$ rpki-client -vvf rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft File: wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft (raw, json) Hash identifier: f7fI2N1YmNNiQb+bwWJh3SDBi6on88FXydbX9Um3Jw4= Subject key identifier: D8:9A:93:A9:CE:E1:A1:13:72:5F:6D:A4:6C:2E:78:5A:9E:48:79:0F Authority key identifier: C0:F7:D8:D6:D5:41:63:76:5F:F6:F3:E2:FB:33:7F:CF:E1:50:72:19 Certificate issuer: /CN=A91A445C/serialNumber=C0F7D8D6D54163765FF6F3E2FB337FCFE1507219 Certificate serial: 3036 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft Manifest number: 302C Signing time: Tue 04 Nov 2025 15:29:11 +0000 Manifest this update: Tue 04 Nov 2025 15:29:11 +0000 Manifest next update: Tue 11 Nov 2025 15:29:11 +0000 Files and hashes: 1: wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl (hash: X43zO4duFUM38UIbZzbCsCIyA72ruZgTgyhKgXJrDzA=) 2: 47A21580B6CC11EC98672826C4F9AE02.roa (hash: LEtlM4YuHVZO4hp1ekYsLvEULMY1rw4omfHoEthYUqU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:29:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12342 (0x3036) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A445C, serialNumber=C0F7D8D6D54163765FF6F3E2FB337FCFE1507219 Validity Not Before: Nov 4 15:29:11 2025 GMT Not After : Nov 11 15:29:11 2025 GMT Subject: CN=690a1bc7-9f30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:39:00:dd:5b:01:3c:89:8d:a7:6b:b9:2c:1a: 17:4b:6a:a2:f9:f5:48:1b:78:41:ae:97:17:9f:fc: 15:65:ec:c5:b5:6f:46:af:5f:37:40:fc:f8:83:2a: be:cd:2b:32:05:c2:55:d9:f7:6d:cb:1a:98:2d:bd: bd:aa:0e:42:32:7b:dd:37:33:f1:0d:46:6e:a3:60: cb:50:a4:b3:54:ed:55:90:f6:13:4c:27:9b:c2:bf: 41:40:f7:a0:dc:e4:e7:61:85:c7:69:4e:b9:95:9a: 73:66:d1:6b:42:d6:81:97:24:22:ad:a6:e4:e0:fd: 40:6e:0b:83:fb:13:d9:53:26:53:4b:50:15:2d:0e: df:1f:23:3b:b7:bf:4b:56:59:fa:50:f1:dd:4f:5e: 86:17:f5:2f:65:61:8c:a8:d1:13:5a:5c:29:c4:e2: a8:3c:9e:98:c5:c4:a7:d5:0f:c7:a7:e9:0a:9c:7f: db:7e:20:60:29:4c:97:52:27:9e:0d:2f:d2:18:e6: 47:d7:7e:eb:87:e7:2c:94:94:c0:b2:08:43:24:b3: 5b:43:4a:e4:9c:0c:b4:8e:69:b0:06:64:d2:36:ec: cb:b8:71:ee:81:7b:aa:18:3d:dd:63:c2:b4:28:e3: f2:e3:33:35:b5:15:88:d0:d3:2d:76:bc:33:86:67: 2d:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:9A:93:A9:CE:E1:A1:13:72:5F:6D:A4:6C:2E:78:5A:9E:48:79:0F X509v3 Authority Key Identifier: keyid:C0:F7:D8:D6:D5:41:63:76:5F:F6:F3:E2:FB:33:7F:CF:E1:50:72:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:f0:d8:7c:ea:20:cd:26:3b:2c:ad:04:44:83:9f:4d:38:1d: 