$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft File: FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft (raw, json) Hash identifier: O1UksVSAWP4yhrqOGySnDBmeWGi4UuipIS9NhDplYWk= Subject key identifier: 97:B8:F6:7D:F8:A3:77:6D:A9:25:32:05:1F:27:0E:7C:82:11:F9:24 Authority key identifier: 15:6D:4A:9C:6F:15:EB:2B:4B:3F:36:7D:69:FA:A2:51:01:28:07:88 Certificate issuer: /CN=A91A5EBA/serialNumber=156D4A9C6F15EB2B4B3F367D69FAA25101280788 Certificate serial: 0108 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft Manifest number: 0105 Signing time: Wed 05 Nov 2025 05:12:01 +0000 Manifest this update: Wed 05 Nov 2025 05:12:01 +0000 Manifest next update: Wed 12 Nov 2025 05:12:01 +0000 Files and hashes: 1: FW1KnG8V6ytLPzZ9afqiUQEoB4g.crl (hash: hIFt3bLWkI/kL0QWvkSyRvGWiLUkSY7vkPSMEVognoo=) 2: 80F32E7C2C5511EF83ECC535C4F9AE02.roa (hash: cjQ8z/DvzlqVIyc0XMrCXb6k6xXs+7KEwBIQYpqVtTw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.crl rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:12:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5EBA, serialNumber=156D4A9C6F15EB2B4B3F367D69FAA25101280788 Validity Not Before: Nov 5 05:12:01 2025 GMT Not After : Nov 12 05:12:01 2025 GMT Subject: CN=690adca1-08d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:64:ca:57:ce:5a:8e:e4:65:30:a8:61:c0:9f: 99:4b:bb:9c:3b:3f:be:cf:ee:f0:e4:03:bf:7c:9c: d3:9f:b7:0f:22:96:a9:1d:a7:53:02:50:27:77:26: 8c:f7:00:78:92:2d:fb:90:09:e4:e2:65:63:4b:33: 63:db:18:28:40:e4:b7:e8:49:f8:2e:87:da:b2:b3: ee:d9:71:90:21:35:f4:d4:dc:e8:73:12:bc:2d:79: c7:47:ce:7d:85:2c:87:91:15:20:20:10:5f:eb:b2: 01:fe:be:5c:d7:e0:5f:fc:b6:e7:bb:ec:52:c5:71: 97:78:0e:64:bc:16:97:a8:09:1c:2b:04:f2:be:b2: 69:a7:1b:89:78:a3:ce:a6:9f:6b:d9:f3:7b:bc:f0: 25:8b:17:a5:f2:5e:97:8e:a1:0c:35:17:12:ef:3c: f2:25:cc:bf:ea:be:ed:2a:6c:a6:9d:1a:42:a6:a8: 2c:31:84:b1:cf:1e:f1:94:21:c6:48:c2:68:80:c6: df:74:d1:e7:5a:cc:cb:1d:11:5e:05:ee:00:dc:2d: 54:d1:5e:34:81:75:95:ce:7a:1e:42:62:5f:0d:41: e8:f5:6c:aa:bc:3d:ae:ff:31:f8:b8:b2:9f:e2:d5: 1a:33:08:28:72:56:81:33:c3:8d:de:5b:9b:d3:e9: 52:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:B8:F6:7D:F8:A3:77:6D:A9:25:32:05:1F:27:0E:7C:82:11:F9:24 X509v3 Authority Key Identifier: keyid:15:6D:4A:9C:6F:15:EB:2B:4B:3F:36:7D:69:FA:A2:51:01:28:07:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:0e:10:0b:15:17:fe:f5:cd:01:b5:31:3b:5e:d0:1c:87:b7: 