$ rpki-client -vvf rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft File: Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft (raw, json) Hash identifier: brBlkzGRA+ILJZG9cIk1Vbc/J3zawGRO6CcPfYcUt+c= Subject key identifier: F8:12:18:88:5A:55:77:E9:DE:DB:A3:01:9A:8E:A6:D1:EB:57:7B:05 Authority key identifier: 03:1E:29:F2:6E:78:32:81:B7:68:E8:91:08:53:14:4D:F1:EE:55:34 Certificate issuer: /CN=A91805BF/serialNumber=031E29F26E783281B768E8910853144DF1EE5534 Certificate serial: 07D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft Manifest number: 07CE Signing time: Sun 02 Nov 2025 21:13:48 +0000 Manifest this update: Sun 02 Nov 2025 21:13:48 +0000 Manifest next update: Sun 09 Nov 2025 21:13:48 +0000 Files and hashes: 1: Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl (hash: 19WouhWTYfz4NWN6iF3GX1ESnEe+1Up0aHp54GuRzbM=) 2: 67F4BD64519811F092842D60C4F9AE02.roa (hash: 88Jh5coMAVPJSUCnQAmSwbUiu0xU/3P6Y2QChRKwELo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:13:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2007 (0x7d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91805BF, serialNumber=031E29F26E783281B768E8910853144DF1EE5534 Validity Not Before: Nov 2 21:13:48 2025 GMT Not After : Nov 9 21:13:48 2025 GMT Subject: CN=6907c98c-19c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:10:7d:2c:1c:2d:0e:f6:aa:43:fb:ee:1f:3b: 9c:46:0c:fe:c3:cc:7d:5c:b6:b0:01:ea:8a:7b:e4: e8:47:90:bb:1b:b5:a7:74:a2:4e:ed:02:28:db:9d: 3d:c3:eb:28:56:ad:9e:e9:0f:b0:c6:96:43:61:69: 44:6d:b0:51:2c:d7:b9:8b:37:a7:36:14:0f:4e:3e: f1:04:ad:61:e8:41:1e:81:cd:37:07:24:d3:68:86: d3:f2:7c:6d:b0:68:2b:0d:00:ce:30:99:a1:99:a1: 85:4e:a6:40:c4:15:c9:cb:88:d3:38:d8:7c:d7:8b: 9a:95:89:d0:4b:d7:ef:5c:6d:d7:94:ef:89:dc:54: cc:39:fd:86:72:cf:1c:be:fe:ab:c4:a5:cb:76:8d: 56:fc:3f:8c:53:f6:0a:5d:ab:7e:6b:ed:e0:7f:9a: a8:7d:2d:1b:34:08:a9:01:8f:c6:f7:7d:25:44:90: ca:e5:c9:07:8f:6d:97:17:18:6c:ab:3a:60:d8:88: 12:47:5f:3d:e6:67:47:70:bd:89:08:c6:f1:c0:a9: 1c:3d:a8:8d:69:e9:7e:57:54:40:7c:71:51:9b:80: 52:c8:ce:63:25:90:04:ab:1c:89:51:2d:3b:36:63: 46:ec:1d:5c:a9:a0:16:d6:9d:30:4a:e8:91:73:f6: a8:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:12:18:88:5A:55:77:E9:DE:DB:A3:01:9A:8E:A6:D1:EB:57:7B:05 X509v3 Authority Key Identifier: keyid:03:1E:29:F2:6E:78:32:81:B7:68:E8:91:08:53:14:4D:F1:EE:55:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:45:be:40:80:8d:c0:66:11:1e:19:cb:f3:62:05:59:47:7d: