$ rpki-client -vvf rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft File: _0KzQ2BElUaW_-CLDuGXXGxbjW0.mft (raw, json) Hash identifier: LsQvlI8j3JkIwAp6FAae4ZzqTcqfx+v7nImctTfsNKY= Subject key identifier: B6:DE:10:70:3D:6A:B6:E5:44:9A:50:CE:B9:DC:62:A1:27:86:28:34 Authority key identifier: FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D Certificate issuer: /CN=A91864A7/serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Certificate serial: 0203 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft Manifest number: 01F5 Signing time: Mon 03 Nov 2025 02:33:39 +0000 Manifest this update: Mon 03 Nov 2025 02:33:38 +0000 Manifest next update: Mon 10 Nov 2025 02:33:38 +0000 Files and hashes: 1: _0KzQ2BElUaW_-CLDuGXXGxbjW0.crl (hash: TgYs9HBKGpnPGxZR8E7bqApkMvBk+RFYTqm1pnj+0RE=) 2: BCAE303EF6C611EE8AA17A87C4F9AE02.roa (hash: bIqrXXOO445KDm2W4+bixUzOJLZF9wB6Q6BShTtFIgo=) 3: B34D1A26F6C811EEBC4BE00BC4F9AE02.roa (hash: P40/jJ7W+/O+PiJ/8mhL5CI3A7Dxo/gaXDncIVQuKdo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:33:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 515 (0x203) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91864A7, serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Validity Not Before: Nov 3 02:33:38 2025 GMT Not After : Nov 10 02:33:38 2025 GMT Subject: CN=69081482-3503 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:10:a9:6b:c3:6f:4d:76:ea:d8:2d:46:5b:d2: df:ee:01:8e:6d:c5:66:76:97:a5:da:4c:87:94:f5: c1:ad:84:86:36:45:96:7a:fa:33:c8:3a:7a:dc:69: 0f:40:bf:21:3e:e5:2b:e1:87:04:90:57:db:f5:ed: 34:b6:b0:27:b8:81:b8:74:f9:79:1b:e2:50:2b:64: d8:c5:6b:6c:2a:df:a1:85:a2:84:0c:d1:01:1c:9d: 8f:d9:c2:01:42:7e:d6:a2:a2:12:f2:5c:31:42:2b: 5e:bd:c2:64:fe:ec:ec:e1:68:86:cb:6e:6a:e9:08: c4:0b:87:d8:59:f9:17:32:c1:be:01:e7:0c:48:9f: e4:32:2f:33:8b:de:98:79:09:77:87:7c:7f:e8:f5: 4e:6e:37:92:b7:e3:2f:e1:71:23:e7:91:5b:b5:fc: f2:f8:ae:a8:c6:46:eb:af:a2:72:f3:c4:11:ee:6b: 77:0e:4d:89:4e:61:24:de:1f:5e:e6:e0:ee:ce:a1: c5:74:fc:4a:13:c0:22:0c:43:b9:f7:22:d9:ad:fa: 6d:9a:a0:59:65:e8:89:1c:9d:8d:8b:f2:ef:ed:d9: ad:03:2d:85:6f:be:bc:59:5c:7a:09:ce:c9:28:f7: 28:a6:27:72:46:f7:3e:f6:5a:65:c7:65:73:c5:ba: a0:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:DE:10:70:3D:6A:B6:E5:44:9A:50:CE:B9:DC:62:A1:27:86:28:34 X509v3 Authority Key Identifier: keyid:FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:c1:17:24:c6:fe:bf:a7:06:55:1e:a3:31:82:45:5d:3b:ff: 