00:3c:3f:17:b5:07:5a:5f:c9:bc:42:30:05:14:c7:b6:85:8f: f8:65:49:5e:27:0f:48:e6:12:97:55:99:92:39:28:27:22:c7: 39:59:32:1e:18:90:d4:08:1e:c1:a9:07:ed:f0:0b:e4:1e:ee: 54:9e:e9:e2:6c:c1:44:9a:a3:32:ef:5e:e9:3d:b8:ab:11:ad: 87:d4:42:f7:6e:d6:78:64:e9:09:71:26:dd:9a:b5:0f:be:46: 88:74:f3:9c:e7:31:db:21:40:6a:05:3e:bf:80:c8:dd:5b:21: 04:c5:6e:9c:76:b1:07:9f:7d:59:04:a2:19:3f:6f:ab:13:37: 10:29:b6:3a:50:49:1b:3b:30:39:ba:a7:76:9a:de:7e:86:f1: 81:02:5b:50:92:87:ab:29:6f:02:49:51:42:87:4b:c1:86:f7: b8:6c:4e:8d:1d:14:92:a8:67:a2:66:34:06:8a:de:03:97:13: 3d:f2:0a:74:d5:c8:58:56:74:8d:78:0c:19:6b:db:57:6f:e3: f1:6c:91:34:9e:37:8c:81:5a:8c:a0:c1:0e:78:8f:e7:d8:30: 9d:c7:0c:a9:e4:16:84:01:e3:e7:e8:54:6f:d8:12:73:f6:fc: 50:05:a7:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVFQkExMTAvBgNVBAUTKDE1NkQ0QTlDNkYxNUVCMkI0QjNGMzY3RDY5RkFBMjUx MDEyODA3ODgwHhcNMjUxMTA1MDUxMjAxWhcNMjUxMTEyMDUxMjAxWjAYMRYwFAYD VQQDEw02OTBhZGNhMS0wOGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWTKV85ajuRlMKhhwJ+ZS7ucOz++z+7w5AO/fJzTn7cPIpapHadTAlAndyaM 9wB4ki37kAnk4mVjSzNj2xgoQOS36En4LofasrPu2XGQITX01NzocxK8LXnHR859 hSyHkRUgIBBf67IB/r5c1+Bf/Lbnu+xSxXGXeA5kvBaXqAkcKwTyvrJppxuJeKPO pp9r2fN7vPAlixel8l6XjqEMNRcS7zzyJcy/6r7tKmymnRpCpqgsMYSxzx7xlCHG SMJogMbfdNHnWszLHRFeBe4A3C1U0V40gXWVznoeQmJfDUHo9WyqvD2u/zH4uLKf 4tUaMwgoclaBM8ON3lub0+lSBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJe49n34 o3dtqSUyBR8nDnyCEfkkMB8GA1UdIwQYMBaAFBVtSpxvFesrSz82fWn6olEBKAeI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUVCQS83MkU1NENGRTJD NTMxMUVGOTFCRjdDMzBDNEY5QUUwMi9GVzFLbkc4VjZ5dExQelo5YWZxaVVRRW9C NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZXMUtuRzhWNnl0TFB6WjlhZnFpVVFFb0I0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUVCQS83MkU1NENGRTJDNTMxMUVGOTFCRjdDMzBDNEY5QUUwMi9GVzFLbkc4VjZ5 dExQelo5YWZxaVVRRW9CNGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1DhALFRf+9c0BtTE7XtAch7cAPD8XtQdaX8m8QjAFFMe2hY/4ZUle Jw9I5hKXVZmSOSgnIsc5WTIeGJDUCB7BqQft8AvkHu5UnunibMFEmqMy717pPbir Ea2H1EL3btZ4ZOkJcSbdmrUPvkaIdPOc5zHbIUBqBT6/gMjdWyEExW6cdrEHn31Z BKIZP2+rEzcQKbY6UEkbOzA5uqd2mt5+hvGBAltQkoerKW8CSVFCh0vBhve4bE6N HRSSqGeiZjQGit4DlxM98gp01chYVnSNeAwZa9tXb+PxbJE0njeMgVqMoMEOeI/n 2DCdxwyp5BaEAePn6FRv2BJz9vxQBaeB -----END CERTIFICATE-----Generated at Wed Nov 5 16:42:47 2025 by rpki-client