bf:28:b2:a5:a2:ca:91:bc:2a:8a:b4:4b:0c:ad:50:f4:38:c2: d3:a7:23:c2:9f:44:c5:d0:bf:07:6d:cc:33:71:a5:fc:bd:f1: f7:6b:c2:73:7c:47:5c:d6:df:58:5c:31:2a:39:d9:30:e1:46: c6:11:f0:4f:c0:75:5a:c8:5d:6f:30:a1:4e:fb:b6:ff:2a:eb: e4:e1:0f:d4:fb:8f:2b:e8:10:c5:f1:6b:be:c2:3a:c4:51:db: 80:10:ce:55:92:19:8e:aa:d8:b0:41:00:c6:ca:29:7a:fa:3d: 5d:4c:31:cc:8c:f8:67:7f:14:be:a0:34:d7:3f:54:9a:f2:af: 38:bb:bb:21:67:9c:5e:8f:1d:8a:ef:f0:20:97:fd:27:65:c3: e6:b9:e4:54:eb:8f:24:33:d4:86:66:ab:1a:13:b7:f4:1a:2c: 3e:6e:e9:c0:fe:cc:66:c2:72:7b:b1:ac:b1:fa:25:a6:ca:7b: 56:d4:51:01:f8:76:d9:99:66:ee:73:9a:a2:40:21:97:b9:2f: e3:1c:93:99:e5:2d:f1:19:36:44:24:9a:a2:64:13:de:9d:91: 81:c8:36:46:22:38:de:29:ff:b8:eb:b4:bb:b8:52:6d:55:b3: 48:87:53:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA1QkYxMTAvBgNVBAUTKDAzMUUyOUYyNkU3ODMyODFCNzY4RTg5MTA4NTMxNDRE RjFFRTU1MzQwHhcNMjUxMTAyMjExMzQ4WhcNMjUxMTA5MjExMzQ4WjAYMRYwFAYD VQQDEw02OTA3Yzk4Yy0xOWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRB9LBwtDvaqQ/vuHzucRgz+w8x9XLawAeqKe+ToR5C7G7WndKJO7QIo2509 w+soVq2e6Q+wxpZDYWlEbbBRLNe5izenNhQPTj7xBK1h6EEegc03ByTTaIbT8nxt sGgrDQDOMJmhmaGFTqZAxBXJy4jTONh814ualYnQS9fvXG3XlO+J3FTMOf2Gcs8c vv6rxKXLdo1W/D+MU/YKXat+a+3gf5qofS0bNAipAY/G930lRJDK5ckHj22XFxhs qzpg2IgSR1895mdHcL2JCMbxwKkcPaiNael+V1RAfHFRm4BSyM5jJZAEqxyJUS07 NmNG7B1cqaAW1p0wSuiRc/aooQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgSGIha VXfp3tujAZqOptHrV3sFMB8GA1UdIwQYMBaAFAMeKfJueDKBt2jokQhTFE3x7lU0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDVCRi9GMTMzQkRBQzEz RjIxMUVCOUJFRkNENTFDNEY5QUUwMi9BeDRwOG01NE1vRzNhT2lSQ0ZNVVRmSHVW VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F4NHA4bTU0TW9HM2FPaVJDRk1VVGZIdVZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDVCRi9GMTMzQkRBQzEzRjIxMUVCOUJFRkNENTFDNEY5QUUwMi9BeDRwOG01NE1v RzNhT2lSQ0ZNVVRmSHVWVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnRb5AgI3AZhEeGcvzYgVZR32/KLKlosqRvCqKtEsMrVD0OMLTpyPC n0TF0L8HbcwzcaX8vfH3a8JzfEdc1t9YXDEqOdkw4UbGEfBPwHVayF1vMKFO+7b/ Kuvk4Q/U+48r6BDF8Wu+wjrEUduAEM5VkhmOqtiwQQDGyil6+j1dTDHMjPhnfxS+ oDTXP1Sa8q84u7shZ5xejx2K7/Agl/0nZcPmueRU648kM9SGZqsaE7f0Giw+bunA /sxmwnJ7sayx+iWmyntW1FEB+HbZmWbuc5qiQCGXuS/jHJOZ5S3xGTZEJJqiZBPe nZGByDZGIjjeKf+467S7uFJtVbNIh1Md -----END CERTIFICATE-----Generated at Tue Nov 4 19:01:45 2025 by rpki-client