$ rpki-client -vvf rpki.apnic.net/member_repository/A912E3C7/8E608A8AB26711EFA565A849C4F9AE02/MnO_dM_TfcKwgKpPGtntXtY-YyA.mft File: MnO_dM_TfcKwgKpPGtntXtY-YyA.mft (raw, json) Hash identifier: chduNP6vu1Ic2m+KsBO4iIdtuP1SvUkJ2Q/ZEedoBfc= Subject key identifier: FF:A6:F3:40:44:19:18:A8:A9:C4:DD:43:D7:55:7F:52:2C:FF:07:14 Authority key identifier: 32:73:BF:74:CF:D3:7D:C2:B0:80:AA:4F:1A:D9:ED:5E:D6:3E:63:20 Certificate issuer: /CN=A912E3C7/serialNumber=3273BF74CFD37DC2B080AA4F1AD9ED5ED63E6320 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnO_dM_TfcKwgKpPGtntXtY-YyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E3C7/8E608A8AB26711EFA565A849C4F9AE02/MnO_dM_TfcKwgKpPGtntXtY-YyA.mft Manifest number: AA Signing time: Mon 03 Nov 2025 06:10:27 +0000 Manifest this update: Mon 03 Nov 2025 06:10:26 +0000 Manifest next update: Mon 10 Nov 2025 06:10:26 +0000 Files and hashes: 1: MnO_dM_TfcKwgKpPGtntXtY-YyA.crl (hash: OwnIZkI9CTBqXQhI3TXg8pwBTBIPbMnt0gYhXvOjAN8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E3C7/8E608A8AB26711EFA565A849C4F9AE02/MnO_dM_TfcKwgKpPGtntXtY-YyA.crl rsync://rpki.apnic.net/member_repository/A912E3C7/8E608A8AB26711EFA565A849C4F9AE02/MnO_dM_TfcKwgKpPGtntXtY-YyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnO_dM_TfcKwgKpPGtntXtY-YyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:10:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E3C7, serialNumber=3273BF74CFD37DC2B080AA4F1AD9ED5ED63E6320 Validity Not Before: Nov 3 06:10:26 2025 GMT Not After : Nov 10 06:10:26 2025 GMT Subject: CN=69084753-0d43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:67:19:98:c0:ae:22:cd:d5:d9:33:c4:8e:17: 60:ed:4b:eb:91:0b:66:f3:21:b9:c0:3b:6c:c9:d5: 08:c8:be:8e:2a:7a:58:99:4d:1f:7b:83:72:5e:7f: e8:1c:f8:5f:d5:e6:46:17:3c:5e:c0:66:3b:44:1a: 1d:07:71:3e:9f:7c:8a:01:a8:06:92:56:4e:1e:94: ca:40:50:d0:ab:58:0e:a0:69:61:ad:c1:36:71:3f: 74:15:22:95:e4:3f:26:64:db:36:8e:69:92:ea:b9: d9:77:5e:2c:bd:d2:e5:f1:d7:a3:bc:bd:46:34:70: 2c:9e:b3:a9:26:f5:aa:c3:7e:b9:cb:1e:26:07:3b: 64:c2:dc:10:bf:76:63:51:c7:60:83:5e:94:bc:03: 82:b3:6f:e1:28:90:6a:3d:6a:5b:ef:9a:a6:a9:9e: 50:ee:85:ed:dc:5b:de:ab:34:60:af:54:96:07:86: e9:84:d2:74:dc:c7:8a:a0:32:92:63:7f:d4:ea:46: 59:d5:d4:e1:27:c8:7f:53:b8:2d:ed:26:7b:4e:89: 3b:f4:28:61:0b:6e:96:93:ab:b9:00:f6:7a:82:e8: e5:af:22:01:d5:b1:50:df:8e:72:0d:0e:b4:ee:5a: b7:0f:62:d1:40:42:e2:e2:84:ba:24:32:de:d2:01: 15:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:A6:F3:40:44:19:18:A8:A9:C4:DD:43:D7:55:7F:52:2C:FF:07:14 X509v3 Authority Key Identifier: