$ rpki-client -vvf rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft File: 45B7SOaYfi_fztAe0B1As_Y9sRg.mft (raw, json) Hash identifier: yvLGRERk12+ZwiCR6XnEXJdE1Oh9p6SARUjS4bT1824= Subject key identifier: 5E:96:9C:FB:94:CD:C1:98:2F:05:D1:7C:FA:EE:DC:67:27:12:E2:8A Authority key identifier: E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 Certificate issuer: /CN=A91297A2/serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Certificate serial: 0192 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft Manifest number: 0189 Signing time: Wed 05 Nov 2025 03:48:34 +0000 Manifest this update: Wed 05 Nov 2025 03:48:34 +0000 Manifest next update: Wed 12 Nov 2025 03:48:34 +0000 Files and hashes: 1: 45B7SOaYfi_fztAe0B1As_Y9sRg.crl (hash: UZCc0ac77YCQbyQ/WR/jsb7P1oqr7gQtK8cA34WyDlo=) 2: 624C3E865DB011F0875D570FC4F9AE02.roa (hash: zOKtwgFHpwRqlyTO9H77mqE2ho8WfMEhM/eJGA5uflI=) 3: B08503D8F8AA11EE91684140C4F9AE02.roa (hash: 18UQJbHGEGObYcZEjw5pF1Ha/JCm9Dtoy6BRpv3dt58=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:48:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 402 (0x192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91297A2, serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Validity Not Before: Nov 5 03:48:34 2025 GMT Not After : Nov 12 03:48:34 2025 GMT Subject: CN=690ac912-f469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:17:60:d2:3a:22:de:9a:a1:80:45:6e:09:77: 24:19:ec:63:a0:f0:ca:84:78:75:78:3f:d0:c4:ea: 27:ec:2d:c3:f5:34:98:11:1e:a2:43:c1:52:e5:dc: 29:d3:cc:af:c0:23:fb:d0:d0:1a:43:ac:16:d6:32: 4b:10:6f:c3:f4:98:75:7a:dc:2b:be:41:35:d1:c2: ce:9b:60:0a:72:9b:73:07:f0:df:4f:ea:aa:f0:98: 4b:47:45:9a:3a:08:a7:9b:9b:03:ef:6a:42:d0:b3: d9:13:79:46:61:f4:61:bb:66:a2:6a:d7:a9:06:73: 0a:84:c8:23:fc:ae:cb:6c:62:24:1b:c4:0d:c2:8a: 2e:13:9a:41:04:97:d2:ff:29:96:cb:65:ea:c4:59: a2:5e:38:de:40:48:19:be:c8:d9:91:16:48:05:32: f7:36:e6:e0:7b:e9:bd:f8:32:39:b2:6f:83:f6:ee: 52:33:e7:1f:bb:24:98:23:8b:7e:b0:c3:b1:33:d4: a3:7b:c9:dd:ea:d8:6e:ed:0a:54:dd:83:d9:a2:5a: f9:af:b8:31:8f:31:93:06:d2:1e:6b:e4:81:01:14: d3:a4:c7:7a:6e:27:ff:c9:19:8f:d8:6d:c0:3d:08: 1d:a5:05:93:9d:95:0c:21:cc:eb:d6:31:53:79:8b: e5:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:96:9C:FB:94:CD:C1:98:2F:05:D1:7C:FA:EE:DC:67:27:12:E2:8A X509v3 Authority Key Identifier: keyid:E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:df:b7:bc:bf:f9:33:85:c9:15:d2:9a:b1:2b:4c:c3:bd:b5: 55:c3:b9:75:ba:24:6d:01:66:ea:5c:5b:d1:35:26:b5:5b:e6: 3d:c3:ed:ed:8a:45:35:40:d2:f3:ca:51:1f:db:93:02:9f:aa: 9e:31:b6:5a:49:67:cd:63:54:73:67:80:f3:31:57:cb:c2:c6: 9a:27:95:02:04:9c:dc:e7:4c:84:bf:e3:65:fd:cf:29:24:bf: 94:14:ac:b5:a8:fa:7f:5d:df:bd:7f:a0:bc:de:4f:d7:d9:8d: 29:97:b7:6d:80:88:8d:6b:44:2d:0e:58:c0:80:f2:0f:72:88: 8b:7c:e2:b0:75:b8:ee:04:ec:49:58:63:55:f3:d5:86:ed:a7: b9:c3:68:61:d7:b2:9e:32:e5:a5:87:ad:47:c2:33:8c:a1:da: 60:6c:c2:df:b8:de:75:b8:95:68:39:e5:b4:6d:9f:29:72:20: 12:5d:ab:1d:61:13:4b:45:5e:a0:ca:3d:2c:a7:bd:b8:a1:cc: f2:68:56:fe:80:e8:d6:8a:d9:6f:74:4d:af:5a:22:1e:b2:fa: 68:d0:89:32:e9:a5:91:bc:b9:07:a7:12:da:fb:4c:84:42:c0: cf:07:5b:db:2c:99:88:42:0c:74:e4:31:8f:b9:d5:9a:ab:d1: c2:6b:be:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3QTIxMTAvBgNVBAUTKEUzOTA3QjQ4RTY5ODdFMkZERkNFRDAxRUQwMUQ0MEIz RjYzREIxMTgwHhcNMjUxMTA1MDM0ODM0WhcNMjUxMTEyMDM0ODM0WjAYMRYwFAYD VQQDEw02OTBhYzkxMi1mNDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+Bdg0joi3pqhgEVuCXckGexjoPDKhHh1eD/QxOon7C3D9TSYER6iQ8FS5dwp 08yvwCP70NAaQ6wW1jJLEG/D9Jh1etwrvkE10cLOm2AKcptzB/DfT+qq8JhLR0Wa Oginm5sD72pC0LPZE3lGYfRhu2aiatepBnMKhMgj/K7LbGIkG8QNwoouE5pBBJfS /ymWy2XqxFmiXjjeQEgZvsjZkRZIBTL3Nubge+m9+DI5sm+D9u5SM+cfuySYI4t+ sMOxM9Sje8nd6thu7QpU3YPZolr5r7gxjzGTBtIea+SBARTTpMd6bif/yRmP2G3A PQgdpQWTnZUMIczr1jFTeYvluwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6WnPuU zcGYLwXRfPru3GcnEuKKMB8GA1UdIwQYMBaAFOOQe0jmmH4v387QHtAdQLP2PbEY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTdBMi9CM0RGQzg4NDZE NjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZpX2Z6dEFlMEIxQXNfWTlz UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1QjdTT2FZZmlfZnp0QWUwQjFBc19ZOXNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTdBMi9CM0RGQzg4NDZENjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZp X2Z6dEFlMEIxQXNfWTlzUmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC37e8v/kzhckV0pqxK0zDvbVVw7l1uiRtAWbqXFvRNSa1W+Y9w+3t ikU1QNLzylEf25MCn6qeMbZaSWfNY1RzZ4DzMVfLwsaaJ5UCBJzc50yEv+Nl/c8p JL+UFKy1qPp/Xd+9f6C83k/X2Y0pl7dtgIiNa0QtDljAgPIPcoiLfOKwdbjuBOxJ WGNV89WG7ae5w2hh17KeMuWlh61HwjOModpgbMLfuN51uJVoOeW0bZ8pciASXasd YRNLRV6gyj0sp724oczyaFb+gOjWitlvdE2vWiIesvpo0Iky6aWRvLkHpxLa+0yE QsDPB1vbLJmIQgx05DGPudWaq9HCa75D -----END CERTIFICATE-----Generated at Wed Nov 5 13:51:18 2025 by rpki-client