$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.mft File: FtFKpRNNQRJGTXmS2_HEUvf6KaA.mft (raw, json) Hash identifier: L/k7LLoA35h3xRe2aarQMzJ2/Mh86HzBcQdElcQSLjY= Subject key identifier: CF:95:09:C6:CB:15:E2:67:E2:D2:1E:62:21:A2:CB:5B:CF:92:5B:F4 Authority key identifier: 16:D1:4A:A5:13:4D:41:12:46:4D:79:92:DB:F1:C4:52:F7:FA:29:A0 Certificate issuer: /CN=A91A29DA/serialNumber=16D14AA5134D4112464D7992DBF1C452F7FA29A0 Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FtFKpRNNQRJGTXmS2_HEUvf6KaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.mft Manifest number: 0136 Signing time: Mon 03 Nov 2025 04:28:44 +0000 Manifest this update: Mon 03 Nov 2025 04:28:44 +0000 Manifest next update: Mon 10 Nov 2025 04:28:44 +0000 Files and hashes: 1: FtFKpRNNQRJGTXmS2_HEUvf6KaA.crl (hash: I6TX3SB/GmLTwDDZ2y4AyV8RKrVdfIBe/0wLo1PVF5Y=) 2: C1F74E665C1611F0B0B40A35C4F9AE02.roa (hash: cyzmbSkuoaF4EDWEAACeoUMvRNItS2PdfJUezyi8Vms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.crl rsync://rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FtFKpRNNQRJGTXmS2_HEUvf6KaA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:28:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA, serialNumber=16D14AA5134D4112464D7992DBF1C452F7FA29A0 Validity Not Before: Nov 3 04:28:44 2025 GMT Not After : Nov 10 04:28:44 2025 GMT Subject: CN=69082f7c-a253 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:36:25:d1:82:88:34:1d:2a:eb:4a:38:65:20: 1d:ca:2d:87:17:8d:1c:e4:37:9c:2a:48:fc:7a:11: d9:97:37:50:bb:66:97:85:b6:c8:58:f9:88:e2:5b: d0:b5:76:76:12:3e:de:61:f3:4e:b7:c2:d3:98:45: 6b:8b:03:88:f2:df:6e:08:a2:4f:02:fb:cd:27:97: b9:09:6c:f1:2e:25:20:a4:f2:a0:57:1c:c9:16:5f: 87:eb:d9:f3:9e:c2:68:d4:f6:09:87:66:2f:1c:a4: fe:16:72:c7:78:6c:6b:91:da:e0:aa:9b:75:8a:64: fb:19:fb:a6:38:fa:72:98:90:4b:29:72:3c:a2:1b: af:bc:a3:ab:63:1a:28:6c:35:ea:4b:7d:5d:12:72: e5:57:49:f6:db:d8:10:ed:bc:b6:84:1e:ed:5e:07: 6d:3f:66:00:a7:7d:86:c8:00:5a:b1:17:21:a2:72: 7b:4e:c8:c4:44:0d:2a:c8:c5:bc:c2:98:c5:46:ac: 28:72:62:27:a7:26:92:24:ca:b8:4a:67:1d:39:5b: f9:8b:ef:98:b2:7d:cd:6c:90:eb:8f:56:28:71:24: b2:b2:8d:29:f1:84:11:30:9f:80:8c:e8:65:75:aa: 73:73:fd:58:e4:34:64:ad:be:c1:7f:c9:a8:b9:d4: e9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:95:09:C6:CB:15:E2:67:E2:D2:1E:62:21:A2:CB:5B:CF:92:5B:F4 X509v3 Authority Key Identifier: