$ rpki-client -vvf rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/mFJq8YqDozT1eZgqMXm23R6X3i4.mft File: mFJq8YqDozT1eZgqMXm23R6X3i4.mft (raw, json) Hash identifier: yneT5x+OuMDjA3a2tjud6cIU89ant76RBmQDKS4+wWk= Subject key identifier: 41:0B:5A:85:DB:A6:1D:3D:88:FE:28:D5:A0:41:71:BB:98:CE:C5:D6 Authority key identifier: 98:52:6A:F1:8A:83:A3:34:F5:79:98:2A:31:79:B6:DD:1E:97:DE:2E Certificate issuer: /CN=A91308CE/serialNumber=98526AF18A83A334F579982A3179B6DD1E97DE2E Certificate serial: 34D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFJq8YqDozT1eZgqMXm23R6X3i4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/mFJq8YqDozT1eZgqMXm23R6X3i4.mft Manifest number: 34D5 Signing time: Tue 04 Nov 2025 14:57:26 +0000 Manifest this update: Tue 04 Nov 2025 14:57:25 +0000 Manifest next update: Tue 11 Nov 2025 14:57:25 +0000 Files and hashes: 1: mFJq8YqDozT1eZgqMXm23R6X3i4.crl (hash: zVS9GmV0HQgwf8otpVrQYPUxu4wnmSahCRW37P1VwcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/mFJq8YqDozT1eZgqMXm23R6X3i4.crl rsync://rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/mFJq8YqDozT1eZgqMXm23R6X3i4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFJq8YqDozT1eZgqMXm23R6X3i4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:57:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13525 (0x34d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91308CE, serialNumber=98526AF18A83A334F579982A3179B6DD1E97DE2E Validity Not Before: Nov 4 14:57:25 2025 GMT Not After : Nov 11 14:57:25 2025 GMT Subject: CN=690a1456-347d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:75:86:ef:9b:f8:41:e8:17:f4:44:56:fa:7c: 4e:27:c8:4e:96:4b:4b:da:7a:96:8d:63:17:c3:f6: c0:8d:18:93:1b:0f:65:5e:10:c5:4a:23:20:e5:da: 23:67:2f:11:3a:c3:57:3d:57:e8:c9:ac:2c:79:a2: 10:44:77:95:a0:7c:74:ca:0d:ea:f2:89:7f:c7:c8: 80:c4:47:91:fb:70:90:44:5f:b9:f0:69:dd:9c:4c: ac:1b:87:5e:35:48:b0:54:2c:f5:43:10:d3:ba:8d: 12:9b:e7:34:36:00:ae:3b:d3:22:eb:39:ae:56:0d: c4:81:56:5a:51:70:e5:41:e8:12:07:cd:0d:bf:f1: 36:a2:fa:44:bc:e6:56:3d:87:e5:82:29:c9:83:a6: 36:00:23:ef:02:58:bf:8c:67:a0:ca:8d:40:db:ec: 37:dc:d8:f2:1e:6e:47:f9:bb:59:76:2c:5e:ec:6c: 50:37:4f:83:ba:fd:d8:55:b5:9c:b5:ef:f9:93:ca: 5d:77:08:84:4a:d5:e7:6b:54:00:b1:61:b9:f4:c9: 9f:03:98:9a:22:7e:1c:89:5e:7d:7e:c5:d7:66:ba: a2:75:7c:a7:05:1f:4f:4b:f9:e1:cf:5d:11:0b:4e: 21:72:56:51:14:c8:d3:f0:b4:99:34:ff:c4:a6:77: 78:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:0B:5A:85:DB:A6:1D:3D:88:FE:28:D5:A0:41:71:BB:98:CE:C5:D6 X509v3 Authority Key Identifier: keyid:98:52:6A:F1:8A:83:A3:34:F5:79:98:2A:31:79:B6:DD:1E:97:DE:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/mFJq8YqDozT1eZgqMXm23R6X3i4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFJq8YqDozT1eZgqMXm23R6X3i4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/mFJq8YqDozT1eZgqMXm23R6X3i4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:98:12:cc:da:6a:0b:fe:b2:e1:23:33:01:64:2b:ba:24:e2: c7:5f:76:a8:89:3f:73:7a:e2:20:e3:04:35:c4:cc:6e:4d:22: ff:7a:95:55:12:3f:45:d0:5b:57:ef:3b:f0:b2:ac:24:a8:70: 4f:11:29:87:46:90:6e:57:10:12:2d:ae:d2:03:18:ee:9f:90: 07:d4:b2:8f:40:2c:4e:60:5b:58:36:9a:0f:f7:aa:31:b4:6b: bd:ff:ff:7d:58:c4:24:8b:5b:fd:4c:8e:a4:0a:65:b6:4d:85: a5:a6:f1:c9:d7:5f:c0:ac:0e:3d:43:9d:75:b0:c5:75:72:1e: b5:ed:be:7f:26:04:fa:42:69:4b:61:80:4f:b6:dd:6a:61:0e: 39:ab:c6:a5:37:37:60:2e:9f:34:ae:61:90:28:e8:31:26:3c: 54:ee:14:29:c2:50:21:b0:c6:00:af:56:3b:26:19:6b:42:13: 02:71:5f:93:92:28:89:95:b0:ba:5c:53:ae:16:f4:36:ba:98: 65:d4:01:4d:fc:71:3d:01:e2:4a:4a:3c:fb:cd:04:be:06:d9: 0c:6d:d4:d5:2f:20:1d:20:ed:40:cf:b8:c4:b8:d8:ec:82:8e: fd:71:24:6e:33:ee:57:e0:72:eb:40:84:a1:75:ff:d8:87:8e: bd:53:d3:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA4Q0UxMTAvBgNVBAUTKDk4NTI2QUYxOEE4M0EzMzRGNTc5OTgyQTMxNzlCNkRE MUU5N0RFMkUwHhcNMjUxMTA0MTQ1NzI1WhcNMjUxMTExMTQ1NzI1WjAYMRYwFAYD VQQDEw02OTBhMTQ1Ni0zNDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3WG75v4QegX9ERW+nxOJ8hOlktL2nqWjWMXw/bAjRiTGw9lXhDFSiMg5doj Zy8ROsNXPVfoyawseaIQRHeVoHx0yg3q8ol/x8iAxEeR+3CQRF+58GndnEysG4de NUiwVCz1QxDTuo0Sm+c0NgCuO9Mi6zmuVg3EgVZaUXDlQegSB80Nv/E2ovpEvOZW PYflginJg6Y2ACPvAli/jGegyo1A2+w33NjyHm5H+btZdixe7GxQN0+Duv3YVbWc te/5k8pddwiEStXna1QAsWG59MmfA5iaIn4ciV59fsXXZrqidXynBR9PS/nhz10R C04hclZRFMjT8LSZNP/Epnd4RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEELWoXb ph09iP4o1aBBcbuYzsXWMB8GA1UdIwQYMBaAFJhSavGKg6M09XmYKjF5tt0el94u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDhDRS8yNTdDRjcyNjFE OTkxMUUyOTY3QjlEODMwOEIwMkNEMi9tRkpxOFlxRG96VDFlWmdxTVhtMjNSNlgz aTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21GSnE4WXFEb3pUMWVaZ3FNWG0yM1I2WDNpNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDhDRS8yNTdDRjcyNjFEOTkxMUUyOTY3QjlEODMwOEIwMkNEMi9tRkpxOFlxRG96 VDFlWmdxTVhtMjNSNlgzaTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5mBLM2moL/rLhIzMBZCu6JOLHX3aoiT9zeuIg4wQ1xMxuTSL/epVV Ej9F0FtX7zvwsqwkqHBPESmHRpBuVxASLa7SAxjun5AH1LKPQCxOYFtYNpoP96ox tGu9//99WMQki1v9TI6kCmW2TYWlpvHJ11/ArA49Q511sMV1ch617b5/JgT6QmlL YYBPtt1qYQ45q8alNzdgLp80rmGQKOgxJjxU7hQpwlAhsMYAr1Y7JhlrQhMCcV+T kiiJlbC6XFOuFvQ2uphl1AFN/HE9AeJKSjz7zQS+BtkMbdTVLyAdIO1Az7jEuNjs go79cSRuM+5X4HLrQIShdf/Yh469U9Mn -----END CERTIFICATE-----Generated at Tue Nov 4 21:35:03 2025 by rpki-client