$ rpki-client -vvf rpki.apnic.net/member_repository/A91B62A9/D77F91421DA111E2BFCB309408B02CD2/sLiO7pE7KqjXtZU3FT782HAKkUA.mft File: sLiO7pE7KqjXtZU3FT782HAKkUA.mft (raw, json) Hash identifier: Gl+NzxeW5AOmGPsQLdPHuBIN3sYuVQB9IcntMyJiI6Y= Subject key identifier: E9:A4:BE:1B:29:8D:02:84:36:07:99:B3:14:5F:C9:BF:92:2F:C8:95 Authority key identifier: B0:B8:8E:EE:91:3B:2A:A8:D7:B5:95:37:15:3E:FC:D8:70:0A:91:40 Certificate issuer: /CN=A91B62A9/serialNumber=B0B88EEE913B2AA8D7B59537153EFCD8700A9140 Certificate serial: 34D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sLiO7pE7KqjXtZU3FT782HAKkUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B62A9/D77F91421DA111E2BFCB309408B02CD2/sLiO7pE7KqjXtZU3FT782HAKkUA.mft Manifest number: 34D5 Signing time: Tue 04 Nov 2025 15:08:47 +0000 Manifest this update: Tue 04 Nov 2025 15:08:47 +0000 Manifest next update: Tue 11 Nov 2025 15:08:47 +0000 Files and hashes: 1: sLiO7pE7KqjXtZU3FT782HAKkUA.crl (hash: z+jMQ/Uj9EAXijrBejBf0fGiiYMyjy2pogivptXkk7M=) 2: 8146430A45BE11EF92C29882C4F9AE02.roa (hash: t0r89bYo/YLfBIznDm5VJcksHUIZupXS77KseDePVYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B62A9/D77F91421DA111E2BFCB309408B02CD2/sLiO7pE7KqjXtZU3FT782HAKkUA.crl rsync://rpki.apnic.net/member_repository/A91B62A9/D77F91421DA111E2BFCB309408B02CD2/sLiO7pE7KqjXtZU3FT782HAKkUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sLiO7pE7KqjXtZU3FT782HAKkUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:08:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13527 (0x34d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B62A9, serialNumber=B0B88EEE913B2AA8D7B59537153EFCD8700A9140 Validity Not Before: Nov 4 15:08:47 2025 GMT Not After : Nov 11 15:08:47 2025 GMT Subject: CN=690a16ff-6f35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f9:5b:51:a7:f4:bb:d3:07:a4:d8:6a:90:c5: ca:0c:bb:a5:ac:0f:7f:4b:8d:cd:f4:8c:f5:d1:2a: f0:7e:24:80:ec:74:db:d1:9b:b9:ec:02:11:51:8b: fb:c9:c5:98:f6:97:41:8a:24:ba:2b:9d:c6:62:dc: 6f:ce:1e:06:9c:cb:5a:82:5d:45:dd:d6:c6:9d:4c: e8:38:2b:26:78:5f:ae:76:64:c6:04:78:2b:40:0c: f5:b6:46:18:41:6a:a2:a9:e1:37:c8:1c:80:0d:1b: 46:fd:74:d2:4c:d1:c1:97:1e:ce:c8:17:b2:ba:01: b5:e5:00:e6:b0:3f:27:5c:75:a0:7f:aa:1f:d0:87: ca:65:43:99:c1:b5:bf:97:ca:7f:dd:48:ce:c5:5a: 04:fe:a9:2d:82:13:72:c2:76:39:b8:1d:c2:87:c5: 96:a5:b7:21:84:b5:a3:4c:64:3e:9b:7d:03:21:e9: 01:76:c0:67:0e:25:14:68:8e:10:3f:9f:9a:78:56: 9f:e1:f2:74:41:35:2b:c2:17:78:7a:3d:58:04:24: 62:59:45:e6:71:1a:ac:3d:9c:04:18:dc:4b:f1:73: 3b:74:ca:be:00:4b:18:c0:80:70:2b:34:fd:d8:71: 2d:88:87:02:24:05:3f:e4:3f:76:bb:94:f9:fa:62: 4e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:A4:BE:1B:29:8D:02:84:36:07:99:B3:14:5F:C9:BF:92:2F:C8:95 X509v3 Authority Key Identifier: keyid:B0:B8:8E:EE:91:3B:2A:A8:D7:B5:95:37:15:3E:FC:D8:70:0A:91:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B62A9/D77F91421DA111E2BFCB309408B02CD2/sLiO7pE7KqjXtZU3FT782HAKkUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sLiO7pE7KqjXtZU3FT782HAKkUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B62A9/D77F91421DA111E2BFCB309408B02CD2/sLiO7pE7KqjXtZU3FT782HAKkUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:eb:24:11:3b:e1:78:1c:96:9b:78:45:73:53:cf:fd:31:41: 58:95:1c:c1:68:27:2e:74:7b:e8:90:6e:9b:83:e6:3e:2c:05: 9e:ec:f6:b9:d0:a4:90:fa:f6:16:01:44:cf:0b:c0:9b:7b:d6: 44:05:0e:d5:2a:39:7f:57:05:01:6f:ce:bd:8c:c4:5f:c7:3f: 3b:13:d5:93:5d:e0:6d:c5:54:40:e6:79:c5:c7:b8:2f:3f:91: 9b:b7:9a:73:4b:e3:84:34:f2:cc:98:2d:c9:0e:db:54:96:e5: d4:e7:86:32:3b:41:f1:2c:70:0f:27:b6:f9:8d:9f:e1:a5:b4: 7f:7c:3f:36:f6:67:07:c3:9b:b6:b4:53:8a:77:1d:7e:ae:83: f8:f0:53:94:d0:eb:8f:c0:82:59:f8:42:71:b5:96:4d:49:c8: 29:bc:fd:2e:5d:24:6e:dd:d4:56:6f:b6:ad:09:d1:e3:07:c6: 38:71:05:c4:85:5e:16:37:ba:54:d4:13:5e:53:0e:a1:ac:3f: 21:97:9b:a4:b3:c5:64:78:f6:3e:8b:2b:94:d0:ee:ee:c5:c8: b7:ea:96:77:b3:af:70:10:52:7a:3b:cd:2a:41:8a:49:c0:f3: aa:25:60:ca:5a:98:65:39:8a:52:55:b0:e9:a4:77:6e:0b:5f: 71:4b:8d:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYyQTkxMTAvBgNVBAUTKEIwQjg4RUVFOTEzQjJBQThEN0I1OTUzNzE1M0VGQ0Q4 NzAwQTkxNDAwHhcNMjUxMTA0MTUwODQ3WhcNMjUxMTExMTUwODQ3WjAYMRYwFAYD VQQDEw02OTBhMTZmZi02ZjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0vlbUaf0u9MHpNhqkMXKDLulrA9/S43N9Iz10SrwfiSA7HTb0Zu57AIRUYv7 ycWY9pdBiiS6K53GYtxvzh4GnMtagl1F3dbGnUzoOCsmeF+udmTGBHgrQAz1tkYY QWqiqeE3yByADRtG/XTSTNHBlx7OyBeyugG15QDmsD8nXHWgf6of0IfKZUOZwbW/ l8p/3UjOxVoE/qktghNywnY5uB3Ch8WWpbchhLWjTGQ+m30DIekBdsBnDiUUaI4Q P5+aeFaf4fJ0QTUrwhd4ej1YBCRiWUXmcRqsPZwEGNxL8XM7dMq+AEsYwIBwKzT9 2HEtiIcCJAU/5D92u5T5+mJOiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOmkvhsp jQKENgeZsxRfyb+SL8iVMB8GA1UdIwQYMBaAFLC4ju6ROyqo17WVNxU+/NhwCpFA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjJBOS9ENzdGOTE0MjFE QTExMUUyQkZDQjMwOTQwOEIwMkNEMi9zTGlPN3BFN0txalh0WlUzRlQ3ODJIQUtr VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NMaU83cEU3S3FqWHRaVTNGVDc4MkhBS2tVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjJBOS9ENzdGOTE0MjFEQTExMUUyQkZDQjMwOTQwOEIwMkNEMi9zTGlPN3BFN0tx alh0WlUzRlQ3ODJIQUtrVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC36yQRO+F4HJabeEVzU8/9MUFYlRzBaCcudHvokG6bg+Y+LAWe7Pa5 0KSQ+vYWAUTPC8Cbe9ZEBQ7VKjl/VwUBb869jMRfxz87E9WTXeBtxVRA5nnFx7gv P5Gbt5pzS+OENPLMmC3JDttUluXU54YyO0HxLHAPJ7b5jZ/hpbR/fD829mcHw5u2 tFOKdx1+roP48FOU0OuPwIJZ+EJxtZZNScgpvP0uXSRu3dRWb7atCdHjB8Y4cQXE hV4WN7pU1BNeUw6hrD8hl5uks8VkePY+iyuU0O7uxci36pZ3s69wEFJ6O80qQYpJ wPOqJWDKWphlOYpSVbDppHduC19xS41O -----END CERTIFICATE-----Generated at Wed Nov 5 05:49:50 2025 by rpki-client