$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft File: p_mvKNJKQySTtLK6m1Vym8CXfMg.mft (raw, json) Hash identifier: 2BARjQvVnaO7R7FsqvNT1ZTtN4wypJIdXbNI8pPJFnQ= Subject key identifier: 12:7A:05:5C:78:61:94:CF:6F:F4:0F:FA:F1:B5:8F:BE:07:AD:1F:5C Authority key identifier: A7:F9:AF:28:D2:4A:43:24:93:B4:B2:BA:9B:55:72:9B:C0:97:7C:C8 Certificate issuer: /CN=A91AF9A1/serialNumber=A7F9AF28D24A432493B4B2BA9B55729BC0977CC8 Certificate serial: 0DA6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft Manifest number: 0D99 Signing time: Sun 02 Nov 2025 17:56:01 +0000 Manifest this update: Sun 02 Nov 2025 17:56:01 +0000 Manifest next update: Sun 09 Nov 2025 17:56:01 +0000 Files and hashes: 1: p_mvKNJKQySTtLK6m1Vym8CXfMg.crl (hash: TR712m7ezJq7ATuNNcPTCBygmh+CUJgGMzJFb44iinU=) 2: 6DDABFB26CD511ED9EC9CF83C4F9AE02.roa (hash: SkBXJ2Cg15YTINlEK8cWxPkVEnzJM9DWZ0n7aJtqwN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.crl rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:56:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3494 (0xda6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF9A1, serialNumber=A7F9AF28D24A432493B4B2BA9B55729BC0977CC8 Validity Not Before: Nov 2 17:56:01 2025 GMT Not After : Nov 9 17:56:01 2025 GMT Subject: CN=69079b31-7bed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3b:c3:65:a8:42:18:7a:2d:4b:31:2d:f1:be: a5:08:49:f3:5e:18:8f:1f:16:74:60:66:f2:cc:8b: a0:38:c8:e7:2e:7e:70:ae:79:d7:77:fc:16:46:fe: ef:54:11:44:48:c1:7d:17:f0:e4:93:fe:1d:06:8f: 89:e0:26:ac:fb:3f:75:26:6f:59:2e:ad:74:c5:54: ab:4e:c6:dd:ed:d6:dd:48:c9:70:c2:39:60:af:4b: ad:d6:ce:83:09:d8:09:fe:4c:12:05:7b:31:a9:b5: 2b:5c:33:f2:fd:bc:9b:c6:3d:b8:a9:a8:cc:b7:a8: 8f:54:ae:44:24:4f:9f:a5:fd:21:4b:3b:10:58:64: 87:34:e7:ba:90:8a:7f:fb:f8:0e:91:c4:47:59:02: fc:d4:5f:7b:01:09:66:1e:87:5e:2b:3e:f1:43:1f: 2b:c7:bf:0e:e4:01:84:ec:88:fa:58:a1:47:ee:bb: 45:9b:91:88:3d:42:b5:b6:ce:c0:61:36:82:58:ee: 2b:53:20:42:f0:55:7c:12:8a:6b:f0:4e:48:17:12: 30:b9:4e:00:06:93:24:83:5a:98:68:25:27:5b:10: c2:3c:a6:a0:4d:85:05:68:2a:f9:51:75:ac:24:87: 7a:47:42:9c:40:08:c8:3b:86:26:f1:32:88:7d:21: 5a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:7A:05:5C:78:61:94:CF:6F:F4:0F:FA:F1:B5:8F:BE:07:AD:1F:5C X509v3 Authority Key Identifier: keyid:A7:F9:AF:28:D2:4A:43:24:93:B4:B2:BA:9B:55:72:9B:C0:97:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:c8:bd:4e:5f:36:c2:b4:b3:62:9b:0a:83:30:7d:36:5d:19: 