$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft File: _KoIYibfAq-DlPqyLR-5bgt9Zd0.mft (raw, json) Hash identifier: 7r4JWGSlRM//68y3bo1Q5TG2MVWdOm3ZuQoysHRN6uA= Subject key identifier: 5E:C1:5D:17:C6:2A:79:74:C1:8B:51:39:83:CD:06:EF:07:6B:C4:AB Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0C54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft Manifest number: 0C20 Signing time: Wed 05 Nov 2025 09:40:35 +0000 Manifest this update: Wed 05 Nov 2025 09:40:35 +0000 Manifest next update: Wed 12 Nov 2025 09:40:35 +0000 Files and hashes: 1: _KoIYibfAq-DlPqyLR-5bgt9Zd0.crl (hash: zCIc6J/kYt9cQ5TjauWBfyfH+K60I0cpfDZNHauWn0Y=) 2: 78E949B8BA2B11F091659A18C4F9AE02.roa (hash: YsiXmeBHLTVcWpQeQ+rN8puRINqRyvdIiKMOhQegReM=) 3: E2D5171C2F3211ED958A415DC4F9AE02.roa (hash: x2iHWFegIFwfUv7eETVYAeYmpK9xBEA15+t682RT6r8=) 4: 16C56390B6FF11F096DEAA71C4F9AE02.roa (hash: 9b3Uw8bnyufS/OBVXlguzfB2u169cJ4rSP2ILg6tQfU=) 5: 9FC61D303F7A11F0BC711E7FC4F9AE02.roa (hash: KLAu57JBn7NTh33cfX1DBAGhLNuRug57Fl0GJC6kPFQ=) 6: CF5F1FBEB6FE11F0A9F72B71C4F9AE02.roa (hash: LwDrT7in+D0XPtR9fTtiLNVPkAt3lM0XdhJ9KTaC6rM=) 7: 75775B8A5E3C11F094FDCD71C4F9AE02.roa (hash: edBs+LqPeq6VId1edbW8z5stcuCPjdTspdZcbHXD4ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 09:40:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3156 (0xc54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA, serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: Nov 5 09:40:35 2025 GMT Not After : Nov 12 09:40:35 2025 GMT Subject: CN=690b1b93-bae6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:54:25:0e:3c:38:33:6b:a4:81:a6:7d:34:ab: 0e:87:97:b7:df:2e:1d:01:46:03:d4:fd:c0:59:9f: 2c:7e:47:60:b6:96:30:36:2a:43:d3:72:9a:6b:f5: 9d:0e:9a:c5:67:92:15:f0:ee:6b:66:14:34:21:42: e7:07:41:0a:5c:34:ce:bc:72:65:6f:d6:82:c4:ef: a1:7c:6d:08:d2:f3:94:f0:8b:49:02:30:db:ff:fc: 84:41:64:ca:54:7c:fc:0a:58:8e:a8:20:ab:3f:a6: fc:c8:51:85:e3:65:19:3a:ff:60:3f:76:5d:7a:e7: 90:08:63:fc:30:a7:5e:03:d3:27:fb:e8:9c:8c:32: f6:de:bb:25:97:f0:05:ef:35:bf:9b:cd:ab:9e:dd: 97:da:f9:f5:ee:8a:b0:4b:ee:75:af:43:b8:38:9b: 0b:de:40:e8:41:76:84:4b:f0:5f:1f:2d:cf:4f:78: be:d4:32:69:e6:67:f9:13:cf:23:7b:73:20:21:34: bf:42:59:1d:c3:6e:82:df:dc:6a:90:1a:8a:f3:79: 90:8e:f2:bd:ce:28:b7:34:b9:89:b5:70:34:c1:1a: 