keyid:16:D1:4A:A5:13:4D:41:12:46:4D:79:92:DB:F1:C4:52:F7:FA:29:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FtFKpRNNQRJGTXmS2_HEUvf6KaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/3E624BAEDA5411EE827CA57DC4F9AE02/FtFKpRNNQRJGTXmS2_HEUvf6KaA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:02:4c:6f:f3:21:f9:d7:6d:99:40:a1:42:2d:35:be:97:a3: 71:49:92:e1:af:31:2c:5e:df:1b:4b:ec:bd:20:a0:39:1d:f0: 98:f2:17:7a:4b:7c:78:93:ce:c8:da:38:1f:56:d9:c1:b7:5f: 91:73:48:3b:76:2d:c2:eb:44:a2:73:86:ec:aa:2e:e5:a0:a3: af:92:3d:04:80:bc:4d:b0:27:29:bc:d6:69:2c:b4:13:0d:39: 20:ef:5b:a0:71:66:63:93:0a:bc:95:83:25:38:19:d2:48:7d: 8f:43:d6:bc:d2:dc:6f:96:1b:c7:07:18:34:4d:da:cc:a5:ab: 22:c6:84:b3:05:18:35:10:e7:46:50:d8:50:bc:bc:c3:da:89: 65:47:fc:ed:4e:1d:92:f4:88:16:b8:40:3f:a3:03:c1:90:fb: fc:02:59:ab:cf:29:c6:bd:40:87:e9:bc:9f:81:62:ef:63:70: b3:50:05:30:80:15:c2:9d:f5:b0:77:39:f7:86:67:89:b5:87: 5a:23:72:02:12:59:c1:90:2f:e0:4e:43:7b:37:41:d3:2b:6e: 30:86:db:c9:d1:f0:61:29:b1:9d:2a:d2:e7:fd:90:d2:48:c3: 28:67:5c:12:7d:e8:a8:45:8b:dc:14:1c:dd:3b:03:8b:a0:d2: e9:d8:9a:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDE2RDE0QUE1MTM0RDQxMTI0NjRENzk5MkRCRjFDNDUy RjdGQTI5QTAwHhcNMjUxMTAzMDQyODQ0WhcNMjUxMTEwMDQyODQ0WjAYMRYwFAYD VQQDEw02OTA4MmY3Yy1hMjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTYl0YKINB0q60o4ZSAdyi2HF40c5DecKkj8ehHZlzdQu2aXhbbIWPmI4lvQ tXZ2Ej7eYfNOt8LTmEVriwOI8t9uCKJPAvvNJ5e5CWzxLiUgpPKgVxzJFl+H69nz nsJo1PYJh2YvHKT+FnLHeGxrkdrgqpt1imT7GfumOPpymJBLKXI8ohuvvKOrYxoo bDXqS31dEnLlV0n229gQ7by2hB7tXgdtP2YAp32GyABasRchonJ7TsjERA0qyMW8 wpjFRqwocmInpyaSJMq4SmcdOVv5i++Ysn3NbJDrj1YocSSyso0p8YQRMJ+AjOhl dapzc/1Y5DRkrb7Bf8moudTpSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM+VCcbL FeJn4tIeYiGiy1vPklv0MB8GA1UdIwQYMBaAFBbRSqUTTUESRk15ktvxxFL3+img MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zRTYyNEJBRURB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9GdEZLcFJOTlFSSkdUWG1TMl9IRVV2ZjZL YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z0RktwUk5OUVJKR1RYbVMyX0hFVXZmNkthQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjlEQS8zRTYyNEJBRURBNTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9GdEZLcFJOTlFS SkdUWG1TMl9IRVV2ZjZLYUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwAkxv8yH5122ZQKFCLTW+l6NxSZLhrzEsXt8bS+y9IKA5HfCY8hd6 S3x4k87I2jgfVtnBt1+Rc0g7di3C60Sic4bsqi7loKOvkj0EgLxNsCcpvNZpLLQT DTkg71ugcWZjkwq8lYMlOBnSSH2PQ9a80txvlhvHBxg0TdrMpasixoSzBRg1EOdG UNhQvLzD2ollR/ztTh2S9IgWuEA/owPBkPv8AlmrzynGvUCH6byfgWLvY3CzUAUw gBXCnfWwdzn3hmeJtYdaI3ICElnBkC/gTkN7N0HTK24whtvJ0fBhKbGdKtLn/ZDS SMMoZ1wSfeioRYvcFBzdOwOLoNLp2Jp2 -----END CERTIFICATE-----Generated at Tue Nov 4 02:14:39 2025 by rpki-client