10:4d:0c:44:bf:b9:24:54:b9:c3:a4:f8:cb:d5:2a:9c:cd:b8: 19:d8:0e:c8:35:8b:ba:c4:99:b1:c3:71:20:bc:97:66:3c:81: cd:18:2a:9f:be:c6:72:ba:70:ad:61:fd:b9:2a:74:0a:12:9d: 4a:7b:ca:17:01:52:df:1d:6f:06:9f:c4:4c:65:33:3c:07:a7: fc:b8:a7:ea:80:2d:d8:39:b3:55:7f:f6:16:d5:14:54:38:37: 3a:89:f1:2d:03:db:0f:e2:e4:a6:73:75:59:ea:61:b4:ca:18: 84:24:da:92:c5:65:c9:e1:32:56:9e:af:dd:9a:19:48:d0:30: 52:7d:ca:9a:3c:06:9c:c8:c6:a1:cd:02:22:39:22:6d:71:c0: 60:79:b6:12:5d:3d:41:97:31:3e:de:2d:bc:3d:d7:3d:81:c8: 40:eb:cb:51:d8:19:bf:f7:70:a4:04:6b:46:41:64:5d:af:a3: 41:1b:f9:3d:a4:3a:0a:91:97:e6:6d:d4:5c:fd:d1:38:68:5a: 56:e5:30:42:6b:5a:5e:e4:78:8b:c1:f0:cf:3b:38:92:70:c2: cc:3f:90:43:6d:89:0d:ef:d3:54:cb:2e:fa:12:44:4b:91:ef: 93:9d:5c:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0NUMxMTAvBgNVBAUTKEMwRjdEOEQ2RDU0MTYzNzY1RkY2RjNFMkZCMzM3RkNG RTE1MDcyMTkwHhcNMjUxMTA0MTUyOTExWhcNMjUxMTExMTUyOTExWjAYMRYwFAYD VQQDEw02OTBhMWJjNy05ZjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjkA3VsBPImNp2u5LBoXS2qi+fVIG3hBrpcXn/wVZezFtW9Gr183QPz4gyq+ zSsyBcJV2fdtyxqYLb29qg5CMnvdNzPxDUZuo2DLUKSzVO1VkPYTTCebwr9BQPeg 3OTnYYXHaU65lZpzZtFrQtaBlyQirabk4P1AbguD+xPZUyZTS1AVLQ7fHyM7t79L Vln6UPHdT16GF/UvZWGMqNETWlwpxOKoPJ6YxcSn1Q/Hp+kKnH/bfiBgKUyXUiee DS/SGOZH137rh+cslJTAsghDJLNbQ0rknAy0jmmwBmTSNuzLuHHugXuqGD3dY8K0 KOPy4zM1tRWI0NMtdrwzhmctYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiak6nO 4aETcl9tpGwueFqeSHkPMB8GA1UdIwQYMBaAFMD32NbVQWN2X/bz4vszf8/hUHIZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQ1Qy81QThBRDA4ODBC MTgxMUUzQjYzN0M2Nzk1OTExRUEzMi93UGZZMXRWQlkzWmY5dlBpLXpOX3otRlFj aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dQZlkxdFZCWTNaZjl2UGktek5fei1GUWNoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQ1Qy81QThBRDA4ODBCMTgxMUUzQjYzN0M2Nzk1OTExRUEzMi93UGZZMXRWQlkz WmY5dlBpLXpOX3otRlFjaGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBh8Nh86iDNJjssrQREg59NOB0QTQxEv7kkVLnDpPjL1SqczbgZ2A7I NYu6xJmxw3EgvJdmPIHNGCqfvsZyunCtYf25KnQKEp1Ke8oXAVLfHW8Gn8RMZTM8 B6f8uKfqgC3YObNVf/YW1RRUODc6ifEtA9sP4uSmc3VZ6mG0yhiEJNqSxWXJ4TJW nq/dmhlI0DBSfcqaPAacyMahzQIiOSJtccBgebYSXT1BlzE+3i28Pdc9gchA68tR 2Bm/93CkBGtGQWRdr6NBG/k9pDoKkZfmbdRc/dE4aFpW5TBCa1pe5HiLwfDPOziS cMLMP5BDbYkN79NUyy76EkRLke+TnVyk -----END CERTIFICATE-----Generated at Wed Nov 5 03:56:14 2025 by rpki-client