66:ba:13:08:df:fa:e2:37:f6:49:29:1d:5a:1d:ed:71:0d:3e: 0b:08:7b:94:22:3b:07:97:32:10:48:e2:48:a0:6f:f5:23:f8: 56:d2:9d:53:e4:b4:5d:6b:70:ae:08:df:1c:24:2c:23:88:e5: 44:8c:79:2d:07:bc:e0:2a:b7:d4:de:0b:0e:e6:e9:45:3c:7b: 67:37:e6:6e:c8:93:17:7f:54:d4:4c:63:8a:31:d7:78:5f:e5: 52:17:3e:04:b6:9c:c9:5c:22:49:84:d8:0b:ef:5f:6f:82:14: f2:ff:f6:cf:0c:42:10:35:fa:0c:fa:92:7b:cd:f6:b4:e7:1a: bd:7d:3d:8d:d2:76:96:a0:c8:c3:92:25:48:d9:1f:7a:a6:4e: d4:13:5e:14:e8:ab:f3:a2:bc:0d:dc:a5:34:ec:51:f3:72:a7: ee:43:0f:35:d3:ad:fe:61:55:01:42:87:0e:de:77:c8:84:bc: 0e:fc:d6:e5:e5:bc:40:7b:e9:01:04:4e:1b:d8:7c:ca:ed:43: 57:14:ab:5d:2a:1d:55:33:fa:1f:0f:72:51:64:13:ed:fd:fa: 0b:fa:ce:74:21:f5:3c:cf:69:8e:ed:f5:58:29:17:bf:0a:1c: 67:72:53:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY5QTExMTAvBgNVBAUTKEE3RjlBRjI4RDI0QTQzMjQ5M0I0QjJCQTlCNTU3MjlC QzA5NzdDQzgwHhcNMjUxMTAyMTc1NjAxWhcNMjUxMTA5MTc1NjAxWjAYMRYwFAYD VQQDEw02OTA3OWIzMS03YmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzzvDZahCGHotSzEt8b6lCEnzXhiPHxZ0YGbyzIugOMjnLn5wrnnXd/wWRv7v VBFESMF9F/Dkk/4dBo+J4Cas+z91Jm9ZLq10xVSrTsbd7dbdSMlwwjlgr0ut1s6D CdgJ/kwSBXsxqbUrXDPy/bybxj24qajMt6iPVK5EJE+fpf0hSzsQWGSHNOe6kIp/ +/gOkcRHWQL81F97AQlmHodeKz7xQx8rx78O5AGE7Ij6WKFH7rtFm5GIPUK1ts7A YTaCWO4rUyBC8FV8Eopr8E5IFxIwuU4ABpMkg1qYaCUnWxDCPKagTYUFaCr5UXWs JId6R0KcQAjIO4Ym8TKIfSFaGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJ6BVx4 YZTPb/QP+vG1j74HrR9cMB8GA1UdIwQYMBaAFKf5ryjSSkMkk7SyuptVcpvAl3zI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjlBMS9EMjYwMTVDQUQz N0UxMUU5OEExOTZCNjdDNEY5QUUwMi9wX212S05KS1F5U1R0TEs2bTFWeW04Q1hm TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfbXZLTkpLUXlTVHRMSzZtMVZ5bThDWGZNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjlBMS9EMjYwMTVDQUQzN0UxMUU5OEExOTZCNjdDNEY5QUUwMi9wX212S05KS1F5 U1R0TEs2bTFWeW04Q1hmTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8yL1OXzbCtLNimwqDMH02XRlmuhMI3/riN/ZJKR1aHe1xDT4LCHuU IjsHlzIQSOJIoG/1I/hW0p1T5LRda3CuCN8cJCwjiOVEjHktB7zgKrfU3gsO5ulF PHtnN+ZuyJMXf1TUTGOKMdd4X+VSFz4EtpzJXCJJhNgL719vghTy//bPDEIQNfoM +pJ7zfa05xq9fT2N0naWoMjDkiVI2R96pk7UE14U6KvzorwN3KU07FHzcqfuQw81 063+YVUBQocO3nfIhLwO/Nbl5bxAe+kBBE4b2HzK7UNXFKtdKh1VM/ofD3JRZBPt /foL+s50IfU8z2mO7fVYKRe/ChxnclPb -----END CERTIFICATE-----Generated at Tue Nov 4 16:01:55 2025 by rpki-client