$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft File: cgqmbzbBRgrUvDrGkvlltxdKWOA.mft (raw, json) Hash identifier: vwhxJMd4/IVvqioUSP/mBlL0FrVWVfifATzhfU08efo= Subject key identifier: 77:16:67:D9:72:96:55:DA:11:C1:D6:62:B2:53:A3:DA:58:85:11:3F Authority key identifier: 72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 Certificate issuer: /CN=A91B4053/serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft Manifest number: 49 Signing time: Mon 03 Nov 2025 07:22:50 +0000 Manifest this update: Mon 03 Nov 2025 07:22:50 +0000 Manifest next update: Mon 10 Nov 2025 07:22:50 +0000 Files and hashes: 1: cgqmbzbBRgrUvDrGkvlltxdKWOA.crl (hash: TavhYSIoir4KjltqZefWC0NwqQ47a77YqskgNvQWf8A=) 2: AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa (hash: 6vL95HASIeMq5sE95QjJyODMvxYaOtsSaHmjFpdm+bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:22:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Validity Not Before: Nov 3 07:22:50 2025 GMT Not After : Nov 10 07:22:50 2025 GMT Subject: CN=6908584a-1d12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6e:c7:26:f9:d6:41:9f:4f:e6:2e:56:30:99: 26:d7:d1:e4:58:6e:0b:52:01:58:95:09:7f:be:44: 2b:99:21:54:d1:c4:c2:70:37:14:a3:82:09:a5:ba: f1:88:b5:df:4b:88:48:60:ce:ac:bf:38:32:e0:3c: 3f:a4:ad:68:45:78:3a:da:3d:a2:68:70:d5:48:e8: 3c:41:b3:18:1a:ca:dd:c8:dc:b9:99:c4:43:27:81: 79:d8:e1:81:21:31:05:d8:db:0c:05:d4:3c:d2:c2: d1:68:24:40:9d:8b:99:a9:57:e5:e3:00:e2:5e:10: 6d:0f:1b:9e:b6:09:9a:b8:cf:07:d0:7e:14:c5:ef: 2a:0c:29:04:18:01:3a:64:a4:bd:65:25:c1:4c:f1: 05:3e:26:5e:aa:27:9d:97:84:e5:15:32:0e:28:0e: 20:8a:dd:ec:d8:68:55:30:eb:ac:6c:a4:7e:4d:6f: 8c:df:53:42:e3:0b:93:91:87:92:e4:a5:5d:28:83: 73:69:c2:b3:e7:69:57:3c:ca:59:49:eb:43:9a:49: 07:9d:15:9a:f2:59:f1:b2:fe:29:2e:1a:88:ac:43: a1:03:b0:e5:62:3a:d6:0a:6b:ba:2d:d1:46:0c:10: f9:d4:d4:7a:da:88:ca:92:fa:38:78:a9:c8:ab:96: 2a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:16:67:D9:72:96:55:DA:11:C1:D6:62:B2:53:A3:DA:58:85:11:3F X509v3 Authority Key Identifier: keyid:72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:6f:a0:19:f0:37:60:84:38:e4:d0:af:0c:34:5e:79:32:5b: e4:e8:f5:6f:81:ca:82:c1:cd:97:61:0f:30:e3:b2:f9:3d:f3: 0c:a3:71:d0:cb:b7:ce:08:ff:9f:42:b8:fa:0e:e9:5f:4d:aa: 49:ea:33:c1:53:0a:43:98:74:94:85:13:3a:38:63:f4:29:3f: 68:8f:de:ed:34:da:1c:1b:1f:b2:09:b7:9d:cf:d9:ee:21:51: 5d:98:07:9d:14:eb:cf:87:58:de:59:73:b1:7a:14:d4:e4:b4: 48:23:4c:1a:e1:c9:1b:75:36:95:1f:a4:3a:91:d0:cf:0c:c5: 5f:a0:73:fa:08:e9:79:90:4a:e1:31:8b:ca:83:06:bd:ca:d9: 25:72:18:93:94:25:6c:20:1b:5f:17:f6:00:56:0b:7d:50:4f: 3b:50:75:a5:c6:42:fa:dd:0d:4c:f6:da:3c:d8:15:df:b6:46: 4b:e4:dd:34:bb:4b:0b:25:45:de:e4:c0:e7:71:e4:cb:c6:cc: 63:76:db:40:4d:d1:09:fb:ae:d3:97:89:b9:23:d1:67:c6:61: 15:d6:db:04:cd:de:f3:fb:8c:4c:09:dc:7d:09:a0:4f:07:15: 9e:26:0d:99:c6:f9:59:61:4b:85:31:f1:2a:65:bc:04:1e:28: ce:14:5e:58 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDA1MzExMC8GA1UEBRMoNzIwQUE2NkYzNkMxNDYwQUQ0QkMzQUM2OTJGOTY1Qjcx NzRBNThFMDAeFw0yNTExMDMwNzIyNTBaFw0yNTExMTAwNzIyNTBaMBgxFjAUBgNV BAMTDTY5MDg1ODRhLTFkMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCbscm+dZBn0/mLlYwmSbX0eRYbgtSAViVCX++RCuZIVTRxMJwNxSjggmluvGI td9LiEhgzqy/ODLgPD+krWhFeDraPaJocNVI6DxBsxgayt3I3LmZxEMngXnY4YEh MQXY2wwF1DzSwtFoJECdi5mpV+XjAOJeEG0PG562CZq4zwfQfhTF7yoMKQQYATpk pL1lJcFM8QU+Jl6qJ52XhOUVMg4oDiCK3ezYaFUw66xspH5Nb4zfU0LjC5ORh5Lk pV0og3NpwrPnaVc8yllJ60OaSQedFZryWfGy/ikuGoisQ6EDsOViOtYKa7ot0UYM EPnU1HraiMqS+jh4qcirlipXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdxZn2XKW VdoRwdZislOj2liFET8wHwYDVR0jBBgwFoAUcgqmbzbBRgrUvDrGkvlltxdKWOAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MDUzLzM2NDBDQjk0NTBF MTExRjA5MUM0QkI3NEM0RjlBRTAyL2NncW1iemJCUmdyVXZEckdrdmxsdHhkS1dP QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvY2dxbWJ6YkJSZ3JVdkRyR2t2bGx0eGRLV09BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 MDUzLzM2NDBDQjk0NTBFMTExRjA5MUM0QkI3NEM0RjlBRTAyL2NncW1iemJCUmdy VXZEckdrdmxsdHhkS1dPQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMtvoBnwN2CEOOTQrww0XnkyW+To9W+ByoLBzZdhDzDjsvk98wyjcdDL t84I/59CuPoO6V9NqknqM8FTCkOYdJSFEzo4Y/QpP2iP3u002hwbH7IJt53P2e4h UV2YB50U68+HWN5Zc7F6FNTktEgjTBrhyRt1NpUfpDqR0M8MxV+gc/oI6XmQSuEx i8qDBr3K2SVyGJOUJWwgG18X9gBWC31QTztQdaXGQvrdDUz22jzYFd+2Rkvk3TS7 SwslRd7kwOdx5MvGzGN220BN0Qn7rtOXibkj0WfGYRXW2wTN3vP7jEwJ3H0JoE8H FZ4mDZnG+VlhS4Ux8SplvAQeKM4UXlg= -----END CERTIFICATE-----Generated at Wed Nov 5 05:18:21 2025 by rpki-client