$ rpki-client -vvf rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft File: 40gJvFtFT8eZSH_u2tcCEkAkYjo.mft (raw, json) Hash identifier: xXY/5UVf+wtV51ind9/YmBYm8aTHP1C0jDgc6HxEoTw= Subject key identifier: 98:2D:C6:B1:F1:A6:5C:87:60:95:62:26:F4:71:4C:56:82:2F:66:2F Authority key identifier: E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A Certificate issuer: /CN=A91734C9/serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Certificate serial: 0C0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft Manifest number: 0BFF Signing time: Sun 02 Nov 2025 18:48:42 +0000 Manifest this update: Sun 02 Nov 2025 18:48:41 +0000 Manifest next update: Sun 09 Nov 2025 18:48:41 +0000 Files and hashes: 1: 40gJvFtFT8eZSH_u2tcCEkAkYjo.crl (hash: JmxJO+zj4zmOMA0AgEB2uOp2WV2wnhmCUcyOdlQnV0I=) 2: 783907BC225E11EA8BD18A62C4F9AE02.roa (hash: Myi9k4IrBdVLRWD9OtQqLIwtmIphhX+YDXYJBcNy/bw=) 3: 78CFD3CC225E11EA8BD18A62C4F9AE02.roa (hash: MyUFtJY4lLof0Zwtdhx7AIg2aYopA1OEBl/K6VizYaU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3087 (0xc0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91734C9, serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Validity Not Before: Nov 2 18:48:41 2025 GMT Not After : Nov 9 18:48:41 2025 GMT Subject: CN=6907a789-d11d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:08:73:cd:d8:3c:c5:cd:ad:f9:5b:67:08:81: 84:3d:67:96:82:9d:27:cb:80:3e:62:b8:56:d0:09: df:d9:2e:d5:39:63:bd:0d:bb:af:0a:b0:15:f4:57: f7:a5:d1:82:59:6a:62:c3:56:7a:53:eb:30:45:d1: 12:a8:09:30:54:5d:5e:1b:02:06:61:21:e9:d0:3d: 2b:c3:13:bb:ff:f7:be:20:d8:ca:2e:40:a1:64:92: 91:eb:0f:15:1e:fc:ab:e1:aa:5f:1a:37:d1:3e:f4: 00:f2:fb:42:b6:a2:00:d3:15:4d:7c:eb:b5:24:8c: c4:d8:2e:66:08:3c:f0:cc:a0:90:bc:2a:b8:49:8d: 65:0c:9f:7f:03:44:ee:c4:0c:67:9d:3d:9e:c5:1c: 14:12:01:58:80:eb:a7:d2:30:44:ba:24:e9:a6:0c: ea:42:ed:e1:b1:e4:22:b8:bd:57:34:c1:48:d3:ea: f6:b7:9b:13:33:64:a3:ca:54:01:16:e3:51:07:84: 47:61:35:da:7f:b7:41:0d:dc:71:81:ef:fc:1b:c2: 91:59:2f:a9:d8:be:e0:07:e8:a0:48:42:35:09:3f: 55:54:f7:e6:f3:c4:ef:ee:07:aa:09:16:41:c9:81: 06:72:14:94:51:91:dd:1f:27:ad:a4:be:1a:8c:c5: 1c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:2D:C6:B1:F1:A6:5C:87:60:95:62:26:F4:71:4C:56:82:2F:66:2F X509v3 Authority Key Identifier: keyid:E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:92:b6:87:ac:43:3a:26:60:6c:0c:22:6a:44:de:d3:77:ce: 19:a7:2a:29:30:22:eb:d2:c9:cf:d7:a1:81:cf:5d:c7:07:c4: 8c:d3:44:93:0c:5d:0a:f7:96:4f:20:de:2d:9f:32:d4:24:5d: b7:f3:26:81:25:ed:42:c5:02:42:de:9b:18:83:f2:2e:91:b6: 85:fe:7b:23:b7:c5:64:3c:40:b2:17:50:fd:0c:76:72:15:ac: 60:80:58:91:2f:2a:29:45:b7:f4:00:fd:d2:14:ff:0f:8d:77: 5c:16:20:6e:8b:18:8b:25:52:6b:0b:13:d5:3c:75:73:01:a4: 1b:a8:2e:ce:9c:10:08:ed:18:b9:16:4d:3b:fa:c0:61:ee:e4: 72:ee:f5:76:2f:73:a4:60:fd:41:af:37:53:44:04:4b:5a:42: 1c:74:b3:81:fb:ff:be:ef:46:f6:d5:04:0e:30:a4:8d:4d:b4: 20:7e:d5:89:a8:69:e5:4a:aa:a3:e1:94:89:fc:11:dd:e5:c9: 30:78:07:7c:da:e1:6c:7d:c5:6b:11:d8:38:d4:18:b4:f6:a5: f9:9a:95:8b:95:81:07:2f:d8:59:74:bd:62:7b:08:61:0c:1d: e0:9e:8c:b0:d2:d2:ae:62:0e:84:db:2f:e7:f7:e7:48:5d:2e: 64:d7:c2:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM0QzkxMTAvBgNVBAUTKEUzNDgwOUJDNUI0NTRGQzc5OTQ4N0ZFRURBRDcwMjEy NDAyNDYyM0EwHhcNMjUxMTAyMTg0ODQxWhcNMjUxMTA5MTg0ODQxWjAYMRYwFAYD VQQDEw02OTA3YTc4OS1kMTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQhzzdg8xc2t+VtnCIGEPWeWgp0ny4A+YrhW0Anf2S7VOWO9DbuvCrAV9Ff3 pdGCWWpiw1Z6U+swRdESqAkwVF1eGwIGYSHp0D0rwxO7//e+INjKLkChZJKR6w8V Hvyr4apfGjfRPvQA8vtCtqIA0xVNfOu1JIzE2C5mCDzwzKCQvCq4SY1lDJ9/A0Tu xAxnnT2exRwUEgFYgOun0jBEuiTppgzqQu3hseQiuL1XNMFI0+r2t5sTM2SjylQB FuNRB4RHYTXaf7dBDdxxge/8G8KRWS+p2L7gB+igSEI1CT9VVPfm88Tv7geqCRZB yYEGchSUUZHdHyetpL4ajMUc/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJgtxrHx plyHYJViJvRxTFaCL2YvMB8GA1UdIwQYMBaAFONICbxbRU/HmUh/7trXAhJAJGI6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzRDOS82NzM2MDI0QTIy NUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4ZVpTSF91MnRjQ0VrQWtZ am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwZ0p2RnRGVDhlWlNIX3UydGNDRWtBa1lqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzRDOS82NzM2MDI0QTIyNUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4 ZVpTSF91MnRjQ0VrQWtZam8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIkraHrEM6JmBsDCJqRN7Td84ZpyopMCLr0snP16GBz13HB8SM00ST DF0K95ZPIN4tnzLUJF238yaBJe1CxQJC3psYg/IukbaF/nsjt8VkPECyF1D9DHZy FaxggFiRLyopRbf0AP3SFP8PjXdcFiBuixiLJVJrCxPVPHVzAaQbqC7OnBAI7Ri5 Fk07+sBh7uRy7vV2L3OkYP1BrzdTRARLWkIcdLOB+/++70b21QQOMKSNTbQgftWJ qGnlSqqj4ZSJ/BHd5ckweAd82uFsfcVrEdg41Bi09qX5mpWLlYEHL9hZdL1iewhh DB3gnoyw0tKuYg6E2y/n9+dIXS5k18KV -----END CERTIFICATE-----Generated at Tue Nov 4 16:33:45 2025 by rpki-client