keyid:32:73:BF:74:CF:D3:7D:C2:B0:80:AA:4F:1A:D9:ED:5E:D6:3E:63:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E3C7/8E608A8AB26711EFA565A849C4F9AE02/MnO_dM_TfcKwgKpPGtntXtY-YyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnO_dM_TfcKwgKpPGtntXtY-YyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E3C7/8E608A8AB26711EFA565A849C4F9AE02/MnO_dM_TfcKwgKpPGtntXtY-YyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:5b:0b:e0:8b:87:c7:63:17:1a:94:96:0f:76:7d:a8:d3:bb: 3e:5d:25:4d:5e:c0:77:4b:92:eb:b1:b1:e2:17:a7:17:83:53: 52:3b:3b:1e:94:9e:5c:7e:1c:42:f1:90:b4:15:33:20:0e:ca: ae:8b:4d:80:fb:b7:95:1a:c7:a7:b5:eb:6a:5d:40:72:9c:63: 99:d0:b7:48:6a:95:f8:04:93:17:07:6e:b1:b4:c9:24:dd:74: 02:08:ea:20:1e:b8:db:cf:c9:9c:9a:4f:5e:29:e5:8d:e9:b0: d4:2d:25:72:01:90:e0:39:9d:71:11:11:e7:d6:99:06:d2:7e: f5:c0:15:6f:ab:81:25:d8:af:e6:f6:33:55:be:ec:98:85:ce: 81:c5:dc:dd:aa:4a:ea:2c:8d:81:22:49:09:b2:83:8f:c7:73: f6:40:e1:39:29:4e:ce:bb:f2:31:5f:31:96:14:de:ab:1f:fa: a5:04:ec:9e:a0:cd:e4:ce:9f:ed:b8:da:68:08:92:75:c3:6e: 88:b0:d8:eb:a5:bf:9c:9e:30:44:17:51:4a:e0:9c:29:21:33: 59:f0:8c:71:aa:d1:99:ed:5c:dd:b8:b1:33:c4:cd:c5:10:d5: 25:98:e2:02:a5:72:6a:48:3a:7e:0b:85:ea:85:ca:3d:46:7a: 13:60:50:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkUzQzcxMTAvBgNVBAUTKDMyNzNCRjc0Q0ZEMzdEQzJCMDgwQUE0RjFBRDlFRDVF RDYzRTYzMjAwHhcNMjUxMTAzMDYxMDI2WhcNMjUxMTEwMDYxMDI2WjAYMRYwFAYD VQQDEw02OTA4NDc1My0wZDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2mcZmMCuIs3V2TPEjhdg7UvrkQtm8yG5wDtsydUIyL6OKnpYmU0fe4NyXn/o HPhf1eZGFzxewGY7RBodB3E+n3yKAagGklZOHpTKQFDQq1gOoGlhrcE2cT90FSKV 5D8mZNs2jmmS6rnZd14svdLl8dejvL1GNHAsnrOpJvWqw365yx4mBztkwtwQv3Zj Ucdgg16UvAOCs2/hKJBqPWpb75qmqZ5Q7oXt3FveqzRgr1SWB4bphNJ03MeKoDKS Y3/U6kZZ1dThJ8h/U7gt7SZ7Tok79ChhC26Wk6u5APZ6gujlryIB1bFQ345yDQ60 7lq3D2LRQELi4oS6JDLe0gEVlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP+m80BE GRioqcTdQ9dVf1Is/wcUMB8GA1UdIwQYMBaAFDJzv3TP033CsICqTxrZ7V7WPmMg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTNDNy84RTYwOEE4QUIy NjcxMUVGQTU2NUE4NDlDNEY5QUUwMi9Nbk9fZE1fVGZjS3dnS3BQR3RudFh0WS1Z eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01uT19kTV9UZmNLd2dLcFBHdG50WHRZLVl5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTNDNy84RTYwOEE4QUIyNjcxMUVGQTU2NUE4NDlDNEY5QUUwMi9Nbk9fZE1fVGZj S3dnS3BQR3RudFh0WS1ZeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuWwvgi4fHYxcalJYPdn2o07s+XSVNXsB3S5LrsbHiF6cXg1NSOzse lJ5cfhxC8ZC0FTMgDsqui02A+7eVGsentetqXUBynGOZ0LdIapX4BJMXB26xtMkk 3XQCCOogHrjbz8mcmk9eKeWN6bDULSVyAZDgOZ1xERHn1pkG0n71wBVvq4El2K/m 9jNVvuyYhc6BxdzdqkrqLI2BIkkJsoOPx3P2QOE5KU7Ou/IxXzGWFN6rH/qlBOye oM3kzp/tuNpoCJJ1w26IsNjrpb+cnjBEF1FK4JwpITNZ8IxxqtGZ7VzduLEzxM3F ENUlmOICpXJqSDp+C4Xqhco9RnoTYFAf -----END CERTIFICATE-----Generated at Tue Nov 4 21:36:24 2025 by rpki-client