7X63EMre2sw+3Mhpay17T5efZKwsXcujKYI52ktp0Tl2D28FsbIpn /1Jwsx7AAGBk1jJodabK4CFTnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNYHC1ZG BF6a4dWrgfXybNc293nhMB8GA1UdIwQYMBaAFNo8kfjxVdkLmYfJE7JMT55URenM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzBFRC9FNjI3N0EzRUU5 RTExMUU5QTU5ODdFMUZDNEY5QUUwMi8yanlSLVBGVjJRdVpoOGtUc2t4UG5sUkY2 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJqeVItUEZWMlF1Wmg4a1Rza3hQbmxSRjZjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzBFRC9FNjI3N0EzRUU5RTExMUU5QTU5ODdFMUZDNEY5QUUwMi8yanlSLVBGVjJR dVpoOGtUc2t4UG5sUkY2Y3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByyK0UJA8R+z5fED9w/1ScetR+Lu34PDXD1uQZ6AXE6Tc1xZ3fRcRG iGbiM7c0goyG+oQapyBcgEeZEPgIitw3VAgAK/zejEfi2fnYIcf86vgnsN/V4GTb VPNJrX2GcSeR3o04zJwNRpW0oKFvhODlhKSIhXkw+x8Edzxzf8byN5xyOxhSPqOP Vhs9FBsON/EkG48OLs+1Ln68mkM8sN9ZR+XnyIQVfodiwdjWf8oXlgJUCUAOOYj0 DSfi4woysAOzuxiek7SEdfCy0y0nDyGGhbrGBuwiTbxzrgx4bymMRKex3+sJyEqz oemUi2T/xPj63VeZW/bDdOApcJPIveDt -----END CERTIFICATE-----Generated at Wed Nov 5 04:46:49 2025 by rpki-client