$ rpki-client -vvf rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft File: 0dZcikMk4of26pFbOfXTYC0eN6Y.mft (raw, json) Hash identifier: kRYixjkTvCse0a/UYLcci6Hf1iQbnoxRMhstHy9YjoQ= Subject key identifier: 12:6F:A9:C4:24:19:A9:47:13:47:19:09:BA:BD:58:89:9C:05:51:E9 Authority key identifier: D1:D6:5C:8A:43:24:E2:87:F6:EA:91:5B:39:F5:D3:60:2D:1E:37:A6 Certificate issuer: /CN=A91743EF/serialNumber=D1D65C8A4324E287F6EA915B39F5D3602D1E37A6 Certificate serial: 1864 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0dZcikMk4of26pFbOfXTYC0eN6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft Manifest number: 1852 Signing time: Tue 04 Nov 2025 16:36:52 +0000 Manifest this update: Tue 04 Nov 2025 16:36:51 +0000 Manifest next update: Tue 11 Nov 2025 16:36:51 +0000 Files and hashes: 1: 0dZcikMk4of26pFbOfXTYC0eN6Y.crl (hash: wQnP3gwgHUlCFnytUKmsePVMVGAPGxY6cJWxcVu2edM=) 2: 8B2EE9667A0911EE934F1262C4F9AE02.roa (hash: c58kYquiR7PhXwHG1m2k+88ex1+jC31dtd+q7AHBr2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.crl rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0dZcikMk4of26pFbOfXTYC0eN6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:36:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6244 (0x1864) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91743EF, serialNumber=D1D65C8A4324E287F6EA915B39F5D3602D1E37A6 Validity Not Before: Nov 4 16:36:51 2025 GMT Not After : Nov 11 16:36:51 2025 GMT Subject: CN=690a2ba4-bea9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:1e:4e:33:6e:21:9f:ea:00:1d:eb:62:ca:b8: 8e:f9:44:97:10:94:91:2d:f7:de:ec:61:e9:4a:ad: b4:7d:8c:c0:ca:8a:7c:77:f5:72:4a:b9:31:7c:75: b6:0d:da:10:24:dd:f3:5c:28:2d:84:01:b1:2d:47: d1:8b:81:94:15:85:e5:6b:8f:cc:74:2b:d0:5e:6c: a1:67:89:30:e1:c6:76:4c:01:05:67:97:6d:31:9f: 78:f7:42:e4:76:de:bf:69:f2:4c:c3:c0:61:67:7d: 6f:85:41:96:ab:24:6b:7f:56:69:58:6e:1f:6c:26: 2b:61:13:7a:a2:58:09:e1:57:d2:45:9a:ba:7f:f6: c7:a4:a4:08:ef:85:e9:7f:46:21:46:5c:2e:79:32: 0d:a0:51:b1:b5:e8:00:be:f5:2c:ec:86:17:36:8d: a2:53:23:08:0e:4d:cc:e9:49:67:a7:c0:2a:1e:61: b9:97:78:49:a0:d6:9b:5c:93:97:27:80:33:be:3d: 36:39:f6:93:07:39:6a:b0:3b:14:17:37:f0:f7:83: 35:74:0a:39:6f:7f:7a:e0:a8:a0:a5:61:52:d5:c0: 74:cf:61:29:23:4d:d8:c2:24:c5:0e:4c:da:20:58: 5a:34:49:0d:46:70:f9:a4:4d:01:1a:0e:dc:2f:78: d3:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:6F:A9:C4:24:19:A9:47:13:47:19:09:BA:BD:58:89:9C:05:51:E9 X509v3 Authority Key Identifier: