$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft File: 446z9aUQfjDwynHd6nWxcNCwMlY.mft (raw, json) Hash identifier: fKNLm9oz2EGFEr0goNIC9B7iEbkPWTxoNA3Zodrt7bU= Subject key identifier: 4F:54:28:68:12:27:E1:C3:28:A7:72:5F:EE:CD:98:6F:F3:3E:11:93 Authority key identifier: E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56 Certificate issuer: /CN=A91A5560/serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256 Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft Manifest number: 011A Signing time: Wed 05 Nov 2025 05:06:41 +0000 Manifest this update: Wed 05 Nov 2025 05:06:41 +0000 Manifest next update: Wed 12 Nov 2025 05:06:41 +0000 Files and hashes: 1: 446z9aUQfjDwynHd6nWxcNCwMlY.crl (hash: qIZWC+yBGjHytuC/7Jji7+SYgd9iDXjSfhsBOtS9E0U=) 2: B84D6D3AF81811EFACB5925BC4F9AE02.roa (hash: iSgwGcm13o9Rt6IYRC8gB+G1pN+vluWHVfp7WXbTVyc=) 3: F9ECF4A0295A11EFBECFCA7EC4F9AE02.roa (hash: DUkD4dNjUkFTokfAlqm3Uyonu5h9UsmoJuMWKvodIy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5560, serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256 Validity Not Before: Nov 5 05:06:41 2025 GMT Not After : Nov 12 05:06:41 2025 GMT Subject: CN=690adb61-95ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:87:89:2e:36:b9:3c:88:0f:c3:c5:68:78:8c: c8:a2:3f:ba:e2:82:64:42:2e:37:96:3e:ef:37:ae: d4:2b:b5:c0:57:e6:27:39:a8:25:81:09:95:41:4a: 11:55:5c:92:bb:ed:9f:4f:53:7b:ac:d1:ed:70:ea: 46:29:f0:d2:4d:f5:1e:75:d9:9f:82:3a:9e:55:ff: c1:96:95:ae:99:49:60:11:96:5c:d4:32:30:a2:5a: 30:60:93:1d:cb:98:f0:56:68:18:30:75:a2:35:b2: 1f:7e:fe:26:19:c5:9d:c2:14:e2:08:14:6a:78:cd: 8f:b2:5d:f9:f7:b0:2c:15:25:f2:c5:b5:4f:8a:23: fb:48:5b:0f:65:7b:95:07:f9:15:d0:6c:a1:e8:c5: 8f:33:db:47:b3:85:2c:37:d1:60:bd:ab:53:0d:83: db:1e:14:aa:de:cc:91:c8:2a:0c:b8:94:f0:60:df: 4b:7f:2c:57:1e:d7:c9:47:09:58:7a:9e:8c:29:f8: 91:90:3f:2b:61:ee:11:7d:a7:90:25:66:5b:00:d0: 3d:ca:c0:a3:db:03:cb:02:05:76:b9:48:47:54:b6: 1b:d0:fd:a0:1e:1e:14:22:ca:19:60:cd:5b:9c:c6: 62:19:42:70:04:5e:02:00:49:7b:5d:84:d7:51:a9: 12:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:54:28:68:12:27:E1:C3:28:A7:72:5F:EE:CD:98:6F:F3:3E:11:93 X509v3 Authority Key Identifier: keyid:E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:34:a7:32:c4:4f:4c:06:26:80:0e:3a:a1:43:94:5b:05:d2: