$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft File: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft (raw, json) Hash identifier: q/De+FCNZNHmyOyFl0/oPKDeeF1g3MLA+CRLt7CavNc= Subject key identifier: AD:DA:D6:FF:54:BA:AC:D6:33:F9:66:E3:E1:70:55:B3:C6:1F:CC:48 Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Certificate serial: 0CBC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft Manifest number: 1E21 Signing time: Sun 02 Nov 2025 17:15:08 +0000 Manifest this update: Sun 02 Nov 2025 17:15:07 +0000 Manifest next update: Sun 09 Nov 2025 17:15:07 +0000 Files and hashes: 1: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl (hash: xv4VTVw9yIUUaaW+mYFWR7MoAjlySYbvWkGp/O7Vn3A=) 2: CE3C7EF66FEB11EB91967864C4F9AE02.roa (hash: Ecj4wTVjyUbe05JmkTHE3iJeDcHJFhB138/thNFleyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:15:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3260 (0xcbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0, serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Validity Not Before: Nov 2 17:15:07 2025 GMT Not After : Nov 9 17:15:07 2025 GMT Subject: CN=6907919c-5988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:a5:6c:df:e6:f1:e0:f7:76:f0:d5:27:cb:5f: f5:2e:de:e8:73:8b:b8:c8:d8:a6:3d:dc:a3:45:b8: de:82:3c:cb:db:68:95:9b:7a:92:40:ba:cb:e3:91: e5:9b:1f:6f:51:7e:3c:62:64:77:8b:fc:35:ea:1b: 41:1b:3e:f1:b0:1b:a3:1e:bc:c1:d7:ab:2d:6d:74: db:86:fd:d4:4b:bd:30:03:e0:e4:13:42:82:fe:47: c0:4c:49:ca:9d:e6:2a:76:0a:e6:00:ed:ba:5d:74: e9:b0:39:4d:09:f8:94:8d:a0:33:54:4e:bf:66:54: e3:7b:c0:0d:6a:15:1d:b5:b0:d6:13:4a:77:00:27: 17:76:36:48:a4:f6:4e:bc:17:f5:06:eb:69:d8:98: a2:e4:32:ee:8a:71:ca:fc:c0:50:e3:fc:33:81:3c: 49:50:5a:11:96:1b:2d:b0:4b:ee:c6:32:d5:81:68: 1e:64:23:24:55:c7:3b:37:8f:ef:65:00:0e:c6:43: fe:8d:f9:96:8a:3a:9b:ae:03:cc:bb:a2:bc:cc:3f: fe:90:11:5d:c7:20:8b:7e:a0:67:4a:99:eb:b7:d4: d2:d2:90:cc:f4:ba:6d:05:24:92:27:72:86:e9:42: bc:c3:e3:96:0e:fd:e6:a6:c4:cc:24:89:41:76:c0: 47:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:DA:D6:FF:54:BA:AC:D6:33:F9:66:E3:E1:70:55:B3:C6:1F:CC:48 X509v3 Authority Key Identifier: keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:3f:58:8d:c3:b8:ba:fc:d2:09:b9:68:45:81:8d:be:e4:2e: b3:4f:f3:ff:7b:79:11:82:62:a0:98:a5:53:6f:dc:16:9a:52: 28:c8:0f:b6:32:f9:25:6f:ae:15:26:f2:c1:c3:d8:b0:c9:e6: d5:51:77:43:8b:4a:fb:3e:c4:e1:de:b7:a0:a8:e1:91:e4:15: 01:61:fe:5e:fa:69:5a:0e:39:e7:e5:06:56:8c:08:95:38:24: fd:ff:09:c2:de:29:80:ae:0a:20:50:b5:58:66:e2:72:4a:05: 86:b4:f0:03:64:7d:e9:83:ca:49:bc:2f:84:da:9f:33:ed:91: 5f:0c:cd:1b:30:23:54:c9:65:7a:c0:6c:1b:2f:31:f2:d5:20: 1a:6b:f4:34:15:29:3d:03:d6:51:bf:43:03:7e:83:ba:e5:c2: 12:2c:40:b7:15:d5:07:fb:71:17:2e:07:98:3f:c2:2f:9c:91: f0:4f:72:63:30:fd:08:9e:90:09:b4:f7:db:92:92:7a:30:98: 0a:e8:ba:2b:74:fe:a1:fa:9c:e7:63:5c:a1:75:cd:75:89:6e: 71:de:4c:d8:f7:75:85:08:bc:11:b8:1e:84:59:2e:de:e8:76: b6:a8:39:0a:da:67:b2:97:d7:16:14:5a:b6:28:57:8d:85:12: 55:3d:a8:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG REE4NEMwN0EwHhcNMjUxMTAyMTcxNTA3WhcNMjUxMTA5MTcxNTA3WjAYMRYwFAYD VQQDEw02OTA3OTE5Yy01OTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8KVs3+bx4Pd28NUny1/1Lt7oc4u4yNimPdyjRbjegjzL22iVm3qSQLrL45Hl mx9vUX48YmR3i/w16htBGz7xsBujHrzB16stbXTbhv3US70wA+DkE0KC/kfATEnK neYqdgrmAO26XXTpsDlNCfiUjaAzVE6/ZlTje8ANahUdtbDWE0p3ACcXdjZIpPZO vBf1Butp2Jii5DLuinHK/MBQ4/wzgTxJUFoRlhstsEvuxjLVgWgeZCMkVcc7N4/v ZQAOxkP+jfmWijqbrgPMu6K8zD/+kBFdxyCLfqBnSpnrt9TS0pDM9LptBSSSJ3KG 6UK8w+OWDv3mpsTMJIlBdsBHwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3a1v9U uqzWM/lm4+FwVbPGH8xIMB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3 SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlh NVVPRmNVam1NMUw5cUV3SG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1P1iNw7i6/NIJuWhFgY2+5C6zT/P/e3kRgmKgmKVTb9wWmlIoyA+2 Mvklb64VJvLBw9iwyebVUXdDi0r7PsTh3regqOGR5BUBYf5e+mlaDjnn5QZWjAiV OCT9/wnC3imArgogULVYZuJySgWGtPADZH3pg8pJvC+E2p8z7ZFfDM0bMCNUyWV6 wGwbLzHy1SAaa/Q0FSk9A9ZRv0MDfoO65cISLEC3FdUH+3EXLgeYP8IvnJHwT3Jj MP0InpAJtPfbkpJ6MJgK6LordP6h+pznY1yhdc11iW5x3kzY93WFCLwRuB6EWS7e 6Ha2qDkK2meyl9cWFFq2KFeNhRJVPagd -----END CERTIFICATE-----Generated at Tue Nov 4 08:05:30 2025 by rpki-client