$ rpki-client -vvf rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft File: b814Gaj5P69A0OOH8htG6E3p1ws.mft (raw, json) Hash identifier: qfUS4qh+tkJmd0WN8ZvexYNGFsg+X6s9BLn1XXjz3lk= Subject key identifier: A8:1A:EE:13:B4:3F:57:EB:CA:23:8C:34:59:39:E8:47:85:28:9B:D0 Authority key identifier: 6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B Certificate issuer: /CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft Manifest number: 0178 Signing time: Mon 03 Nov 2025 03:46:26 +0000 Manifest this update: Mon 03 Nov 2025 03:46:25 +0000 Manifest next update: Mon 10 Nov 2025 03:46:25 +0000 Files and hashes: 1: b814Gaj5P69A0OOH8htG6E3p1ws.crl (hash: EbZDzt6NfdYBL7b6Ks/XUJc+Vi9cDeFSWbm3OmDrMF0=) 2: 5D98833C77EC11EEA06F373BC4F9AE02.roa (hash: 2U1GUUuHz/HspZCAbX8MNYKTWmtmGMuAJscXPNynpMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:46:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B02A2, serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Validity Not Before: Nov 3 03:46:25 2025 GMT Not After : Nov 10 03:46:25 2025 GMT Subject: CN=69082591-eae5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c2:47:7c:4c:a0:60:bc:77:89:c5:28:d3:fb: cd:f0:91:74:2d:a7:ad:46:96:7b:af:ab:d1:94:f1: 46:83:36:fd:5d:d2:69:e4:0c:bd:63:1f:61:65:05: cb:12:a4:ff:3d:d3:de:6f:66:15:5a:63:4e:e3:96: e1:78:4e:6a:90:68:7a:a6:f4:87:e6:4e:16:fc:8f: 42:b4:80:67:d1:b4:6e:58:4e:a1:3f:ad:6b:7c:36: c2:ec:6f:b8:aa:18:2f:ec:06:15:ee:68:3d:f9:87: c9:71:b9:84:0b:94:71:f7:9d:de:3b:e0:e3:64:40: a6:1c:fe:ac:fb:a4:96:8b:3b:97:25:03:d2:95:59: da:88:e7:fc:5c:1b:09:64:9a:a0:10:71:c6:15:10: 4b:a5:a6:6f:7e:ae:97:dd:72:8c:eb:48:f5:c3:13: 40:21:a6:62:51:8f:c8:46:5e:63:7e:ee:fa:52:f6: 21:88:d6:a0:38:b2:18:84:9a:2b:e5:58:f5:17:70: 99:01:b7:3f:ab:c0:bc:61:16:b2:45:dc:ec:1c:d8: 61:a5:d6:bf:74:d3:1e:61:11:b4:36:dc:8e:8f:11: 46:e1:5f:61:62:74:31:0b:33:57:11:aa:70:e2:50: 19:a3:69:a3:10:ba:6c:0f:d1:dd:ab:95:c1:1b:cf: de:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:1A:EE:13:B4:3F:57:EB:CA:23:8C:34:59:39:E8:47:85:28:9B:D0 X509v3 Authority Key Identifier: keyid:6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:d7:46:b9:7e:75:91:ca:61:15:62:1c:04:5d:23:8e:3a:3f: f6:25:03:b7:c6:cf:5d:a5:45:cc:fa:cc:7c:e4:49:e7:8b:d6: 27:31:2a:ef:d3:b4:b7:48:c3:bb:f2:52:9d:f3:00:81:08:4f: e0:c7:a1:30:45:82:04:6a:d1:0a:05:7f:fb:5b:53:a6:83:c0: 25:95:11:57:e7:ef:44:f9:80:e7:fb:15:07:ea:9a:b0:3c:ca: b7:ea:25:85:d8:a3:39:10:00:17:e5:16:84:1a:8b:bf:33:b0: 02:b5:fa:53:e7:c3:bc:26:2c:16:58:c4:cb:d5:b4:87:29:38: f9:1c:3e:e3:78:89:99:78:5a:e7:c6:28:e4:2f:46:ec:39:97: 85:4b:cd:57:bf:5e:57:87:81:66:eb:3a:c3:6f:ea:f2:df:47: 52:13:24:67:43:39:17:2b:e0:d5:08:e3:7b:1f:c1:f0:97:19: a9:61:95:b8:0e:28:14:40:b8:c6:7a:1c:9a:8c:3e:32:82:a4: 85:15:f7:f7:01:dd:4b:95:75:6a:76:ba:e0:f9:29:c9:f3:32: a8:f5:bc:75:ba:1e:47:2d:13:59:55:9e:80:e6:1a:97:95:2a: 29:d7:e9:ea:2d:56:a6:be:83:9b:16:fe:3a:e2:e9:5d:a2:9e: eb:5e:4d:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAyQTIxMTAvBgNVBAUTKDZGQ0Q3ODE5QThGOTNGQUY0MEQwRTM4N0YyMUI0NkU4 NERFOUQ3MEIwHhcNMjUxMTAzMDM0NjI1WhcNMjUxMTEwMDM0NjI1WjAYMRYwFAYD VQQDEw02OTA4MjU5MS1lYWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcJHfEygYLx3icUo0/vN8JF0LaetRpZ7r6vRlPFGgzb9XdJp5Ay9Yx9hZQXL EqT/PdPeb2YVWmNO45bheE5qkGh6pvSH5k4W/I9CtIBn0bRuWE6hP61rfDbC7G+4 qhgv7AYV7mg9+YfJcbmEC5Rx953eO+DjZECmHP6s+6SWizuXJQPSlVnaiOf8XBsJ ZJqgEHHGFRBLpaZvfq6X3XKM60j1wxNAIaZiUY/IRl5jfu76UvYhiNagOLIYhJor 5Vj1F3CZAbc/q8C8YRayRdzsHNhhpda/dNMeYRG0NtyOjxFG4V9hYnQxCzNXEapw 4lAZo2mjELpsD9Hdq5XBG8/ezQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKga7hO0 P1fryiOMNFk56EeFKJvQMB8GA1UdIwQYMBaAFG/NeBmo+T+vQNDjh/IbRuhN6dcL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDJBMi9FRkQyMTU4NDc3 RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2OUEwT09IOGh0RzZFM3Ax d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4MTRHYWo1UDY5QTBPT0g4aHRHNkUzcDF3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDJBMi9FRkQyMTU4NDc3RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2 OUEwT09IOGh0RzZFM3Axd3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCm10a5fnWRymEVYhwEXSOOOj/2JQO3xs9dpUXM+sx85Enni9YnMSrv 07S3SMO78lKd8wCBCE/gx6EwRYIEatEKBX/7W1Omg8AllRFX5+9E+YDn+xUH6pqw PMq36iWF2KM5EAAX5RaEGou/M7ACtfpT58O8JiwWWMTL1bSHKTj5HD7jeImZeFrn xijkL0bsOZeFS81Xv15Xh4Fm6zrDb+ry30dSEyRnQzkXK+DVCON7H8HwlxmpYZW4 DigUQLjGehyajD4ygqSFFff3Ad1LlXVqdrrg+SnJ8zKo9bx1uh5HLRNZVZ6A5hqX lSop1+nqLVamvoObFv464uldop7rXk1k -----END CERTIFICATE-----Generated at Tue Nov 4 15:55:07 2025 by rpki-client