$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: UZp3s1KmrFsVjAB/HH2pZtNT4j951pVe+kqg3lb/YdE= Subject key identifier: F8:1F:52:26:04:4C:52:C9:D1:DF:03:82:9B:A0:C9:9C:87:28:E7:16 Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 142E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 140E Signing time: Tue 04 Nov 2025 15:27:36 +0000 Manifest this update: Tue 04 Nov 2025 15:27:35 +0000 Manifest next update: Tue 11 Nov 2025 15:27:35 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: i92GpzzZPQHWpibQaXGtf6e8yr9cFloN3282XFNYvK8=) 2: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: rJt9UQ2CbATtEyHk+VO1E6DMoo3w2GSd/mE//3ZqYZU=) 3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: wPO6Es53IcJapHpeuB8nxOotI3FCiSmj/GNfyH8fyQs=) 4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: Fya/3MhXvM2udSwM4AtG4GxQbuG8VOpcoReRz0Tvy8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:27:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5166 (0x142e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Nov 4 15:27:35 2025 GMT Not After : Nov 11 15:27:35 2025 GMT Subject: CN=690a1b67-3528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:31:c2:c2:ab:53:a5:75:7f:3d:97:4c:12:70: 5e:e0:e8:78:bd:db:4f:33:9f:5f:2c:de:0a:6e:19: f6:e3:e2:3c:c6:a8:b5:aa:df:7c:f1:ea:05:f7:1e: 82:43:12:ff:e7:cf:d2:8d:dc:fa:b2:d6:47:8c:36: df:a6:37:e6:64:25:c6:80:79:5e:a4:70:5b:9d:10: 5b:0c:43:19:9a:1c:5a:1b:83:ad:40:d1:61:5e:ea: 8c:45:a4:2d:fa:8c:29:43:a5:d9:51:8f:41:54:ef: 58:7b:f0:56:44:80:4e:ce:c8:b5:db:31:aa:43:8b: 52:a1:1c:d5:07:19:76:8d:58:2b:30:e6:69:0f:10: b6:3e:3e:34:c7:00:55:20:e6:80:2b:cf:45:91:44: 38:f0:49:c4:41:4d:9c:f4:e1:c1:b7:b3:03:cc:23: d9:47:b3:97:be:f2:73:e7:0c:a1:bb:02:cc:b4:74: 80:6c:0b:ec:93:fd:2e:75:9a:8e:72:25:9c:fc:04: af:c9:4b:63:49:42:c4:f3:e0:c0:80:81:54:dc:d2: a8:28:7d:71:0f:d1:0a:37:69:12:15:20:27:e6:5e: 78:1e:d6:fe:e1:2c:06:d4:ed:65:67:07:ea:33:3e: 82:8d:ef:ae:10:c5:02:9b:1d:1a:b6:34:3d:9e:26: 55:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:1F:52:26:04:4C:52:C9:D1:DF:03:82:9B:A0:C9:9C:87:28:E7:16 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:5f:2f:38:30:2d:27:15:1f:80:9c:40:61:68:d9:5a:9d:23: 79:bf:8a:08:89:29:ea:1c:e6:1d:b9:a8:09:a3:0f:c3:9d:a9: 34:ef:63:cb:a5:98:1e:1a:ac:78:05:c5:1d:ee:94:da:69:a6: d3:b1:bd:b5:22:90:55:34:03:32:44:1c:1d:a9:d6:eb:a9:68: 2c:61:dd:e5:75:ad:5f:e3:2f:db:75:d8:af:98:c2:f5:44:9d: f5:c0:1c:ef:41:6e:37:97:f9:84:de:9a:4f:36:76:6e:9c:28: 1c:64:46:84:65:63:d0:19:31:a0:3e:fb:f3:e2:e6:51:8b:65: 47:90:83:a1:67:e4:ca:20:e2:32:d4:ec:75:9a:db:c1:16:6b: d7:a3:28:d6:c3:e0:ac:3d:a7:1d:da:e6:1c:b3:b7:3f:7a:17: c4:e1:c1:d0:7c:65:cc:40:52:c7:ee:31:82:b5:83:e2:26:37: e7:67:53:4d:00:15:ab:34:75:1d:e6:35:8f:de:82:13:d7:b3: 31:ed:72:b3:ba:63:d1:5e:78:6a:10:18:c5:b3:fe:f4:67:3a: 68:13:3d:37:eb:62:df:bf:ef:e3:d4:b9:3e:e0:7b:e7:17:10: 33:5b:cb:be:6b:25:60:61:9f:3f:95:a3:88:6f:b3:d0:5d:d3: d2:dd:d6:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjUxMTA0MTUyNzM1WhcNMjUxMTExMTUyNzM1WjAYMRYwFAYD VQQDEw02OTBhMWI2Ny0zNTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmTHCwqtTpXV/PZdMEnBe4Oh4vdtPM59fLN4Kbhn24+I8xqi1qt988eoF9x6C QxL/58/Sjdz6stZHjDbfpjfmZCXGgHlepHBbnRBbDEMZmhxaG4OtQNFhXuqMRaQt +owpQ6XZUY9BVO9Ye/BWRIBOzsi12zGqQ4tSoRzVBxl2jVgrMOZpDxC2Pj40xwBV IOaAK89FkUQ48EnEQU2c9OHBt7MDzCPZR7OXvvJz5wyhuwLMtHSAbAvsk/0udZqO ciWc/ASvyUtjSULE8+DAgIFU3NKoKH1xD9EKN2kSFSAn5l54Htb+4SwG1O1lZwfq Mz6Cje+uEMUCmx0atjQ9niZVzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgfUiYE TFLJ0d8DgpugyZyHKOcWMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnXy84MC0nFR+AnEBhaNlanSN5v4oIiSnqHOYduagJow/Dnak072PL pZgeGqx4BcUd7pTaaabTsb21IpBVNAMyRBwdqdbrqWgsYd3lda1f4y/bddivmML1 RJ31wBzvQW43l/mE3ppPNnZunCgcZEaEZWPQGTGgPvvz4uZRi2VHkIOhZ+TKIOIy 1Ox1mtvBFmvXoyjWw+CsPacd2uYcs7c/ehfE4cHQfGXMQFLH7jGCtYPiJjfnZ1NN ABWrNHUd5jWP3oIT17Mx7XKzumPRXnhqEBjFs/70ZzpoEz0362Lfv+/j1Lk+4Hvn FxAzW8u+ayVgYZ8/laOIb7PQXdPS3dYG -----END CERTIFICATE-----Generated at Tue Nov 4 20:21:47 2025 by rpki-client