keyid:D1:D6:5C:8A:43:24:E2:87:F6:EA:91:5B:39:F5:D3:60:2D:1E:37:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0dZcikMk4of26pFbOfXTYC0eN6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:bc:3c:44:d2:bd:91:d9:17:19:81:8c:9b:4f:8e:60:33:ba: 90:03:d7:26:5e:c5:6b:69:60:c5:23:e2:f2:30:3f:3a:ee:d4: fc:ca:ba:a2:ea:d4:25:ed:d9:f0:43:1e:ee:1b:25:2f:33:60: e1:25:68:3c:03:a9:38:c0:99:fb:32:e6:87:e6:40:f3:a7:e3: 0b:f6:56:ff:17:8b:96:5b:31:01:d2:e4:4f:37:b2:3b:6e:39: 86:a1:e1:45:57:8d:6d:ce:de:37:35:a0:82:ba:f1:86:0c:03: 10:7d:1c:da:b3:9c:3f:de:73:78:92:57:18:33:b6:8d:92:c2: 87:f0:1c:3f:5a:a7:5d:da:3c:80:26:cd:54:47:5c:6d:e0:18: 3f:5e:d0:bf:d6:15:77:d5:3d:6b:4a:42:0b:2d:b4:99:67:15: 77:04:24:b1:15:d8:51:04:32:b6:1f:cf:49:a5:6a:88:de:47: a4:3e:71:e2:92:f3:29:03:03:45:2a:8f:76:22:0e:fc:3a:05: 09:86:13:33:50:8b:ea:a6:80:22:1b:1b:45:84:3b:e1:ab:2b: 30:a7:d6:72:7f:88:c5:75:1a:62:e4:ab:5d:09:50:99:bf:17: 66:b8:6c:a1:87:71:1d:a0:f0:d7:58:48:78:8e:d5:b2:95:34: a3:ac:33:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQzRUYxMTAvBgNVBAUTKEQxRDY1QzhBNDMyNEUyODdGNkVBOTE1QjM5RjVEMzYw MkQxRTM3QTYwHhcNMjUxMTA0MTYzNjUxWhcNMjUxMTExMTYzNjUxWjAYMRYwFAYD VQQDEw02OTBhMmJhNC1iZWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5x5OM24hn+oAHetiyriO+USXEJSRLffe7GHpSq20fYzAyop8d/VySrkxfHW2 DdoQJN3zXCgthAGxLUfRi4GUFYXla4/MdCvQXmyhZ4kw4cZ2TAEFZ5dtMZ9490Lk dt6/afJMw8BhZ31vhUGWqyRrf1ZpWG4fbCYrYRN6olgJ4VfSRZq6f/bHpKQI74Xp f0YhRlwueTINoFGxtegAvvUs7IYXNo2iUyMIDk3M6Ulnp8AqHmG5l3hJoNabXJOX J4Azvj02OfaTBzlqsDsUFzfw94M1dAo5b3964KigpWFS1cB0z2EpI03YwiTFDkza IFhaNEkNRnD5pE0BGg7cL3jTiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJvqcQk GalHE0cZCbq9WImcBVHpMB8GA1UdIwQYMBaAFNHWXIpDJOKH9uqRWzn102AtHjem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDNFRi9FNkFCQjAxMEJB NDAxMUU3QTA4RDI2NkZDNEY5QUUwMi8wZFpjaWtNazRvZjI2cEZiT2ZYVFlDMGVO NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBkWmNpa01rNG9mMjZwRmJPZlhUWUMwZU42WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDNFRi9FNkFCQjAxMEJBNDAxMUU3QTA4RDI2NkZDNEY5QUUwMi8wZFpjaWtNazRv ZjI2cEZiT2ZYVFlDMGVONlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5vDxE0r2R2RcZgYybT45gM7qQA9cmXsVraWDFI+LyMD867tT8yrqi 6tQl7dnwQx7uGyUvM2DhJWg8A6k4wJn7MuaH5kDzp+ML9lb/F4uWWzEB0uRPN7I7 bjmGoeFFV41tzt43NaCCuvGGDAMQfRzas5w/3nN4klcYM7aNksKH8Bw/Wqdd2jyA Js1UR1xt4Bg/XtC/1hV31T1rSkILLbSZZxV3BCSxFdhRBDK2H89JpWqI3kekPnHi kvMpAwNFKo92Ig78OgUJhhMzUIvqpoAiGxtFhDvhqyswp9Zyf4jFdRpi5KtdCVCZ vxdmuGyhh3EdoPDXWEh4jtWylTSjrDMk -----END CERTIFICATE-----Generated at Wed Nov 5 05:41:52 2025 by rpki-client