$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft File: A6PIek8tglWUdvcc-u5ST_URNXk.mft (raw, json) Hash identifier: OEf3yTdxReDaUTCrMDu6p2Qo/ejPjOzavxNUD+c9Vds= Subject key identifier: 91:19:22:60:FC:66:71:8C:46:AF:55:87:97:CE:B0:E1:DB:D0:DB:6E Authority key identifier: 03:A3:C8:7A:4F:2D:82:55:94:76:F7:1C:FA:EE:52:4F:F5:11:35:79 Certificate issuer: /CN=A91A4CAD/serialNumber=03A3C87A4F2D82559476F71CFAEE524FF5113579 Certificate serial: 0B51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6PIek8tglWUdvcc-u5ST_URNXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft Manifest number: 0B48 Signing time: Tue 04 Nov 2025 19:18:55 +0000 Manifest this update: Tue 04 Nov 2025 19:18:55 +0000 Manifest next update: Tue 11 Nov 2025 19:18:55 +0000 Files and hashes: 1: A6PIek8tglWUdvcc-u5ST_URNXk.crl (hash: OY4KZNQE7DQvvecmG4zizURA5aLqOI54i5drkg8+XTQ=) 2: 6553D6106C2B11EA87ED1160C4F9AE02.roa (hash: q+qDmuX1SDlNLGpbDpsIJ4dtsR3ZMPh1qGVJ0QRvta4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.crl rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6PIek8tglWUdvcc-u5ST_URNXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:18:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2897 (0xb51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4CAD, serialNumber=03A3C87A4F2D82559476F71CFAEE524FF5113579 Validity Not Before: Nov 4 19:18:55 2025 GMT Not After : Nov 11 19:18:55 2025 GMT Subject: CN=690a519f-c1b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e2:ac:79:de:ac:a7:86:f8:72:a5:74:8c:91: 07:22:58:bd:45:43:96:78:25:75:15:09:18:e0:98: 3c:60:aa:b0:14:76:76:40:41:5b:66:dc:ce:1f:f7: eb:3f:9d:31:96:71:9f:9a:f3:11:2a:91:85:3a:2f: 1a:99:03:7b:63:f7:86:60:fa:30:d9:63:90:72:50: b2:e2:ef:24:2b:62:57:cb:7d:44:97:c0:6c:e7:2a: d4:a0:fe:4c:08:c9:20:e7:64:a5:09:2a:7a:59:c7: 4b:8c:5d:8a:bf:e8:2e:bf:c3:94:8e:18:d6:d6:7c: 6b:ca:fe:ae:5b:e8:97:00:7b:8a:57:0e:13:46:eb: 34:fa:3a:0d:5e:32:0c:07:56:ef:2a:25:32:cf:f6: 5c:66:c5:56:c2:21:89:fb:44:8e:b8:9b:7c:61:dc: 6f:7b:73:09:0e:23:03:1a:8f:7d:96:57:f2:f0:13: b2:a1:3e:6c:36:e2:cc:91:74:30:cf:81:b0:2c:df: b6:1b:e6:7f:09:e2:a4:1b:9d:c4:b6:cf:45:cd:7c: 9a:54:53:45:1d:b2:50:b9:11:3f:16:bc:b1:5a:4e: f3:c9:16:1a:f8:b4:b8:00:a2:81:09:c1:21:e4:99: b7:ac:3e:b0:d0:f4:b0:ca:fe:82:6f:0b:9f:f7:e2: be:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:19:22:60:FC:66:71:8C:46:AF:55:87:97:CE:B0:E1:DB:D0:DB:6E X509v3 Authority Key Identifier: keyid:03:A3:C8:7A:4F:2D:82:55:94:76:F7:1C:FA:EE:52:4F:F5:11:35:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6PIek8tglWUdvcc-u5ST_URNXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:c2:80:3d:2d:d5:65:73:62:08:18:1b:cc:49:12:96:73:86: 1b:2e:8c:ec:31:ca:56:57:03:1e:58:43:f0:f3:c0:0b:38:8f: 77:3f:f5:a3:82:9f:6a:e8:5d:d1:0a:24:6d:97:30:32:02:18: c6:3b:12:94:43:40:18:f2:fc:d1:7f:51:3e:f5:39:c1:42:35: 86:ad:2e:ed:e6:91:48:5a:81:07:4f:84:96:81:a6:e7:a1:02: a4:4f:52:b6:54:74:95:c1:fd:85:8a:f5:b6:0f:99:4e:ec:89: 28:fc:b1:1d:16:d1:2c:ee:bc:41:16:04:15:54:a9:94:e1:95: 92:5b:0b:e5:a8:67:15:bb:61:68:65:27:6c:63:92:53:01:16: 81:32:32:7a:38:ca:6d:24:ef:f6:98:05:7d:86:bb:29:84:6f: 0f:71:74:e4:a0:b8:6d:30:49:a5:c7:1a:eb:f3:4a:c1:93:38: c1:61:7f:20:d1:29:2c:ed:16:59:c2:84:f3:ac:53:65:1e:d4: 3f:a4:cd:9a:57:d9:6c:d1:8a:85:b2:d7:6f:76:2b:db:4d:88: 85:2e:83:53:cc:7f:61:0b:72:8c:6e:bf:e5:98:7b:51:67:d0: f8:17:fb:75:51:70:a5:ae:bd:2d:2e:50:c3:7c:39:7e:26:ab: 98:ea:35:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDQUQxMTAvBgNVBAUTKDAzQTNDODdBNEYyRDgyNTU5NDc2RjcxQ0ZBRUU1MjRG RjUxMTM1NzkwHhcNMjUxMTA0MTkxODU1WhcNMjUxMTExMTkxODU1WjAYMRYwFAYD VQQDEw02OTBhNTE5Zi1jMWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnuKsed6sp4b4cqV0jJEHIli9RUOWeCV1FQkY4Jg8YKqwFHZ2QEFbZtzOH/fr P50xlnGfmvMRKpGFOi8amQN7Y/eGYPow2WOQclCy4u8kK2JXy31El8Bs5yrUoP5M CMkg52SlCSp6WcdLjF2Kv+guv8OUjhjW1nxryv6uW+iXAHuKVw4TRus0+joNXjIM B1bvKiUyz/ZcZsVWwiGJ+0SOuJt8Ydxve3MJDiMDGo99llfy8BOyoT5sNuLMkXQw z4GwLN+2G+Z/CeKkG53Ets9FzXyaVFNFHbJQuRE/FryxWk7zyRYa+LS4AKKBCcEh 5Jm3rD6w0PSwyv6Cbwuf9+K+awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJEZImD8 ZnGMRq9Vh5fOsOHb0NtuMB8GA1UdIwQYMBaAFAOjyHpPLYJVlHb3HPruUk/1ETV5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNENBRC85RkQ5N0EwODQ1 QzMxMUVBQkVGNUQ0MzlDNEY5QUUwMi9BNlBJZWs4dGdsV1VkdmNjLXU1U1RfVVJO WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E2UEllazh0Z2xXVWR2Y2MtdTVTVF9VUk5Yay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NENBRC85RkQ5N0EwODQ1QzMxMUVBQkVGNUQ0MzlDNEY5QUUwMi9BNlBJZWs4dGds V1VkdmNjLXU1U1RfVVJOWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqwoA9LdVlc2IIGBvMSRKWc4YbLozsMcpWVwMeWEPw88ALOI93P/Wj gp9q6F3RCiRtlzAyAhjGOxKUQ0AY8vzRf1E+9TnBQjWGrS7t5pFIWoEHT4SWgabn oQKkT1K2VHSVwf2FivW2D5lO7Iko/LEdFtEs7rxBFgQVVKmU4ZWSWwvlqGcVu2Fo ZSdsY5JTARaBMjJ6OMptJO/2mAV9hrsphG8PcXTkoLhtMEmlxxrr80rBkzjBYX8g 0Sks7RZZwoTzrFNlHtQ/pM2aV9ls0YqFstdvdivbTYiFLoNTzH9hC3KMbr/lmHtR Z9D4F/t1UXClrr0tLlDDfDl+JquY6jV5 -----END CERTIFICATE-----Generated at Wed Nov 5 16:37:10 2025 by rpki-client