$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: gFMb5Mt83M+axZSbTXM8qXFNBvCnuBYDcJwP1nQsRKQ= Subject key identifier: 20:81:DC:BB:97:23:7A:23:6C:A3:78:84:6D:6A:DF:B2:E1:EC:A0:A7 Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 01E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 01D9 Signing time: Wed 05 Nov 2025 02:53:35 +0000 Manifest this update: Wed 05 Nov 2025 02:53:34 +0000 Manifest next update: Wed 12 Nov 2025 02:53:34 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: sMT7bJojRP5+hg50188vrVcgyXB2VTUgUBU7LCNFAtE=) 2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: HkCOmQRPg+yDDZPtodRzZcHCpOQoTEGcVWS7eV1BiSA=) 3: 881C3F9CABD311EFBFED7130C4F9AE02.roa (hash: 4Vu2iECkKD+oqedLfhjWXd7CHOWEQhszvHID7EwF+IE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:53:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 481 (0x1e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Nov 5 02:53:34 2025 GMT Not After : Nov 12 02:53:34 2025 GMT Subject: CN=690abc2e-e032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:57:bb:a7:24:a0:dd:39:48:ab:dd:bb:35:37: ef:f8:ae:a2:4c:f3:e7:2d:a4:83:01:03:45:b2:de: 61:61:e2:10:86:5a:a9:80:43:7e:bb:db:c8:d2:09: 08:79:e4:d3:40:92:2e:40:6c:ba:9f:6b:81:71:88: 4a:67:43:ca:b1:77:17:d5:cc:cc:f0:0e:93:d8:c5: 1a:9b:ee:65:a8:e7:2e:54:fa:15:4b:cd:bc:9d:e8: 22:d2:3d:9a:b4:be:c5:95:6d:ef:6e:2e:7b:a0:1e: 0b:a8:c2:15:c9:f7:27:e5:8e:e8:a8:29:15:17:a7: 5e:7c:b7:81:ed:f7:7a:50:4b:d2:15:1d:03:e5:45: 0f:ac:89:44:7c:fc:95:9e:12:bd:e2:2a:ac:a1:c8: 15:9f:99:07:db:76:66:79:e2:b4:6b:6c:81:20:e5: d3:94:4c:28:b4:74:22:52:7b:7e:08:f5:18:35:64: 64:41:a6:4d:1c:52:2a:f1:09:57:85:ed:69:03:f8: bf:aa:c6:82:19:bd:2b:80:a9:d7:6d:2e:48:67:2f: ad:6c:89:0f:a6:e2:4d:86:3c:52:5a:34:43:b6:1f: eb:61:4d:9a:68:d4:7d:42:69:b9:bb:ef:d3:97:54: 69:e5:67:30:84:07:29:af:2e:bd:8c:84:a4:c5:30: 66:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:81:DC:BB:97:23:7A:23:6C:A3:78:84:6D:6A:DF:B2:E1:EC:A0:A7 X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:fd:a7:15:6d:85:45:40:e1:da:78:3d:ed:3f:fc:36:58:61: 21:0e:4f:ab:9e:70:dc:9f:64:9e:64:ac:66:51:5d:dc:5c:65: 99:8e:2e:46:1a:f1:5c:34:25:08:e2:16:54:80:1d:2c:dc:97: 07:7e:c5:05:7d:be:2b:d1:08:ad:9c:36:50:d1:f7:a4:ba:15: 0e:88:f4:f1:5f:ab:29:25:2b:07:8e:e1:8c:e1:2e:88:6b:48: a8:2b:3e:27:7d:c1:6f:93:ef:2e:f0:51:76:a9:c5:5a:a9:96: ba:c4:cc:cc:91:30:28:2c:33:cb:3d:cb:a8:ab:8e:2e:da:18: da:74:a5:98:ba:31:17:11:14:8a:78:ed:4b:8f:82:8d:4a:68: fe:d3:21:4e:24:c9:e9:87:28:7c:8f:db:1d:be:d8:cc:fe:de: e0:dc:70:98:28:8f:7e:51:7f:36:09:99:3d:50:b2:24:f1:49: 22:c4:a3:15:ab:51:a9:98:29:4d:c9:e8:82:d0:81:d0:c2:f3: b6:3e:65:db:18:28:69:58:a7:12:81:25:57:0b:8c:8a:44:d7: 86:05:27:b2:7c:f2:de:73:df:1e:f3:05:22:aa:f2:ac:a0:20: 71:c2:d6:bc:34:b3:02:99:28:6f:fe:f5:88:f9:42:92:5b:b1: 0b:91:9a:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjUxMTA1MDI1MzM0WhcNMjUxMTEyMDI1MzM0WjAYMRYwFAYD VQQDEw02OTBhYmMyZS1lMDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1e7pySg3TlIq927NTfv+K6iTPPnLaSDAQNFst5hYeIQhlqpgEN+u9vI0gkI eeTTQJIuQGy6n2uBcYhKZ0PKsXcX1czM8A6T2MUam+5lqOcuVPoVS828negi0j2a tL7FlW3vbi57oB4LqMIVyfcn5Y7oqCkVF6defLeB7fd6UEvSFR0D5UUPrIlEfPyV nhK94iqsocgVn5kH23ZmeeK0a2yBIOXTlEwotHQiUnt+CPUYNWRkQaZNHFIq8QlX he1pA/i/qsaCGb0rgKnXbS5IZy+tbIkPpuJNhjxSWjRDth/rYU2aaNR9Qmm5u+/T l1Rp5WcwhAcpry69jISkxTBmNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCCB3LuX I3ojbKN4hG1q37Lh7KCnMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5/acVbYVFQOHaeD3tP/w2WGEhDk+rnnDcn2SeZKxmUV3cXGWZji5G GvFcNCUI4hZUgB0s3JcHfsUFfb4r0QitnDZQ0fekuhUOiPTxX6spJSsHjuGM4S6I a0ioKz4nfcFvk+8u8FF2qcVaqZa6xMzMkTAoLDPLPcuoq44u2hjadKWYujEXERSK eO1Lj4KNSmj+0yFOJMnphyh8j9sdvtjM/t7g3HCYKI9+UX82CZk9ULIk8UkixKMV q1GpmClNyeiC0IHQwvO2PmXbGChpWKcSgSVXC4yKRNeGBSeyfPLec98e8wUiqvKs oCBxwta8NLMCmShv/vWI+UKSW7ELkZpI -----END CERTIFICATE-----Generated at Wed Nov 5 11:36:34 2025 by rpki-client