cd:e5:89:8c:86:4c:cf:3a:8e:cc:63:f6:8c:8d:82:ec:a6:f7: 5c:71:68:24:9d:07:c0:d6:d1:59:0d:08:4b:5f:dc:2e:59:fa: d3:66:a1:de:f7:f2:61:3b:3d:66:9e:81:e5:b8:55:c2:7c:9d: 7a:5a:d3:93:43:fe:ea:d2:b6:50:21:59:5f:a6:91:2e:37:02: d9:5f:77:49:d4:f6:bf:2b:7b:4a:97:d3:fe:48:a1:28:ab:aa: 21:4d:9f:ce:c3:77:40:2e:4c:6a:02:c5:06:89:0f:be:3b:01: 85:03:ea:2a:f6:c5:3d:96:7f:b9:62:c0:02:1f:23:8e:a2:50: ba:e5:a4:0a:7e:8b:56:f6:06:2e:61:e7:1d:be:3a:bc:ad:ce: e9:2e:4e:6c:49:06:7c:16:57:83:e7:15:c2:4c:df:7c:06:af: 05:42:04:c8:b3:0e:59:74:95:b7:2a:6a:98:05:a0:9f:1a:cc: 08:54:4b:38:8c:64:b9:f1:c8:1d:4d:62:3e:0b:8e:f7:42:51: 38:e4:7c:2d:1d:3e:54:89:5e:51:73:a0:ee:30:f4:9d:84:1a: bc:02:b1:48:fe:41:5e:75:33:bd:47:9d:78:df:fd:3f:fe:e6: c8:57:f5:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1NjAxMTAvBgNVBAUTKEUzOEVCM0Y1QTUxMDdFMzBGMENBNzFEREVBNzVCMTcw RDBCMDMyNTYwHhcNMjUxMTA1MDUwNjQxWhcNMjUxMTEyMDUwNjQxWjAYMRYwFAYD VQQDEw02OTBhZGI2MS05NWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAroeJLja5PIgPw8VoeIzIoj+64oJkQi43lj7vN67UK7XAV+YnOaglgQmVQUoR VVySu+2fT1N7rNHtcOpGKfDSTfUeddmfgjqeVf/BlpWumUlgEZZc1DIwolowYJMd y5jwVmgYMHWiNbIffv4mGcWdwhTiCBRqeM2Psl3597AsFSXyxbVPiiP7SFsPZXuV B/kV0Gyh6MWPM9tHs4UsN9FgvatTDYPbHhSq3syRyCoMuJTwYN9LfyxXHtfJRwlY ep6MKfiRkD8rYe4RfaeQJWZbANA9ysCj2wPLAgV2uUhHVLYb0P2gHh4UIsoZYM1b nMZiGUJwBF4CAEl7XYTXUakS2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE9UKGgS J+HDKKdyX+7NmG/zPhGTMB8GA1UdIwQYMBaAFOOOs/WlEH4w8Mpx3ep1sXDQsDJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTU2MC80QzNENkJDMDIx NkYxMUVGQUY0NUVBMkRDNEY5QUUwMi80NDZ6OWFVUWZqRHd5bkhkNm5XeGNOQ3dN bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ0Nno5YVVRZmpEd3luSGQ2bld4Y05Dd01sWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTU2MC80QzNENkJDMDIxNkYxMUVGQUY0NUVBMkRDNEY5QUUwMi80NDZ6OWFVUWZq RHd5bkhkNm5XeGNOQ3dNbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSNKcyxE9MBiaADjqhQ5RbBdLN5YmMhkzPOo7MY/aMjYLspvdccWgk nQfA1tFZDQhLX9wuWfrTZqHe9/JhOz1mnoHluFXCfJ16WtOTQ/7q0rZQIVlfppEu NwLZX3dJ1Pa/K3tKl9P+SKEoq6ohTZ/Ow3dALkxqAsUGiQ++OwGFA+oq9sU9ln+5 YsACHyOOolC65aQKfotW9gYuYecdvjq8rc7pLk5sSQZ8FleD5xXCTN98Bq8FQgTI sw5ZdJW3KmqYBaCfGswIVEs4jGS58cgdTWI+C473QlE45HwtHT5UiV5Rc6DuMPSd hBq8ArFI/kFedTO9R5143/0//ubIV/US -----END CERTIFICATE-----Generated at Wed Nov 5 12:06:01 2025 by rpki-client