$ rpki-client -vvf rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft File: rGoi8eThZQrPtSifXctdU5IPzzQ.mft (raw, json) Hash identifier: ztodM7YUhh8GraM7ZoASi7r6w2rRz7IhJcoTu++oi/E= Subject key identifier: F1:77:22:C5:64:F2:7B:B6:1C:C7:58:97:F6:6B:82:04:B2:FB:5B:C0 Authority key identifier: AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 Certificate issuer: /CN=A91422D7/serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Certificate serial: 0150 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft Manifest number: 046B Signing time: Wed 05 Nov 2025 01:11:51 +0000 Manifest this update: Wed 05 Nov 2025 01:11:50 +0000 Manifest next update: Wed 12 Nov 2025 01:11:50 +0000 Files and hashes: 1: rGoi8eThZQrPtSifXctdU5IPzzQ.crl (hash: g0VjkVuRM4AghDEhBzAF8ykDSJ3BwYaFDQcqBbZUxXY=) 2: CE5F74E2BE5811EEA8C02E2AC4F9AE02.roa (hash: 7mnEbW853H0TtxSAAqitSldZ+gKZe1bS6fxCspOc670=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91422D7, serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Validity Not Before: Nov 5 01:11:50 2025 GMT Not After : Nov 12 01:11:50 2025 GMT Subject: CN=690aa456-c0d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:34:f6:de:aa:c5:23:61:bd:14:05:bd:38:77: 11:3d:38:18:ff:f5:af:a7:ce:84:b3:63:01:62:d2: 5a:9b:fc:69:e4:06:c9:48:1f:f9:f5:c5:2a:db:25: 4b:3e:e5:78:5c:84:d1:1a:cf:af:f4:bb:92:7b:a7: 98:e7:c0:01:fc:0c:3e:b2:1e:89:b3:fd:94:e1:5d: a1:aa:ae:99:c4:3b:27:00:6e:0d:35:c2:ed:3d:90: fb:91:09:14:97:63:19:3f:b3:10:d7:ce:4d:bd:67: e1:de:d0:da:82:96:5f:b6:e1:2b:39:13:56:ba:61: 54:ab:55:62:09:69:9e:12:ec:b6:6a:4c:8c:8a:09: 8f:1c:16:21:ae:e7:6f:0b:0c:5d:de:c7:3d:71:e6: fa:79:8f:d5:2e:8f:5d:f1:c3:db:65:21:7e:d4:10: 69:5e:bc:fd:3a:41:37:53:ba:03:63:02:81:ee:7e: e0:f3:18:cb:38:f1:85:a3:7b:8b:33:48:d5:7f:07: 9a:e6:94:90:db:50:95:4d:c3:39:06:2c:53:08:83: a2:ff:65:c8:e0:61:70:a5:15:44:86:aa:6c:f3:20: 0a:14:77:66:cb:e4:e1:ec:7d:db:ba:c5:2d:2f:db: d6:c9:02:ac:c6:a3:19:1e:54:77:06:fd:8c:66:27: c7:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:77:22:C5:64:F2:7B:B6:1C:C7:58:97:F6:6B:82:04:B2:FB:5B:C0 X509v3 Authority Key Identifier: keyid:AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:0b:92:83:1e:4e:95:b1:78:0b:9b:44:a3:1d:2c:93:c0:38: 6c:de:4f:cf:76:35:3c:f5:78:05:13:f9:ee:f0:c4:46:98:ca: 5c:6e:1e:86:6d:31:3c:e6:ce:1f:f4:8d:ca:8f:77:6c:fb:3d: 7e:23:54:2f:cf:26:51:f9:8d:4c:a4:37:3b:61:d4:89:ba:3d: cc:fe:c1:77:3b:7f:06:47:8d:d4:3e:4b:e1:bb:5b:5a:ef:1c: 93:00:d1:3e:19:75:f1:c4:f2:53:cb:9f:57:9a:fa:b4:a6:e8: 3e:11:4b:3b:bf:9f:1a:2b:da:a4:c8:83:9f:9b:23:07:b9:1e: 38:0b:32:98:05:b5:4d:7e:9c:9f:20:b9:ae:92:65:a3:ab:67: c1:e2:4a:88:bd:62:34:ed:77:42:5b:6c:bb:22:22:1e:68:8a: 6c:50:ec:a7:b8:6c:a7:79:96:02:92:d2:2a:88:d1:6d:59:81: 3d:ac:8e:9c:cd:eb:a7:04:e8:69:ee:9c:5c:ec:71:8c:80:7e: 9b:5f:a5:e3:ac:29:fb:02:da:2a:8b:03:f3:7c:b0:67:b4:02: 8b:38:01:31:9b:4c:87:fe:a0:1a:62:d4:9f:cd:05:8f:8b:4c: 07:f7:1f:5d:a7:e7:53:52:00:54:13:44:40:b8:57:e0:e9:23: 10:e6:34:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyRDcxMTAvBgNVBAUTKEFDNkEyMkYxRTRFMTY1MEFDRkI1Mjg5RjVEQ0I1RDUz OTIwRkNGMzQwHhcNMjUxMTA1MDExMTUwWhcNMjUxMTEyMDExMTUwWjAYMRYwFAYD VQQDEw02OTBhYTQ1Ni1jMGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjT23qrFI2G9FAW9OHcRPTgY//Wvp86Es2MBYtJam/xp5AbJSB/59cUq2yVL PuV4XITRGs+v9LuSe6eY58AB/Aw+sh6Js/2U4V2hqq6ZxDsnAG4NNcLtPZD7kQkU l2MZP7MQ185NvWfh3tDagpZftuErORNWumFUq1ViCWmeEuy2akyMigmPHBYhrudv Cwxd3sc9ceb6eY/VLo9d8cPbZSF+1BBpXrz9OkE3U7oDYwKB7n7g8xjLOPGFo3uL M0jVfwea5pSQ21CVTcM5BixTCIOi/2XI4GFwpRVEhqps8yAKFHdmy+Th7H3busUt L9vWyQKsxqMZHlR3Bv2MZifHowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPF3IsVk 8nu2HMdYl/ZrggSy+1vAMB8GA1UdIwQYMBaAFKxqIvHk4WUKz7Uon13LXVOSD880 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjJENy81QjlGNzFEMkVE MzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpRclB0U2lmWGN0ZFU1SVB6 elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JHb2k4ZVRoWlFyUHRTaWZYY3RkVTVJUHp6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjJENy81QjlGNzFEMkVEMzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpR clB0U2lmWGN0ZFU1SVB6elEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUC5KDHk6VsXgLm0SjHSyTwDhs3k/PdjU89XgFE/nu8MRGmMpcbh6G bTE85s4f9I3Kj3ds+z1+I1QvzyZR+Y1MpDc7YdSJuj3M/sF3O38GR43UPkvhu1ta 7xyTANE+GXXxxPJTy59Xmvq0pug+EUs7v58aK9qkyIOfmyMHuR44CzKYBbVNfpyf ILmukmWjq2fB4kqIvWI07XdCW2y7IiIeaIpsUOynuGyneZYCktIqiNFtWYE9rI6c zeunBOhp7pxc7HGMgH6bX6XjrCn7AtoqiwPzfLBntAKLOAExm0yH/qAaYtSfzQWP i0wH9x9dp+dTUgBUE0RAuFfg6SMQ5jQr -----END CERTIFICATE-----Generated at Wed Nov 5 04:46:35 2025 by rpki-client