7b:4b:fd:33:32:b7:e2:a1:b9:d2:8c:30:ac:e3:68:f0:0e:73: 8f:f7:81:c3:67:e1:c3:b5:f2:76:30:7c:f0:9a:82:be:0b:99: d0:40:8c:ce:51:94:ab:2c:5d:49:ac:f6:25:5f:9d:44:96:0e: af:d0:d6:65:8a:d0:ff:09:68:f6:b0:06:12:48:8d:4d:f5:6d: bd:13:6c:1f:ca:a7:25:94:f8:c7:cb:64:b3:60:d6:e3:08:b1: ed:d4:42:99:00:7a:2b:b1:0d:ce:4f:82:30:80:e0:dd:c5:d7: 9b:fc:e6:e0:21:96:70:a6:3b:62:e4:cd:0c:52:65:5f:f4:05: 13:e2:08:be:a9:d5:18:98:ec:df:2a:43:51:0a:6a:1b:2d:4f: 3d:8d:a0:04:1d:27:8b:44:7f:6d:bb:ee:81:e9:6f:e1:16:61: 3b:6a:17:84:7a:0b:8e:82:6d:a6:4c:a0:7c:01:cf:5a:84:9d: 88:4c:72:56:78:0e:e8:4a:09:b6:ed:b5:a7:72:98:69:f9:7b: 42:59:26:f5:25:57:c3:4c:40:70:d1:a4:d5:7f:d8:69:c8:88: a1:f4:9c:72:0b:9e:94:50:34:14:e8:25:99:03:30:35:9d:70: b7:bb:34:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY0QTcxMTAvBgNVBAUTKEZGNDJCMzQzNjA0NDk1NDY5NkZGRTA4QjBFRTE5NzVD NkM1QjhENkQwHhcNMjUxMTAzMDIzMzM4WhcNMjUxMTEwMDIzMzM4WjAYMRYwFAYD VQQDEw02OTA4MTQ4Mi0zNTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRCpa8NvTXbq2C1GW9Lf7gGObcVmdpel2kyHlPXBrYSGNkWWevozyDp63GkP QL8hPuUr4YcEkFfb9e00trAnuIG4dPl5G+JQK2TYxWtsKt+hhaKEDNEBHJ2P2cIB Qn7WoqIS8lwxQitevcJk/uzs4WiGy25q6QjEC4fYWfkXMsG+AecMSJ/kMi8zi96Y eQl3h3x/6PVObjeSt+Mv4XEj55Fbtfzy+K6oxkbrr6Jy88QR7mt3Dk2JTmEk3h9e 5uDuzqHFdPxKE8AiDEO59yLZrfptmqBZZeiJHJ2Ni/Lv7dmtAy2Fb768WVx6Cc7J KPcopidyRvc+9lplx2Vzxbqg8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLbeEHA9 arblRJpQzrncYqEnhig0MB8GA1UdIwQYMBaAFP9Cs0NgRJVGlv/giw7hl1xsW41t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjRBNy9DODA1NUZENkM5 MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxVYVdfLUNMRHVHWFhHeGJq VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wS3pRMkJFbFVhV18tQ0xEdUdYWEd4YmpXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjRBNy9DODA1NUZENkM5MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxV YVdfLUNMRHVHWFhHeGJqVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfwRckxv6/pwZVHqMxgkVdO/97S/0zMrfiobnSjDCs42jwDnOP94HD Z+HDtfJ2MHzwmoK+C5nQQIzOUZSrLF1JrPYlX51Elg6v0NZlitD/CWj2sAYSSI1N 9W29E2wfyqcllPjHy2SzYNbjCLHt1EKZAHorsQ3OT4IwgODdxdeb/ObgIZZwpjti 5M0MUmVf9AUT4gi+qdUYmOzfKkNRCmobLU89jaAEHSeLRH9tu+6B6W/hFmE7aheE eguOgm2mTKB8Ac9ahJ2ITHJWeA7oSgm27bWncphp+XtCWSb1JVfDTEBw0aTVf9hp yIih9JxyC56UUDQU6CWZAzA1nXC3uzTJ -----END CERTIFICATE-----Generated at Tue Nov 4 20:21:47 2025 by rpki-client