01:91:be:ca:07:5a:cf:ee:29:75:bc:b5:f5:ca:ad: 1d:a0:ea:96:a6:39:bc:e3:49:dc:ae:a2:46:27:ce: 7c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:C1:5D:17:C6:2A:79:74:C1:8B:51:39:83:CD:06:EF:07:6B:C4:AB X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:b7:78:b3:05:a5:bb:e8:0d:18:52:c2:a1:19:3d:66:5d:b4: 8e:27:31:4f:3d:6c:8f:77:b3:1b:22:da:28:bd:b2:04:4b:45: 89:66:d7:1f:97:94:9b:3c:e4:61:9b:e5:5a:2c:3c:4b:4d:88: 81:a3:ae:8c:39:4d:52:29:21:33:e4:bf:3a:1e:b7:9c:21:1e: 3e:77:75:47:56:35:f7:ac:02:6e:e1:11:0c:0c:91:58:bf:a2: 9f:d8:68:18:00:1f:3c:e5:70:8d:66:26:89:91:a6:56:ac:a8: aa:11:36:69:b7:d4:ca:2c:66:fc:40:bb:57:b5:18:3c:1a:e4: ab:2e:53:95:cb:f9:cf:a5:cc:85:cc:7d:c0:01:99:0e:46:bb: f7:3d:d7:25:cb:fa:c3:c9:2f:de:8c:81:79:be:b3:1e:8c:c6: cf:92:b9:b6:76:51:fb:92:26:3d:c6:5f:c7:74:18:e6:22:af: 0e:14:6f:d5:de:54:49:34:cb:4d:bd:5a:26:b1:8d:31:9c:a3: 8d:a6:a6:af:b2:80:99:b2:76:ef:54:15:84:89:e1:f5:4d:e7: 89:63:c4:81:db:5a:85:96:71:dc:33:f7:f7:23:2e:76:ac:6d: 44:6e:57:b5:5e:16:01:a6:e9:a3:03:ef:63:76:08:01:1e:01: b5:77:83:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjUxMTA1MDk0MDM1WhcNMjUxMTEyMDk0MDM1WjAYMRYwFAYD VQQDEw02OTBiMWI5My1iYWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VQlDjw4M2ukgaZ9NKsOh5e33y4dAUYD1P3AWZ8sfkdgtpYwNipD03Kaa/Wd DprFZ5IV8O5rZhQ0IULnB0EKXDTOvHJlb9aCxO+hfG0I0vOU8ItJAjDb//yEQWTK VHz8CliOqCCrP6b8yFGF42UZOv9gP3ZdeueQCGP8MKdeA9Mn++icjDL23rsll/AF 7zW/m82rnt2X2vn17oqwS+51r0O4OJsL3kDoQXaES/BfHy3PT3i+1DJp5mf5E88j e3MgITS/Qlkdw26C39xqkBqK83mQjvK9zii3NLmJtXA0wRoBkb7KB1rP7il1vLX1 yq0doOqWpjm840ncrqJGJ858oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7BXRfG Knl0wYtROYPNBu8Ha8SrMB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThEQS8zNEYzNjEyRTI2ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFx LURsUHF5TFItNWJndDlaZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1t3izBaW76A0YUsKhGT1mXbSOJzFPPWyPd7MbItoovbIES0WJZtcf l5SbPORhm+VaLDxLTYiBo66MOU1SKSEz5L86HrecIR4+d3VHVjX3rAJu4REMDJFY v6Kf2GgYAB885XCNZiaJkaZWrKiqETZpt9TKLGb8QLtXtRg8GuSrLlOVy/nPpcyF zH3AAZkORrv3Pdcly/rDyS/ejIF5vrMejMbPkrm2dlH7kiY9xl/HdBjmIq8OFG/V 3lRJNMtNvVomsY0xnKONpqavsoCZsnbvVBWEieH1TeeJY8SB21qFlnHcM/f3Iy52 rG1Eble1XhYBpumjA+9jdggBHgG1d4Ng -----END CERTIFICATE-----Generated at Wed Nov 5 17:56:56 2025 by rpki-client