$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft File: cS61otcGnxjunGXzsBMnGtvx9UA.mft (raw, json) Hash identifier: k9hP/Qz77Pwm87cY5HkaOPgAxIyC99ARQGjZAD5xWxE= Subject key identifier: 7A:11:DD:17:1C:4E:CA:07:CC:E1:84:23:0B:C9:BC:BB:5B:2B:1E:38 Authority key identifier: 71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 Certificate issuer: /CN=A91A8A52/serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Certificate serial: 0237 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft Manifest number: 022B Signing time: Wed 05 Nov 2025 02:10:35 +0000 Manifest this update: Wed 05 Nov 2025 02:10:35 +0000 Manifest next update: Wed 12 Nov 2025 02:10:35 +0000 Files and hashes: 1: cS61otcGnxjunGXzsBMnGtvx9UA.crl (hash: QTTJ12Tn9GeXZt6Josv0mvR1c5gD6owtU2/1+Oz9CVs=) 2: 655B85F0225B11EFADDE6F63C4F9AE02.roa (hash: n2zLDtDaPNL3Ye6qBkwU/zpDC2mfhiqQ0N3aGF+8gOs=) 3: 8F14EDAA70B911EDB6E1F81BC4F9AE02.roa (hash: KwJcRfcCHNm1/1H4hZVLWjzBmRVSuYEae2GuTglAJm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:10:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8A52, serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Validity Not Before: Nov 5 02:10:35 2025 GMT Not After : Nov 12 02:10:35 2025 GMT Subject: CN=690ab21b-5eac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7b:ef:91:3d:80:6a:86:b6:32:b5:22:de:90: b3:51:ea:24:41:5d:c9:c3:ed:a3:fb:ab:ae:a9:85: 53:87:54:29:71:3f:f1:33:5f:13:ed:59:a7:61:5f: 67:2b:76:d6:bd:f1:38:33:85:f2:dd:bd:dd:b9:f6: bb:85:51:84:47:b3:08:62:08:03:82:04:46:5e:94: 93:00:c8:f6:bb:0b:47:42:1b:a5:39:1d:fe:a5:57: 7b:60:67:a3:9f:2b:d4:b8:27:eb:81:a2:6a:d7:df: 91:bb:45:5c:34:a2:6a:b6:b8:5f:ee:44:b7:c5:cd: 80:9c:a9:e2:c7:9d:81:a1:08:c5:06:c0:8e:e3:16: d3:5f:21:ea:bd:d9:a4:5e:55:7d:ce:52:38:ad:c7: 29:fd:71:6d:0f:fc:70:b4:80:80:8e:4f:c4:0c:ad: d5:3f:e5:a7:77:7e:57:14:a9:b8:12:d7:a9:96:b0: 3a:52:ef:35:17:b5:27:db:99:39:06:24:35:92:fc: c4:05:41:8a:0b:3e:72:de:c9:21:89:08:4a:88:8d: 33:9d:24:26:22:8c:1a:b3:6e:11:41:ce:f2:7f:08: 99:18:9d:ac:f8:10:61:c3:26:a4:7d:4f:07:25:30: c5:ab:6d:a4:3a:f5:73:a0:fd:37:b6:22:99:00:09: d7:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:11:DD:17:1C:4E:CA:07:CC:E1:84:23:0B:C9:BC:BB:5B:2B:1E:38 X509v3 Authority Key Identifier: keyid:71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:dc:19:7d:3c:90:0e:bc:b4:14:e9:d5:21:39:9e:e2:45:ce: b1:8a:63:ee:36:b3:b4:90:1c:bb:ce:51:62:d8:88:af:81:f5: ce:d0:0a:65:0f:c5:a4:35:d8:2f:d3:2f:c3:a1:d5:33:7b:92: f5:47:3d:a9:a4:d8:ef:7c:b0:df:02:30:4c:3c:14:4d:a7:9d: 33:e6:12:4e:3e:79:2e:b4:65:87:e9:c0:33:0b:5b:a0:4a:97: 7d:c1:74:aa:17:3f:f0:57:5f:87:69:10:e2:21:37:11:94:96: 88:c3:30:11:f2:34:46:6c:98:e1:f2:51:5c:ab:a9:9a:2f:8c: e2:e4:79:ef:c6:3d:5a:7c:1c:6a:25:ab:7e:10:ec:5a:b9:fd: 0d:6a:12:07:f6:8e:b0:df:dc:ca:be:96:79:3a:fc:e1:89:e3: 72:7c:9d:62:53:5b:b1:62:24:bd:d5:b2:b2:da:10:3d:3a:7b: 3e:fa:e2:5a:cd:ee:d4:33:24:dc:12:4d:86:b1:b8:be:ef:56: 86:39:fd:02:6a:1a:e8:2d:6b:8d:a9:f0:78:8f:7d:28:0f:bd: ad:28:c9:b7:2c:f9:d5:25:1f:d6:47:c2:18:b1:78:40:43:77: 24:d5:3f:d6:ea:8a:77:5f:5a:ea:18:85:df:d6:6f:63:22:8e: be:81:a8:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThBNTIxMTAvBgNVBAUTKDcxMkVCNUEyRDcwNjlGMThFRTlDNjVGM0IwMTMyNzFB REJGMUY1NDAwHhcNMjUxMTA1MDIxMDM1WhcNMjUxMTEyMDIxMDM1WjAYMRYwFAYD VQQDEw02OTBhYjIxYi01ZWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHvvkT2Aaoa2MrUi3pCzUeokQV3Jw+2j+6uuqYVTh1QpcT/xM18T7VmnYV9n K3bWvfE4M4Xy3b3dufa7hVGER7MIYggDggRGXpSTAMj2uwtHQhulOR3+pVd7YGej nyvUuCfrgaJq19+Ru0VcNKJqtrhf7kS3xc2AnKnix52BoQjFBsCO4xbTXyHqvdmk XlV9zlI4rccp/XFtD/xwtICAjk/EDK3VP+Wnd35XFKm4EteplrA6Uu81F7Un25k5 BiQ1kvzEBUGKCz5y3skhiQhKiI0znSQmIowas24RQc7yfwiZGJ2s+BBhwyakfU8H JTDFq22kOvVzoP03tiKZAAnX7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHoR3Rcc TsoHzOGEIwvJvLtbKx44MB8GA1UdIwQYMBaAFHEutaLXBp8Y7pxl87ATJxrb8fVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEE1Mi9GQjdFNEJERTcw QjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254anVuR1h6c0JNbkd0dng5 VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NTNjFvdGNHbnhqdW5HWHpzQk1uR3R2eDlVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEE1Mi9GQjdFNEJERTcwQjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254 anVuR1h6c0JNbkd0dng5VUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAo3Bl9PJAOvLQU6dUhOZ7iRc6ximPuNrO0kBy7zlFi2IivgfXO0Apl D8WkNdgv0y/DodUze5L1Rz2ppNjvfLDfAjBMPBRNp50z5hJOPnkutGWH6cAzC1ug Spd9wXSqFz/wV1+HaRDiITcRlJaIwzAR8jRGbJjh8lFcq6maL4zi5Hnvxj1afBxq Jat+EOxauf0NahIH9o6w39zKvpZ5OvzhieNyfJ1iU1uxYiS91bKy2hA9Ons++uJa ze7UMyTcEk2Gsbi+71aGOf0CahroLWuNqfB4j30oD72tKMm3LPnVJR/WR8IYsXhA Q3ck1T/W6op3X1rqGIXf1m9jIo6+gaiq -----END CERTIFICATE-----Generated at Wed Nov 5 11:56:18 2025 by rpki-client