$ rpki-client -vvf rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft File: 0nYmctKXWA5IQijBceWokHMMF28.mft (raw, json) Hash identifier: zAAzUHGOO5pP2wLTXI1hyVrYN4h4uGV1k4D3J/nlHGU= Subject key identifier: 9F:A0:AD:2A:D7:92:F6:98:E5:0C:61:06:12:C2:A0:98:41:D8:3C:5E Authority key identifier: D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F Certificate issuer: /CN=A91724A6/serialNumber=D2762672D297580E484228C171E5A890730C176F Certificate serial: 01F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft Manifest number: 01F1 Signing time: Wed 05 Nov 2025 02:40:16 +0000 Manifest this update: Wed 05 Nov 2025 02:40:16 +0000 Manifest next update: Wed 12 Nov 2025 02:40:16 +0000 Files and hashes: 1: 0nYmctKXWA5IQijBceWokHMMF28.crl (hash: 0YbXJH6Z2SIFzcNxBTKUg5ZhaAWY/rJ4to5choX9Hig=) 2: 950A55CCC3C711ED8419AA64C4F9AE02.roa (hash: GrQm9NlurYpVLIwLedH2/MNa+h8258HeOnrxmNS0v54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:40:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 501 (0x1f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91724A6, serialNumber=D2762672D297580E484228C171E5A890730C176F Validity Not Before: Nov 5 02:40:16 2025 GMT Not After : Nov 12 02:40:16 2025 GMT Subject: CN=690ab910-aba7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f5:69:06:20:37:a9:24:5e:5f:26:92:2d:6c: 79:26:f2:ad:2f:98:a6:e2:5d:fc:20:a0:e6:13:71: d3:ae:82:e1:f2:8c:8b:62:ab:51:21:a6:74:a0:ab: e2:6f:b8:ad:e3:0a:51:21:b2:51:66:e9:0d:2d:6f: 13:6c:66:55:d9:19:6e:dc:be:ac:17:1b:f3:d6:3c: 5a:86:cc:a2:06:ff:af:94:8e:3c:17:f7:20:65:ea: a2:d8:ce:10:a0:31:33:75:64:2a:f5:5e:41:c1:e0: 50:07:4e:33:23:23:5b:cd:b1:4e:b5:86:87:cf:0f: d3:9e:78:b0:38:52:79:1c:41:47:4c:d9:a9:31:7d: 77:62:51:50:e7:d2:0f:dd:9e:88:86:ae:c2:ca:31: dd:c7:7a:32:cc:dd:b1:d4:af:b9:3a:9f:37:74:06: 8c:59:a8:b3:6a:05:8a:f6:15:e8:67:46:ef:6e:d8: 07:d9:fe:52:bc:7c:af:aa:94:bc:dc:a3:92:bc:68: 0d:e1:ee:4d:7e:d5:c0:9f:0a:d5:13:90:5e:40:41: a9:bf:e6:95:b7:71:e4:0e:dd:36:72:19:8d:51:33: 84:e4:26:d8:09:2c:e7:f1:5e:eb:a4:85:79:0b:80: bc:8a:62:2c:d9:d4:80:81:65:4b:af:a2:9b:ca:fb: 20:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:A0:AD:2A:D7:92:F6:98:E5:0C:61:06:12:C2:A0:98:41:D8:3C:5E X509v3 Authority Key Identifier: keyid:D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:6c:08:7d:5e:94:be:cb:c6:31:cb:e3:c0:42:94:48:08:d3: b4:b1:e0:00:6e:e1:a5:ef:51:1e:58:b7:8c:ae:38:e9:2e:6e: db:9f:bf:15:0e:77:ad:be:56:0e:c8:d1:51:60:78:3a:35:3d: 85:85:e4:24:a8:74:52:f0:f6:5a:22:a9:3d:35:b2:a7:65:2a: 30:c4:54:66:72:d4:85:59:ae:34:bf:e6:3d:1f:c5:7f:cc:69: 93:7d:eb:e9:31:e1:91:bc:85:4e:de:0d:e1:83:e5:75:34:5b: c1:4b:e7:11:35:3f:18:af:10:0b:51:d3:65:2f:72:9e:07:b5: f8:f8:69:56:22:65:e7:8a:70:c6:54:c9:86:58:64:87:45:5b: 7d:aa:d8:33:39:25:3e:ff:59:73:8b:6b:af:55:92:17:eb:78: b4:b4:48:a0:f3:f1:08:72:8e:87:eb:94:1b:d0:ab:50:af:62: fb:25:d1:d5:a9:a5:ab:93:dc:d2:62:35:7a:30:7e:f2:fa:b6: 0e:5c:ee:a0:e7:e2:20:5f:e8:59:a7:91:3b:eb:c0:17:95:df: aa:28:09:68:68:e5:b0:c6:e1:ed:f0:70:eb:95:dc:00:e8:fc: aa:92:be:ed:b0:49:1a:92:98:d9:49:2f:42:1a:d1:68:3f:75: 0b:c5:bd:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI0QTYxMTAvBgNVBAUTKEQyNzYyNjcyRDI5NzU4MEU0ODQyMjhDMTcxRTVBODkw NzMwQzE3NkYwHhcNMjUxMTA1MDI0MDE2WhcNMjUxMTEyMDI0MDE2WjAYMRYwFAYD VQQDEw02OTBhYjkxMC1hYmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4/VpBiA3qSReXyaSLWx5JvKtL5im4l38IKDmE3HTroLh8oyLYqtRIaZ0oKvi b7it4wpRIbJRZukNLW8TbGZV2Rlu3L6sFxvz1jxahsyiBv+vlI48F/cgZeqi2M4Q oDEzdWQq9V5BweBQB04zIyNbzbFOtYaHzw/TnniwOFJ5HEFHTNmpMX13YlFQ59IP 3Z6Ihq7CyjHdx3oyzN2x1K+5Op83dAaMWaizagWK9hXoZ0bvbtgH2f5SvHyvqpS8 3KOSvGgN4e5NftXAnwrVE5BeQEGpv+aVt3HkDt02chmNUTOE5CbYCSzn8V7rpIV5 C4C8imIs2dSAgWVLr6KbyvsgOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ+grSrX kvaY5QxhBhLCoJhB2DxeMB8GA1UdIwQYMBaAFNJ2JnLSl1gOSEIowXHlqJBzDBdv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjRBNi8xOEU1RDQ4NEMz QzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdBNUlRaWpCY2VXb2tITU1G MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBuWW1jdEtYV0E1SVFpakJjZVdva0hNTUYyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjRBNi8xOEU1RDQ4NEMzQzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdB NUlRaWpCY2VXb2tITU1GMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4bAh9XpS+y8Yxy+PAQpRICNO0seAAbuGl71EeWLeMrjjpLm7bn78V DnetvlYOyNFRYHg6NT2FheQkqHRS8PZaIqk9NbKnZSowxFRmctSFWa40v+Y9H8V/ zGmTfevpMeGRvIVO3g3hg+V1NFvBS+cRNT8YrxALUdNlL3KeB7X4+GlWImXninDG VMmGWGSHRVt9qtgzOSU+/1lzi2uvVZIX63i0tEig8/EIco6H65Qb0KtQr2L7JdHV qaWrk9zSYjV6MH7y+rYOXO6g5+IgX+hZp5E768AXld+qKAloaOWwxuHt8HDrldwA 6Pyqkr7tsEkakpjZSS9CGtFoP3ULxb3W -----END CERTIFICATE-----Generated at Wed Nov 5 13:04:20 2025 by rpki-client